| Author |
Message
|
qbart_gt
Poziom 10
Joined: 09 Apr 2003
Posts: 51
Location: Szczecin
|
 #1
 29 May 2005 18:58 Prosze o przejzenie logu z HijackThis |
|
|
|
Witam wszystkich.
Prosilbym o sprawdzenie mojego logu. Ostatnio usunolem troche smieci, ale chce miec pewnosc ze wszystko juz jest w pozadku. Z gory wielkie dzieki.
Logfile of HijackThis v1.99.1
Scan saved at 19:26:17, on 2005-05-29
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\System32\LXSUPMON.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Programy\Gadu-Gadu\gg.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\Programy\DC++\DCPlusPlus.exe
C:\Program Files\Opera\Opera.exe
F:\Programy\Winamp\winamp.exe
F:\Programy\hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\-E529~1.PFK\USTAWI~1\Temp\se.dll/spage.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\-E529~1.PFK\USTAWI~1\Temp\se.dll/spage.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - Default URLSearchHook is missing
O1 - Hosts: 127.0.0.3 www.greg-tut.com
O1 - Hosts: 127.0.0.3 nylonsexy.com
O1 - Hosts: 127.0.0.3 www.nylonsexy.com
O1 - Hosts: 127.0.0.3 vparivalka.com
O1 - Hosts: 127.0.0.3 www.vparivalka.comtoescrowpay.com
O1 - Hosts: 127.0.0.3 www.awmdabest.com
O1 - Hosts: 127.0.0.3 www.sexfiles.nu
O1 - Hosts: 127.0.0.3 awmdabest.com
O1 - Hosts: 127.0.0.3 sexfiles.nu
O1 - Hosts: 127.0.0.3 allforadult.com
O1 - Hosts: 127.0.0.3 www.allforadult.com
O1 - Hosts: 127.0.0.3 www.iframe.biz
O1 - Hosts: 127.0.0.3 iframe.biz
O1 - Hosts: 127.0.0.3 www.newiframe.biz
O1 - Hosts: 127.0.0.3 newiframe.biz
O1 - Hosts: 127.0.0.3 www.vesbiz.biz
O1 - Hosts: 127.0.0.3 vesbiz.biz
O1 - Hosts: 127.0.0.3 www.pizdato.biz
O1 - Hosts: 127.0.0.3 pizdato.biz
O1 - Hosts: 127.0.0.3 www.aaasexypics.com
O1 - Hosts: 127.0.0.3 aaasexypics.com
O1 - Hosts: 127.0.0.3 www.virgin-tgp.net
O1 - Hosts: 127.0.0.3 virgin-tgp.net
O1 - Hosts: 127.0.0.3 www.awmcash.biz
O1 - Hosts: 127.0.0.3 awmcash.biz
O1 - Hosts: 127.0.0.3 buldog-stats.com
O1 - Hosts: 127.0.0.3 www.buldog-stats.com
O1 - Hosts: 127.0.0.3 fregat.drocherway.com
O1 - Hosts: 127.0.0.3 slutmania.biz
O1 - Hosts: 127.0.0.3 www.slutmania.biz
O1 - Hosts: 127.0.0.3 toolbarpartner.com
O1 - Hosts: 127.0.0.3 www.toolbarpartner.com
O1 - Hosts: 127.0.0.3 www.megapornix.com
O1 - Hosts: 127.0.0.3 megapornix.com
O1 - Hosts: 127.0.0.3 www.sp2fucked.biz
O1 - Hosts: 127.0.0.3 sp2fucked.biz
O1 - Hosts: 127.0.0.3 greg-tut.com
O1 - Hosts: http://213.159.117.203/dkprogs/hosts.txt
O2 - BHO: (no name) - {1884fe38-ce34-42d6-a272-ba950f73dfbb} - C:\WINDOWS\System32\bfukmiax.tfn
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programy\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7968452E-6A86-4F2D-A6D0-4D871752A2D6} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - F:\Programy\FlashGet\jccatch.dll
O2 - BHO: Cls - {CF021F40-3E14-23A5-CBA2-7173706D8274} - C:\WINDOWS\System32\spm8274.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - F:\Programy\FlashGet\fgiebar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Gadu-Gadu] "F:\Programy\Gadu-Gadu\gg.exe" /tray
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Download All by FlashGet - F:\Programy\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - F:\Programy\FlashGet\jc_link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Vegas Villa Online Casino - {AFCA8905-936B-4aeb-A99C-6B35F596B7A3} - C:\Program Files\vegasvilla\casinogame.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: 7Sultans Online Casino - {D6058E3E-5DBF-413b-9106-C26ED8DE3566} - C:\Program Files\7sultans\casinogame.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Programy\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Programy\FlashGet\flashget.exe
