Wykryto wyłączony javascript

Aktualnie masz wyłączony javascript. Kilka funkcji może nie działać. Włącz ponownie javascript, aby korzystać z pełnej funkcjonalności.

Wr0cLaWiAnIn

Rejestracja: 25 lis 2008
OFFLINE Ostatnio: 27 11 2008 23:52

Moja zawartość

Moje posty

W temacie: Problem z systemem

27 11 2008 - 23:10

Log z ComboFix jeszcze mi takiego wirusa znalazł "Koń trojański Trojan - Agent.blc"
zaraz dam z HijackThis.

ComboFix 08-11-27.03 - Cristiano 2008-11-27 21:49:32.1 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.2.1250.1.1045.18.648 [GMT 1:00]
Uruchomiony z: c:\documents and settings\Cristiano\Pulpit\ComboFix.exe
 * Utworzono nowy punkt przywracania
.

(((((((((((((((((((((((((   Pliki utworzone od 2008-10-27 do 2008-11-27  )))))))))))))))))))))))))))))))
.

2008-11-27 21:52 . 2008-11-27 21:52	<DIR>	d--------	c:\windows\system32\xircom
2008-11-27 21:52 . 2008-11-27 21:52	<DIR>	d--hs----	c:\windows\system32\dllcache
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	d--h-----	c:\documents and settings\Administrator\Ustawienia lokalne
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Administrator\Ulubione
2008-11-27 18:34 . 2008-11-19 17:07	<DIR>	d--h-----	c:\documents and settings\Administrator\Szablony
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Administrator\Pulpit
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Administrator\Moje dokumenty
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	dr-------	c:\documents and settings\Administrator\Menu Start
2008-11-27 18:34 . 2008-11-19 18:00	<DIR>	dr-h-----	c:\documents and settings\Administrator\Dane aplikacji
2008-11-27 18:34 . 2008-11-27 18:34	<DIR>	d--------	c:\documents and settings\Administrator
2008-11-27 18:07 . 2008-11-27 18:07	<DIR>	d--------	c:\program files\Kaspersky Lab
2008-11-27 18:07 . 2008-11-27 21:40	<DIR>	d--------	c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2008-11-27 18:07 . 2008-11-27 21:52	1,349,408	--ahs----	c:\windows\system32\drivers\fidbox.dat
2008-11-27 18:07 . 2008-11-27 19:23	96,976	--a------	c:\windows\system32\drivers\klin.dat
2008-11-27 18:07 . 2008-11-27 19:23	87,855	--a------	c:\windows\system32\drivers\klick.dat
2008-11-27 18:07 . 2008-11-27 21:51	31,628	--ahs----	c:\windows\system32\drivers\fidbox.idx
2008-11-27 18:07 . 2008-11-27 21:53	10,528	--ahs----	c:\windows\system32\drivers\fidbox2.dat
2008-11-27 18:07 . 2008-11-27 21:51	1,988	--ahs----	c:\windows\system32\drivers\fidbox2.idx
2008-11-27 18:05 . 2008-11-27 18:05	<DIR>	d--------	c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-11-25 22:07 . 2008-11-25 22:07	<DIR>	d--------	c:\program files\Thomson
2008-11-25 22:06 . 2008-11-27 21:49	<DIR>	d--------	c:\program files\Neostrada TP
2008-11-22 18:39 . 2008-11-22 18:39	<DIR>	d--------	c:\program files\SopCast
2008-11-22 18:39 . 2008-11-22 18:39	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\SopCast
2008-11-22 15:26 . 2008-11-22 15:34	<DIR>	d--------	c:\program files\SkanerOnline
2008-11-20 18:00 . 2008-11-20 18:00	717,296	--a------	c:\windows\system32\drivers\sptd.sys
2008-11-20 17:59 . 2008-11-20 17:59	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\DAEMON Tools
2008-11-20 15:48 . 2008-11-20 15:48	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\Media Player Classic
2008-11-20 13:26 . 2008-11-27 16:25	69	--a------	c:\windows\NeroDigital.ini
2008-11-19 21:45 . 2008-11-19 21:46	<DIR>	d--------	c:\documents and settings\Cristiano\.jpi_cache
2008-11-19 21:45 . 2008-11-19 21:45	<DIR>	d--------	c:\documents and settings\Cristiano\.java
2008-11-19 21:01 . 2008-11-19 21:01	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\AdobeUM
