CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo Hijackthis log i pytania

Hijackthis log i pytania

Logfile of HijackThis v1.97.7
Scan saved at 17:23:42, on 2004–08–26
Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSystem32DRIVERSCDANTSRV.EXE
C:PROGRA~1WANADOOTaskbarIcon.exe
C:WINDOWSSystem32 vsvc32.exe
C:Program FilesJavaj2re1.4.2_05injusched.exe
E:Program FilesD–Toolsdaemon.exe
E:Program FilesNokiaNokia PC Suite 5DataLayer.exe
C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
C:program filespowerstrippstrip.exe
C:WINDOWSSystem32devldr32.exe
C:WINDOWSSystem32ctfmon.exe
C:Program FilesSAGEMSAGEM F@st 800–840DSLMON.exe
C:Program FilesCommon FilesNokiaServicesServiceLayer.exe
C:Program FilesMessengermsmsgs.exe
C:Program FilesOutlook Expressmsimn.exe
E:PROGRA~1MOZZILLAMOZILLA.EXE
C:Documents and SettingsiomPulpitHijackThis.exe

R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.wp.pl/
R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada Plus wita Cie w Internecie
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
R3 – URLSearchHook: (no name) – _{CFBFAE00–17A6–11D0–99CB–00C04FD64497} – (no file)
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – E:PROGRA~1FlashGetjccatch.dll
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:WINDOWSSystem32msdxm.ocx
O3 – Toolbar: FlashGet Bar – {E0E899AB–F487–11D5–8D29–0050BA6940E3} – E:PROGRA~1FlashGetfgiebar.dll
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [WOOWATCH] C:PROGRA~1WANADOOWatch.exe
O4 – HKLM..Run: [WOOTASKBARICON] C:PROGRA~1WANADOOTaskbarIcon.exe
O4 – HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavaj2re1.4.2_05injusched.exe
O4 – HKLM..Run: [DAEMON Tools–1033] "E:Program FilesD–Toolsdaemon.exe" –lang 1033
O4 – HKLM..Run: [DataLayer] E:Program FilesNokiaNokia PC Suite 5DataLayer.exe
O4 – HKLM..Run: [Nokia Tray Application] C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
O4 – HKLM..Run: [PowerStrip] c:program filespowerstrippstrip.exe
O4 – HKCU..Run: [CTFMON.EXE] C:WINDOWSSystem32ctfmon.exe
O4 – Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800–840DSLMON.exe
O8 – Extra context menu item: Ściągnij przy pomocy FlashGet'a – E:Program FilesFlashGetjc_link.htm
O8 – Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a – E:Program FilesFlashGetjc_all.htm
O9 – Extra 'Tools' menuitem: Sun Java Console (HKLM)
O9 – Extra button: FlashGet (HKLM)
O9 – Extra 'Tools' menuitem: &FlashGet (HKLM)
O16 – DPF: {15AD4789–CDB4–47E1–A9DA–992EE8E6BAD6} – http://public.windupdates.com/get_file.php?bt=ie&p=0c8f9c464b4dcd5555167068824acacb7b7f55a8b57135786038853b6e841b9a57f3f159a6541ef5d788b8d13da80dca2c11:1e8b55ca59297b294d12cbd5372935d8
O16 – DPF: {166B1BCA–3F9C–11CF–8075–444553540000} (Shockwave ActiveX Control) – http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 – DPF: {19E28AFC–EAE3–4CE5–AC83–2407B42F57C9} (MSSecurityAdvisor Class) – http://download.microsoft.com/download/0/5/c/05c905f4–dd30–427d–a3de–373c3e5552fc/msSecAdv.cab?1092353037500
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1093271526703
O16 – DPF: {9F1C11AA–197B–4942–BA54–47A8489BB47F} – http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38175.6684722222
O16 – DPF: {A7196C8E–35A5–4FF0–9E46–E28918B5CAF6} (GINDOMINO Class) – http://gryonline.wp.pl/files/domino_2_0_0_6.cab
O16 – DPF: {BFA1F11D–3121–AFE1–4112–894323212DAC} (GINWORDS Class) – http://gryonline.wp.pl/files/words_2_0_0_18.cab
O16 – DPF: {D27CDB6E–AE6D–11CF–96B8–444553540000} (Shockwave Flash Object) – http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 – DPF: {DCB16E44–D6DB–473E–A251–F6FBB381C1C3} (GINCHESS Class) – http://gryonline.wp.pl/files/chess_2_0_0_6.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C5} (GINSNOOKER Class) – http://gryonline.wp.pl/files/snooker_2_0_0_6.cab



Co powinienem zfixować ??

Odpowiedzi: 4

EL NINO:
Seeker:
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – E:PROGRA~1FlashGetjccatch.dll
Tego to ja bym nie wywalal :wink: .


Czemu co to ?? ido czego słuźy?? To ze powiazane z flashgetem to wiem :P
XeviL
Dodano
26.08.2004 23:47:43
Seeker:
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – E:PROGRA~1FlashGetjccatch.dll
Tego to ja bym nie wywalal :wink: .
EL NINO
Dodano
26.08.2004 22:38:43
wywale takze te gry online (i tak niewiem skad sie wziely). Czy coś jeszcze??
XeviL
Dodano
26.08.2004 19:54:35
R3 – URLSearchHook: (no name) – _{CFBFAE00–17A6–11D0–99CB–00C04FD64497} – (no file)
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – E:PROGRA~1FlashGetjccatch.dll
O16 – DPF: {15AD4789–CDB4–47E1–A9DA–992EE8E6BAD6} – http://public.windupdates.com/get_file.php?bt=ie&p=0c8f9c464b4dcd5555167068824acacb7b7f55a8b57135786038853b6e841b9a57f3f159a6541ef5d788b8d13da80dca2c11

IMHO
Seeker
Dodano
26.08.2004 19:52:32
XeviL
Dodano:
26.08.2004 19:26:26
Komentarzy:
4
Strona 1 / 1