O12 - Plugin for .djvu: C:\Program Files\Internet Explorer\PLUGINS\npdjvu.dll
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {10003000-1000-0000-1000-000000000000} - ms-its:mhtml:file://C:\foo.mht!http://dl.ad-ware.cc/HiGwRNGSD3plhbj3vIFtMiA.chm::/on-line.exe
O16 - DPF: {11111111-1111-1111-1111-111111111157} - ms-its:mhtml:file://c:\nosuch.mht!http://iframedollars.biz/dl/adv407/x.chm::/load.exe
O16 - DPF: {14A3221B-1678-1982-A355-7263B1281987} - ms-its:mhtml:file://c:\nosuch.mht!http://www.search-and-more.com/clk/123.chm::/file.exe
O16 - DPF: {18506D80-9B80-11D4-82C2-0080C8D7ED4A} (GameDesire Roulette) - http://67.15.101.3/g_bin/pl/roulette_2_0_0_15.cab
O16 - DPF: {1A781DED-C22D-4153-3213-A3211E29DF13} (GameDesire Card Games) - http://67.15.101.3/g_bin/pl/cards_2_0_0_63.cab
O16 - DPF: {2A781DED-C22D-4153-9812-CEA98A32981C} (GameDesire Makao) - http://67.15.101.3/g_bin/pl/cardsmakao_2_0_0_18.cab
O16 - DPF: {41ACD49D-1974-791A-0981-AA9872721044} (GINBOARDS Class) - http://67.15.101.3/g_bin/pl/boards_2_0_0_19.cab
O16 - DPF: {631FF594-EC25-4CFF-B869-402DF294E1D6} (Instalator oprogramowania Onet.pl) - http://slimak.onet.pl/_m/kamerzysta/OnetInstalator012s.ocx
O16 - DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} (GameDesire Poker Games) - http://67.15.101.3/g_bin/pl/poker_2_0_0_36.cab
O16 - DPF: {881290B9-F53C-4676-8DAF-3DBEFC297308} (GameDesire Makao) - http://67.15.101.3/g_bin/pl/makao_2_0_0_15.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {A6212120-01D4-11D5-9A39-0080C8D85044} (GameDesire Slots 70th) - http://67.15.101.3/g_bin/pl/slots70_2_0_0_23.cab
O16 - DPF: {A9ED6AA2-D9D4-4D71-9586-E293E2E3580B} (GameDesire Marbies&Diamonds) - http://67.15.101.3/g_bin/pl/marbles_2_0_0_21.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (WebHandler Class) - http://activex.microgaming.com/DLHelper/ve...n7/DLHelper.cab
O16 - DPF: {E0CE16CB-741C-4B24-8D04-A817856E07F4} - http://cabs.media-motor.net/cabs/alien.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C1} (GameDesire Pool 8) - http://67.15.101.3/g_bin/pl/billard8_2_0_0_22.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C2} (GameDesire Pool 9) - http://67.15.101.3/g_bin/pl/billard9_2_0_0_22.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C4} (GameDesire Pool Training) - http://67.15.101.3/g_bin/pl/billardt_2_0_0_21.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C5} (GameDesire Snooker) - http://67.15.101.3/g_bin/pl/snooker_2_0_0_22.cab
O18 - Filter: text/html - {6BCF4DC6-2403-4623-8149-24EBE5D2A3EC} - (no file)
O18 - Filter: text/plain - {6BCF4DC6-2403-4623-8149-24EBE5D2A3EC} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
|
|
| Back to top |
|
 |
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
#2
29 May 2005 19:42 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
CWS se.dll ściagasz i zabijasz tym:
http://www.trojaner-info.de/files/SpSeHjfix112.exe
i
http://www.malwarebytes.biz/AboutBuster.zip
Odinstaluj to C:\Program Files\vegasvilla\casinogame.exe
Potem w hijacku usuwasz wpisy
Ściągnij to i przeskanuj kompa [url]http://download.microsoft.com/download/8/1/5/815d2d60-49b5-44dc-ae35-fca2f2c6f0cc/MicrosoftAntiSpywareInstall.exe [/url]
Na koniec wklej log jeszcze raz do kontroli.
