Prosba o sprawdzenie loga
Niech ktos prosze zerknie czy all jest ok.Dzieki
Logfile of HijackThis v1.97.7
Scan saved at 12:53:43, on 2004–10–31
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32csrss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
D:ProgramySygatesmc.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSSystem32CTsvcCDA.exe
C:WINDOWSsystem32crypserv.exe
C:Program FilesMKSBinNetMonSv.exe
C:Program FilesMKSBinmksmonsv.exe
C:WINDOWSsystem32 vsvc32.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesCommon FilesYDPUserAccessManageruseraccess.exe
C:WINDOWSSystem32MsPMSPSv.exe
C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
C:WINDOWSSystem32alg.exe
C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe
C:PROGRA~1PESTPA~1PPControl.exe
C:PROGRA~1PESTPA~1PPMemCheck.exe
C:PROGRA~1PESTPA~1CookiePatrol.exe
C:Program FilesMKSBinmks_menu.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
D:ProgramyNokiaDataLayer.exe
C:WINDOWSsystem32CTHELPER.EXE
C:Program FilesMKSBinmks_scan.exe
D:PROGRA~2Amoumain.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMKSBin etsvst.exe
C:Program FilesCommon FilesNokiaServicesServiceLayer.exe
D:ProgramySpybot – Search & DestroyTeaTimer.exe
D:ProgramyCommonBinWinCinemaMgr.exe
D:ProgramyPopTrayPopTray.exe
C:Program FilesGadu–Gadugg.exe
D:ProgramyFlashGetflashget.exe
D:ProgramySpy SweeperSpySweeper.exe
C:DownloadsSpyHijackThis.exe
R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.onet.pl/
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.onet.pl
R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = ..––==ANIA I MICHO==––..
R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 – BHO: (no name) – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – D:ProgramySPYBOT~1SDHelper.dll
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – D:ProgramyFlashGetjccatch.dll
O3 – Toolbar: FlashGet Bar – {E0E899AB–F487–11D5–8D29–0050BA6940E3} – D:ProgramyFlashGetfgiebar.dll
O4 – HKLM..Run: [NVRT] C:Program FilesNVRefreshTool vrt.exe /startup
O4 – HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
O4 – HKLM..Run: [AdaptecDirectCD] "C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe"
O4 – HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" –atboottime
O4 – HKLM..Run: [PestPatrol Control Center] C:PROGRA~1PESTPA~1PPControl.exe
O4 – HKLM..Run: [PPMemCheck] C:PROGRA~1PESTPA~1PPMemCheck.exe
O4 – HKLM..Run: [CookiePatrol] C:PROGRA~1PESTPA~1CookiePatrol.exe
O4 – HKLM..Run: [MKS_MENU] C:Program FilesMKSBinmks_menu.exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 – HKLM..Run: [Nokia Tray Application] C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
O4 – HKLM..Run: [DataLayer] D:ProgramyNokiaDataLayer.exe
O4 – HKLM..Run: [AudioHQ] C:Program FilesCreativeSBLiveAudioHQAHQTB.EXE
O4 – HKLM..Run: [CloneCDElbyCDFL] "D:ProgramyCloneCDElbyCheck.exe" /L ElbyCDFL
O4 – HKLM..Run: [SmcService] D:ProgramySygatesmc.exe –startgui
O4 – HKLM..Run: [NeroCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [CTHelper] CTHELPER.EXE
O4 – HKLM..Run: [UpdReg] C:WINDOWSUpdReg.EXE
O4 – HKLM..Run: [Jet Detection] D:ProgramySbLive!PROGRAMADGJDet.exe
O4 – HKLM..Run: [WheelMouse] d:PROGRA~2Amoumain.exe
O4 – HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 – HKCU..Run: [NetMonSVStat] C:Program FilesMKSBin etsvst.exe
O4 – HKCU..Run: [SpybotSD TeaTimer] D:ProgramySpybot – Search & DestroyTeaTimer.exe
