czy moźe ktoś sprawdzić log
Logfile of HijackThis v1.99.1
Scan saved at 09:40:26, on 2005–08–10
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\Documents and Settings\Administrator\WINDOWS\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\System32\termsrv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\msdtc.exe
C:\Program Files\APC\PowerChute Business Edition\agent\pbeagent.exe
C:\WINNT\system32\Dfssvc.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\IBMHPASV.EXE
C:\WINNT\system32\cba\pds.exe
C:\WINNT\System32\ismserv.exe
C:\WINNT\System32\llssrv.exe
C:\WINNT\system32\ntfrs.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\System32\locator.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\lserver.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\wins.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\dns.exe
C:\WINNT\system32\MsgSys.EXE
C:\WINNT\system32\ams_ii\iao.exe
C:\WINNT\system32\cba\xfr.exe
C:\WINNT\system32\dmremote.exe
C:\WINNT\explorer.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\rdpclip.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\explorer.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\rdpclip.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WYMIANA\MicrosoftAntiSpywareInstall.exe
C:\WINNT\system32\MSIEXEC.EXE
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\Documents and Settings\Administrator\Pulpit\HijackThis.exe
R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
R0 – HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
F2 – REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe,
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O3 – Toolbar: @msdxmLC.dll,–1@1045,&Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:\WINNT\System32\msdxm.ocx
O4 – HKLM\..\Run: [vptray] C:\PROGRA~1\SAV\VPTray.exe
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O10 – Broken Internet access because of LSP provider 'c:\documents and settings\administrator\windows\system32\rnr20.dll' missing
O16 – DPF: {74D05D43–3236–11D4–BDCD–00C04F9A3B61} (HouseCall Control) – http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O17 – HKLM\System\CCS\Services\Tcpip\Parameters: Domain = lasy.local
O17 – HKLM\System\CCS\Services\Tcpip\..\{A02F8786–ADC4–4CEE–9A83–B912945D8E37}: NameServer = 10.6.0.17,192.168.111.10,194.204.159.1
O17 – HKLM\System\CS1\Services\Tcpip\Parameters: Domain = lasy.local
O17 – HKLM\System\CS2\Services\Tcpip\Parameters: Domain = lasy.local
O20 – Winlogon Notify: NavLogon – C:\WINNT\system32\NavLogon.dll
O23 – Service: Urządzenie alarmowe (Alerter) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: APC PBE Agent (APCPBEAgent) – APC – C:\Program Files\APC\PowerChute Business Edition\agent\pbeagent.exe
O23 – Service: Zarządzanie aplikacjami (AppMgmt) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Usługa inteligentnego transferu w tle (BITS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Przeglądarka komputera (Browser) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: ClipBook (ClipSrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\clipsrv.exe (file missing)
O23 – Service: Symantec AntiVirus Definition Watcher (DefWatch) – Symantec Corporation – C:\Program Files\SAV\DefWatch.exe
O23 – Service: Rozproszony system plików (Dfs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\Dfssvc.exe (file missing)
O23 – Service: Klient DHCP (Dhcp) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Serwer DHCP (DHCPServer) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\tcpsvcs.exe (file missing)
O23 – Service: Usługa administracyjna Menedźera dysków logicznych (dmadmin) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\dmadmin.exe (file missing)
O23 – Service: Menedźer dysków logicznych (dmserver) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Serwer DNS (DNS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\dns.exe (file missing)
O23 – Service: Klient DNS (Dnscache) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Dziennik zdarzeń (Eventlog) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Usługa faksu (Fax) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\faxsvc.exe (file missing)
O23 – Service: IBM Active PCI Alert Service (IBMHPS) – IBM Corporation – C:\WINNT\System32\IBMHPASV.EXE
O23 – Service: Intel Alert Handler – Intel Corporation – C:\WINNT\system32\ams_ii\hndlrsvc.exe
O23 – Service: Intel Alert Originator – Intel Corporation – C:\WINNT\system32\ams_ii\iao.exe
O23 – Service: Intel File Transfer – Intel Corporation – C:\WINNT\system32\cba\xfr.exe
O23 – Service: Intel PDS – Intel Corporation – C:\WINNT\system32\cba\pds.exe
O23 – Service: Komunikacja międzylokacyjna (IsmServ) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\ismserv.exe (file missing)
O23 – Service: Centrum dystrybucji kluczy Kerberos (kdc) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Serwer (lanmanserver) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Stacja robocza (lanmanworkstation) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Usługa logowania licencyjnego (LicenseService) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\llssrv.exe (file missing)
