Prosze o sprawdzenie loga :)

Logfile of HijackThis v1.99.0
Scan saved at 17:49:55, on 2005–02–12
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSSYSTEM32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSSystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSYSTEM32Ati2evxx.exe
C:WINDOWSExplorer.EXE
D:ATI Tray Toolsatitray.exe
D:Konnektkonnekt.exe
D:Stickiesstickies.exe
D:DiskeeperDkService.exe
C:WINDOWSSystem32svchost.exe
D:SteamSteam.exe
D:mIRCmirc.exe
D:Ventrilo 2.1.2Ventrilo 2.1.3.exe
D:Firefoxfirefox.exe
D:Winampwinamp.exe
D:Firefox DlsHijackThis.exe

R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
F2 – REG:system.ini: UserInit=C:WINDOWS egedit /s C:pav.reg,C:WINDOWSSystem32pavdr.exe,C:WINDOWSSystem32userinit.exe,
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – D:Acrobat 6.0 CEReaderActiveXAcroIEHelper.dll
O2 – BHO: C:WINDOWSlbbho.dll – {6C0FAE7F–64BE–47C8–8A5A–BCCA6ACCAA3A} – (no file)
O2 – BHO: IeCatch2 Class – {A5366673–E8CA–11D3–9CD9–0090271D075B} – D:FLASHGETjccatch.dll
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:WINDOWSSystem32msdxm.ocx
O3 – Toolbar: FlashGet Bar – {E0E899AB–F487–11D5–8D29–0050BA6940E3} – D:FLASHGETfgiebar.dll
O4 – HKLM..Run: [DiskeeperSystray] "D:DiskeeperDkIcon.exe"
O4 – HKCU..Run: [AtiTrayTools] "D:ATI Tray Toolsatitray.exe"
O4 – HKCU..Run: [Konnekt] "D:Konnektkonnekt.exe" /autostart –profile=?
O4 – Startup: Stickies.lnk = D:Stickiesstickies.exe
O8 – Extra context menu item: Download All by FlashGet – D:FlashGetjc_all.htm
O8 – Extra context menu item: Download using FlashGet – D:FlashGetjc_link.htm
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:Program FilesJavaj2re1.4.2_06in pjpi142_06.dll
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:Program FilesJavaj2re1.4.2_06in pjpi142_06.dll
O9 – Extra button: FlashGet – {D6E814A0–E0C5–11d4–8D29–0050BA6940E3} – D:FLASHGETflashget.exe
O9 – Extra 'Tools' menuitem: &FlashGet – {D6E814A0–E0C5–11d4–8D29–0050BA6940E3} – D:FLASHGETflashget.exe
O16 – DPF: {644E432F–49D3–41A1–8DD5–E099162EEEC5} (Symantec RuFSI Utility Class) – http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O16 – DPF: {EF791A6B–FC12–4C68–99EF–FB9E207A39E6} (McFreeScan Class) – http://download.mcafee.com/molbin/iss–loc/vso/en–us/tools/mcfscan/2,0,0,4427/mcfscan.cab
O17 – HKLMSystemCCSServicesTcpip..{ECA27356–2840–4D34–8010–E3C81A0EFACE}: NameServer = 194.204.152.34 217.98.63.164
O23 – Service: ArcaBit NetMonitor – Unknown – D:MKSBinNetMonSV.exe (file missing)
O23 – Service: Ati HotKey Poller – ATI Technologies Inc. – C:WINDOWSSystem32Ati2evxx.exe
O23 – Service: ATI Smart – Unknown – C:WINDOWSsystem32ati2sgag.exe
O23 – Service: Diskeeper – Executive Software International, Inc. – D:DiskeeperDkService.exe

Z gory serdecznie dziekuje.

mle3e:
Wielkie dzieki, podziwam was, ze chce wam sie przegladac te wszystkie logi. :)

Ja tez siebie samego podziwiam bo jak widze u niektorych w logu robale, trojany z dołu do góry to mi sie odechciewa. Wiecej w logu do wyciecia niz do zostawienia. Przykre, ale przeciez nie bede sie uzalał :P
Pozdrowienia rowniez dla Ciebie

Bobi

Dodano: 12.02.2005 19:03:24

Wielkie dzieki, podziwam was, ze chce wam sie przegladac te wszystkie logi. :)

mle3e

Dodano: 12.02.2005 18:57:46

FIX:

F2 – REG:system.ini: UserInit=C:WINDOWS egedit /s C:pav.reg,C:WINDOWSSystem32pavdr.exe,C:WINDOWSSystem32userinit.exe,
O2 – BHO: C:WINDOWSlbbho.dll – {6C0FAE7F–64BE–47C8–8A5A–BCCA6ACCAA3A} – (no file)
O23 – Service: ArcaBit NetMonitor – Unknown – D:MKSBinNetMonSV.exe (file missing)

Bobi

Dodano: 12.02.2005 18:55:48

Prosze o sprawdzenie loga :)

Odpowiedzi: 3