CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo proszę o sprawdzenie mojego loga

proszę o sprawdzenie mojego loga

Logfile of HijackThis v1.99.1
Scan saved at 13:37:16, on 2005–08–05
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\NORTON~1\NORTON~1\navapw32.exe
C:\Program Files\Samsung\Samsung Multimedia Keyboard\HCM.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\HiJack This\HijackThis.exe

R0 – HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 – BHO: (no name) – {206E52E0–D52E–11D4–AD54–0000E86C26F6} – C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 – BHO: CNavExtBho Class – {BDF3E430–B101–42AD–A544–FADC6B084872} – C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 – Toolbar: Norton AntiVirus – {42CDD1BF–3FFB–4238–8AD1–7859DF00B1D6} – C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O4 – HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\NORTON~1\navapw32.exe
O4 – HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 – HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 – HKLM\..\Run: [Samsung Multimedia Keyboard] C:\Program Files\Samsung\Samsung Multimedia Keyboard\HCM.exe
O4 – HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 – HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 – HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 – HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 – HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 – Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 – Global Startup: APC UPS Status.lnk = ?
O8 – Extra context menu item: Download &All by FD – file://C:\Program Files\FreshDevices\FreshDownload\fdiectx2.htm
O8 – Extra context menu item: Download with &FD – file://C:\Program Files\FreshDevices\FreshDownload\fdiectx.htm
O8 – Extra context menu item: E&ksport do programu Microsoft Excel – res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O16 – DPF: Notowania ONET – http://gielda.onet.pl/notowania.cab
O16 – DPF: {43A848AB–928D–43A0–8B8A–81D953E9F3EE} (XMLFileSaver Class) – https://www.brebrokers.pl/res/EPMXMLFILESAVERCOM.cab
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1109015385921
O16 – DPF: {AFD8ED36–EA54–11D6–AC3F–00105ADCF632} (Ntw4 Control) – https://www.brebrokers.pl/res/ntw4.cab
O17 – HKLM\System\CCS\Services\Tcpip\..\{3165C758–9F69–4941–AF5B–805B54D519F7}: NameServer = 62.233.190.1,62.233.189.10
O23 – Service: APC UPS Service – American Power Conversion Corporation – C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 – Service: Ati HotKey Poller – Unknown owner – C:\WINDOWS\system32\Ati2evxx.exe
O23 – Service: ATI Smart – Unknown owner – C:\WINDOWS\system32\ati2sgag.exe
O23 – Service: Norton AntiVirus Auto Protect Service (navapsvc) – Symantec Corporation – C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 – Service: ScriptBlocking Service (SBService) – Symantec Corporation – C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 – Service: Symantec Network Drivers Service (SNDSrvc) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 – Service: SymWMI Service (SymWSC) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

Odpowiedzi: 2

eeee no fajne narzędzie :D dzięki :!: :!: :!:
misfit
Dodano
05.08.2005 17:20:07
Wejdź http://www.hijackthis.de/en i tam to wklej !!
zoren86
Dodano
05.08.2005 16:11:17
misfit
Dodano:
05.08.2005 15:38:37
Komentarzy:
2
Strona 1 / 1