2008-11-19 20:26 . 2008-11-19 20:26	<DIR>	d--------	c:\windows\system32\LogFiles
2008-11-19 19:01 . 2008-11-19 19:01	<DIR>	d--------	c:\program files\Common Files\snp2std
2008-11-19 19:01 . 2007-09-05 13:48	12,212,864	--a------	c:\windows\system32\drivers\snp2sxp.sys
2008-11-19 19:01 . 2005-01-26 15:45	349,472	--a------	c:\windows\WindowsXP-KB822603-x86.exe
2008-11-19 19:01 . 2007-09-28 16:32	344,064	--a------	c:\windows\vsnp2std.exe
2008-11-19 19:01 . 2007-05-10 17:05	270,336	--a------	c:\windows\tsnp2std.exe
2008-11-19 19:01 . 2007-02-05 15:25	151,552	--a------	c:\windows\system32\rsnp2std.dll
2008-11-19 19:01 . 2007-08-20 11:10	94,208	--a------	c:\windows\amcap.exe
2008-11-19 19:01 . 2006-11-16 15:57	77,824	--a------	c:\windows\system32\csnp2std.dll
2008-11-19 19:01 . 2007-05-31 10:28	73,728	--a------	c:\windows\system32\vsnp2std.dll
2008-11-19 19:01 . 2008-02-12 10:41	25,472	--a------	c:\windows\system32\drivers\sncamd.sys
2008-11-19 19:01 . 2007-07-11 16:09	20,480	--a------	c:\windows\FixCamera.exe
2008-11-19 19:01 . 2004-12-09 17:23	15,497	--a------	c:\windows\snp2std.ini
2008-11-19 19:01 . 2004-12-09 17:23	13,022	--a------	c:\windows\snp2std.src
2008-11-19 18:33 . 2008-11-20 15:02	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\skypePM
2008-11-19 18:33 . 2008-11-19 18:33	56	--ah-----	c:\windows\system32\ezsidmv.dat
2008-11-19 18:32 . 2008-11-19 18:32	<DIR>	d--------	c:\program files\Skype
2008-11-19 18:32 . 2008-11-19 18:32	<DIR>	d--------	c:\program files\Common Files\Skype
2008-11-19 18:32 . 2008-11-20 18:00	<DIR>	d--------	c:\documents and settings\Cristiano\Dane aplikacji\Skype
2008-11-19 18:32 . 2008-11-19 18:32	<DIR>	d--------	c:\documents and settings\All Users\Dane aplikacji\Skype
2008-11-19 18:19 . 2008-11-19 18:19	0	--a------	c:\windows\nsreg.dat
2008-11-19 18:13 . 2008-11-19 18:13	<DIR>	d--------	c:\documents and settings\Cristiano\Gadu-Gadu
2008-11-19 18:03 . 2004-08-04 01:35	58,624	--a------	c:\windows\system32\drivers\redbook.sys
2008-11-19 18:03 . 2001-08-17 22:59	3,072	--a------	c:\windows\system32\drivers\audstub.sys
2008-11-19 18:02 . 2004-08-04 01:44	77,312	--a------	c:\windows\system32\usbui.dll
2008-11-19 18:02 . 2004-08-04 00:07	44,672	--a------	c:\windows\system32\drivers\UAGP35.SYS
2008-11-19 18:02 . 2001-08-17 21:13	27,165	--a------	c:\windows\system32\drivers\fetnd5.sys
2008-11-19 18:01 . 2004-08-04 00:07	14,080	--a------	c:\windows\system32\drivers\CmBatt.sys
2008-11-19 18:01 . 2001-08-17 22:57	14,080	--a------	c:\windows\system32\drivers\battc.sys
2008-11-19 18:01 . 2001-08-17 22:58	9,344	--a------	c:\windows\system32\drivers\compbatt.sys
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	dr-h-----	c:\documents and settings\Default User\Ustawienia lokalne
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Default User\Ulubione
2008-11-19 18:00 . 2008-11-19 17:07	<DIR>	d--h-----	c:\documents and settings\Default User\Szablony
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Default User\Pulpit
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\Default User\Moje dokumenty
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	dr-------	c:\documents and settings\Default User\Menu Start
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	d--------	c:\documents and settings\All Users\Ulubione
2008-11-19 18:00 . 2008-11-19 18:00	<DIR>	d--h-----	c:\documents and settings\All Users\Szablony
2008-11-19 18:00 . 2008-11-27 18:39	<DIR>	d--------	c:\documents and settings\All Users\Pulpit
2008-11-19 18:00 . 2008-11-19 17:33	<DIR>	dr-------	c:\documents and settings\All Users\Menu Start
2008-11-19 18:00 . 2008-11-27 19:58	<DIR>	dr-------	c:\documents and settings\All Users\Dokumenty

