Skocz do zawartości


Zdjęcie

Problem z firefoxem


  • Zaloguj się, aby dodać odpowiedź
5 odpowiedzi w tym temacie

#1 Bejkrools

Bejkrools

    Obserwator

  • 7 postów

Napisano 31 01 2008 - 22:55

Mam Firefoxa w wersji 2.0.0.11 i nie działają mi strony takie jak ninjaproxy czy hidemyass. Strona normalnie się ładuje, jednak kiedy wpiszę na niej w okienku docelowy adres, wówczas podana strona sie nie ładuje. Te same czynności przy użyciu Opery są skuteczne. Ma ktoś jakiś pomysł dlaczego tak się dzieje ?

  • 0

#2 Bardock

Bardock

    Ocean of Apathy

  • 985 postów

Napisano 01 02 2008 - 16:34

Podaj adresy tych stron.Próbowałeś przeinstalować przeglądarki?

  • 0

#3 Marcin5214

Marcin5214

    Początkujący

  • 70 postów

Napisano 01 02 2008 - 16:42

Masz zainstalowane wszystkie wtyczki ?
  • 0

#4 Bejkrools

Bejkrools

    Obserwator

  • 7 postów

Napisano 01 02 2008 - 18:20

Adresem docelowym jest pewne forum, do którego dostępu zabronili administratorzy mojej sieci. Zwyczajne studenckie forum :-) Dodam, że wtyczki, które mam zainstalowane to:

-Adblock Plus (0.7.5.3.)
-DOM Inspetor (1.8.1.11)
-Download Statusbar (0.9.5.3)
-Flashgot (0.7.7)
-Tab Clicking Options (0.6.9)
-Talkback (2.0.0.11)

Ale przy wyłączonych wszelkich wtyczkach problem także występuje. Reinstalowałem już i to nie raz.
  • 0

#5 wncvirus

wncvirus

    Leń !

  • 851 postów

Napisano 01 02 2008 - 18:23

A czy na np onet.pl czy wp.pl wejdziesz?.Pokaż mi logi hjt + combofix
  • 0

#6 Bejkrools

Bejkrools

    Obserwator

  • 7 postów

Napisano 01 02 2008 - 20:10

Za pośrednictwem ninjaproxy i hidemyass nie wejdę na żadną stronkę.