O4 – Startup: PopTray.lnk = D:ProgramyPopTrayPopTray.exe
O4 – Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O4 – Global Startup: InterVideo WinCinema Manager.lnk = D:ProgramyCommonBinWinCinemaMgr.exe
O4 – Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOffice10OSA.EXE
O6 – HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
O8 – Extra context menu item: Ściągnij przy pomocy FlashGet'a – D:ProgramyFlashGetjc_link.htm
O8 – Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a – D:ProgramyFlashGetjc_all.htm
O9 – Extra button: FlashGet (HKLM)
O9 – Extra 'Tools' menuitem: &FlashGet (HKLM)
O9 – Extra button: Messenger (HKLM)
O9 – Extra 'Tools' menuitem: Windows Messenger (HKLM)
O16 – DPF: {166B1BCA–3F9C–11CF–8075–444553540000} (Shockwave ActiveX Control) – http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 – DPF: {27527D31–447B–11D5–A46E–0001023B4289} (CoGSManager Class) – http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 – DPF: {33564D57–0000–0010–8000–00AA00389B71} – http://download.microsoft.com/download/F/6/E/F6E491A6–77E1–4E20–9F5F–94901338C922/wmv9VCM.CAB
O16 – DPF: {54B52E52–8000–4413–BD67–FC7FE24B59F2} (EARTPatchX Class) – http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095790540619
O16 – DPF: {917623D1–D8E5–11D2–BE8B–00104B06BDE3} (CamImage Class) – http://kamera.szczecinek.net.pl/activex/AxisCamControl.cab
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 – DPF: {9F1C11AA–197B–4942–BA54–47A8489BB47F} – http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38123.4794907407
O16 – DPF: {C2FCEF52–ACE9–11D3–BEBD–00105AA9B6AE} (Symantec RuFSI Registry Information Class) – http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 – DPF: {D27CDB6E–AE6D–11CF–96B8–444553540000} (Shockwave Flash Object) – http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Dzieki .pozdro
Logfile of HijackThis v1.97.7
Scan saved at 12:53:43, on 2004–10–31
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32csrss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
D:ProgramySygatesmc.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSSystem32CTsvcCDA.exe
C:WINDOWSsystem32crypserv.exe
C:Program FilesMKSBinNetMonSv.exe
C:Program FilesMKSBinmksmonsv.exe
C:WINDOWSsystem32 vsvc32.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesCommon FilesYDPUserAccessManageruseraccess.exe
C:WINDOWSSystem32MsPMSPSv.exe
C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
C:WINDOWSSystem32alg.exe
C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe
C:PROGRA~1PESTPA~1PPControl.exe
C:PROGRA~1PESTPA~1PPMemCheck.exe
C:PROGRA~1PESTPA~1CookiePatrol.exe
C:Program FilesMKSBinmks_menu.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
D:ProgramyNokiaDataLayer.exe
C:WINDOWSsystem32CTHELPER.EXE
C:Program FilesMKSBinmks_scan.exe
D:PROGRA~2Amoumain.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMKSBin etsvst.exe
C:Program FilesCommon FilesNokiaServicesServiceLayer.exe
D:ProgramySpybot – Search & DestroyTeaTimer.exe
D:ProgramyCommonBinWinCinemaMgr.exe
D:ProgramyPopTrayPopTray.exe
C:Program FilesGadu–Gadugg.exe
D:ProgramyFlashGetflashget.exe
D:ProgramySpy SweeperSpySweeper.exe
C:DownloadsSpyHijackThis.exe
R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.onet.pl/
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.onet.pl
R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = ..––==ANIA I MICHO==––..
