We rise up for the things we believe in over and over again
Не так давно нарвался на забавное поведение Дропбокса в системе.
читать дальшедиск Е, папка Install, подпапка Network. Жмякаем правую почку мыши (с) и смотрим на вывод в procmon'e:
13:42:02,8551147 Dropbox.exe 4304 CreateFile D:\OneDrive\Documents NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0
13:42:02,8552136 Dropbox.exe 4304 QueryOpen D:\OneDrive\Documents SUCCESS CreationTime: 11.08.2014 21:15:26, LastAccessTime: 08.03.2015 13:09:35, LastWriteTime: 08.03.2015 13:09:35, ChangeTime: 08.03.2015 13:09:35, AllocationSize: 8 192, EndOfFile: 8 192, FileAttributes: RD
13:42:02,8557726 Dropbox.exe 4304 CreateFile E:\Media\Music NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0
13:42:02,8558558 Dropbox.exe 4304 QueryOpen E:\Media\Music SUCCESS CreationTime: 06.02.2013 22:45:15, LastAccessTime: 10.03.2015 12:46:39, LastWriteTime: 10.03.2015 12:46:39, ChangeTime: 10.03.2015 12:46:39, AllocationSize: 40 960, EndOfFile: 40 960, FileAttributes: RD
13:42:02,8564787 Dropbox.exe 4304 CreateFile E:\Media\Video NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0
13:42:02,8565505 Dropbox.exe 4304 QueryOpen E:\Media\Video SUCCESS CreationTime: 06.02.2013 22:45:18, LastAccessTime: 10.03.2015 20:38:37, LastWriteTime: 10.03.2015 20:38:37, ChangeTime: 10.03.2015 20:38:37, AllocationSize: 4 096, EndOfFile: 4 096, FileAttributes: RD
13:42:02,8572851 Dropbox.exe 4304 CreateFile E:\Media\Images NAME COLLISION Desired Access: Read Data/List Directory, Synchronize, Disposition: Create, Options: Directory, Synchronous IO Non-Alert, Open Reparse Point, Attributes: N, ShareMode: Read, Write, AllocationSize: 0
13:42:02,8573643 Dropbox.exe 4304 QueryOpen E:\Media\Images SUCCESS CreationTime: 08.02.2013 19:20:53, LastAccessTime: 10.03.2015 21:30:46, LastWriteTime: 10.03.2015 21:30:46, ChangeTime: 10.03.2015 21:30:46, AllocationSize: 12 288, EndOfFile: 12 288, FileAttributes: RD
Теория под это дело была выстроена следующая: папки Images, Music, Video у меня в проводнике являются элементами виндовых библиотек, поэтому дроп, каким-то образом просочившись в проводник, смог узнать и о моих папках с контентом (хотя туда ему вход в любом случае заказан).
Решил эту теорию проверить, банально добавив в библиотеку какую-нибудь новую папочку. Не успел, нарвался на еще более цветистую траву:
вот она21:11:08,8158907 Dropbox.exe 3104 CreateFile C:\dairyqueen\openssl\dist\ssl\openssl.cnf PATH NOT FOUND Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a
21:11:08,8160590 Dropbox.exe 3104 CreateFile C:\dairyqueen\openssl\dist\ssl\openssl.cnf PATH NOT FOUND Desired Access: Generic Read, Disposition: Open, Options: Synchronous IO Non-Alert, Non-Directory File, Attributes: N, ShareMode: Read, Write, AllocationSize: n/a
21:11:08,8163110 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8164328 Dropbox.exe 3104 CreateFile C:\Windows\System32\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8167504 Dropbox.exe 3104 CreateFile C:\Windows\system\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8169414 Dropbox.exe 3104 CreateFile C:\Windows\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8171799 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8172875 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8175823 Dropbox.exe 3104 CreateFile C:\Windows\System32\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8177613 Dropbox.exe 3104 CreateFile C:\Windows\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8179410 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8181905 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8184088 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8185480 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\CSUNSAPI.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8191765 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8192892 Dropbox.exe 3104 CreateFile C:\Windows\System32\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8195825 Dropbox.exe 3104 CreateFile C:\Windows\system\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8197916 Dropbox.exe 3104 CreateFile C:\Windows\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8200268 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8201306 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8202625 Dropbox.exe 3104 CreateFile C:\Windows\System32\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8203698 Dropbox.exe 3104 CreateFile C:\Windows\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8205127 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8207890 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8210424 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8212121 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8214232 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8215782 Dropbox.exe 3104 CreateFile C:\Windows\System32\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8218726 Dropbox.exe 3104 CreateFile C:\Windows\system\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8220608 Dropbox.exe 3104 CreateFile C:\Windows\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8223104 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8224147 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8225812 Dropbox.exe 3104 CreateFile C:\Windows\System32\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8226972 Dropbox.exe 3104 CreateFile C:\Windows\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8228741 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8232032 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8234239 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8235827 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\nfhwcrhk.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8238677 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8240114 Dropbox.exe 3104 CreateFile C:\Windows\System32\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8242434 Dropbox.exe 3104 CreateFile C:\Windows\system\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8245827 Dropbox.exe 3104 CreateFile C:\Windows\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8249065 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8250459 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8251793 Dropbox.exe 3104 CreateFile C:\Windows\System32\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8252862 Dropbox.exe 3104 CreateFile C:\Windows\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8254933 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8257216 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8259928 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:08,8264588 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\SureWareHook.