Log:
Logfile of HijackThis v1.99.1Scan saved at 19:21:54, on 2008-02-01Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16574)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\ehome\ehtray.exeC:\WINDOWS\RTHDCPL.EXEC:\Acer\Empowering Technology\ePower\ePower_DMC.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\PROGRA~1\LAUNCH~1\LManager.exeC:\Acer\Empowering Technology\eRecovery\eRAgent.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ATI Technologies\ATI.ACE\CLI.EXEC:\WINDOWS\system32\rundll32.exeC:\Program Files\RocketDock\RocketDock.exeC:\WINDOWS\eHome\ehmsas.exeC:\WINDOWS\system32\ctfmon.exeC:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exeC:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exeC:\Acer\Empowering Technology\ePerformance\MemCheck.exeC:\Program Files\Kalendarz XP\Kalendarz.exec:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeC:\WINDOWS\system32\drivers\CDAC11BA.EXEC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\Common Files\LightScribe\LSSrvc.exec:\usr\MYSQL\bin\mysqld.exeC:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\system32\dllhost.exeC:\WINDOWS\system32\wbem\unsecapp.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\Konnekt\konnekt.exec:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXED:\Instalki\-- użytkowe --\Hijack This\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://google.bearshare.com/pl"]http://google.bearshare.com/pl[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [url="http://uk.rd.yahoo.com/customize/ycomp/defaults/su/*http://uk.yahoo.com"]http://uk.rd.yahoo.com/customize/ycomp/def...://uk.yahoo.com[/url]O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLLO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FLASHGET\jccatch.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dllO3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLLO4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exeO4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exeO4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exeO4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exeO4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exeO4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgentO4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - Global Startup: Acer Empowering Technology.lnk = C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exeO4 - Global Startup: BTTray.lnk = ?O4 - Global Startup: Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exeO8 - Extra context menu item: Ściągnij przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_link.htmO8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_all.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exeO9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exeO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO11 - Options group: [INTERNATIONAL] International*O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [url="http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1196812422421"]http://www.update.microsoft.com/windowsupd...b?1196812422421[/url]O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url="http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1199482352984"]http://www.update.microsoft.com/microsoftu...b?1199482352984[/url]O17 - HKLM\System\CCS\Services\Tcpip\..\{80551CA6-97E9-493B-B5CB-C181F44970AF}: NameServer = 10.100.0.1O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeO23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXEO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: MySql - Unknown owner - c:\usr/MYSQL/bin/mysqld.exeO23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exea to z combofix'a:ComboFix 08-02.01.6 - Bejkrools 2008-02-01 19:29:35.1 - <strong class='bbc'>FAT32</strong>x86Microsoft Windows XP Professional  5.1.2600.2.1250.48.1033.18.171 [GMT 1:00]Running from: D:\Download\ComboFix.exe * Created a new restore point<strong class='bbc'>WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED Dołączona grafika</strong>.