Mam Firefoxa w wersji 2.0.0.11 i nie działają mi strony takie jak ninjaproxy czy hidemyass. Strona normalnie się ładuje, jednak kiedy wpiszę na niej w okienku docelowy adres, wówczas podana strona sie nie ładuje. Te same czynności przy użyciu Opery są skuteczne. Ma ktoś jakiś pomysł dlaczego tak się dzieje ?
Problem z firefoxem
Rozpoczęty przez
Bejkrools
, 31 01 2008 22:55
5 odpowiedzi w tym temacie
#1
Napisano 31 01 2008 - 22:55
#2
Napisano 01 02 2008 - 16:34
Podaj adresy tych stron.Próbowałeś przeinstalować przeglądarki?
#3
Napisano 01 02 2008 - 16:42
Masz zainstalowane wszystkie wtyczki ?
#4
Napisano 01 02 2008 - 18:20
Adresem docelowym jest pewne forum, do którego dostępu zabronili administratorzy mojej sieci. Zwyczajne studenckie forum :-) Dodam, że wtyczki, które mam zainstalowane to:
-Adblock Plus (0.7.5.3.)
-DOM Inspetor (1.8.1.11)
-Download Statusbar (0.9.5.3)
-Flashgot (0.7.7)
-Tab Clicking Options (0.6.9)
-Talkback (2.0.0.11)
Ale przy wyłączonych wszelkich wtyczkach problem także występuje. Reinstalowałem już i to nie raz.
-Adblock Plus (0.7.5.3.)
-DOM Inspetor (1.8.1.11)
-Download Statusbar (0.9.5.3)
-Flashgot (0.7.7)
-Tab Clicking Options (0.6.9)
-Talkback (2.0.0.11)
Ale przy wyłączonych wszelkich wtyczkach problem także występuje. Reinstalowałem już i to nie raz.
#5
Napisano 01 02 2008 - 18:23
A czy na np onet.pl czy wp.pl wejdziesz?.Pokaż mi logi hjt + combofix
#6
Napisano 01 02 2008 - 20:10
Za pośrednictwem ninjaproxy i hidemyass nie wejdę na żadną stronkę.
Log:
Log:
Logfile of HijackThis v1.99.1Scan saved at 19:21:54, on 2008-02-01Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16574)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\ehome\ehtray.exeC:\WINDOWS\RTHDCPL.EXEC:\Acer\Empowering Technology\ePower\ePower_DMC.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\PROGRA~1\LAUNCH~1\LManager.exeC:\Acer\Empowering Technology\eRecovery\eRAgent.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ATI Technologies\ATI.ACE\CLI.EXEC:\WINDOWS\system32\rundll32.exeC:\Program Files\RocketDock\RocketDock.exeC:\WINDOWS\eHome\ehmsas.exeC:\WINDOWS\system32\ctfmon.exeC:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exeC:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exeC:\Acer\Empowering Technology\ePerformance\MemCheck.exeC:\Program Files\Kalendarz XP\Kalendarz.exec:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeC:\WINDOWS\system32\drivers\CDAC11BA.EXEC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\Common Files\LightScribe\LSSrvc.exec:\usr\MYSQL\bin\mysqld.exeC:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\system32\dllhost.exeC:\WINDOWS\system32\wbem\unsecapp.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\Konnekt\konnekt.exec:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXED:\Instalki\-- użytkowe --\Hijack This\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://google.bearshare.com/pl"]http://google.bearshare.com/pl[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [url="http://uk.rd.yahoo.com/customize/ycomp/defaults/su/*http://uk.yahoo.com"]http://uk.rd.yahoo.com/customize/ycomp/def...://uk.yahoo.com[/url]O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLLO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FLASHGET\jccatch.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dllO3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLLO4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exeO4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exeO4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exeO4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exeO4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exeO4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgentO4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - Global Startup: Acer Empowering Technology.lnk = C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exeO4 - Global Startup: BTTray.lnk = ?O4 - Global Startup: Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exeO8 - Extra context menu item: Ściągnij przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_link.htmO8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_all.