R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 – BHO: (no name) – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – D:ProgramySPYBOT~1SDHelper.dll
O2 – BHO: (no name) – {A5366673–E8CA–11D3–9CD9–0090271D075B} – D:ProgramyFlashGetjccatch.dll
O3 – Toolbar: FlashGet Bar – {E0E899AB–F487–11D5–8D29–0050BA6940E3} – D:ProgramyFlashGetfgiebar.dll
O4 – HKLM..Run: [NVRT] C:Program FilesNVRefreshTool vrt.exe /startup
O4 – HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
O4 – HKLM..Run: [AdaptecDirectCD] "C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe"
O4 – HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" –atboottime
O4 – HKLM..Run: [PestPatrol Control Center] C:PROGRA~1PESTPA~1PPControl.exe
O4 – HKLM..Run: [PPMemCheck] C:PROGRA~1PESTPA~1PPMemCheck.exe
O4 – HKLM..Run: [CookiePatrol] C:PROGRA~1PESTPA~1CookiePatrol.exe
O4 – HKLM..Run: [MKS_MENU] C:Program FilesMKSBinmks_menu.exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 – HKLM..Run: [Nokia Tray Application] C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
O4 – HKLM..Run: [DataLayer] D:ProgramyNokiaDataLayer.exe
O4 – HKLM..Run: [AudioHQ] C:Program FilesCreativeSBLiveAudioHQAHQTB.EXE
O4 – HKLM..Run: [CloneCDElbyCDFL] "D:ProgramyCloneCDElbyCheck.exe" /L ElbyCDFL
O4 – HKLM..Run: [SmcService] D:ProgramySygatesmc.exe –startgui
O4 – HKLM..Run: [NeroCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [CTHelper] CTHELPER.EXE
O4 – HKLM..Run: [UpdReg] C:WINDOWSUpdReg.EXE
O4 – HKLM..Run: [Jet Detection] D:ProgramySbLive!PROGRAMADGJDet.exe
O4 – HKLM..Run: [WheelMouse] d:PROGRA~2Amoumain.exe
O4 – HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 – HKCU..Run: [NetMonSVStat] C:Program FilesMKSBin etsvst.exe
O4 – HKCU..Run: [SpybotSD TeaTimer] D:ProgramySpybot – Search & DestroyTeaTimer.exe
O4 – Startup: PopTray.lnk = D:ProgramyPopTrayPopTray.exe
O4 – Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O4 – Global Startup: InterVideo WinCinema Manager.lnk = D:ProgramyCommonBinWinCinemaMgr.exe
O4 – Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOffice10OSA.EXE
O6 – HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
O8 – Extra context menu item: Ściągnij przy pomocy FlashGet'a – D:ProgramyFlashGetjc_link.htm
O8 – Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a – D:ProgramyFlashGetjc_all.htm
O9 – Extra button: FlashGet (HKLM)
O9 – Extra 'Tools' menuitem: &FlashGet (HKLM)
O9 – Extra button: Messenger (HKLM)
O9 – Extra 'Tools' menuitem: Windows Messenger (HKLM)
O16 – DPF: {166B1BCA–3F9C–11CF–8075–444553540000} (Shockwave ActiveX Control) – http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 – DPF: {27527D31–447B–11D5–A46E–0001023B4289} (CoGSManager Class) – http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 – DPF: {33564D57–0000–0010–8000–00AA00389B71} – http://download.microsoft.com/download/F/6/E/F6E491A6–77E1–4E20–9F5F–94901338C922/wmv9VCM.CAB
O16 – DPF: {54B52E52–8000–4413–BD67–FC7FE24B59F2} (EARTPatchX Class) – http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095790540619
O16 – DPF: {917623D1–D8E5–11D2–BE8B–00104B06BDE3} (CamImage Class) – http://kamera.szczecinek.net.pl/activex/AxisCamControl.cab
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 – DPF: {9F1C11AA–197B–4942–BA54–47A8489BB47F} – http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38123.4794907407
O16 – DPF: {C2FCEF52–ACE9–11D3–BEBD–00105AA9B6AE} (Symantec RuFSI Registry Information Class) – http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 – DPF: {D27CDB6E–AE6D–11CF–96B8–444553540000} (Shockwave Flash Object) – http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Dzieki .pozdro
Odpowiedzi: 6
jeszcze jedno.w tasku mam : ctfmon.exe i cthelper.exe.Nie wiem co to.
Poza tym mam kilka svchostow wlaczonych–czy to normalne?
:?:
Poza tym mam kilka svchostow wlaczonych–czy to normalne?