O23 – Service: Usługa pomocy TCP/IP NetBIOS (LmHosts) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Messenger – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: DDE sieci (NetDDE) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\netdde.exe (file missing)
O23 – Service: DSDM DDE sieci (NetDDEdsdm) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\netdde.exe (file missing)
O23 – Service: Logowanie do sieci (Netlogon) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Połączenia sieciowe (Netman) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługa replikacji plików (NtFrs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\ntfrs.exe (file missing)
O23 – Service: Usługa NT LM Security Support Provider (NtLmSsp) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Magazyn wymienny (NtmsSvc) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Plug and Play (PlugPlay) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Pml Driver HPZ12 – HP – C:\WINNT\system32\spool\DRIVERS\W32X86\3\HPZipm12.exe
O23 – Service: Agent zasad IPSEC (PolicyAgent) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Magazyn chroniony (ProtectedStorage) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Menedźer automatycznego połączenia dostępu zdalnego (RasAuto) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Menedźer połączeń usługi Dostęp zdalny (RasMan) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługa rejestru zdalnego (RemoteRegistry) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\regsvc.exe (file missing)
O23 – Service: Lokalizator usługi zdalnego wywołania procedury (RPC) (RpcLocator) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\locator.exe (file missing)
O23 – Service: Zdalne wywoływanie procedur (RPC) (RpcSs) – Unknown owner – C:\Documents.exe (file missing)
O23 – Service: QoS RSVP (RSVP) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\rsvp.exe (file missing)
O23 – Service: Menedźer kont zabezpieczeń (SamSs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\lsass.exe (file missing)
O23 – Service: Pomocnik karty inteligentnej (SCardDrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\SCardSvr.exe (file missing)
O23 – Service: Karta inteligentna (SCardSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\SCardSvr.exe (file missing)
O23 – Service: Harmonogram zadań (Schedule) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\MSTask.exe (file missing)
O23 – Service: Usługa RunAs (seclogon) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Zawiadomienie o zdarzeniu systemowym (SENS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\svchost.exe (file missing)
O23 – Service: Udostępnianie połączenia internetowego (SharedAccess) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Bufor wydruku (Spooler) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\spoolsv.exe (file missing)
O23 – Service: Symantec AntiVirus – Symantec Corporation – C:\Program Files\SAV\Rtvscan.exe
O23 – Service: Dzienniki wydajności i alerty (SysmonLog) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\smlogsvc.exe (file missing)
O23 – Service: Telefonia (TapiSrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługi terminalowe (TermService) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\termsrv.exe (file missing)
O23 – Service: Licencjonowanie usług terminalowych (TermServLicensing) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lserver.exe (file missing)
O23 – Service: Telnet (TlntSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\tlntsvr.exe (file missing)
O23 – Service: Serwer śledzenia łączy rozproszonych (TrkSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Klient śledzenia łączy rozproszonych (TrkWks) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Menedźer narzędzi (UtilMan) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\UtilMan.exe (file missing)
O23 – Service: Usługa Czas systemu Windows (W32Time) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Instrumentacja zarządzania Windows (WinMgmt) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\WBEM\WinMgmt.exe (file missing)
O23 – Service: Usługa Windows Internet Name Service (WINS) (WINS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\wins.exe (file missing)
O23 – Service: Usługa numeru seryjnego multimediów przenośnych (WmdmPmSN) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Rozszerzenia sterownika Instrumentacji zarządzania (Wmi) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\Services.exe (file missing)
O23 – Service: Aktualizacje automatyczne (wuauserv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\svchost.exe (file missing)
O23 – Service: Konfiguracja sieci bezprzewodowej (WZCSVC) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
Scan saved at 09:40:26, on 2005–08–10
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\Documents and Settings\Administrator\WINDOWS\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\System32\termsrv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\msdtc.exe
C:\Program Files\APC\PowerChute Business Edition\agent\pbeagent.exe
C:\WINNT\system32\Dfssvc.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\IBMHPASV.EXE
C:\WINNT\system32\cba\pds.exe