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exeO9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exeO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO11 - Options group: [INTERNATIONAL] International*O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [url="http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1196812422421"]http://www.update.microsoft.com/windowsupd...b?1196812422421[/url]O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url="http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1199482352984"]http://www.update.microsoft.com/microsoftu...b?1199482352984[/url]O17 - HKLM\System\CCS\Services\Tcpip\..\{80551CA6-97E9-493B-B5CB-C181F44970AF}: NameServer = 10.100.0.1O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeO23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXEO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: MySql - Unknown owner - c:\usr/MYSQL/bin/mysqld.exeO23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exea to z combofix'a:ComboFix 08-02.01.6 - Bejkrools 2008-02-01 19:29:35.1 - <strong class='bbc'>FAT32</strong>x86Microsoft Windows XP Professional 5.1.2600.2.1250.48.1033.18.171 [GMT 1:00]Running from: D:\Download\ComboFix.exe * Created a new restore point<strong class='bbc'>WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED </strong>.((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))).C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.datC:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.datC:\Program Files\myglobalsearchC:\Program Files\myglobalsearch\bar\1.bin\M9FFXTBR.JARC:\Program Files\myglobalsearch\bar\1.bin\M9FFXTBR.MANIFESTC:\Program Files\myglobalsearch\bar\1.bin\M9NTSTBR.JARC:\Program Files\myglobalsearch\bar\1.bin\M9NTSTBR.MANIFESTC:\Program Files\myglobalsearch\bar\1.bin\M9PLUGIN.DLLC:\Program Files\myglobalsearch\bar\1.bin\MGSBAR.DLLC:\Program Files\myglobalsearch\bar\1.bin\NPMYGLSH.DLLC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C026C:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C297C:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006C3FE.binC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006D3AE.binC:\Program Files\myglobalsearch\bar\Cache\[u]0[/u]006D5A2.binC:\Program Files\myglobalsearch\bar\Cache\files.iniC:\Program Files\myglobalsearch\bar\History\searchC:\Program Files\myglobalsearch\bar\Settings\prevcfg.htmC:\WINDOWS\system32\Cfx32.licC:\WINDOWS\system32\cfx32.ocx----- BITS: Possible infected sites -----hxxp://www.download.windowsupdate.comhxxp://download.windowsupdate.com.((((((((((((((((((((((((( Files Created from 2008-01-01 to 2008-02-01 ))))))))))))))))))))))))))))))).2008-01-28 00:01 . 2008-01-28 00:01 <DIR> d-------- C:\Program Files\Dexpot2008-01-19 19:59 . 2008-01-19 19:59 <DIR> d-------- C:\Program Files\OpenOffice.org 2.32008-01-19 19:48 . 2008-01-19 19:48 <DIR> d-------- C:\Documents and Settings\Bejkrools\Application Data\OpenOffice.org22008-01-19 18:46 . 2008-01-19 18:46 <DIR> d-------- C:\Program Files\OpenOffice.org 2.12008-01-17 13:01 . 2004-08-03 23:01 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys2008-01-17 13:01 . 2004-08-03 23:01 25,856 --a------ C:\WINDOWS\system32\dllcache\usbprint.sys2008-01-15 16:13 . 2008-01-15 16:13 <DIR> d-------- C:\WINDOWS\system32\QuickTime2008-01-15 16:13 . 