:?:
1.Nie kumam CWShreddera :cry: raport z CWShredder :
**** Run Keys ****
RUN: [NVRT] C:Program FilesNVRefreshTool vrt.exe /startup
RUN: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
RUN: [AdaptecDirectCD] "C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe"
RUN: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" –atboottime
RUN: [PestPatrol Control Center] C:PROGRA~1PESTPA~1PPControl.exe
RUN: [PPMemCheck] C:PROGRA~1PESTPA~1PPMemCheck.exe
RUN: [CookiePatrol] C:PROGRA~1PESTPA~1CookiePatrol.exe
RUN: [MKS_MENU] C:Program FilesMKSBinmks_menu.exe
RUN: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
RUN: [nwiz] nwiz.exe /install
RUN: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
RUN: [Nokia Tray Application] C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
RUN: [DataLayer] D:ProgramyNokiaDataLayer.exe
RUN: [AudioHQ] C:Program FilesCreativeSBLiveAudioHQAHQTB.EXE
RUN: [CloneCDElbyCDFL] "D:ProgramyCloneCDElbyCheck.exe" /L ElbyCDFL
RUN: [SmcService] D:ProgramySygatesmc.exe –startgui
RUN: [NeroCheck] C:WINDOWSsystem32NeroCheck.exe
RUN: [CTHelper] CTHELPER.EXE
RUN: [UpdReg] C:WINDOWSUpdReg.EXE
RUN: [Jet Detection] D:ProgramySbLive!PROGRAMADGJDet.exe
RUN: [WheelMouse] d:PROGRA~2Amoumain.exe
RUN: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
RUN: [NetMonSVStat] C:Program FilesMKSBin etsvst.exe
RUN: [SpybotSD TeaTimer] D:ProgramySpybot – Search & DestroyTeaTimer.exe
RUN: [SpySweeper] "D:ProgramySpy SweeperSpySweeper.exe" /0
**** Browser Helper Objects ****
BHO: [AcroIEHlprObj Class] C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
BHO: [] D:ProgramySPYBOT~1SDHelper.dll
BHO: [IeCatch2 Class] D:ProgramyFlashGetjccatch.dll
**** IE Toolbars ****
TOOLBAR: [FlashGet Bar] D:ProgramyFlashGetfgiebar.dll
**** IE Extensions ****
IEExt: [FlashGet] D:ProgramyFlashGetflashget.exe
IEExt: [Messenger] C:Program FilesMessengermsmsgs.exe
**** Hosts File Entries ****
HOSTS: 127.0.0.1 localhost
HOSTS: 127.0.0.1 localhost
**** IE Settings ****
Default Page: http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default Search: http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: http://www.google.com
**** IE Context Menu (Right click) ****
IEContext: [E&xport to Microsoft Excel] res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
IEContext: [Ściągnij przy pomocy FlashGet'a] D:ProgramyFlashGetjc_link.htm
IEContext: [Ściągnij wszystko przy pomocy FlashGet'a] D:ProgramyFlashGetjc_all.htm
**** Layered Service Providers ****
LSP: NL MSAFD Tcpip [TCP/IP]
LSP: NL MSAFD Tcpip [UDP/IP]
LSP: NL RSVP UDP Service Provider
LSP: NL RSVP TCP Service Provider
LSP: MSAFD Irda [IrDA]
LSP: MSAFD Tcpip [TCP/IP]
LSP: MSAFD Tcpip [UDP/IP]
LSP: RSVP UDP Service Provider
LSP: RSVP TCP Service Provider
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{4717A803–143A–42F7–B9D3–63F17F272D25}] SEQPACKET 5
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{4717A803–143A–42F7–B9D3–63F17F272D25}] DATAGRAM 5
