-Windows XP Paradoks google huehue

[Ziom4ek]

Witam, mam problem. Do?? nietypowy, dlatego szukam pomocy na tym forum. Nie dzia?aj? mi google.pl Chcia?em wej?? na wujka google.pl i poszuka? dlaczego mi google.pl mi nie dzia?aj? ale nie dzia?a ;<. Mo?e trzeba jaki? dodatek, czy wtyczk? zainstalowa?? U?ywam Opery i Explorera i na dw?ch nie dzia?a.
Co do problemu to pisze takie co?:
Nie uzyskano po??czenia z serwerem

 

[GaDuu]

Odp: Paradoks google huehue

sprawd? ten adres:

You do not have permission to view link please Log in or Register

 

[Ziom4ek]

Odp: Paradoks google huehue

No dobra, wchodzi na stronk?, ale mi nadal nie dzia?a. Chodzi mi bardziej o napraw? problemu, aczkolwiek czasowe zast?pienie te? nie jest z?e.

 

[Wywra]

Odp: Paradoks google huehue

Wklej sw?j plik hosts
.../Windows/system32/drivers/etc/hosts

 

[Ziom4ek]

Odp: Paradoks google huehue

# Copyright (c) 1993-2009 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
# 127.0.0.1 localhost
# ::1 localhost

Mo?e to przez to, bo kumpel powiedzia? bym zmieni? na to bo mi b??dy w hijackthis wyskakiwa?y.

 

[DevLord]

Odp: Paradoks google huehue

Mo?e jaki? wirus, ja cz?sto mia?em wirusy blokuj?ce dost?p do niekt?rych stron.

 

[Dolmet]

Odp: Paradoks google huehue

Mo?esz poda? skana z

You do not have permission to view link please Log in or Register

log wklejasz na

You do not have permission to view link please Log in or Register

 

[Ziom4ek]

Odp: Paradoks google huehue

S?k w tym, ?e nie mog? zainstalowa? tego ComboFixa, gdy? musz? odinstalowa? inne programy antywirusowe. Usun??em je z dysk?w, ale Combofix nadal oczekuje deinstalacji antywirus?w. Polecacie mi jaki? by wyczy?ci? ten syf?

 

[Solkrin]

Odp: Paradoks google huehue

Siema! Na pocz?tek spr?buj odinstalowa? przegl?dark? i zainstalowa? ponownie, lecz ja radz? Tobie skorzysta? z Google Chrome. Je?li to nie pomo?e to zrobisz tak, wejd? w to:
C/Windows/system32/drivers/etc i otw?rz notatnikiem "hosts.ics".
Na samym dole powiniene? mie? napisane IP oraz nazw? stronki, np. google.pl czy te? naszaklasa.pl, Je?eli b?dziesz co? takiego mie? to radz? Ci usun?? te linijki i zapisa? (przed zapisaniem zr?b kopi? zapasow?). Teraz wejd? w google i sprawd? czy zadzia?a?o.
Edit: Cz?sto "Microsoft Corp" blokuje dost?p do niekt?rych stron z powodu ?amania regulaminu.
Screen:

You do not have permission to view link please Log in or Register

Pozdrawiam!

 

[Dolmet]

Odp: Paradoks google huehue

Zr?b skana

You do not have permission to view link please Log in or Register

Wszystkie logi kt?re stworzy wystaw na

You do not have permission to view link please Log in or Register

zr?b te logi tak, ?eby nie wszystkie by?y w 1 linku tylko ka?dy w osobnym i podpisz te linki, np: extras.txt ;p

 

[Ziom4ek]

Odp: Paradoks google huehue

You do not have permission to view link please Log in or Register

You do not have permission to view link please Log in or Register

 

[Dolmet]

Odp: Paradoks google huehue

Dziwi mnie jedna rzecz, udost?pni?e? nam hosts i nic w nim bardzo nie by?o a OTL jednak znalaz? co? takiego:

O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 74.125.45.100 4-open-davinci.com
O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 www.getavplusnow.com
O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com
O1 - Hosts: 74.125.45.100 urs.microsoft.com
O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com
O1 - Hosts: 74.125.45.100 paysoftbillsolution.com
O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com
O1 - Hosts: 204.152.194.204 www.google.com 
O1 - Hosts: 204.152.194.204 google.com 
O1 - Hosts: 204.152.194.204 google.com.au 
O1 - Hosts: 204.152.194.204 www.google.com.au
O1 - Hosts: 204.152.194.204 google.be 
O1 - Hosts: 204.152.194.204 www.google.be
O1 - Hosts: 204.152.194.204 google.com.br 
O1 - Hosts: 204.152.194.204 www.google.com.br
O1 - Hosts: 204.152.194.204 google.ca 
O1 - Hosts: 38 more lines...

