CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo Sprawdźcie loga

Sprawdźcie loga

R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://iivjevfqpd.com/xGzeCFBGFt7b6ftNU0IreCiExD9nKGIrHgtZIT1vhG4u7e8nER3XRkYtfvjS5DfK.html
R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.toya.net.pl/
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.toya.net.pl
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:Program FilesAdobeAcrobat 6.0 CEReaderActiveXAcroIEHelper.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58–01DD–4d91–8333–CF10577473F7} – c:program filesgooglegoogletoolbar1.dll
O2 – BHO: (no name) – {F63F3F80–1F61–4E77–2F16–67B03C5343BD} – C:DOCUME~1UserDANEAP~1JugsBashEqClose.exe
O2 – BHO: (no name) – {FFFFFEF0–5B30–21D4–945D–000000000000} – C:PROGRA~1STARDO~1SDIEInt.dll
O3 – Toolbar: &Google – {2318C2B1–4965–11d4–9B18–009027A5CD4F} – c:program filesgooglegoogletoolbar1.dll
O4 – HKLM..Run: [SiSUSBRG] C:WINDOWSSiSUSBrg.exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 – HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavaj2re1.4.2_05injusched.exe
O4 – HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 – HKLM..Run: [MULTIMEDIA KEYBOARD] C:Program FilesNetropaMultimedia KeyboardMMKeybd.exe
O4 – HKLM..Run: [LiveChatut] C:WINDOWSLiveChatut.exe
O4 – HKLM..Run: [CloneCDTray] "C:Program FilesSlySoftCloneCDCloneCDTray.exe" /s
O4 – HKLM..Run: [MessengerPlus3] "C:Program FilesMessenger Plus! 3MsgPlus.exe"
O4 – HKLM..Run: [SCANINICIO] "C:Program FilesPanda SoftwarePanda Antivirus PlatinumInicio.exe"
O4 – HKLM..Run: [APVXDWIN] "C:Program FilesPanda SoftwarePanda Antivirus PlatinumAPVXDWIN.EXE" /s
O4 – HKLM..Run: [roamcompteamwave] C:Documents and SettingsAll UsersDane aplikacjiGlobal Soft Roam CompList Shim.exe
O4 – HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSsystem32spooldriversw32x863hpztsb08.exe
O4 – HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 –k
O4 – HKCU..Run: [Ball grid] C:DOCUME~1UserDANEAP~1INTRAK~1Love Poke Axis.exe
O4 – HKCU..Run: [Skype] "C:Program FilesSkypePhoneSkype.exe" /nosplash /minimized
O4 – HKCU..Run: [Gadu–Gadu] "C:Program FilesGadu–Gadugg.exe" /tray
O4 – Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOfficeOSA9.EXE
O4 – Global Startup: Launchpad.lnk = ?
O8 – Extra context menu item: &Google Search – res://C:Program FilesGoogleGoogleToolbar1.dll/cmsearch.html
O8 – Extra context menu item: Backward Links – res://C:Program FilesGoogleGoogleToolbar1.dll/cmbacklinks.html
O8 – Extra context menu item: Cached Snapshot of Page – res://C:Program FilesGoogleGoogleToolbar1.dll/cmcache.html
O8 – Extra context menu item: Download with Star Downloader – C:Program FilesStar Downloadersdie.htm
O8 – Extra context menu item: Similar Pages – res://C:Program FilesGoogleGoogleToolbar1.dll/cmsimilar.html
O8 – Extra context menu item: Translate into English – res://C:Program FilesGoogleGoogleToolbar1.dll/cmtrans.html
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSsystem32msjava.dll
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSsystem32msjava.dll
O9 – Extra button: Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – C:WINDOWSsystem32shdocvw.dll
O9 – Extra 'Tools' menuitem: Windows Messenger – {FB5F1910–F110–11d2–BB9E–00C04F795683} – C:WINDOWSsystem32shdocvw.dll
O16 – DPF: RaptisoftGameLoader – http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 – DPF: {00B71CFB–6864–4346–A978–C0A14556272C} (Checkers Class) – http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 – DPF: {2917297F–F02B–4B9D–81DF–494B6333150B} (Minesweeper Flags Class) – http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 – DPF: {8E0D4DE5–3180–4024–A327–4DFAD1796A8D} (MessengerStatsClient Class) – http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 – DPF: {917623D1–D8E5–11D2–BE8B–00104B06BDE3} (CamImage Class) – http://217.113.232.11/activex/AxisCamControl.cab
O17 – HKLMSystemCCSServicesTcpip..{D53080F2–E4CD–4735–AEBE–9CB46B76DE0D}: NameServer = 217.113.224.3,212.51.192.2
O23 – Service: Netropa NHK Server (nhksrv) – Unknown owner – C:Program FilesNetropaMultimedia Keyboard hksrv.exe
O23 – Service: NVIDIA Display Driver Service (NVSvc) – NVIDIA Corporation – C:WINDOWSsystem32 vsvc32.exe
O23 – Service: Panda Firewall Service (PAVFIRES) – Panda Software – C:Program FilesPanda SoftwarePanda Antivirus PlatinumFirewallPavFires.exe
O23 – Service: Panda anti–virus service (PAVSRV) – Panda Software – C:Program FilesPanda SoftwarePanda Antivirus Platinumpavsrv51.exe
O23 – Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) – Analog Devices, Inc. – C:Program FilesAnalog DevicesSoundMAXSMAgent.exe

Odpowiedzi: 2

Sorry źe tak późno, dzięki :wink:
mattrex1
Dodano
24.02.2005 15:01:42
Czego procesy wyciąłes ??

Usun:
R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://iivjevfqpd.com/xGzeCFBGFt7b6ftNU0IreCiExD9nKGIrHgtZIT1vhG4u7e8nER3XRkYtfvjS5DfK.html
O2 – BHO: (no name) – {F63F3F80–1F61–4E77–2F16–67B03C5343BD} – C:DOCUME~1UserDANEAP~1JugsBashEqClose.exe
O4 – HKLM..Run: [LiveChatut] C:WINDOWSLiveChatut.exeO4 – HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 –k
O4 – HKCU..Run: [Ball grid] C:DOCUME~1UserDANEAP~1INTRAK~1Love Poke Axis.exe


Znasz to:
O4 – HKLM..Run: [roamcompteamwave] C:Documents and SettingsAll UsersDane aplikacjiGlobal Soft Roam CompList Shim.exe
Bobi
Dodano
23.02.2005 17:59:51
mattrex1
Dodano:
23.02.2005 17:48:58
Komentarzy:
2
Strona 1 / 1