| Author |
Message
|
newlee
Poziom 5
Joined: 28 May 2005
Posts: 11
|
 #1
 20 Jun 2005 10:20 problem z popupami |
|
|
|
Witam, w internet explorer mam ustawione by blokowało wyskakujące okienka,ponadto mam program Popup Adfilter włączony cały czas ,a co jakieś 5 czy 10 minut regularnie otwieraz mi się strona - New offer foryou coś tam coś tam z emotami czy czymś tam ,co robić??
|
|
| Back to top |
|
 |
Google
|
| #
20 Jun 2005 10:20 |
|
|
|
|
|
| Back to top |
|
|
halif
Poziom 20
Joined: 11 Mar 2004
Posts: 850
Location: Łódź
|
#2
20 Jun 2005 10:37 problem z popupami |
|
|
|
To raczej jest jakiś trojan, a nie pop-up, sprawdź sobie np. ad-awarem, albo Microsoft AntiSpyware.
Poza tym te wszystkie pop-up filtry nie wyłapują okienek flashowych, moze to flash, a nie normalna strona?
|
|
| Back to top |
|
|
Kolobos
Poziom 26
Joined: 13 Jun 2003
Posts: 26223
Location: Warszawa
|
|
| Back to top |
|
|
Google
|
| #
20 Jun 2005 11:51 |
|
|
|
|
|
| Back to top |
|
|
djvu
Poziom 17
Joined: 09 Dec 2003
Posts: 359
Location: Wklp.
|
#4
20 Jun 2005 12:05 problem z popupami |
|
|
|
Polecam odwiedziny ma stronie http://www.pomoc.x.pl
Tam znajdziesz również porady na ten temat - świetna stronka !
Zobacz i wypróbyj np. SpyBoot and Destroy (PL)
Poza tym może pora na zmianę przeglądarki na niekomercyjną a poprostu dobrą jak FireFox czy Mozilla ... albo Opera ?
Pozdro ...!
"djvu" 8-)
|
|
| Back to top |
|
|
newlee
Poziom 5
Joined: 28 May 2005
Posts: 11
|
#5
22 Jun 2005 11:35 Re: problem z popupami |
|
|
|
Logfile of HijackThis v1.99.1
Scan saved at 10:33:55, on 2005-06-22
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Popup Ad Filter\PopFilter.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\Program Files\BearShare\BearShare.exe
C:\Program Files\BearShare\BearShare.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Winamp\Winamp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\DOCUME~1\Newlee\USTAWI~1\Temp\Rar$EX00.173\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "realsched.exe" -osboot
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\CloneCD\CloneCDTray.exe" /s
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Popup Ad Filter] C:\Program Files\Popup Ad Filter\PopFilter.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Allow Popups - C:\Program Files\Popup Ad Filter\WhiteGetUrl.js
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ściągnij przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Usługa Auto Protect programu Norton AntiVirus (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
Dodano po 1 [godziny] 11 [minuty]:
a to log z adwaru:
Ad-Aware SE Build 1.06r1
Logfile Created on:22 czerwca 2005 11:37:12
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R51 21.06.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Cydoor(TAC index:7):39 total references
Tracking Cookie(TAC index:3):21 total references
WhenU(TAC index:3):7 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
2005-06-22 11:37:12 - Scan started. (Full System Scan)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 428
ThreadCreationTime : 2005-06-22 08:05:11
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 484
ThreadCreationTime : 2005-06-22 08:05:14
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 512
ThreadCreationTime : 2005-06-22 08:05:18
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 556
ThreadCreationTime : 2005-06-22 08:05:18
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : System operacyjny Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Usługi i aplikacja Kontroler
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 568
ThreadCreationTime : 2005-06-22 08:05:18
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 724
ThreadCreationTime : 2005-06-22 08:05:20
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 768
ThreadCreationTime : 2005-06-22 08:05:21
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 840
ThreadCreationTime : 2005-06-22 08:05:21
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 884
ThreadCreationTime : 2005-06-22 08:05:21
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 944
ThreadCreationTime : 2005-06-22 08:05:21
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [ccsetmgr.exe]
FilePath : C:\Program Files\Common Files\Symantec Shared\
ProcessID : 1276
ThreadCreationTime : 2005-06-22 08:05:24
BasePriority : Normal
FileVersion : 2.1.6.3
ProductVersion : 2.1.6.3
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccSetMgr.exe
#:12 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1328
ThreadCreationTime : 2005-06-22 08:05:24
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : System operacyjny Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Eksplorator Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone.
