CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo Proszę o sprawdzenie loga.

Proszę o sprawdzenie loga.

Logfile of HijackThis v1.99.0
Scan saved at 08:45:04, on 2005–01–14
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSExplorer.EXE
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSTBPanel.exe
C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
D:TATAPROGRAMY [instalki]Acronis TrueImageTrueImageMonitor.exe
C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe
C:Program FilescFoscFosDNT.exe
C:PROGRA~1NORTON~1NORTON~1NPROTECT.EXE
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:WINDOWSSystem32 vsvc32.exe
C:Program FilesSoftwinBitDefender8doesrv.exe
C:Program FilesSoftwinBitDefender8dswitch.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesAutoConnectAutoConnect.exe
C:PROGRA~1NORTON~1NORTON~1SPEEDD~1NOPDB.EXE
C:Program FilesSAGEMSAGEM F@st 800–840dslmon.exe
C:Program FilesCommon FilesSymantec SharedCCPD–LCsymlcsvc.exe
C:Program FilesCommon FilesSoftwinBitDefender Communicatorxcommsvr.exe
D:TATAPROGRAMY [instalki]BitCometBitComet.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Program FilesCommon FilesSoftwinBitDefender Scan Serverdss.exe
C:Program FilesSoftwinBitDefender8vsserv.exe
c:program filessoftwinitdefender8dmcon.exe
C:Program FilesNorton SystemWorksNorton UtilitiesWIPINFNT.EXE
D:TATAPROGRAMY [instalki]hijackthis[+dll]hijackthis[+dll]hijackthisHijackThis.exe

R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 – HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://www.macromedia.com/shockwave/download/triggerpages_mmcom/default.html
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 – BHO: Yahoo! Companion BHO – {02478D38–C3F9–4efb–9B51–7695ECA05670} – C:Program FilesYahoo!CompanionInstallscpnycomp5_5_7_0.dll
O3 – Toolbar: Yahoo! Companion – {EF99BD32–C1FB–11D2–892F–0090271D4F88} – C:Program FilesYahoo!CompanionInstallscpnycomp5_5_7_0.dll
O4 – HKLM..Run: [Gainward] C:WINDOWSTBPanel.exe /A
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 – HKLM..Run: [Acronis True Image Monitor] "D:TATAPROGRAMY [instalki]Acronis TrueImageTrueImageMonitor.exe"
O4 – HKLM..Run: [Acronis Scheduler2 Service] "C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe"
O4 – HKLM..Run: [cFosDNT] C:Program FilescFoscFosDNT.exe
O4 – HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 – HKLM..Run: [BDMCon] C:PROGRA~1SoftwinBITDEF~1dmcon.exe
O4 – HKLM..Run: [BDOESRV] C:Program FilesSoftwinBitDefender8\bdoesrv.exe
O4 – HKLM..Run: [BDNewsAgent] C:Program FilesSoftwinBitDefender8dnagent.exe
O4 – HKLM..Run: [BDSwitchAgent] C:Program FilesSoftwinBitDefender8\bdswitch.exe
O4 – HKLM..Run: [MSConfig] C:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /auto
O4 – HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 – HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exe
O4 – Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800–840dslmon.exe
O17 – HKLMSystemCCSServicesTcpip..{243BB072–9526–4B9E–B9CD–E6FD2CD8A170}: NameServer = 194.204.152.34 217.98.63.164
O23 – Service: Acronis Scheduler2 Service – Acronis – C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
O23 – Service: BitDefender Scan Server – Unknown – C:Program FilesCommon FilesSoftwinBitDefender Scan Serverdss.exe
O23 – Service: Symantec Event Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 – Service: Symantec Password Validation – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe
O23 – Service: Symantec Settings Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 – Service: Norton Unerase Protection – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~1NPROTECT.EXE
O23 – Service: NVIDIA Driver Helper Service – NVIDIA Corporation – C:WINDOWSSystem32 vsvc32.exe
O23 – Service: Speed Disk service – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~1SPEEDD~1NOPDB.EXE
O23 – Service: Symantec Core LC – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedCCPD–LCsymlcsvc.exe
O23 – Service: BitDefender Virus Shield – Unknown – C:Program FilesSoftwinBitDefender8vsserv.exe
O23 – Service: BitDefender Communicator – Softwin – C:Program FilesCommon FilesSoftwinBitDefender Communicatorxcommsvr.exe

Odpowiedzi: 5

Dobra dziekuje.
JARO33
Dodano
14.01.2005 12:26:11
To jest toolbar Yahoo, jak usuniesz zniknie Ci paseczek z IE – o ile sie nie myle :)
brtx
Dodano
14.01.2005 12:24:54
A czy to zostawić??


O2 – BHO: Yahoo! Companion BHO – {02478D38–C3F9–4efb–9B51–7695ECA05670} – C:Program FilesYahoo!CompanionInstallscpnycomp5_5_7_0.dll
O3 – Toolbar: Yahoo! Companion – {EF99BD32–C1FB–11D2–892F–0090271D4F88} – C:Program FilesYahoo!CompanionInstallscpnycomp5_5_7_0.dll
JARO33
Dodano
14.01.2005 12:21:05
Link prowadzi do Macromedia Shockwave Player, wiec to nic groznego, ale po co to akurat w tym miejscu
Jak chcesz to zostaw
Bobi
Dodano
14.01.2005 10:53:32
A co sie dzieje?
Log na pierwszy rzut oka wyglada OK
Moze to

R1 – HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://www.macromedia.com/shockwave/download/triggerpages_mmcom/default.html


Analizator loga pokazal ze to jest be ;)
brtx
Dodano
14.01.2005 10:17:23
JARO33
Dodano:
14.01.2005 09:46:12
Komentarzy:
5
Strona 1 / 1