Prawdopodobnie masz te? syf typu "Rootkit"
Po czym stwierdzam, ?e masz co? typu "rootkit" proste:

O32 - AutoRun File - [2009-12-19 16:44:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004-11-18 21:59:22 | 000,000,000 | R--D | M] - E:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2004-11-18 21:25:54 | 000,684,032 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2004-11-18 21:58:27 | 000,000,103 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2004-11-14 15:08:54 | 000,929,792 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ UDF ]
O33 - MountPoints2\{44bb31c2-ec80-11de-979a-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{44bb31c2-ec80-11de-979a-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- [2004-10-29 11:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O33 - MountPoints2\{6273dc59-7b85-11df-8e4f-0022684dcd6c}\Shell - "" = AutoRun
O33 - MountPoints2\{6273dc59-7b85-11df-8e4f-0022684dcd6c}\Shell\AutoRun\command - "" = I:\hom&m3gepl.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setup.exe -- [2004-10-29 11:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O33 - MountPoints2\P\Shell - "" = AutoRun
O33 - MountPoints2\P\Shell\AutoRun\command - "" = P:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (MACHINE BootExecut) -  File not found

po tym, masz du?o odsy?aczy w rejestrze do dziwnych nazw plik?w, wszystko z mountPoint2 dlatego te?
Polecam Odwiedzi? stron?

You do not have permission to view link please Log in or Register

i do dzia?u analiza log?w poda? te 2 logi co mi tutaj oni ci to opr??ni?, poniewa? ja dopiero zaczynam swoj? zabaw? z OTL'em i narazie tylko umiem rozczyta? problem z log?w, a usuwanie dopiero si? ucz? tych skrypt?w, tak wi?c napisz tam i by?bym wdzi?czny jakby? poda? mi link do helpc.eu z twojego tematu, najlepiej na priv

 

[Ziom4ek]

Odp: Paradoks google huehue

Up, na tej stronie nawet zarejestrowa? si? nie mog?em, ale mniejsza z tym. Problem zosta? rozwi?zany, znaczy odkry?em chwilowe rozwi?zanie. Eturl Sous mi pom?g?, poradzi? mi wpisa? takie co?:

You do not have permission to view link please Log in or Register

i si? uda?o xd.

 

[Dolmet]

Odp: Paradoks google huehue

:OTL
O1 - Hosts: 74.125.45.100 4-open-davinci.com
O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 www.getavplusnow.com
O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com
O1 - Hosts: 74.125.45.100 urs.microsoft.com
O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com
O1 - Hosts: 74.125.45.100 paysoftbillsolution.com
O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com
O1 - Hosts: 204.152.194.204 www.google.com 
O1 - Hosts: 204.152.194.204 google.com 
O1 - Hosts: 204.152.194.204 google.com.au 
O1 - Hosts: 204.152.194.204 www.google.com.au
O1 - Hosts: 204.152.194.204 google.be 
O1 - Hosts: 204.152.194.204 www.google.be
O1 - Hosts: 204.152.194.204 google.com.br 
O1 - Hosts: 204.152.194.204 www.google.com.br
O1 - Hosts: 204.152.194.204 google.ca 
O1 - Hosts: 38 more lines...

:REG
O32 - AutoRun File - [2009-12-19 16:44:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004-11-18 21:59:22 | 000,000,000 | R--D | M] - E:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2004-11-18 21:25:54 | 000,684,032 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2004-11-18 21:58:27 | 000,000,103 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2004-11-14 15:08:54 | 000,929,792 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ UDF ]
O33 - MountPoints2\{44bb31c2-ec80-11de-979a-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{44bb31c2-ec80-11de-979a-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- [2004-10-29 11:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O33 - MountPoints2\{6273dc59-7b85-11df-8e4f-0022684dcd6c}\Shell - "" = AutoRun
O33 - MountPoints2\{6273dc59-7b85-11df-8e4f-0022684dcd6c}\Shell\AutoRun\command - "" = I:\hom&m3gepl.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setup.exe -- [2004-10-29 11:22:40 | 000,110,592 | R--- | M] (Electronic Arts Inc.)
O33 - MountPoints2\P\Shell - "" = AutoRun
O33 - MountPoints2\P\Shell\AutoRun\command - "" = P:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (MACHINE BootExecut) -  File not found

wklej to do w?asne opcje skanowania i daj wykonaj skrypt, zapisz to co powsta?o, zr?b ponowny skan i podaj tu jeszcze raz