Proszę o sprawdzenie loga bo mi się ładuje strona msn.com
Jak w temacie, po wykasowaniu w rejestrze po pewnym czasie znowu się pojawja. Nie wiem czym moźe być to spowodowane i jak tę uciąźliwość na przyszłość usunąć.
Pozdrówko
Mirek
Logfile of HijackThis v1.99.1
Scan saved at 19:58:07, on 2005–10–23
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\WinFast\WFTVFM\WFWIZ.exe
D:\Program Files\QuickTime\qttask.exe
D:\Program Files\RAMCleaner\RAMCleaner.exe
D:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
D:\PROGRA~1\MediaKey\MMKeybd.EXE
D:\PROGRA~1\MediaKey\KPDrv4XP.EXE
D:\WINDOWS\System32\WF2K.EXE
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\Spamihilator\spamihilator.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\GetRight\getright.exe
C:\Kalendarz XP\Kalendarz.exe
D:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\AVPersonal\AVWUPSRV.EXE
D:\WINDOWS\System32\inetsrv\inetinfo.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\WINDOWS\System32\tcpsvcs.exe
D:\WINDOWS\System32\svchost.exe
D:\Documents and Settings\Mirosław\Pulpit\msimn.exe
D:\Program Files\MYIE2 a\MyIE.exe
C:\ProgDVB\ProgDVB.exe
D:\Documents and Settings\Mirosław\Pulpit\HijackThis.exe
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – D:\WINDOWS\System32\msdxm.ocx
O4 – HKLM\..\Run: [WinFast Schedule] D:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 – HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" –atboottime
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 – HKLM\..\Run: [RAMCleaner start] D:\Program Files\RAMCleaner\RAMCleaner.exe
O4 – HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 – HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 – HKLM\..\Run: [MediaKey] D:\PROGRA~1\MediaKey\MMKeybd.EXE
O4 – HKLM\..\Run: [KPDrv4XP] D:\PROGRA~1\MediaKey\KPDrv4XP.EXE
O4 – HKLM\..\Run: [WinFast_2K] D:\WINDOWS\System32\WF2K.EXE
O4 – HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" –osboot
O4 – HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 – HKCU\..\Run: [Spamihilator] "D:\Program Files\Spamihilator\spamihilator.exe"
O4 – HKCU\..\Run: [Anty_16BitNT Automatyczna Ochrona] D:\WINDOWS\Anty_16BitNT.exe AO
O4 – HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 – HKCU\..\Run: [tray] D:\Program Files\Pogoda\pogoda.exe /tray
O4 – Startup: Kalendarz.exe.lnk = C:\Kalendarz XP\Kalendarz.exe
O4 – Global Startup: GetRight Monitor.lnk = D:\Program Files\GetRight\getright.exe
O9 – Extra button: eBay – Homepage – {EF79EAC5–3452–4E02–B8BD–BA4C89F1AC7A} – D:\WINDOWS\System32\shdocvw.dll
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 – HKLM\System\CCS\Services\Tcpip\..\{8AA12A18–FF37–49AC–A5B8–FDC8D0F22915}: NameServer = 85.255.114.20,85.255.112.60
O17 – HKLM\System\CCS\Services\Tcpip\..\{99689AD6–A180–4F62–82F6–CF213F34E12D}: NameServer = 85.255.114.20,85.255.112.60
O17 – HKLM\System\CCS\Services\Tcpip\..\{FB1283FB–BBE7–4126–BB68–BD94F729575D}: NameServer = 85.255.114.20,85.255.112.60
O23 – Service: AntiVir Update (AVWUpSrv) – H+BEDV Datentechnik GmbH, Germany – D:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 – Service: Symantec Password Validation (ccPwdSvc) – Symantec Corporation – D:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 – Service: iPod Service (iPodService) – Apple Computer, Inc. – D:\Program Files\iPod\bin\iPodService.exe
O23 – Service: MkS_Vir Monitor (MksVirMonSvc) – Unknown owner – D:\Program Files\MKS\Bin\mksmonsv.exe (file missing)