2008-01-15 16:13 <DIR> d-------- C:\Program Files\QuickTime2008-01-15 16:13 . 1999-11-10 12:05 86,016 --a------ C:\WINDOWS\unvise32qt.exe2008-01-15 16:09 . 2008-01-15 16:09 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\QuickTime2008-01-14 17:22 . 2008-01-14 17:22 <DIR> d-------- C:\Program Files\Baku2008-01-14 17:22 . 2008-01-14 17:22 <DIR> d-------- C:\Documents and Settings\Bejkrools\Application Data\Pmcc2008-01-14 12:09 . 2008-01-14 12:09 <DIR> d-------- C:\Program Files\ClearSkin2008-01-11 10:30 . 2008-01-11 10:30 <DIR> d-------- C:\Program Files\TubeMaster2008-01-08 00:56 . 2008-01-08 00:56 <DIR> d-------- C:\Program Files\Ultra Tag Editor2008-01-07 23:20 . 2008-01-07 23:20 <DIR> d-------- C:\Program Files\Zortam2008-01-07 23:19 . 2008-01-07 23:19 <DIR> d-------- C:\Documents and Settings\Bejkrools\WINDOWS2008-01-07 17:38 . 2008-01-07 17:38 <DIR> d-------- C:\Program Files\Winamp2008-01-07 17:38 . 2007-03-08 00:51 129,784 --------- C:\WINDOWS\system32\pxafs.dll2008-01-06 05:56 . 2008-01-06 05:56 <DIR> d-------- C:\Program Files\SpeedFan2008-01-06 05:56 . 2008-01-06 05:56 45 --a------ C:\WINDOWS\system32\initdebug.nfo2008-01-06 01:23 . 2008-01-06 01:23 <DIR> d-------- C:\Program Files\ImTOO2008-01-06 00:11 . 2008-01-06 00:11 <DIR> d-------- C:\MyDatabase2008-01-06 00:02 . 2008-01-23 19:44 13,030 --a------ C:\PDOXUSRS.NET2008-01-04 23:33 . 2008-01-04 23:33 <DIR> d-------- C:\Program Files\Black Isle2008-01-04 23:33 . 1998-10-07 12:54 327,168 --a------ C:\WINDOWS\IsUn0415.exe2008-01-04 21:08 . 2008-01-04 21:08 <DIR> d-------- C:\Program Files\ffdshow2008-01-04 17:10 . 2008-01-04 17:10 <DIR> d-------- C:\Program Files\MSXML 4.02008-01-04 16:53 . 2008-01-04 16:53 <DIR> d-------- C:\Documents and Settings\Bejkrools\Application Data\FileZilla2008-01-04 16:52 . 2008-01-04 16:53 <DIR> d-------- C:\Program Files\FileZilla Client.(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2007-12-31 01:28 --------- d-----w C:\Program Files\WinAce2007-12-30 21:04 --------- d-----w C:\Program Files\PhotoFiltre2007-12-30 15:36 --------- d-----w C:\Program Files\Tacmi2007-12-24 21:45 --------- d-----w C:\Program Files\Disc2Phone2007-12-24 21:39 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Teleca2007-12-24 21:36 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Sony Ericsson2007-12-24 21:33 --------- d-----w C:\Program Files\Sony Ericsson2007-12-24 21:33 --------- d-----w C:\Program Files\Common Files\Teleca Shared2007-12-24 21:33 --------- d-----w C:\Program Files\Common Files\Sony Ericsson Shared2007-12-24 21:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\Teleca2007-12-24 21:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony Ericsson2007-12-23 18:47 --------- d-----w C:\Program Files\3D SexVilla2007-12-22 11:25 --------- d-----w C:\Program Files\MSBuild2007-12-22 11:20 --------- d-----w C:\Program Files\Reference Assemblies2007-12-21 23:07 54,784 ----a-w C:\WINDOWS\system32\drivers\CDAC11BA.EXE2007-12-21 23:07 12,464 ----a-w C:\WINDOWS\system32\drivers\CDAC15BA.SYS2007-12-21 23:07 --------- d-----w C:\Program Files\Common Files\Macrovision Shared2007-12-21 23:07 --------- d-----w C:\Program Files\Autodesk2007-12-21 23:06 --------- d-----w C:\Program Files\AnswerWorks 4.02007-12-21 23:05 --------- d-----w C:\Program Files\Common Files\Autodesk Shared2007-12-21 23:05 --------- d-----w C:\Program Files\AutoCAD 20042007-12-21 23:05 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Autodesk2007-12-21 23:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Autodesk2007-12-21 13:03 737,280 ----a-w C:\WINDOWS\iun6002.exe2007-12-17 16:53 --------- d-----w C:\Program Files\Notepad++2007-12-17 16:53 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Notepad++2007-12-17 00:59 --------- d-----w C:\Program