Mozilla VPN is currently experiencing an outage. Our team is actively working to resolve the issue. Please check the status page for real-time updates. Thank you for your patience.

当サイトはユーザー体験を改善するためのメンテナンスを実施中に機能が制限される予定です。記事を読んでもあなたの問題が解決せず質問をしたい場合は、Twitter の @FirefoxSupport、Reddit の /r/firefox で、サポートコミュニティが皆さんを助けようと待機しています。

Mozilla サポートの検索

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

詳しく学ぶ

このスレッドはアーカイブに保管されました。 必要であれば新たに質問してください。

Suspicious behavior, possibly a FF extension

  • 1 件の返信
  • 2 人がこの問題に困っています
  • 1 回表示
  • 最後の返信者: Swarnava Sengupta

more options

I had a popup from my firewall saying rundll32.exe was trying to connect to IP address 85.10.195.247. I looked in Task Manager & saw this was being initiated by C:\Users\*username*\Appdata\Local\uniNetdsc\i18mapIde.dll. I looked at msconfig and saw it was starting with argument rundll32.exe "C:\Users\*username*\AppData\Local\uniNetdsc\i18mapIde.dll",dbcfgplugin MSNapiEnum.

I noticed that the file creation date for i18mapIde.dll was today, but I have not installed anything. I looked up the IP address & it is owned by your-server dot de & read that they have been host to malware & dubious practises, such as spam attacks.

When I ended the rundll process I was still unable to delete the dll because it was in use by Firefox. I closed Firefox & deleted it. At the time the dll appeared I had Firefox open, but was reading & not browsing . This leads me to believe that one of the extensions I have installed has downloaded & installed the dll today. The dll itself contains no information & Googling each of the arguments produced no results. Does anyone know any more about this?

I have these extensions installed:

  • Always on Top
  • CookieCuller
  • CSS Usage
  • deskCut
  • Download Sort
  • DownloadHelper
  • Firebug
  • Firecookie
  • FireQuery
  • FireRainbow
  • GoogleEnhancer
  • Greasemonkey
  • Html Validator
  • HttpFox
  • IE Tab+
  • Inline Code Finder for Firebug
  • Launchy
  • Menu Editor
  • Page Speed
  • Personal Menu
  • Save Link
  • Tab Mix Plus
  • Thumbs
  • ViewInFirefox
  • Web Developer
  • Yslow

I have a few more that are disabled, so I assume they would not be able to do this.

I had a popup from my firewall saying rundll32.exe was trying to connect to IP address '''85.10.195.247'''. I looked in Task Manager & saw this was being initiated by '''C:\Users\*username*\Appdata\Local\uniNetdsc\i18mapIde.dll'''. I looked at msconfig and saw it was starting with argument '''rundll32.exe "C:\Users\*username*\AppData\Local\uniNetdsc\i18mapIde.dll",dbcfgplugin MSNapiEnum'''. I noticed that the file creation date for '''i18mapIde.dll''' was today, but I have not installed anything. I looked up the IP address & it is owned by '''your-server''''' dot '''''de''' & read that they have been host to malware & dubious practises, such as spam attacks. When I ended the rundll process I was still unable to delete the dll because it was in use by Firefox. I closed Firefox & deleted it. At the time the dll appeared I had Firefox open, but was reading & not browsing . This leads me to believe that one of the extensions I have installed has downloaded & installed the dll today. The dll itself contains no information & Googling each of the arguments produced no results. Does anyone know any more about this? I have these extensions installed: * Always on Top * CookieCuller * CSS Usage * deskCut * Download Sort * DownloadHelper * Firebug * Firecookie * FireQuery * FireRainbow * GoogleEnhancer * Greasemonkey * Html Validator * HttpFox * IE Tab+ * Inline Code Finder for Firebug * Launchy * Menu Editor * Page Speed * Personal Menu * Save Link * Tab Mix Plus * Thumbs * ViewInFirefox * Web Developer * Yslow I have a few more that are disabled, so I assume they would not be able to do this.

この投稿は simple9 により に変更されました

すべての返信 (1)

more options

If you suspect its a malware issue, Do a malware check with some malware scan programs. You need to scan with all programs because each program detects different malware. Make sure that you update each program to get the latest version of the database before doing a scan.

See also "Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked and Searches are redirected to another site