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:09,8704635 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Local\mime\packages PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:09,8705560 Dropbox.exe 3104 CreateFile C:\ProgramData\mime\packages PATH NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1441583 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1442964 Dropbox.exe 3104 CreateFile C:\Windows\System32\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1445613 Dropbox.exe 3104 CreateFile C:\Windows\system\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1446583 Dropbox.exe 3104 CreateFile C:\Windows\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1450391 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1452988 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1456375 Dropbox.exe 3104 CreateFile C:\Windows\System32\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1456584 Dropbox.exe 3104 CreateFile C:\Windows\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1459474 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1461671 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1464012 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1465728 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\aep.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1469464 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1470582 Dropbox.exe 3104 CreateFile C:\Windows\System32\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1473097 Dropbox.exe 3104 CreateFile C:\Windows\system\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1474653 Dropbox.exe 3104 CreateFile C:\Windows\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1476585 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1478008 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1479335 Dropbox.exe 3104 CreateFile C:\Windows\System32\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1480407 Dropbox.exe 3104 CreateFile C:\Windows\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1483119 Dropbox.exe 3104 CreateFile C:\Windows\System32\wbem\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1485119 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1486586 Dropbox.exe 3104 CreateFile C:\Windows\System32\WindowsPowerShell\v1.0\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1489233 Dropbox.exe 3104 CreateFile C:\Program Files\Calibre2\atasi.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1491516 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1493417 Dropbox.exe 3104 CreateFile C:\Windows\System32\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1495538 Dropbox.exe 3104 CreateFile C:\Windows\system\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1496586 Dropbox.exe 3104 CreateFile C:\Windows\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1498659 Dropbox.exe 3104 CreateFile C:\Users\Hikedaya\AppData\Roaming\Dropbox\bin\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1499693 Dropbox.exe 3104 CreateFile C:\Program Files\Mozilla Firefox\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1500914 Dropbox.exe 3104 CreateFile C:\Windows\System32\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
21:11:10,1502017 Dropbox.exe 3104 CreateFile C:\Windows\swift.dll NAME NOT FOUND Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
...
"И такая вот фигня продолжалася три дня..." (с) Народное творчество.
Подобное поведение обнаружилось при первом же запуске Дропа. Что, что эта зараза пытается найти в моем профиле в виде DLL-файлов? Какого хрена тот же набор библиотек он пытается найти в системном каталоге, в Powershell-каталоге и еще куче мест? Кто такая чертова Diaryqueen с пакетом openSSL под юбкой, папка которой мелькает в корне системного диска?
Правду говорят, количество упоминаний "WTF" в единицу времени - прекрасный показатель.
В общем, вопросов стало еще больше, чем ответов. Одно лишь можно сказать наверняка - на домашней системе этой программы не будет. Максимум что ей светит - быть объектом
UPD. А теория о том, как дроп пролезает на другие диски оказалась верной. Именно через библиотеки, но с закавыкой. Если создать новую библиотеку и в нее включить произвольную папку с другого диска, это ничего не даст. Но если эту же папку включить в одну из стандартных библиотек (Документы, Музыка, Видео, Картинки) - дроп тут же эту папку найдет и начнет обнюхивать. Есть подозрение, что в планах разработчиков есть опция по автоматическому копированию в облака ВСЕХ документов на компе. А что? Для фотографий же они сделали нечто подобное - прямо с камеры можно загружать...
@музыка: Jaime Christopherson - I'm my own master now
@темы: Этот безумный мир, Security
-
-
03.05.2015 в 23:31хотя туда ему вход в любом случае заказан
Ноу. Расширение Проводника грузится в сам Проводник. Плюс есть API функции для этого дела (не разбиралась).
Поведение действительно странное, но по большей части речь пока идёт о "code execution results in code execution".
А DLL можно погуглить. Есть догадка, что это какие трояны, которые нацелены на Дропбокс, и которые разыскивает клиент.
-
-
03.05.2015 в 23:34http://www.pc-troubleshootings.com/dll-file-error/csunsapi.dll-fix-357209/
-
-
03.05.2015 в 23:44Но опять таки, подобное меня печалит, потому что тормоза OneDrive уже подустали, а шустрых альтернатив, кроме как Дроп, больше и не наблюдается. Гугл-диск не предлагать.
-
-
04.05.2015 в 00:50TerminateProcess()
DeleteFile()
^^
Но опять таки, подобное меня печалит, потому что тормоза OneDrive уже подустали, а шустрых альтернатив, кроме как Дроп, больше и не наблюдается. Гугл-диск не предлагать.
Если не Облако@Mail.ru, то BTSync ^^ Хотя у BTSync есть очень плохая особенность, что из-за отсутствия "центра" база с информацией о папке разбухает непрерывно. Однажды я заинтересовалась, почему у меня три папки по два файла в каждой, а памяти едим двести метров. Оказалось, что в SQLite базе были записи о действиях двухгодовой давности - типа вдруг кто очнётся. Решается удалением папки из синхронизации и добавления снова с новым секретом на всех устройствах.
-
-
04.05.2015 в 00:50TerminateProcess()
DeleteFile()
^^
Но опять таки, подобное меня печалит, потому что тормоза OneDrive уже подустали, а шустрых альтернатив, кроме как Дроп, больше и не наблюдается. Гугл-диск не предлагать.
Если не Облако@Mail.ru, то BTSync ^^ Хотя у BTSync есть очень плохая особенность, что из-за отсутствия "центра" база с информацией о папке разбухает непрерывно. Однажды я заинтересовалась, почему у меня три папки по два файла в каждой, а памяти едим двести метров. Оказалось, что в SQLite базе были записи о действиях двухгодовой давности - типа вдруг кто очнётся. Решается удалением папки из синхронизации и добавления снова с новым секретом на всех устройствах.