Files\MSXML 6.02007-12-16 23:10 --------- d-----w C:\Program Files\MyPhoneExplorer2007-12-16 23:10 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\MyPhoneExplorer2007-12-16 16:24 --------- d-----w C:\Program Files\Opera2007-12-12 23:31 --------- d-----w C:\Program Files\ToniArts2007-12-11 14:51 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Gadu-Gadu2007-12-11 14:49 --------- d-----w C:\Program Files\Gadu-Gadu2007-12-11 11:45 --------- d-----w C:\Program Files\Audacity2007-12-09 22:52 --------- d-----w C:\Program Files\BinarySense2007-12-05 20:44 --------- d-----w C:\Program Files\Microsoft Virtual PC2007-12-05 20:00 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\CyberLink2007-12-05 19:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink2007-12-05 19:33 --------- d-----w C:\Program Files\Audio Manager 32007-12-05 13:04 --------- d-----w C:\Program Files\Screamer Radio2007-12-05 10:28 --------- d-----w C:\Program Files\TC PowerPack2007-12-05 10:15 --------- d-----w C:\Program Files\Advanced IP Scanner2007-12-05 09:14 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\foobar20002007-12-04 23:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo! Companion2007-12-04 23:37 --------- d-----w C:\Program Files\Microsoft.NET2007-12-04 23:24 --------- d-----w C:\Program Files\Common Files\Borland Shared2007-12-04 23:24 --------- d-----w C:\Program Files\Borland2007-12-04 23:01 --------- d-----w C:\Program Files\IrfanView2007-12-04 19:19 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\AdobeUM2007-12-04 18:24 --------- d-----w C:\Program Files\Alcohol Soft2007-12-04 16:59 --------- d-----w C:\Program Files\BearShare2007-12-04 16:48 --------- d-----w C:\Program Files\Fotosizer2007-12-04 16:34 --------- d-----w C:\Program Files\uTorrent2007-12-04 16:34 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\uTorrent2007-12-04 16:25 --------- d-----w C:\Program Files\Picasa22007-12-04 16:25 --------- d-----w C:\Program Files\Google2007-12-04 16:18 --------- d-----w C:\Program Files\LClock2007-12-04 16:13 --------- d-----w C:\Program Files\Java2007-12-04 16:13 --------- d-----w C:\Program Files\Common Files\Java2007-12-04 16:11 --------- d-----w C:\Program Files\<a href="http://www.download.net.pl/107/Real-Alternative/">Real Alternative</a>2007-12-04 16:09 --------- d-----w C:\Program Files\foobar20002007-12-04 16:07 --------- d-----w C:\Program Files\SubEdit-Player2007-12-04 16:02 --------- d-----w C:\Program Files\eSkiMoS R22007-12-04 16:02 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\eSkiMoS R22007-12-04 15:56 --------- d-----w C:\Program Files\Konnekt2007-12-04 15:55 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Skype2007-12-04 15:54 --------- d-----w C:\Program Files\Skype2007-12-04 15:54 --------- d-----w C:\Program Files\Common Files\Skype2007-12-04 15:54 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype2007-12-04 15:39 --------- d-----w C:\Program Files\RocketDock2007-12-04 15:37 --------- d-----w C:\Program Files\Kalendarz XP2007-12-04 15:34 --------- d-----w C:\Program Files\Net Profiles2007-12-04 15:32 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Talkback2007-12-04 15:31 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\Thunderbird2007-12-04 15:30 --------- d-----w C:\Program Files\MozBackup2007-12-04 15:29 --------- d-----w C:\Program Files\Mozilla Thunderbird2007-12-04 15:29 --------- d-----w C:\Program Files\FlashGet2007-12-04 15:24 --------- d-----w C:\Documents and Settings\Bejkrools\Application Data\odlMozilla2007-12-04 14:56 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys2007-12-04 14:55 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys2007-12-04 14:53 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys2007-12-04 