OriginalFilename : EXPLORER.EXE
#:13 [ccevtmgr.exe]
FilePath : C:\Program Files\Common Files\Symantec Shared\
ProcessID : 1472
ThreadCreationTime : 2005-06-22 08:05:25
BasePriority : Normal
FileVersion : 2.1.6.3
ProductVersion : 2.1.6.3
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccEvtMgr.exe
#:14 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1684
ThreadCreationTime : 2005-06-22 08:05:25
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:15 [ccapp.exe]
FilePath : C:\Program Files\Common Files\Symantec Shared\
ProcessID : 1852
ThreadCreationTime : 2005-06-22 08:05:27
BasePriority : Normal
FileVersion : 2.1.6.3
ProductVersion : 2.1.6.3
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccApp.exe
#:16 [jusched.exe]
FilePath : C:\Program Files\Java\jre1.5.0_02\bin\
ProcessID : 1880
ThreadCreationTime : 2005-06-22 08:05:27
BasePriority : Normal
#:17 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1956
ThreadCreationTime : 2005-06-22 08:05:28
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : System operacyjny Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Uruchamia plik DLL jako aplikację
InternalName : rundll
LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone.
OriginalFilename : RUNDLL.EXE
#:18 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1992
ThreadCreationTime : 2005-06-22 08:05:28
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:19 [popfilter.exe]
FilePath : C:\Program Files\Popup Ad Filter\
ProcessID : 2032
ThreadCreationTime : 2005-06-22 08:05:28
BasePriority : Normal
#:20 [navapsvc.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ProcessID : 532
ThreadCreationTime : 2005-06-22 08:05:34
BasePriority : Normal
FileVersion : 10.00.13
ProductVersion : 10.00.13
ProductName : Norton AntiVirus
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
LegalCopyright : Norton AntiVirus 2004 for Windows 98/ME/2000/XP Copyright (c) 2003 Symantec Corporation. All rights reserved.
OriginalFilename : NAVAPSVC.EXE
#:21 [nvsvc32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 816
ThreadCreationTime : 2005-06-22 08:05:34
BasePriority : Normal
FileVersion : 6.14.10.7189
ProductVersion : 6.14.10.7189
ProductName : NVIDIA Driver Helper Service, Version 71.89
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 71.89
InternalName : NVSVC
LegalCopyright : (C) NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe
#:22 [savscan.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ProcessID : 904
ThreadCreationTime : 2005-06-22 08:05:34
BasePriority : Normal
ProductVersion : 9.2
ProductName : Symantec AntiVirus AutoProtect
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus Scanner
InternalName : SAVSCAN
LegalCopyright : Copyright (c) 2004 Symantec Corporation
OriginalFilename : SAVSCAN.EXE
#:23 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2148
ThreadCreationTime : 2005-06-22 08:05:45
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:24 [bearshare.exe]
FilePath : C:\Program Files\BearShare\
ProcessID : 2940
ThreadCreationTime : 2005-06-22 08:14:56
BasePriority : Normal
FileVersion : 4.6.0.61
ProductVersion : 4.6.0
ProductName : BearShare
CompanyName : Free Peers, Inc.
FileDescription : BearShare
InternalName : BearShare 4.6.0.61
LegalCopyright : Copyright © 2003 Free Peers, Inc. All Rights Reserved Worldwide.
OriginalFilename : BearShare.exe
#:25 [bearshare.exe]
FilePath : C:\Program Files\BearShare\
ProcessID : 2948
ThreadCreationTime : 2005-06-22 08:14:57
BasePriority : Normal
FileVersion : 4.6.0.61
ProductVersion : 4.6.0
ProductName : BearShare
CompanyName : Free Peers, Inc.
FileDescription : BearShare
InternalName : BearShare 4.6.0.61
LegalCopyright : Copyright © 2003 Free Peers, Inc. All Rights Reserved Worldwide.
OriginalFilename : BearShare.exe
#:26 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 960
ThreadCreationTime : 2005-06-22 08:26:19
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : System operacyjny Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone.
OriginalFilename : IEXPLORE.EXE
#:27 [winamp.exe]
FilePath : C:\Program Files\Winamp\
ProcessID : 1828
ThreadCreationTime : 2005-06-22 08:26:29
BasePriority : Normal
FileVersion : 5.093
ProductVersion : 5.093
ProductName : Winamp
CompanyName : Nullsoft
FileDescription : Winamp
InternalName : WINAMP
LegalCopyright : Copyright © 1997-2005, Nullsoft, Inc.