|
|
| Back to top |
|
|
Google
|
| #
29 May 2005 19:42 |
|
|
|
|
|
| Back to top |
|
|
<Kirk>
Poziom 13
Joined: 08 Feb 2005
Posts: 118
Location: Ilkowice
|
#3
30 May 2005 14:07 Prosze o przejzenie logu z HijackThis |
|
|
|
radze zadziej odwiedzac strony p. zainstaluj sobie SP2. childmaker chyba wszystko napisal co usunac. nie zaszkodzi jak sprawdzisz log na: http://www.hijackthis.de
Dodano po 4 [minuty]:
chociaz moglbys usunac jeszcze to:
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
i to tez:
O2 - BHO: (no name) - {7968452E-6A86-4F2D-A6D0-4D871752A2D6} - (no file)
|
|
| Back to top |
|
|
qbart_gt
Poziom 10
Joined: 09 Apr 2003
Posts: 51
Location: Szczecin
|
#4
30 May 2005 18:30 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
Zastosowalem sie do waszych wskazówek. Teraz moj log wyglada tak:
Logfile of HijackThis v1.99.1
Scan saved at 18:41:49, on 2005-05-30
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\System32\LXSUPMON.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Programy\Gadu-Gadu\gg.exe
F:\Programy\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Programy\SPYBOT~1\SDHelper.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - F:\Programy\FlashGet\jccatch.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - F:\Programy\FlashGet\fgiebar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Gadu-Gadu] "F:\Programy\Gadu-Gadu\gg.exe" /tray
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Download All by FlashGet - F:\Programy\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - F:\Programy\FlashGet\jc_link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Programy\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Programy\FlashGet\flashget.exe
O12 - Plugin for .djvu: C:\Program Files\Internet Explorer\PLUGINS\npdjvu.dll
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {18506D80-9B80-11D4-82C2-0080C8D7ED4A} (GameDesire Roulette) - http://67.15.101.3/g_bin/pl/roulette_2_0_0_15.cab
O16 - DPF: {1A781DED-C22D-4153-3213-A3211E29DF13} (GameDesire Card Games) - http://67.15.101.3/g_bin/pl/cards_2_0_0_63.cab
O16 - DPF: {2A781DED-C22D-4153-9812-CEA98A32981C} (GameDesire Makao) - http://67.15.101.3/g_bin/pl/cardsmakao_2_0_0_18.cab
O16 - DPF: {41ACD49D-1974-791A-0981-AA9872721044} (GINBOARDS Class) - http://67.15.101.3/g_bin/pl/boards_2_0_0_19.cab
O16 - DPF: {631FF594-EC25-4CFF-B869-402DF294E1D6} (Instalator oprogramowania Onet.pl) - http://slimak.onet.pl/_m/kamerzysta/OnetInstalator012s.ocx
O16 - DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} (GameDesire Poker Games) - http://67.15.101.3/g_bin/pl/poker_2_0_0_36.cab
O16 - DPF: {881290B9-F53C-4676-8DAF-3DBEFC297308} (GameDesire Makao) - http://67.15.101.3/g_bin/pl/makao_2_0_0_15.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {A6212120-01D4-11D5-9A39-0080C8D85044} (GameDesire Slots 70th) - http://67.15.101.3/g_bin/pl/slots70_2_0_0_23.cab
O16 - DPF: {A9ED6AA2-D9D4-4D71-9586-E293E2E3580B} (GameDesire Marbies&Diamonds) - http://67.15.101.3/g_bin/pl/marbles_2_0_0_21.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C1} (GameDesire Pool 8) - http://67.15.101.3/g_bin/pl/billard8_2_0_0_22.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C2} (GameDesire Pool 9) - http://67.15.101.3/g_bin/pl/billard9_2_0_0_22.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C4} (GameDesire Pool Training) - http://67.15.101.3/g_bin/pl/billardt_2_0_0_21.cab
O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C5} (GameDesire Snooker) - http://67.15.101.3/g_bin/pl/snooker_2_0_0_22.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
Wielkie dzieki za pomoc.
<Kirk> A ten SP2 nie spowalnie kompa. Bo ja gdzies czytalem ze spowalnia, i ze niektore programy warjuja po jego instalacji.
Aha byblym zapomnial, mam jeszcze jeden problem. Mianowicie kiedy chce wejsc w wlasciwosci ektanu, czy tez ogolnie w nazedzia do administracji sysytemu. wyskakuje mi okienko z napisem ze nie mam odpowiednich uprawnien, aby tam wejsc. Natomiast w trybie awaryjnym nie mam tego problemu. Dodam ze bedac w trybie awaryjnym wszedlem w zakladke konta uzytkownikow (co w normalnym trybie jest niemozliwe) i sprawdzilem czy mam nadane prawa administratora, okazalo sie za mam takowe, wiec teoretycznie wszystko jest wpozadku, ale jak widac praktycznie nie. Bede wdzieczny za pomoc w tej kwestii.