C:\WINNT\System32\ismserv.exe
C:\WINNT\System32\llssrv.exe
C:\WINNT\system32\ntfrs.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\System32\locator.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\lserver.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\wins.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\dns.exe
C:\WINNT\system32\MsgSys.EXE
C:\WINNT\system32\ams_ii\iao.exe
C:\WINNT\system32\cba\xfr.exe
C:\WINNT\system32\dmremote.exe
C:\WINNT\explorer.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\rdpclip.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\explorer.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\rdpclip.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\WYMIANA\MicrosoftAntiSpywareInstall.exe
C:\WINNT\system32\MSIEXEC.EXE
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\winlogon.exe
C:\Documents and Settings\Administrator\Pulpit\HijackThis.exe
R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
R0 – HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
F2 – REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe,
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O3 – Toolbar: @msdxmLC.dll,–1@1045,&Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:\WINNT\System32\msdxm.ocx
O4 – HKLM\..\Run: [vptray] C:\PROGRA~1\SAV\VPTray.exe
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O10 – Broken Internet access because of LSP provider 'c:\documents and settings\administrator\windows\system32\rnr20.dll' missing
O16 – DPF: {74D05D43–3236–11D4–BDCD–00C04F9A3B61} (HouseCall Control) – http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O17 – HKLM\System\CCS\Services\Tcpip\Parameters: Domain = lasy.local
O17 – HKLM\System\CCS\Services\Tcpip\..\{A02F8786–ADC4–4CEE–9A83–B912945D8E37}: NameServer = 10.6.0.17,192.168.111.10,194.204.159.1
O17 – HKLM\System\CS1\Services\Tcpip\Parameters: Domain = lasy.local
O17 – HKLM\System\CS2\Services\Tcpip\Parameters: Domain = lasy.local
O20 – Winlogon Notify: NavLogon – C:\WINNT\system32\NavLogon.dll
O23 – Service: Urządzenie alarmowe (Alerter) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: APC PBE Agent (APCPBEAgent) – APC – C:\Program Files\APC\PowerChute Business Edition\agent\pbeagent.exe
O23 – Service: Zarządzanie aplikacjami (AppMgmt) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Usługa inteligentnego transferu w tle (BITS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Przeglądarka komputera (Browser) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: ClipBook (ClipSrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\clipsrv.exe (file missing)
O23 – Service: Symantec AntiVirus Definition Watcher (DefWatch) – Symantec Corporation – C:\Program Files\SAV\DefWatch.exe
O23 – Service: Rozproszony system plików (Dfs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\Dfssvc.exe (file missing)
O23 – Service: Klient DHCP (Dhcp) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Serwer DHCP (DHCPServer) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\tcpsvcs.exe (file missing)
O23 – Service: Usługa administracyjna Menedźera dysków logicznych (dmadmin) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\dmadmin.exe (file missing)
O23 – Service: Menedźer dysków logicznych (dmserver) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Serwer DNS (DNS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\dns.exe (file missing)
O23 – Service: Klient DNS (Dnscache) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Dziennik zdarzeń (Eventlog) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Usługa faksu (Fax) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\faxsvc.exe (file missing)
O23 – Service: IBM Active PCI Alert Service (IBMHPS) – IBM Corporation – C:\WINNT\System32\IBMHPASV.EXE
O23 – Service: Intel Alert Handler – Intel Corporation – C:\WINNT\system32\ams_ii\hndlrsvc.exe
O23 – Service: Intel Alert Originator – Intel Corporation – C:\WINNT\system32\ams_ii\iao.exe
O23 – Service: Intel File Transfer – Intel Corporation – C:\WINNT\system32\cba\xfr.exe
O23 – Service: Intel PDS – Intel Corporation – C:\WINNT\system32\cba\pds.exe
O23 – Service: Komunikacja międzylokacyjna (IsmServ) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\ismserv.exe (file missing)
O23 – Service: Centrum dystrybucji kluczy Kerberos (kdc) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Serwer (lanmanserver) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Stacja robocza (lanmanworkstation) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Usługa logowania licencyjnego (LicenseService) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\llssrv.exe (file missing)
O23 – Service: Usługa pomocy TCP/IP NetBIOS (LmHosts) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Messenger – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: DDE sieci (NetDDE) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\netdde.exe (file missing)
O23 – Service: DSDM DDE sieci (NetDDEdsdm) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\netdde.exe (file missing)
O23 – Service: Logowanie do sieci (Netlogon) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Połączenia sieciowe (Netman) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługa replikacji plików (NtFrs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\ntfrs.exe (file missing)