(((((((((((((((((((((((((((((((((((((((   Other Deletions   ))))))))))))))))))))))))))))))))))))))))))))))))).C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.datC:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.datC:\Program Files\myglobalsearchC:\Program Files\myglobalsearch\bar\1.bin\M9FFXTBR.JARC:\Program Files\myglobalsearch\bar\1.bin\M9FFXTBR.MANIFESTC:\Program Files\myglobalsearch\bar\1.bin\M9NTSTBR.JARC:\Program Files\myglobalsearch\bar\1.bin\M9NTSTBR.MANIFESTC:\Program Files\myglobalsearch\bar\1.bin\M9PLUGIN.DLLC:\Program Files\myglobalsearch\bar\1.bin\MGSBAR.DLLC:\Program Files\myglobalsearch\bar\1.bin\NPMYGLSH.DLLC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C026C:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C297C:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C3FE.binC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006D3AE.binC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006D5A2.binC:\Program Files\myglobalsearch\bar\Cache\files.iniC:\Program Files\myglobalsearch\bar\History\searchC:\Program Files\myglobalsearch\bar\Settings\prevcfg.htmC:\WINDOWS\system32\Cfx32.licC:\WINDOWS\system32\cfx32.ocx----- BITS: Possible infected sites -----hxxp://www.download.windowsupdate.comhxxp://download.windowsupdate.com.(((((((((((((((((((((((((   Files Created from 2008-01-01 to 2008-02-01  ))))))))))))))))))))))))))))))).2008-01-28 00:01 . 2008-01-28 00:01	<DIR>	d--------	C:\Program Files\Dexpot2008-01-19 19:59 . 2008-01-19 19:59	<DIR>	d--------	C:\Program Files\OpenOffice.org 2.32008-01-19 19:48 . 2008-01-19 19:48	<DIR>	d--------	C:\Documents and Settings\Bejkrools\Application Data\OpenOffice.org22008-01-19 18:46 . 2008-01-19 18:46	<DIR>	d--------	C:\Program Files\OpenOffice.org 2.12008-01-17 13:01 . 2004-08-03 23:01	25,856	--a------	C:\WINDOWS\system32\drivers\usbprint.sys2008-01-17 13:01 . 2004-08-03 23:01	25,856	--a------	C:\WINDOWS\system32\dllcache\usbprint.sys2008-01-15 16:13 . 2008-01-15 16:13	<DIR>	d--------	C:\WINDOWS\system32\QuickTime2008-01-15 16:13 . 2008-01-15 16:13	<DIR>	d--------	C:\Program Files\QuickTime2008-01-15 16:13 . 1999-11-10 12:05	86,016	--a------	C:\WINDOWS\unvise32qt.exe2008-01-15 16:09 . 2008-01-15 16:09	<DIR>	d--------	C:\Documents and Settings\All Users\Application Data\QuickTime2008-01-14 17:22 . 2008-01-14 17:22	<DIR>	d--------	C:\Program Files\Baku2008-01-14 17:22 . 2008-01-14 17:22	<DIR>	d--------	C:\Documents and Settings\Bejkrools\Application Data\Pmcc2008-01-14 12:09 . 2008-01-14 12:09	<DIR>	d--------	C:\Program Files\ClearSkin2008-01-11 10:30 . 2008-01-11 10:30	<DIR>	d--------	C:\Program Files\TubeMaster2008-01-08 00:56 . 2008-01-08 00:56	<DIR>	d--------	C:\Program Files\Ultra Tag Editor2008-01-07 23:20 . 2008-01-07 23:20	<DIR>	d--------	C:\Program Files\Zortam2008-01-07 23:19 . 2008-01-07 23:19	<DIR>	d--------	C:\Documents and Settings\Bejkrools\WINDOWS2008-01-07 17:38 . 2008-01-07 17:38	<DIR>	d--------	C:\Program Files\Winamp2008-01-07 17:38 . 2007-03-08 00:51	129,784	---------	C:\WINDOWS\system32\pxafs.dll2008-01-06 05:56 . 2008-01-06 05:56	<DIR>	d--------	C:\Program Files\SpeedFan2008-01-06 05:56 . 2008-01-06 05:56	45	--a------	C:\WINDOWS\system32\initdebug.nfo2008-01-06 01:23 . 2008-01-06 01:23	<DIR>	d--------	C:\Program Files\ImTOO2008-01-06 00:11 . 2008-01-06 00:11	<DIR>	d--------	C:\MyDatabase2008-01-06 00:02 . 2008-01-23 19:44	13,030	--a------	C:\PDOXUSRS.NET2008-01-04 23:33 . 2008-01-04 23:33	<DIR>	d--------	C:\Program Files\Black Isle2008-01-04 23:33 . 1998-10-07 12:54	327,168	--a------	C:\WINDOWS\IsUn0415.exe2008-01-04 21:08 . 2008-01-04 21:08	<DIR>	d--------	C:\Program Files\ffdshow2008-01-04 17:10 . 2008-01-04 17:10	<DIR>	d--------	C:\Program Files\MSXML 4.02008-01-04 16:53 . 2008-01-04 16:53	<DIR>	d--------	C:\Documents and Settings\Bejkrools\Application Data\FileZilla2008-01-04 16:52 . 2008-01-04 16:53	<DIR>	d--------	C:\Program Files\FileZilla Client.((((((((((((((((((((((((((((((((((((((((   Find3M Report   )))))))))))))))))))))))))))))))))))))))))))))))))))).2007-12-31 01:28	---------	d-----w	C:\Program Files\WinAce2007-12-30 21:04	---------	d-----w	C:\Program Files\PhotoFiltre2007-12-30 15:36	---------	d-----w	C:\Program Files\Tacmi2007-12-24 21:45	---------	d-----w	C:\Program Files\Disc2Phone2007-12-24 21:39	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Teleca2007-12-24 21:36	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Sony Ericsson2007-12-24 21:33	---------	d-----w	C:\Program Files\Sony Ericsson2007-12-24 21:33	---------	d-----w	C:\Program Files\Common Files\Teleca Shared2007-12-24 21:33	---------	d-----w	C:\Program Files\Common Files\Sony Ericsson Shared2007-12-24 21:33	---------	d-----w	C:\Documents and Settings\All Users\Application Data\Teleca2007-12-24 21:33	---------	d-----w	C:\Documents and Settings\All