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-27 18:23	112,144	----a-w	c:\windows\system32\drivers\kl1.sys
2008-11-25 21:07	---------	d--h--w	c:\program files\InstallShield Installation Information
2008-11-20 05:54	---------	d-----w	c:\program files\BitComet
2008-11-19 17:42	---------	d-----w	c:\documents and settings\Cristiano\Dane aplikacji\<a href="http://www.download.net.pl/1/Winamp/">Winamp</a>
2008-11-19 16:52	---------	d-----w	c:\program files\Java
2008-11-19 16:49	---------	d-----w	c:\program files\Common Files\Nero
2008-11-19 16:49	---------	d-----w	c:\program files\Common Files\LightScribe
2008-11-19 16:48	---------	d-----w	c:\program files\Ahead
2008-11-19 16:47	---------	d-----w	c:\program files\Common Files\Ahead
2008-11-19 16:46	---------	d-----w	c:\program files\<a href="http://www.download.net.pl/1/Winamp/">Winamp</a>
2008-11-19 16:44	499,712	----a-w	c:\windows\system32\msvcp71.dll
2008-11-19 16:44	348,160	----a-w	c:\windows\system32\msvcr71.dll
2008-11-19 16:44	---------	d-----w	c:\program files\Real
2008-11-19 16:44	---------	d-----w	c:\program files\Common Files\xing shared
2008-11-19 16:44	---------	d-----w	c:\program files\Common Files\Real
2008-11-19 16:43	---------	d-----w	c:\program files\MarBit
2008-11-19 16:43	---------	d-----w	c:\program files\K-Lite Codec Pack
2008-11-19 16:43	---------	d-----w	c:\program files\Gadu-Gadu
2008-11-19 16:43	---------	d-----w	c:\documents and settings\Cristiano\Dane aplikacji\Gadu-Gadu
2008-11-19 16:43	---------	d-----w	c:\documents and settings\All Users\Dane aplikacji\Apple Computer
2008-11-19 16:42	155,995	----a-w	c:\windows\java\Packages\4B1J5NZZ.ZIP
2008-11-19 16:40	---------	d-----w	c:\program files\Alcohol Soft
2008-11-19 16:39	---------	d-----w	c:\program files\Common Files\Adobe
2008-11-19 16:31	---------	d-----w	c:\program files\Microsoft FrontPage
2008-11-19 16:30	---------	d-----w	c:\documents and settings\Cristiano\Dane aplikacji\Microsoft Web Folders
2008-11-19 16:28	---------	d-----w	c:\program files\S3
2008-11-19 16:27	---------	d-----w	c:\program files\Synaptics
2008-11-19 16:27	---------	d-----w	c:\program files\Common Files\InstallShield
2008-11-19 16:26	---------	d-----w	c:\program files\CONEXANT
2008-11-19 16:25	---------	d-----w	c:\program files\RALINK
2008-11-19 16:25	---------	d-----w	c:\documents and settings\Cristiano\Dane aplikacji\InstallShield
2008-11-19 16:22	---------	d-----w	c:\program files\VIA
2008-11-19 16:20	315,392	----a-w	c:\windows\HideWin.exe
2008-11-19 16:20	---------	d-----w	c:\program files\Realtek
2008-11-19 16:09	---------	d-----w	c:\program files\Usługi online
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2007-04-17 2113536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WooCnxMon"="c:\progra~1\NEOSTR~1\CnxMon.exe" [2003-10-16 24576]
"WOOWATCH"="c:\progra~1\NEOSTR~1\Watch.exe" [2003-10-16 20480]
"WOOTASKBARICON"="c:\progra~1\NEOSTR~1\TaskbarIcon.exe" [2003-10-16 53248]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
c:\windows\system32\dumprep 0 -u [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
--a------ 2008-02-08 18:36 227856 c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 2004-08-04 01:44 15360 c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
--a------ 2007-07-11 16:09 20480 c:\windows\FixCamera.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
--a------ 2007-04-17 12:12 2113536 c:\program files\Gadu-Gadu\gg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 c:\windows\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2std]
--a------ 2007-09-28 16:32 344064 c:\windows\vsnp2std.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics]
--a------ 2004-01-26 11:38 866816 c:\program files\Thomson\SpeedTouch USB\dragdiag.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
--a------ 2007-05-24 18:03 864256 c:\program files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-11-19 17:44 185896 c:\program files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp2std]
--a------ 2007-05-10 17:05 270336 c:\windows\tsnp2std.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\<a href="http://www.download.net.pl/1/Winamp/">Winamp</a>Agent]
--a------ 2007-10-10 06:28 36352 c:\program files\<a href="http://www.download.net.pl/1/Winamp/">Winamp</a>\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WooCnxMon]
--a------ 2003-10-16 18:07 24576 c:\progra~1\NEOSTR~1\CnxMon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON]
--------- 2003-10-16 18:07 53248 c:\progra~1\NEOSTR~1\TaskBarIcon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH]
--------- 2003-10-16 18:07 20480 c:\progra~1\NEOSTR~1\Watch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
--a------ 2005-05-03 18:43 69632 c:\windows\Alcmtr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
--a------ 2007-08-10 15:21 16384000 c:\windows\RTHDCPL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S3Trayp]
--a------ 2007-06-11 10:15 176128 c:\windows\system32\S3Trayp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
--a------ 2006-09-21 15:36 53248 c:\windows\system32\VTTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Gadu-Gadu\\gg.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys [2007-12-13 24592]
R3 S3GIGP;S3GIGP;c:\windows\system32\DRIVERS\S3gIGPm.sys [2008-11-19 714240]
.
- - - - USUNIĘTO PUSTE WPISY - - - -