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C256CF5A–87BE–42BD–B654–A0C516ECE0F5}] SEQPACKET 0
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C256CF5A–87BE–42BD–B654–A0C516ECE0F5}] DATAGRAM 0
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C298EC55–8383–4813–9495–369485890C92}] SEQPACKET 4
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C298EC55–8383–4813–9495–369485890C92}] DATAGRAM 4
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{91AE00EC–FB41–467B–B83E–FB9A6ABAF3FF}] SEQPACKET 3
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{91AE00EC–FB41–467B–B83E–FB9A6ABAF3FF}] DATAGRAM 3
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{CE449AB2–DBF5–405C–A7C7–2E26B377ED9F}] SEQPACKET 1
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{CE449AB2–DBF5–405C–A7C7–2E26B377ED9F}] DATAGRAM 1
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{15F1AA63–159D–4F3F–A446–0252906078D6}] SEQPACKET 2
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{15F1AA63–159D–4F3F–A446–0252906078D6}] DATAGRAM 2
**** Blocked Control Panel Items ****
BLOCKED: [ncpa.cpl] No
BLOCKED: [odbccp32.cpl] No
**** Downloaded Program Files ****
Microsoft XML Parser for Java [file://C:WINDOWSJavaclassesxmldso.cab]
{166B1BCA–3F9C–11CF–8075–444553540000} [http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab]
{27527D31–447B–11D5–A46E–0001023B4289} [http://gamingzone.ubisoft.com/dev/packages/GSManager.cab] C:WINDOWSDownloaded Program FilesGSManager.dll
{33564D57–0000–0010–8000–00AA00389B71} [http://download.microsoft.com/download/F/6/E/F6E491A6–77E1–4E20–9F5F–94901338C922/wmv9VCM.CAB]
{54B52E52–8000–4413–BD67–FC7FE24B59F2} [http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab] C:WINDOWSDownloaded Program FilesEARTPX.dll
{6414512B–B978–451D–A0D8–FCFDF33E833C} [http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095790540619]
{917623D1–D8E5–11D2–BE8B–00104B06BDE3} [http://kamera.szczecinek.net.pl/activex/AxisCamControl.cab] C:WINDOWSDownloaded Program FilesAxisCamControl.ocx
{9A9307A0–7DA4–4DAF–B042–5009F29E09E1} [http://www.pandasoftware.com/activescan/as5/asinst.cab]
{9F1C11AA–197B–4942–BA54–47A8489BB47F} [http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38123.4794907407]
{C2FCEF52–ACE9–11D3–BEBD–00105AA9B6AE} [http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab]
{D27CDB6E–AE6D–11CF–96B8–444553540000} [http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab]
**** Custom IE Search Items ****
SEARCH: [SearchAssistant] http://ie.search.msn.com
SEARCH: [CustomizeSearch] http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
2.tak w SB to DSO Exploit
3.wywalalem historie recznie–nie pomagalo ,lae wywalalem w doc&settadministrator, a nie w katalogu doc&sett teraz wywalilem i mam nadzieje,ze to pomoze.
4.czy rezcnie moge wywalic wysztko z doc&settust lokalne emp? to samo z temporary internet files?
5.wiem,ze to pewnie bylo,ale przy okazji–czy prefetcha wywalac recznie(calosc?) i czy nalezy w ogole to robic?