O23 – Service: Leadtek Driver Helper Service (NVSvc) – NVIDIA Corporation – D:\WINDOWS\System32\nvsvc32.exe
Dziękuję za zainteresowanie
Pozdrówko
Mirek
Logfile of HijackThis v1.99.1
Scan saved at 19:58:07, on 2005–10–23
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\WinFast\WFTVFM\WFWIZ.exe
D:\Program Files\QuickTime\qttask.exe
D:\Program Files\RAMCleaner\RAMCleaner.exe
D:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
D:\PROGRA~1\MediaKey\MMKeybd.EXE
D:\PROGRA~1\MediaKey\KPDrv4XP.EXE
D:\WINDOWS\System32\WF2K.EXE
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\Spamihilator\spamihilator.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\GetRight\getright.exe
C:\Kalendarz XP\Kalendarz.exe
D:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\AVPersonal\AVWUPSRV.EXE
D:\WINDOWS\System32\inetsrv\inetinfo.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\WINDOWS\System32\tcpsvcs.exe
D:\WINDOWS\System32\svchost.exe
D:\Documents and Settings\Mirosław\Pulpit\msimn.exe
D:\Program Files\MYIE2 a\MyIE.exe
C:\ProgDVB\ProgDVB.exe
D:\Documents and Settings\Mirosław\Pulpit\HijackThis.exe
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – D:\WINDOWS\System32\msdxm.ocx
O4 – HKLM\..\Run: [WinFast Schedule] D:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 – HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" –atboottime
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 – HKLM\..\Run: [RAMCleaner start] D:\Program Files\RAMCleaner\RAMCleaner.exe
O4 – HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 – HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 – HKLM\..\Run: [MediaKey] D:\PROGRA~1\MediaKey\MMKeybd.EXE
O4 – HKLM\..\Run: [KPDrv4XP] D:\PROGRA~1\MediaKey\KPDrv4XP.EXE
O4 – HKLM\..\Run: [WinFast_2K] D:\WINDOWS\System32\WF2K.EXE
O4 – HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" –osboot
O4 – HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 – HKCU\..\Run: [Spamihilator] "D:\Program Files\Spamihilator\spamihilator.exe"
O4 – HKCU\..\Run: [Anty_16BitNT Automatyczna Ochrona] D:\WINDOWS\Anty_16BitNT.exe AO
O4 – HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 – HKCU\..\Run: [tray] D:\Program Files\Pogoda\pogoda.exe /tray
O4 – Startup: Kalendarz.exe.lnk = C:\Kalendarz XP\Kalendarz.exe
O4 – Global Startup: GetRight Monitor.lnk = D:\Program Files\GetRight\getright.exe
O9 – Extra button: eBay – Homepage – {EF79EAC5–3452–4E02–B8BD–BA4C89F1AC7A} – D:\WINDOWS\System32\shdocvw.dll
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 – HKLM\System\CCS\Services\Tcpip\..\{8AA12A18–FF37–49AC–A5B8–FDC8D0F22915}: NameServer = 85.255.114.20,85.255.112.60
O17 – HKLM\System\CCS\Services\Tcpip\..\{99689AD6–A180–4F62–82F6–CF213F34E12D}: NameServer = 85.255.114.20,85.255.112.60
O17 – HKLM\System\CCS\Services\Tcpip\..\{FB1283FB–BBE7–4126–BB68–BD94F729575D}: NameServer = 85.255.114.20,85.255.112.60
O23 – Service: AntiVir Update (AVWUpSrv) – H+BEDV Datentechnik GmbH, Germany – D:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 – Service: Symantec Password Validation (ccPwdSvc) – Symantec Corporation – D:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 – Service: iPod Service (iPodService) – Apple Computer, Inc. – D:\Program Files\iPod\bin\iPodService.exe
O23 – Service: MkS_Vir Monitor (MksVirMonSvc) – Unknown owner – D:\Program Files\MKS\Bin\mksmonsv.exe (file missing)
O23 – Service: Leadtek Driver Helper Service (NVSvc) – NVIDIA Corporation – D:\WINDOWS\System32\nvsvc32.exe
Dziękuję za zainteresowanie
Odpowiedzi: 0
Strona 0 / 0