Users\Application Data\Sony Ericsson2007-12-23 18:47	---------	d-----w	C:\Program Files\3D SexVilla2007-12-22 11:25	---------	d-----w	C:\Program Files\MSBuild2007-12-22 11:20	---------	d-----w	C:\Program Files\Reference Assemblies2007-12-21 23:07	54,784	----a-w	C:\WINDOWS\system32\drivers\CDAC11BA.EXE2007-12-21 23:07	12,464	----a-w	C:\WINDOWS\system32\drivers\CDAC15BA.SYS2007-12-21 23:07	---------	d-----w	C:\Program Files\Common Files\Macrovision Shared2007-12-21 23:07	---------	d-----w	C:\Program Files\Autodesk2007-12-21 23:06	---------	d-----w	C:\Program Files\AnswerWorks 4.02007-12-21 23:05	---------	d-----w	C:\Program Files\Common Files\Autodesk Shared2007-12-21 23:05	---------	d-----w	C:\Program Files\AutoCAD 20042007-12-21 23:05	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Autodesk2007-12-21 23:05	---------	d-----w	C:\Documents and Settings\All Users\Application Data\Autodesk2007-12-21 13:03	737,280	----a-w	C:\WINDOWS\iun6002.exe2007-12-17 16:53	---------	d-----w	C:\Program Files\Notepad++2007-12-17 16:53	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Notepad++2007-12-17 00:59	---------	d-----w	C:\Program Files\MSXML 6.02007-12-16 23:10	---------	d-----w	C:\Program Files\MyPhoneExplorer2007-12-16 23:10	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\MyPhoneExplorer2007-12-16 16:24	---------	d-----w	C:\Program Files\Opera2007-12-12 23:31	---------	d-----w	C:\Program Files\ToniArts2007-12-11 14:51	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Gadu-Gadu2007-12-11 14:49	---------	d-----w	C:\Program Files\Gadu-Gadu2007-12-11 11:45	---------	d-----w	C:\Program Files\Audacity2007-12-09 22:52	---------	d-----w	C:\Program Files\BinarySense2007-12-05 20:44	---------	d-----w	C:\Program Files\Microsoft Virtual PC2007-12-05 20:00	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\CyberLink2007-12-05 19:59	---------	d-----w	C:\Documents and Settings\All Users\Application Data\CyberLink2007-12-05 19:33	---------	d-----w	C:\Program Files\Audio Manager 32007-12-05 13:04	---------	d-----w	C:\Program Files\Screamer Radio2007-12-05 10:28	---------	d-----w	C:\Program Files\TC PowerPack2007-12-05 10:15	---------	d-----w	C:\Program Files\Advanced IP Scanner2007-12-05 09:14	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\foobar20002007-12-04 23:52	---------	d-----w	C:\Documents and Settings\All Users\Application Data\Yahoo! Companion2007-12-04 23:37	---------	d-----w	C:\Program Files\Microsoft.NET2007-12-04 23:24	---------	d-----w	C:\Program Files\Common Files\Borland Shared2007-12-04 23:24	---------	d-----w	C:\Program Files\Borland2007-12-04 23:01	---------	d-----w	C:\Program Files\IrfanView2007-12-04 19:19	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\AdobeUM2007-12-04 18:24	---------	d-----w	C:\Program Files\Alcohol Soft2007-12-04 16:59	---------	d-----w	C:\Program Files\BearShare2007-12-04 16:48	---------	d-----w	C:\Program Files\Fotosizer2007-12-04 16:34	---------	d-----w	C:\Program Files\uTorrent2007-12-04 16:34	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\uTorrent2007-12-04 16:25	---------	d-----w	C:\Program Files\Picasa22007-12-04 16:25	---------	d-----w	C:\Program Files\Google2007-12-04 16:18	---------	d-----w	C:\Program Files\LClock2007-12-04 16:13	---------	d-----w	C:\Program Files\Java2007-12-04 16:13	---------	d-----w	C:\Program Files\Common Files\Java2007-12-04 16:11	---------	d-----w	C:\Program Files\<a href="http://www.download.net.pl/107/Real-Alternative/">Real Alternative</a>2007-12-04 16:09	---------	d-----w	C:\Program Files\foobar20002007-12-04 16:07	---------	d-----w	C:\Program Files\SubEdit-Player2007-12-04 16:02	---------	d-----w	C:\Program Files\eSkiMoS R22007-12-04 16:02	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\eSkiMoS R22007-12-04 15:56	---------	d-----w	C:\Program Files\Konnekt2007-12-04 15:55	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Skype2007-12-04 15:54	---------	d-----w	C:\Program Files\Skype2007-12-04 15:54	---------	d-----w	C:\Program Files\Common Files\Skype2007-12-04 15:54	---------	d-----w	C:\Documents and Settings\All Users\Application Data\Skype2007-12-04 15:39	---------	d-----w	C:\Program Files\RocketDock2007-12-04 15:37	---------	d-----w	C:\Program Files\Kalendarz XP2007-12-04 15:34	---------	d-----w	C:\Program Files\Net Profiles2007-12-04 15:32	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Talkback2007-12-04 15:31	