dzieki
**** Run Keys ****
RUN: [NVRT] C:Program FilesNVRefreshTool vrt.exe /startup
RUN: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb04.exe
RUN: [AdaptecDirectCD] "C:Program FilesAdaptecEasy CD Creator 5DirectCDDirectCD.exe"
RUN: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" –atboottime
RUN: [PestPatrol Control Center] C:PROGRA~1PESTPA~1PPControl.exe
RUN: [PPMemCheck] C:PROGRA~1PESTPA~1PPMemCheck.exe
RUN: [CookiePatrol] C:PROGRA~1PESTPA~1CookiePatrol.exe
RUN: [MKS_MENU] C:Program FilesMKSBinmks_menu.exe
RUN: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
RUN: [nwiz] nwiz.exe /install
RUN: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
RUN: [Nokia Tray Application] C:Program FilesCommon FilesNokiaNCLToolsNclTray.exe
RUN: [DataLayer] D:ProgramyNokiaDataLayer.exe
RUN: [AudioHQ] C:Program FilesCreativeSBLiveAudioHQAHQTB.EXE
RUN: [CloneCDElbyCDFL] "D:ProgramyCloneCDElbyCheck.exe" /L ElbyCDFL
RUN: [SmcService] D:ProgramySygatesmc.exe –startgui
RUN: [NeroCheck] C:WINDOWSsystem32NeroCheck.exe
RUN: [CTHelper] CTHELPER.EXE
RUN: [UpdReg] C:WINDOWSUpdReg.EXE
RUN: [Jet Detection] D:ProgramySbLive!PROGRAMADGJDet.exe
RUN: [WheelMouse] d:PROGRA~2Amoumain.exe
RUN: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
RUN: [NetMonSVStat] C:Program FilesMKSBin etsvst.exe
RUN: [SpybotSD TeaTimer] D:ProgramySpybot – Search & DestroyTeaTimer.exe
RUN: [SpySweeper] "D:ProgramySpy SweeperSpySweeper.exe" /0
**** Browser Helper Objects ****
BHO: [AcroIEHlprObj Class] C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
BHO: [] D:ProgramySPYBOT~1SDHelper.dll
BHO: [IeCatch2 Class] D:ProgramyFlashGetjccatch.dll
**** IE Toolbars ****
TOOLBAR: [FlashGet Bar] D:ProgramyFlashGetfgiebar.dll
**** IE Extensions ****
IEExt: [FlashGet] D:ProgramyFlashGetflashget.exe
IEExt: [Messenger] C:Program FilesMessengermsmsgs.exe
**** Hosts File Entries ****
HOSTS: 127.0.0.1 localhost
HOSTS: 127.0.0.1 localhost
**** IE Settings ****
Default Page: http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default Search: http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: http://www.google.com
**** IE Context Menu (Right click) ****
IEContext: [E&xport to Microsoft Excel] res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
IEContext: [Ściągnij przy pomocy FlashGet'a] D:ProgramyFlashGetjc_link.htm
IEContext: [Ściągnij wszystko przy pomocy FlashGet'a] D:ProgramyFlashGetjc_all.htm
**** Layered Service Providers ****
LSP: NL MSAFD Tcpip [TCP/IP]
LSP: NL MSAFD Tcpip [UDP/IP]
LSP: NL RSVP UDP Service Provider
LSP: NL RSVP TCP Service Provider
LSP: MSAFD Irda [IrDA]
LSP: MSAFD Tcpip [TCP/IP]
LSP: MSAFD Tcpip [UDP/IP]
LSP: RSVP UDP Service Provider
LSP: RSVP TCP Service Provider
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{4717A803–143A–42F7–B9D3–63F17F272D25}] SEQPACKET 5
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{4717A803–143A–42F7–B9D3–63F17F272D25}] DATAGRAM 5
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C256CF5A–87BE–42BD–B654–A0C516ECE0F5}] SEQPACKET 0
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C256CF5A–87BE–42BD–B654–A0C516ECE0F5}] DATAGRAM 0
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C298EC55–8383–4813–9495–369485890C92}] SEQPACKET 4
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{C298EC55–8383–4813–9495–369485890C92}] DATAGRAM 4
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{91AE00EC–FB41–467B–B83E–FB9A6ABAF3FF}] SEQPACKET 3
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{91AE00EC–FB41–467B–B83E–FB9A6ABAF3FF}] DATAGRAM 3
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{CE449AB2–DBF5–405C–A7C7–2E26B377ED9F}] SEQPACKET 1