LegalTrademarks : Nullsoft and Winamp are trademarks of Nullsoft, Inc.
OriginalFilename : Winamp.exe
Comments : Visit http://www.winamp.com/ for updates.
#:28 [flashget.exe]
FilePath : C:\Program Files\FlashGet\
ProcessID : 3628
ThreadCreationTime : 2005-06-22 08:39:56
BasePriority : Normal
FileVersion : 1, 6, 0, 0
ProductVersion : 1, 6, 0, 0
ProductName : FlashGet
CompanyName : Amaze Soft
FileDescription : FlashGet
InternalName : FlashGet
LegalCopyright : Copyright (C) 1999-2004 by Amaze Soft
OriginalFilename : flashget.exe
Cydoor Object Recognized!
Type : Process
Data : CD_Clint.dll
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 3, 2, 1, 6
ProductVersion : 3, 2, 1, 6
ProductName : cd_clint
FileDescription : cd_clint
InternalName : cd_clint
LegalCopyright : Copyright © 2003
OriginalFilename : cd_clint.dll
#:29 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 272
ThreadCreationTime : 2005-06-22 08:49:33
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:30 [ad-aware.exe]
FilePath : C:\PROGRA~1\AD-AWA~1\
ProcessID : 664
ThreadCreationTime : 2005-06-22 09:36:57
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 1
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
WhenU Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : wusn.1
Cydoor Object Recognized!
Type : Regkey
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\software\cydoor
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\software\cydoor
Value : Desc2
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\software\cydoor
Value : ConnType
WhenU Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\software\whenu
Cydoor Object Recognized!
Type : Regkey
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\cydoor
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\cydoor
Value : AdwrCnt
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\cydoor
Value : C:\PROGRA~1\FlashGet\flashget.exe
Cydoor Object Recognized!
Type : Regkey
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : .DEFAULT\software\microsoft\windows\currentversion\uninstall\AdSupport_277
Cydoor Object Recognized!
Type : Regkey
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-18\software\microsoft\windows\currentversion\uninstall\AdSupport_277
Cydoor Object Recognized!
Type : Regkey
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-19\software\microsoft\windows\currentversion\uninstall\AdSupport_277
Cydoor Object Recognized!
Type : Regkey
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-20\software\microsoft\windows\currentversion\uninstall\AdSupport_277
Cydoor Object Recognized!
Type : Regkey
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\uninstall\AdSupport_277
Cydoor Object Recognized!
Type : RegValue
Data : AdSupport_
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\uninstall\AdSupport_277
Value : UninstallString
Cydoor Object Recognized!
Type : Regkey
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\\software\cydoor
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\\software\cydoor
Value : Desc2
Cydoor Object Recognized!
Type : RegValue
Data :
TAC Rating : 7
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-583907252-1708537768-551767923-1003\\software\cydoor
Value : ConnType
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 17
Objects found so far: 18
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 18
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@please[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@ad2.pl.mediainter.net/please/
Expires : 2006-05-19 15:20:10
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@atdmt.com/
Expires : 2010-06-19 02:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)ads.addynamix[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@ads.addynamix.com/
Expires : 2005-06-23 10:30:22
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@advertising[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@advertising.com/
Expires : 2010-06-20 22:41:50
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@zedo[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:newlee@zedo.com/
Expires : 2015-06-20 10:33:50
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)as-us.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:43
Value : Cookie:newlee@as-us.falkag.net/
Expires : 2006-06-22 10:30:46
LastSync : Hits:43
UseCount : 0
Hits : 43
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)servedby.advertising[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:newlee@servedby.advertising.com/
Expires : 2005-07-21 22:41:50
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)bilbo.counted[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@bilbo.counted.com/
Expires : 2005-06-23 09:21:48
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@tradedoubler[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:32
Value : Cookie:newlee@tradedoubler.com/
Expires : 2005-07-20 15:39:42
LastSync : Hits:32
UseCount : 0
Hits : 32
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@cgi-bin[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:23
Value : Cookie:newlee@stat.4u.pl/cgi-bin/
Expires : 2006-06-20 15:30:38
LastSync : Hits:23
UseCount : 0
Hits : 23
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@qksrv[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:newlee@qksrv.net/
Expires : 2010-06-20 19:55:20
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)z1.adserver[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@z1.adserver.com/
Expires : 2006-06-22 10:30:36
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)adserver.o2[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:54