MSConfigStartUp-AutoConnect - c:\program files\AutoConnect\AutoConnect.exe


.
------- Skan uzupełniający -------
.
FireFox -: Profile - c:\documents and settings\Cristiano\Dane aplikacji\Mozilla\Firefox\Profiles\cws9da5h.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.pl/
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-27 21:52:58
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

skanowanie ukrytych procesów ... 

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ... 

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'winlogon.exe'(1088)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\windows\system32\klogon.dll

- - - - - - - > 'lsass.exe'(1144)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll

- - - - - - - > 'explorer.exe'(2412)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Czas ukończenia: 2008-11-27 21:54:35 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2008-11-27 20:54:31

Przed: 6 784 180 224 bajtów wolnych
Po: 6,806,265,856 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

234

i log z HijackThis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:14:19, on 2008-11-27
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\NEOSTR~1\CnxMon.exe
C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Neostrada TP\NeostradaTP.exe
C:\Program Files\Neostrada TP\ComComp.exe
C:\Program Files\Neostrada TP\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\NEOSTR~1\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Statystyki dla ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B7FCF2B4-7C27-42F8-8E4D-95E3CC924073}: NameServer = 83.238.255.76 213.241.79.37
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

--
End of file - 3718 bytes

Witam. Obecnie już nie znika pasek, dumprep 0 -u już się nie pokazuję ale nie mogę się połączyć z netem, wyskakuje błąd że nie ma sygnału od strony dostawcy, ale na drugim kompie łączy się bez problemu i za którymś razie wyskakuje błąd że modem jest nie podłączony choć wszystko jest poprawie zrobione. Zainstalowałem antiwira "Kaspersky" i na chwile obecną znalazł mi dwa rodzaje wirusów, pierwszy to "Koń trojański trojan - Autoit.gc" a drugi to "Worm - Fujack.al" łącznie to jest ich 62 ale to jeszcze nie koniec skanowania. Jak skończę to dam loga i zdam relacje.
Pozdrawiam

Wr0cLaWiAnIn

Statystyki

O mnie

Moje posty

W temacie: Problem z systemem

W temacie: Problem z systemem

Zaloguj się