CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo Moj log, wszystko ok ?

Moj log, wszystko ok ?

ogfile of HijackThis v1.99.0
Scan saved at 21:58:03, on 2005–02–07
Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32csrss.exe
C:WINDOWSSYSTEM32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:Program FilesJavaj2re1.4.2_05injusched.exe
C:WINDOWSSystem32 undll32.exe
C:WINDOWSSOUNDMAN.EXE
D:ProgramyEset od32kui.exe
C:Program FilesMessengermsmsgs.exe
D:ProgramyGuildFTPdGuildFTPd.exe
d:ProgramyEset od32krn.exe
C:WINDOWSSystem32 vsvc32.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32wdfmgr.exe
C:WINDOWSsystem32sessmgr.exe
C:PROGRA~1PopUpCopPCCloser.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesWinRARWinRAR.exe
C:DOCUME~1KamikazeUSTAWI~1TempRar$EX00.993HijackThis.exe

R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.wp.pl/
R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Komputer Robsona ;–)
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
R3 – Default URLSearchHook is missing
O2 – BHO: (no name) – {0000CC75–ACF3–4cac–A0A9–DD3868E06852} – (no file)
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – D:ProgramyAdobeAcrobat 6.0 CEReaderActiveXAcroIEHelper.dll
O2 – BHO: Local Spool Net support DLL – {41943050–65CC–454B–81E4–9C8A9D7CBAEA} – C:WINDOWSSystem32localsplnet.dll
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – C:PROGRA~1SPYBOT~1SDHelper.dll
O2 – BHO: QuickSearch Search Bar – {82315A18–6CFB–44a7–BDFD–90E36537C252} – C:Program FilesQuickSearchQuickSearchBar1_27.dll
O3 – Toolbar: (no name) – {62999427–33FC–4baf–9C9C–BCE6BD127F08} – (no file)
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:WINDOWSSystem32msdxm.ocx
O3 – Toolbar: PopUpCop – {DB43E4E6–FF8A–4018–8C8E–F68587A44A73} – C:PROGRA~1PopUpCopPopUpCop.dll
O3 – Toolbar: QuickSearch Search Bar – {82315A18–6CFB–44a7–BDFD–90E36537C252} – C:Program FilesQuickSearchQuickSearchBar1_27.dll
O4 – HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSSystem32NvMcTray.dll,NvTaskbarInit
O4 – HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavaj2re1.4.2_05injusched.exe
O4 – HKLM..Run: [NeroCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 – HKLM..Run: [QuickTime Task] "C:WINDOWSSystem32qttask.exe" –atboottime
O4 – HKLM..Run: [nod32kui] "d:ProgramyEset od32kui.exe" /WAITSERVICE
O4 – HKCU..Run: [Dzieńdobry!] D:ProgramyVSD SoftwareDzieńdobry!dziendobry.exe /auto
O4 – HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background
O4 – HKCU..Run: [Yahoo! Pager] C:PROGRA~1Yahoo!MESSEN~1ypager.exe –quiet
O4 – HKCU..Run: [Skype] "C:Program FilesSkypePhoneSkype.exe" /nosplash /minimized
O4 – Startup: GuildFTPd FTP Deamon.lnk = D:ProgramyGuildFTPdGuildFTPd.exe
O8 – Extra context menu item: &Download with &DAP – D:PROGRAMYDAPdapextie.htm
O8 – Extra context menu item: Download &all with DAP – D:PROGRAMYDAPdapextie2.htm
O8 – Extra context menu item: Open Image in New Window – res://C:PROGRA~1PopUpCoppopupcop.dll/imagenew
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSSystem32msjava.dll
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSSystem32msjava.dll
O9 – Extra button: Wyslij SMS'a – {215940F1–E7E0–4801–BEE3–44D045534106} – C:Program FilesCommon Filesmoje.js
O9 – Extra button: Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – C:Program FilesMessengerMSMSGS.EXE
O9 – Extra 'Tools' menuitem: Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – C:Program FilesMessengerMSMSGS.EXE
O9 – Extra button: Trashcan – {072F3B8A–2DA2–40e2–B841–88899F240200} – D:PROGRAMYAGNITUMOUTPOS~1TRASH.EXE (file missing) (HKCU)
O9 – Extra 'Tools' menuitem: Show Trashcan – {072F3B8A–2DA2–40e2–B841–88899F240200} – D:PROGRAMYAGNITUMOUTPOS~1TRASH.EXE (file missing) (HKCU)
O16 – DPF: {644E432F–49D3–41A1–8DD5–E099162EEEC5} (Symantec RuFSI Utility Class) – http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O23 – Service: NOD32 Kernel Service – Unknown – d:ProgramyEset od32krn.exe
O23 – Service: NVIDIA Display Driver Service (Omega 1.6177) (P) – NVIDIA Corporation – C:WINDOWSSystem32 vsvc32.exe

Odpowiedzi: 3

Dzieki :)
inforobert
Dodano
08.02.2005 00:22:12
Dzieki :)
inforobert
Dodano
08.02.2005 00:22:12
Wylacz przywracanie

Usun:
localsplnet.dll
C:Program FilesQuickSearch

FIX:
R3 – Default URLSearchHook is missing
O2 – BHO: Local Spool Net support DLL – {41943050–65CC–454B–81E4–9C8A9D7CBAEA} – C:WINDOWSSystem32localsplnet.dll
O2 – BHO: QuickSearch Search Bar – {82315A18–6CFB–44a7–BDFD–90E36537C252} – C:Program FilesQuickSearchQuickSearchBar1_27.dll
O3 – Toolbar: QuickSearch Search Bar – {82315A18–6CFB–44a7–BDFD–90E36537C252} – C:Program FilesQuickSearchQuickSearchBar1_27.dll
Bobi
Dodano
07.02.2005 23:36:27
inforobert
Dodano:
07.02.2005 23:06:11
Komentarzy:
3
Strona 1 / 1