Value : Cookie:newlee@adserver.o2.pl/
Expires : 2008-02-19 16:54:44
LastSync : Hits:54
UseCount : 0
Hits : 54
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@casalemedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:newlee@casalemedia.com/
Expires : 2006-06-11 19:13:36
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee(malpa)adserver.adreactor[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@adserver.adreactor.com/
Expires : 2006-06-20 21:39:50
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@apmebf[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:newlee@apmebf.com/
Expires : 2010-06-20 19:55:20
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@fastclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:14
Value : Cookie:newlee@fastclick.net/
Expires : 2007-06-20 23:13:38
LastSync : Hits:14
UseCount : 0
Hits : 14
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@2o7[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:newlee@2o7.net/
Expires : 2010-06-20 22:41:56
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@adserver[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:newlee@moon.interia.pl/adserver/
Expires : 2005-06-24 19:54:54
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@myadserver[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:13
Value : Cookie:newlee@www.hotele.pl/myadserver/
Expires : 2005-07-02
LastSync : Hits:13
UseCount : 0
Hits : 13
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : newlee@mediaplex[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:newlee@mediaplex.com/
Expires : 2009-06-22 02:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 21
Objects found so far: 39
Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
WhenU Object Recognized!
Type : File
Data : A0006442.exe
TAC Rating : 3
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{7D5C76E4-3373-4C97-B692-05559B3364DE}\RP21\
FileVersion : 2, 6, 3, 5
ProductVersion : 2, 6, 3, 5
ProductName : Save!
CompanyName : WhenU.com, Inc.
FileDescription : Save!
InternalName : WhenUSave
LegalCopyright : Copyright 2001
OriginalFilename : Save.exe
Cydoor Object Recognized!
Type : File
Data : CD_CLINT.DLL
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 3, 2, 1, 6
ProductVersion : 3, 2, 1, 6
ProductName : cd_clint
FileDescription : cd_clint
InternalName : cd_clint
LegalCopyright : Copyright © 2003
OriginalFilename : cd_clint.dll
Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 41
Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 41
Deep scanning and examining files (E:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for E:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 41
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 41
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Cydoor Object Recognized!
Type : Folder
TAC Rating : 7
Category : Data Miner
Comment : Cydoor
Object : C:\WINDOWS\system32\AdCache
Cydoor Object Recognized!
Type : File
Data : B_112200.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_118700.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_0_0_113400.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_0_1_113400.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_0_192700.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_0_287500.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_0_317000.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_0_364800.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_0_434600.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_1_108900.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_2_281800.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_108900.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_192700.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_265500.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_273100.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_281800.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_287500.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_346700.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_434600.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_277_1_4_461300.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
Cydoor Object Recognized!
Type : File
Data : B_480100.htm
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\adcache\
WhenU Object Recognized!
Type : Folder
TAC Rating : 3
Category : Misc
Comment : WhenU
Object : C:\Documents and Settings\Newlee\Menu Start\Programy\WhenU
WhenU Object Recognized!
Type : File
Data : Learn More About Save!.url
TAC Rating : 3
Category : Misc
Comment :
Object : C:\Documents and Settings\Newlee\Menu Start\Programy\whenu\
WhenU Object Recognized!
Type : File
Data : Learn More About SaveNow.url
TAC Rating : 3
Category : Misc
Comment :
Object : C:\Documents and Settings\Newlee\Menu Start\Programy\whenu\
WhenU Object Recognized!
Type : File
Data : WhenU.com Website.url
TAC Rating : 3
Category : Misc
Comment :
Object : C:\Documents and Settings\Newlee\Menu Start\Programy\whenu\
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 26
Objects found so far: 67
11:43:33 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:06:20.487
Objects scanned:101712
Objects identified:66
Objects ignored:0
New critical objects:66
|
|
| Back to top |
|
|
Kolobos
Poziom 26
Joined: 13 Jun 2003
Posts: 26223
Location: Warszawa
|
|
| Back to top |
|
|
Google
|
| #
22 Jun 2005 11:48 |
|
|
|
|
|
| Back to top |
|
|
newlee
Poziom 5
Joined: 28 May 2005
Posts: 11
|
#7
12 Nov 2005 18:18 Re: problem z popupami |
|
|
|
Ok,sprawa zakończona dzięki.
|
|
| Back to top |
|
|