14:51 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys2007-12-04 14:49 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys2007-12-04 14:42 --------- d-----w C:\Program Files\Alwil Software2007-12-04 13:09 --------- d-----w C:\Program Files\Yahoo!2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr2007-12-04 12:42 --------- d-----w C:\Program Files\WIDCOMM2007-12-04 12:41 --------- d-----w C:\Program Files\Launch Manager2007-12-04 12:40 --------- d-----w C:\Program Files\Synaptics2007-11-07 09:26 721,920 ----a-w C:\WINDOWS\system32\lsasrv.dll2007-11-07 09:26 721,920 ----a-w C:\WINDOWS\system32\dllcache\lsasrv.dll.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RocketDock"="C:\Program Files\RocketDock\RocketDock.exe" [2007-09-02 13:58 495616]"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2006-04-14 22:35 53248]"RTHDCPL"="RTHDCPL.EXE" [2006-06-27 23:54 16248320 C:\WINDOWS\RTHDCPL.exe]"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-05-30 12:11 421888]"Boot"="C:\Acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 22:12 579584]"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-06-23 06:59 602112]"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 11:12 90112]"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\eRAgent.exe" [2006-06-01 14:40 413696]"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-10 20:00 110592 C:\WINDOWS\system32\bthprops.cpl][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acer Empowering Technology.lnk - C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2006-03-27 11:37:58 45056]BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-01-17 10:45:32 618557]Kalendarz XP.lnk - C:\Program Files\Kalendarz XP\Kalendarz.exe [2007-12-04 16:37:14 882176][HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.themeR0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 16:14]R2 DritekPortIO;Dritek General Port I/O;C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2005-12-23 01:13]R2 int15;int15;C:\WINDOWS\system32\drivers\int15.sys [2006-06-02 13:59]R2 tvicport;tvicport;C:\WINDOWS\system32\drivers\tvicport.sys [2006-06-02 13:59]S2 eLock2BurnerLockDriver;eLock2BurnerLockDriver;C:\WINDOWS\system32\eLock2BurnerLockDriver.sys []S2 eLock2FSCTLDriver;eLock2FSCTLDriver;C:\WINDOWS\system32\eLock2FSCTLDriver.sys []S3 ZSMC303;KINSTONE USB PC Camera H;C:\WINDOWS\system32\Drivers\usbVM303.sys [][HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{301cd874-c9ff-11dc-98f7-0016d4517dda}]\Shell\AutoRun\command - xn1i9x.com\Shell\explore\Command - xn1i9x.com\Shell\open\Command - xn1i9x.com[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ab381b11-bd4b-11dc-98de-0016d4517dda}]\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e1d4002e-b3c5-11dc-98c8-0016d4517dda}]\Shell\Auto\command - activexdebugger32.exe f\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL activexdebugger32.exe f\Shell\explore\Command - activexdebugger32.exe f\Shell\open\Command - activexdebugger32.exe f.**************************************************************************catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [url="http://www.gmer.net"]http://www.gmer.net[/url]Rootkit scan 2008-02-01 19:32:46Windows 5.1.2600 Service Pack 2 FAT NTAPIscanning hidden processes ... scanning hidden autostart entries ...scanning hidden files ... scan completed successfully hidden files: 0 **************************************************************************.Completion time: 2008-02-01 19:33:25ComboFix-quarantined-files.txt 2008-02-01 18:33:22
Użytkownik Ziele edytował ten post 03 02 2008 - 22:15
Dłuższy kod wstawiamy w znacznikach "codebox", a krótszy w "code"
Użytkownicy przeglądający ten temat: 1
0 użytkowników, 1 gości, 0 anonimowych