CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo Prosze o sprawdzenie loga

Prosze o sprawdzenie loga

Logfile of HijackThis v1.99.0
Scan saved at 21:46:20, on 2005–02–16
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSSystem32 vsvc32.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32HPHipm11.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSExplorer.EXE
C:PROGRA~1NEOSTR~1CnxMon.exe
C:Program FilesThomsonSpeedTouch USBDragdiag.exe
C:PROGRA~1NEOSTR~1TaskbarIcon.exe
C:PROGRA~1DAPDAP.EXE
C:WINDOWSSystem32WindowsUpdate.exe
C:WINDOWSSystem32spooldriversw32x863hpztsb05.exe
C:WINDOWSSystem32hphmon04.exe
C:Program FilesHewlett–PackardHP Share–to–Webhpgs2wnd.exe
C:WINDOWSSystem32ctfmon.exe
C:Program FilesHewlett–PackardHP Share–to–Webhpgs2wnf.exe
C:WINDOWSsystem32logonui.exe
C:PROGRA~1NEOSTR~1NeostradaTP.exe
C:PROGRA~1NEOSTR~1ComComp.exe
C:PROGRA~1NEOSTR~1Watch.exe
C:Program FilesTlen.pl len.exe
C:WINDOWSSystem32devldr32.exe
C:Program FilesInternet Exploreriexplore.exe
C:Documents and SettingsszkartPulpithijackthisHijackThis.exe

R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TP
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
R3 – URLSearchHook: Search Class – {08C06D61–F1F3–4799–86F8–BE1A89362C85} – C:PROGRA~1NEOSTR~1SEARCH~1.DLL
O1 – Hosts file is located at: C:WINDOWS sdbhosts
O2 – BHO: DAPHelper Class – {0000CC75–ACF3–4cac–A0A9–DD3868E06852} – C:Program FilesDAPDAPBHO.dll
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:WINDOWSSystem32msdxm.ocx
O3 – Toolbar: DAP Bar – {62999427–33FC–4baf–9C9C–BCE6BD127F08} – C:Program FilesDAPDAPIEBar.dll
O4 – HKLM..Run: [WooCnxMon] C:PROGRA~1NEOSTR~1CnxMon.exe
O4 – HKLM..Run: [SpeedTouch USB Diagnostics] "C:Program FilesThomsonSpeedTouch USBDragdiag.exe" /icon
O4 – HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exe
O4 – HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [DownloadAccelerator] C:PROGRA~1DAPDAP.EXE /STARTUP
O4 – HKLM..Run: [Microsoft] WindowsUpdate.exe
O4 – HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb05.exe
O4 – HKLM..Run: [HPHmon04] C:WINDOWSSystem32hphmon04.exe
O4 – HKLM..Run: [HPHUPD04] "C:Program FilesHP Photosmart 11hphinstallUniPatchhphupd04.exe"
O4 – HKLM..Run: [Share–to–Web Namespace Daemon] C:Program FilesHewlett–PackardHP Share–to–Webhpgs2wnd.exe
O4 – HKLM..RunServices: [Microsoft] WindowsUpdate.exe
O4 – HKCU..Run: [CTFMON.EXE] C:WINDOWSSystem32ctfmon.exe
O4 – Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:Program FilesJavaj2re1.4.1_01in pjpi141_01.dll
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:Program FilesJavaj2re1.4.1_01in pjpi141_01.dll
O9 – Extra button: Run DAP – {669695BC–A811–4A9D–8CDF–BA8C795F261C} – C:PROGRA~1DAPDAP.EXE
O9 – Extra button: Badanie – {92780B25–18CC–41C8–B9BE–3C9C571A8263} – C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 – Extra button: Related – {c95fe080–8f5d–11d2–a20b–00aa003c157a} – C:WINDOWSweb elated.htm
O9 – Extra 'Tools' menuitem: Show &Related Links – {c95fe080–8f5d–11d2–a20b–00aa003c157a} – C:WINDOWSweb elated.htm
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1108247607332
O17 – HKLMSystemCCSServicesTcpip..{5B5F8800–C03A–43CD–956C–7EA5A0AF7239}: NameServer = 194.204.152.34 217.98.63.164
O18 – Filter: text/html – {4F7681E5–6CAF–478D–9CB8–4CA593BEE7FB} – C:WINDOWSSystem32xplugin.dll
O21 – SSODL: SystemCheck2 – {54645654–2225–4455–44A1–9F4543D34545} – C:WINDOWSSystem32vbsys2.dll
O23 – Service: NVIDIA Driver Helper Service – NVIDIA Corporation – C:WINDOWSSystem32 vsvc32.exe
O23 – Service: Pml Driver HPH11 – HP – C:WINDOWSSystem32HPHipm11.exe
O23 – Service: Windows 32–bit PnP Driver – Unknown – C:WINDOWSSystem32winpnp32.exe

Odpowiedzi: 1

Forum jest podzielone na działy od tego trzeba zaczac

Wylacz przywracanie

Zakoncz proces:
WindowsUpdate.exe

Pozbadz sie plikow i wpisow:
O1 – Hosts file is located at: C:WINDOWS sdbhosts
O4 – HKLM..Run: [Microsoft] WindowsUpdate.exe
O4 – HKLM..RunServices: [Microsoft] WindowsUpdate.exe
O18 – Filter: text/html – {4F7681E5–6CAF–478D–9CB8–4CA593BEE7FB} – C:WINDOWSSystem32xplugin.dll
O21 – SSODL: SystemCheck2 – {54645654–2225–4455–44A1–9F4543D34545} – C:WINDOWSSystem32vbsys2.dll
O23 – Service: Windows 32–bit PnP Driver – Unknown – C:WINDOWSSystem32winpnp32.exe
Bobi
Dodano
16.02.2005 22:53:06
sz
Dodano:
16.02.2005 22:47:32
Komentarzy:
1
Strona 1 / 1