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\Thunderbird2007-12-04 15:30	---------	d-----w	C:\Program Files\MozBackup2007-12-04 15:29	---------	d-----w	C:\Program Files\Mozilla Thunderbird2007-12-04 15:29	---------	d-----w	C:\Program Files\FlashGet2007-12-04 15:24	---------	d-----w	C:\Documents and Settings\Bejkrools\Application Data\odlMozilla2007-12-04 14:56	93,264	----a-w	C:\WINDOWS\system32\drivers\aswmon.sys2007-12-04 14:55	94,544	----a-w	C:\WINDOWS\system32\drivers\aswmon2.sys2007-12-04 14:53	23,152	----a-w	C:\WINDOWS\system32\drivers\aswRdr.sys2007-12-04 14:51	42,912	----a-w	C:\WINDOWS\system32\drivers\aswTdi.sys2007-12-04 14:49	26,624	----a-w	C:\WINDOWS\system32\drivers\aavmker4.sys2007-12-04 14:42	---------	d-----w	C:\Program Files\Alwil Software2007-12-04 13:09	---------	d-----w	C:\Program Files\Yahoo!2007-12-04 13:04	837,496	----a-w	C:\WINDOWS\system32\aswBoot.exe2007-12-04 12:54	95,608	----a-w	C:\WINDOWS\system32\AvastSS.scr2007-12-04 12:42	---------	d-----w	C:\Program Files\WIDCOMM2007-12-04 12:41	---------	d-----w	C:\Program Files\Launch Manager2007-12-04 12:40	---------	d-----w	C:\Program Files\Synaptics2007-11-07 09:26	721,920	----a-w	C:\WINDOWS\system32\lsasrv.dll2007-11-07 09:26	721,920	----a-w	C:\WINDOWS\system32\dllcache\lsasrv.dll.(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RocketDock"="C:\Program Files\RocketDock\RocketDock.exe" [2007-09-02 13:58 495616]"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2006-04-14 22:35 53248]"RTHDCPL"="RTHDCPL.EXE" [2006-06-27 23:54 16248320 C:\WINDOWS\RTHDCPL.exe]"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-05-30 12:11 421888]"Boot"="C:\Acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 22:12 579584]"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-06-23 06:59 602112]"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 11:12 90112]"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\eRAgent.exe" [2006-06-01 14:40 413696]"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-10 20:00 110592 C:\WINDOWS\system32\bthprops.cpl][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acer Empowering Technology.lnk - C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2006-03-27 11:37:58 45056]BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-01-17 10:45:32 618557]Kalendarz XP.lnk - C:\Program Files\Kalendarz XP\Kalendarz.exe [2007-12-04 16:37:14 882176][HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.themeR0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 16:14]R2 DritekPortIO;Dritek General Port I/O;C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2005-12-23 01:13]R2 int15;int15;C:\WINDOWS\system32\drivers\int15.sys [2006-06-02 13:59]R2 tvicport;tvicport;C:\WINDOWS\system32\drivers\tvicport.sys [2006-06-02 13:59]S2 eLock2BurnerLockDriver;eLock2BurnerLockDriver;C:\WINDOWS\system32\eLock2BurnerLockDriver.sys []S2 eLock2FSCTLDriver;eLock2FSCTLDriver;C:\WINDOWS\system32\eLock2FSCTLDriver.sys []S3 ZSMC303;KINSTONE USB PC Camera H;C:\WINDOWS\system32\Drivers\usbVM303.sys [][HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{301cd874-c9ff-11dc-98f7-0016d4517dda}]\Shell\AutoRun\command - xn1i9x.com\Shell\explore\Command - xn1i9x.com\Shell\open\Command - xn1i9x.com[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ab381b11-bd4b-11dc-98de-0016d4517dda}]\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e1d4002e-b3c5-11dc-98c8-0016d4517dda}]\Shell\Auto\command - activexdebugger32.exe f\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL activexdebugger32.exe f\Shell\explore\Command - activexdebugger32.exe f\Shell\open\Command - activexdebugger32.exe f.**************************************************************************catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [url="http://www.gmer.net"]http://www.gmer.net[/url]Rootkit scan 2008-02-01 19:32:46Windows 5.1.2600 Service Pack 2 FAT NTAPIscanning hidden processes ... scanning hidden autostart entries ...scanning hidden files ... scan completed successfully hidden files: 0 **************************************************************************.Completion time: 2008-02-01 19:33:25ComboFix-quarantined-files.txt  2008-02-01 18:33:22


Użytkownik Ziele edytował ten post 03 02 2008 - 22:15
Dłuższy kod wstawiamy w znacznikach "codebox", a krótszy w "code"

  • 0

Zobacz więcej tematów z tagiem: Mozilla Firefox



Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych