Witam, Uprzejmie proszę o analizę logu HiJackThis, pod kątem "niepotrzebnych śmieci" i spyware. Podejrzane wydają mi się np. wpisy "PHIME2002". Dodam że z autostartem włancza mi się: [i]Gadu-Gadu, GMail Notifer, Everest, 2 Sterowniki tej samej drukarki (Jeden jakby była podłączona u mnie, a drugi po sieci lokalnej u siostry gdzie aktualnie drukarka się znajduje), Skype, NOD32, uTorrent, Daemon Tools Pro, Sterowniki do telefonu (Sony Ericsson W300i), Sterowniki do myszki (Razer Diamondback), MSI Live Monitor, Sterowniki karty muzycznej (Realtec), Java automatyczna aktualizacja[/i] - to chyba tyle. Proszę o pomoc, oto log: [code]Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:34:59, on 2007-12-07 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\E_S00RP1.EXE D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe D:\Programy\NOD32\nod32krn.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe D:\Programy\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\Explorer.EXE D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\RTHDCPL.EXE D:\Programy\Razer - Diamondback\razerhid.exe D:\Programy\NOD32\nod32kui.exe D:\Programy\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\MSI\Live Update 3\LMonitor.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE D:\Programy\Google\Gmail Notifier\gnotify.exe D:\Programy\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe D:\Programy\Gadu-Gadu\gg.exe D:\Programy\uTorrent\uTorrent.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\WINDOWS\system32\ctfmon.exe D:\Programy\Skype\Phone\Skype.exe D:\Programy\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe D:\Programy\EVEREST Ultimate Edition\everest.exe D:\Programy\Razer - Diamondback\razertra.exe D:\Programy\Razer - Diamondback\razerofa.exe D:\Programy\Skype\Plugin Manager\skypePM.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe D:\Programy\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe D:\Programy\Opera\Opera.exe C:\Documents and Settings\arm\Pulpit\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\MICROS~1\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Programy\Java\jre1.6.0_03\bin\ssv.dll O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [GrooveMonitor] "D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NBKeyScan] "D:\Programy\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Diamondback] D:\Programy\Razer - Diamondback\razerhid.exe O4 - HKLM\..\Run: [nod32kui] "D:\Programy\NOD32\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programy\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Programy\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O5 "LPT1:" /M "Stylus CX3600" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe O4 - HKLM\..\Run: [Auto EPSON Stylus CX3600 Series na NAT-DESKTOP] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P46 "Auto EPSON Stylus CX3600 Series na NAT-DESKTOP" /O40 "\\NAT-DESKTOP\EPSON Stylus CX3600 Series" /M "Stylus CX3600" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] D:\Programy\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "D:\Programy\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKCU\..\Run: [Gadu-Gadu] "D:\Programy\Gadu-Gadu\gg.exe" /tray O4 - HKCU\..\Run: [uTorrent] "D:\Programy\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Skype] "D:\Programy\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Programy\DAEMON Tools Pro\DTProAgent.exe" O4 - HKCU\..\Run: [EVEREST AutoStart] D:\Programy\EVEREST Ultimate Edition\everest.exe O4 - HKCU\..\Run: [AlcoholAutomount] "D:\Programy\Alcohol 120\axcmd.exe" /automount O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://D:\Programy\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programy\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programy\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\MICROS~1\Office12\REFIEBAR.DLL O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\MICROS~1\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:\WINDOWS\system32\E_S00RP1.EXE O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - D:\Programy\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Programy\NOD32\nod32krn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Programy\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 6839 bytes[/code] Pozdrawiam o:)