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{CE449AB2–DBF5–405C–A7C7–2E26B377ED9F}] DATAGRAM 1
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{15F1AA63–159D–4F3F–A446–0252906078D6}] SEQPACKET 2
LSP: MSAFD NetBIOS [DeviceNetBT_Tcpip_{15F1AA63–159D–4F3F–A446–0252906078D6}] DATAGRAM 2
**** Blocked Control Panel Items ****
BLOCKED: [ncpa.cpl] No
BLOCKED: [odbccp32.cpl] No
**** Downloaded Program Files ****
Microsoft XML Parser for Java [file://C:WINDOWSJavaclassesxmldso.cab]
{166B1BCA–3F9C–11CF–8075–444553540000} [http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab]
{27527D31–447B–11D5–A46E–0001023B4289} [http://gamingzone.ubisoft.com/dev/packages/GSManager.cab] C:WINDOWSDownloaded Program FilesGSManager.dll
{33564D57–0000–0010–8000–00AA00389B71} [http://download.microsoft.com/download/F/6/E/F6E491A6–77E1–4E20–9F5F–94901338C922/wmv9VCM.CAB]
{54B52E52–8000–4413–BD67–FC7FE24B59F2} [http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab] C:WINDOWSDownloaded Program FilesEARTPX.dll
{6414512B–B978–451D–A0D8–FCFDF33E833C} [http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095790540619]
{917623D1–D8E5–11D2–BE8B–00104B06BDE3} [http://kamera.szczecinek.net.pl/activex/AxisCamControl.cab] C:WINDOWSDownloaded Program FilesAxisCamControl.ocx
{9A9307A0–7DA4–4DAF–B042–5009F29E09E1} [http://www.pandasoftware.com/activescan/as5/asinst.cab]
{9F1C11AA–197B–4942–BA54–47A8489BB47F} [http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38123.4794907407]
{C2FCEF52–ACE9–11D3–BEBD–00105AA9B6AE} [http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab]
{D27CDB6E–AE6D–11CF–96B8–444553540000} [http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab]
**** Custom IE Search Items ****
SEARCH: [SearchAssistant] http://ie.search.msn.com
SEARCH: [CustomizeSearch] http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
2.tak w SB to DSO Exploit
3.wywalalem historie recznie–nie pomagalo ,lae wywalalem w doc&settadministrator, a nie w katalogu doc&sett teraz wywalilem i mam nadzieje,ze to pomoze.
4.czy rezcnie moge wywalic wysztko z doc&settust lokalne emp? to samo z temporary internet files?
5.wiem,ze to pewnie bylo,ale przy okazji–czy prefetcha wywalac recznie(calosc?) i czy nalezy w ogole to robic?
dzieki
sirchaser:
...ale wqrzam sie,ze cos mam.Usune to, restart i znow jest.Poza tym nie moge wywalic historii z IE.Klikam wyczysc–jest ok do ponownego uruchomienia IE.System Mechanic tez sobie z tym nie radzi :cry:
Moze w tej kwestii ktos ma pomysl??
Czy to "cos" w SB to DSO Exploit ??
Co do historii w IE to probowales manualnie wywalic wszysko w Ustawienia Lokalne/Historia
Czasami w IE tak jest ze mimo ze w Opcjach Internetowych walniesz w Wyczysc Historie to sie nie czysci
Historie IE mozesz usunac recznie to raz. Natomiast co do tych pojawiajacych sie smieci, moglbys dla pewnosci sprawdzic uruchomione procesy – czy nie ma czegos niepotrzebnego a nie ujawnionego w HJ. Poza tym, warto rowniez oprocz tych wymienionych przez Ciebie programow, uzyc jeszcze np. CWShredder czy tez jaki Ad–ware. Zreszta takiego softu jest na kopy a przyklady zostaly opisane w przyklejonym temacie o stronie startowej.
Dzialo sie–otwieraly sie dodatkowe okna w IE.Niczym nie moglem tego usunac (podzialal system mechanic 5.0),ale nadal spybot i spysweeper cos wynajduja.Co prawda nie otwieraja mi sie juz te stronki,ale wqrzam sie,ze cos mam.Usune to, restart i znow jest.Poza tym nie moge wywalic historii z IE.Klikam wyczysc–jest ok do ponownego uruchomienia IE.System Mechanic tez sobie z tym nie radzi :cry:
Moze w tej kwestii ktos ma pomysl??
Dzieki za sprawdzenie loga.
Moze w tej kwestii ktos ma pomysl??
Dzieki za sprawdzenie loga.
Dzieje sie cos??
Log jest czysty
Log jest czysty