O23 – Service: Usługa NT LM Security Support Provider (NtLmSsp) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Magazyn wymienny (NtmsSvc) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Plug and Play (PlugPlay) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Pml Driver HPZ12 – HP – C:\WINNT\system32\spool\DRIVERS\W32X86\3\HPZipm12.exe
O23 – Service: Agent zasad IPSEC (PolicyAgent) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lsass.exe (file missing)
O23 – Service: Magazyn chroniony (ProtectedStorage) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Menedźer automatycznego połączenia dostępu zdalnego (RasAuto) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Menedźer połączeń usługi Dostęp zdalny (RasMan) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługa rejestru zdalnego (RemoteRegistry) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\regsvc.exe (file missing)
O23 – Service: Lokalizator usługi zdalnego wywołania procedury (RPC) (RpcLocator) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\locator.exe (file missing)
O23 – Service: Zdalne wywoływanie procedur (RPC) (RpcSs) – Unknown owner – C:\Documents.exe (file missing)
O23 – Service: QoS RSVP (RSVP) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\rsvp.exe (file missing)
O23 – Service: Menedźer kont zabezpieczeń (SamSs) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\lsass.exe (file missing)
O23 – Service: Pomocnik karty inteligentnej (SCardDrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\SCardSvr.exe (file missing)
O23 – Service: Karta inteligentna (SCardSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\SCardSvr.exe (file missing)
O23 – Service: Harmonogram zadań (Schedule) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\MSTask.exe (file missing)
O23 – Service: Usługa RunAs (seclogon) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Zawiadomienie o zdarzeniu systemowym (SENS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\svchost.exe (file missing)
O23 – Service: Udostępnianie połączenia internetowego (SharedAccess) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Bufor wydruku (Spooler) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\spoolsv.exe (file missing)
O23 – Service: Symantec AntiVirus – Symantec Corporation – C:\Program Files\SAV\Rtvscan.exe
O23 – Service: Dzienniki wydajności i alerty (SysmonLog) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\smlogsvc.exe (file missing)
O23 – Service: Telefonia (TapiSrv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Usługi terminalowe (TermService) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\termsrv.exe (file missing)
O23 – Service: Licencjonowanie usług terminalowych (TermServLicensing) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\lserver.exe (file missing)
O23 – Service: Telnet (TlntSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\tlntsvr.exe (file missing)
O23 – Service: Serwer śledzenia łączy rozproszonych (TrkSvr) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Klient śledzenia łączy rozproszonych (TrkWks) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\services.exe (file missing)
O23 – Service: Menedźer narzędzi (UtilMan) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\UtilMan.exe (file missing)
O23 – Service: Usługa Czas systemu Windows (W32Time) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\services.exe (file missing)
O23 – Service: Instrumentacja zarządzania Windows (WinMgmt) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\WBEM\WinMgmt.exe (file missing)
O23 – Service: Usługa Windows Internet Name Service (WINS) (WINS) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\wins.exe (file missing)
O23 – Service: Usługa numeru seryjnego multimediów przenośnych (WmdmPmSN) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
O23 – Service: Rozszerzenia sterownika Instrumentacji zarządzania (Wmi) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\Services.exe (file missing)
O23 – Service: Aktualizacje automatyczne (wuauserv) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\system32\svchost.exe (file missing)
O23 – Service: Konfiguracja sieci bezprzewodowej (WZCSVC) – Unknown owner – C:\Documents and Settings\Administrator\WINDOWS\System32\svchost.exe (file missing)
Odpowiedzi: 5
1.tak adresy sa moje,
2.Nie robiłeś loga przy wyłączonej whitelists – nie bardzo rozumiem
2.Nie robiłeś loga przy wyłączonej whitelists – nie bardzo rozumiem
Nie robiłeś loga przy wyłączonej whitelists ?
Biblioteka z LSP jest prawidłowa natomiast coś sie z nią stało.
Adresy z O17 są Twoje ?
F2 – REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe,
O10 – Broken Internet access because of LSP provider 'c:\documents and settings\administrator\windows\system32\rnr20.dll' missing
Biblioteka z LSP jest prawidłowa natomiast coś sie z nią stało.
Adresy z O17 są Twoje ?
dg:
nie wyświetla mi się prawidłowo ta strona
Spróbuj pod Operą otworzyć.
nie wyświetla mi się prawidłowo ta strona
http://forum.centrumxp.pl/viewtopic.php?t=37513
Strona 1 / 1