Pozdrawiam
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
|
| Back to top |
|
|
qbart_gt
Poziom 10
Joined: 09 Apr 2003
Posts: 51
Location: Szczecin
|
#6
30 May 2005 18:54 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
Dobra zainstalowalem sobie tego Microsoft antiSpyware. A co do tych wpisow O16 to brat kozysta. z tego co wiem to jest soft potrzebny do gier online na wp, ale to chyba nie jest groźne?? A nie wiesz jak mozna zaradzic temu drugiemu problemowi.
|
|
| Back to top |
|
|
Google
|
| #
30 May 2005 18:54 |
|
|
|
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
|
| Back to top |
|
|
<Kirk>
Poziom 13
Joined: 08 Feb 2005
Posts: 118
Location: Ilkowice
|
#8
31 May 2005 06:24 Prosze o przejzenie logu z HijackThis |
|
|
|
nie. zainstaluj SP2 to bedziesz mial troche bardziej bezpiecznego kompa. jeszcze Spybot - Search & Destroy zainstaluj sobie. na pewno ci sie przyda
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
#9
31 May 2005 08:39 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
| <Kirk> wrote: |
| ... jeszcze Spybot - Search & Destroy zainstaluj sobie. na pewno ci się przyda |
Czemu ma dublować programy??? Microsoft AntiSpyware spełnia te same funkcje.
|
|
| Back to top |
|
|
Kolobos
Poziom 26
Joined: 13 Jun 2003
Posts: 26223
Location: Warszawa
|
#10
31 May 2005 11:19 Prosze o przejzenie logu z HijackThis |
|
|
|
:arrow: childmaker
Ale SpyBot ma mozliwosc blokowania "szkodliwych produktow", a MS chyba nie?
Do tego nie dziala w tle wiec nic nie stoi na przeszkdzie, zeby go zainstalowac.
Tak samo blokowanie w SpywareBlaster.
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
#11
31 May 2005 13:52 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
| Kolobos wrote: |
:arrow: childmaker
Ale SpyBot ma mozliwosc blokowania "szkodliwych produktow", a MS chyba nie?
Do tego nie dziala w tle wiec nic nie stoi na przeszkdzie, zeby go zainstalowac.
Tak samo blokowanie w SpywareBlaster. |
Widzę, że chyba nie testowałeś, a tym bardziej nie miałeś tego programu przed oczyma (zauważyłbyś zakładkę). Popatrz na screeny i przeczytaj co potrafią trzej Security Agents w panelu Real-time Protections.
| Description: |
|
| Filesize: |
9.18 KB |
|
| Description: |
|
| Filesize: |
7.53 KB |
|
| Description: |
|
| Filesize: |
8.27 KB |
|
| Description: |
|
| Filesize: |
7.99 KB |
|
|
|
| Back to top |
|
|
Kolobos
Poziom 26
Joined: 13 Jun 2003
Posts: 26223
Location: Warszawa
|
#12
31 May 2005 14:07 Prosze o przejzenie logu z HijackThis |
|
|
|
:arrow: childmaker
Chodzilo mi o dodanie adresow stron ze spywarem/reklamami do witryn z ograniczeniami, taka sama funkcje posiada SpywareBlaster, dlatego tez to napisalem i nie chodzilo mi o żadna z opcji dostepnych w MS AntiSpyware, ktory nie potrafi blokowac "zlych" stron.
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
#13
31 May 2005 15:51 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
| Kolobos wrote: |
| .... MS AntiSpyware, ktory nie potrafi blokowac "zlych" stron. |
No tu się nie zgodzę. Potrafi (i to skutecznie) blokować te "złe" strony. Przykład startpagina.nl (można wybaczyć bo to jeszcze beta ;)). Mało jest info na temat tego programu, więc nie ma skąd czerpać wiedzy o jego pełnych możliwościach.
|
|
| Back to top |
|
|
longines
Poziom 19
Joined: 28 Sep 2004
Posts: 755
Location: Gdańsk
|
|
| Back to top |
|
|
Google
|
| #
31 May 2005 16:20 |
|
|
|
|
|
| Back to top |
|
|
childmaker
Poziom 22
Joined: 16 Oct 2004
Posts: 2273
|
#15
31 May 2005 16:31 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
:arrow: longines o Edit Pad pisałem już wcześniej TU , więc to nie tylko jego wina ;)
| Quote: |
BENO99 napisał:
Witam.
Każdy może skorzystac z tego :
http://www.hijackthis.de/en
Skoro tak mówisz to wklej tam to - C:\Documents and Settings\fx\Pulpit\EdtPadPL\EdtPadPL\EditPad.exe, zobacz co Ci "zasugerują" , a potem ścągnij sobie EdtPadPL.zip (Edit Pad PL - Mały edytor tekstu o nieco większych możliwościach od standardowego notatnika Windows), uruchom i odpal hijacka.
Co Ty na to??? |
|
|
| Back to top |
|
|
qbart_gt
Poziom 10
Joined: 09 Apr 2003
Posts: 51
Location: Szczecin
|
#16
31 May 2005 17:54 Re: Prosze o przejzenie logu z HijackThis |
|
|
|
Dzieki za pomoc wszystkim. Mysle ze EOT
|
|
| Back to top |
|
|
