log

dziuunia 08.10.05, 16:52

Logfile of HijackThis v1.99.1
Scan saved at 16:51:05, on 2005-10-08
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\NEOSTR~1\CnxMon.exe
C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
C:\Program Files\SurfAccuracy\SAcc.exe
C:\Program Files\BullsEye Network\bin\bargains.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\system32\winlogin.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Neostrada TP\NeostradaTP.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Neostrada TP\ComComp.exe
C:\Program Files\Neostrada TP\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Rodzice\Moje dokumenty\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
szukaj.wp.pl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
www.p2p-load.de/share/?l=e
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
www.neostrada.pl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Neostrada
TP
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no
file)
O1 - Hosts: 195.158.172.121 p2p-load.de
O1 - Hosts: 195.158.172.121 www.p2p-load.de
O1 - Hosts: 195.158.172.121 www.usenext.de
O1 - Hosts: 195.158.172.121 usenext.de
O1 - Hosts: 195.158.172.121 www.firstload.de
O1 - Hosts: 195.158.172.121 firstload.de
O1 - Hosts: 195.158.172.121 www.eselfilme.de
O1 - Hosts: 195.158.172.121 eselfilme.de
O1 - Hosts: 195.158.172.121 www.eselfilme.com
O1 - Hosts: 195.158.172.121 eselfilme.com
O1 - Hosts: 195.158.172.121 www.goldesel.6x.to
O1 - Hosts: 195.158.172.121 goldesel.6x.to
O1 - Hosts: 195.158.172.121 www.goldesel.to
O1 - Hosts: 195.158.172.121 goldesel.to
O1 - Hosts: 195.158.172.121 www.goldesel.elite.to
O1 - Hosts: 195.158.172.121 goldesel.elite.to
O1 - Hosts: 195.158.172.121 www.superesel.com
O1 - Hosts: 195.158.172.121 superesel.com
O1 - Hosts: 195.158.172.121 www.torrent.to
O1 - Hosts: 195.158.172.121 torrent.to
O1 - Hosts: 195.158.172.121 www.brainstorm24.com
O1 - Hosts: 195.158.172.121 brainstorm24.com
O1 - Hosts: 195.158.172.121 emule-project.net
O1 - Hosts: 195.158.172.121 www.emule-project.net
O1 - Hosts: 195.158.172.121 emule.de
O1 - Hosts: 195.158.172.121 www.emule.de
O1 - Hosts: 195.158.172.121 edonkey2000.com
O1 - Hosts: 195.158.172.121 www.edonkey2000.com
O1 - Hosts: 195.158.172.121 kazaa.com
O1 - Hosts: 195.158.172.121 www.kazaa.com
O1 - Hosts: 195.158.172.121 winmx.com
O1 - Hosts: 195.158.172.121 www.winmx.com
O1 - Hosts: 195.158.172.121 kazaa.de
O1 - Hosts: 195.158.172.121 www.kazaa.de
O1 - Hosts: 195.158.172.121 winmx.de
O1 - Hosts: 195.158.172.121 www.winmx.de
O1 - Hosts: 195.158.172.121 sex.com
O1 - Hosts: 195.158.172.121 www.sex.com
O1 - Hosts: 195.158.172.121 sex.de
O1 - Hosts: 195.158.172.121 www.sex.de
O1 - Hosts: 195.158.172.121 emule.com
O1 - Hosts: 195.158.172.121 www.emule.com
O1 - Hosts: 195.158.172.121 wbc-board.to
O1 - Hosts: 195.158.172.121 www.wbc-board.to
O1 - Hosts: 195.158.172.121 musicload.de
O1 - Hosts: 195.158.172.121 www.musicload.de
O1 - Hosts: 195.158.172.121 musik.de
O1 - Hosts: 195.158.172.121 www.musik.de
O1 - Hosts: 195.158.172.121 www.film.de
O1 - Hosts: 195.158.172.121 www.filme.de
O1 - Hosts: 195.158.172.121 film.de
O1 - Hosts: 195.158.172.121 filme.de
O1 - Hosts: 195.158.172.121 www.mp3.de
O1 - Hosts: 195.158.172.121 www.mp3.com
O1 - Hosts: 195.158.172.121 mp3.de
O1 - Hosts: 195.158.172.121 mp3.com
O1 - Hosts: 195.158.172.121 music.download.com
O1 - Hosts: 195.158.172.121 www.music.download.com
O1 - Hosts: 195.158.172.121 download.com
O1 - Hosts: 195.158.172.121 www.download.com
O1 - Hosts: 195.158.172.121 download.de
O1 - Hosts: 195.158.172.121 www.download.de
O1 - Hosts: 195.158.172.121 cheats.de
O1 - Hosts: 195.158.172.121 www.cheats.de
O1 - Hosts: 195.158.172.121 cheats.com
O1 - Hosts: 195.158.172.121 www.cheats.com
O1 - Hosts: 195.158.172.121 cracks.de
O1 - Hosts: 195.158.172.121 www.cracks.de
O1 - Hosts: 195.158.172.121 cracks.com
O1 - Hosts: 195.158.172.121 www.cracks.com
O1 - Hosts: 195.158.172.121 chat.de
O1 - Hosts: 195.158.172.121 www.chat.de
O1 - Hosts: 195.158.172.121 chat.com
O1 - Hosts: 195.158.172.121 www.chat.com
O1 - Hosts: 195.158.172.121 bitreactor.to
O1 - Hosts: 195.158.172.121 www.bitreactor.to
O1 - Hosts: 195.158.172.121 astalavista.de
O1 - Hosts: 195.158.172.121 www.astalavista.de
O1 - Hosts: 195.158.172.121 emule-mods.de
O1 - Hosts: 195.158.172.121 www.emule-mods.de
O1 - Hosts: 195.158.172.121 slsknet.org
O1 - Hosts: 195.158.172.121 www.slsknet.org
O1 - Hosts: 195.158.172.121 grokster.com
O1 - Hosts: 195.158.172.121 www.grokster.com
O1 - Hosts: 195.158.172.121 shareaza.com
O1 - Hosts: 195.158.172.121 www.shareaza.com
O1 - Hosts: 195.158.172.121 morpheus.com
O1 - Hosts: 195.158.172.121 www.morpheus.com
O1 - Hosts: 195.158.172.121 limewire.com
O1 - Hosts: 195.158.172.121 www.limewire.com
O1 - Hosts: 195.158.172.121 imesh.com
O1 - Hosts: 195.158.172.121 www.imesh.com
O1 - Hosts: 195.158.172.121 ircspy.com
O1 - Hosts: 195.158.172.121 www.ircspy.com
O1 - Hosts: 195.158.172.121 packetnews.com
O1 - Hosts: 195.158.172.121 www.packetnews.com
O1 - Hosts: 195.158.172.121 warez.com
O1 - Hosts: 195.158.172.121 www.warez.com
O1 - Hosts: 195.158.172.121 warez.de
O1 - Hosts: 195.158.172.121 www.warez.de
O1 - Hosts: 195.158.172.121 gns-net.de
O3 - Toolbar: ISTbar - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - C:\Program
Files\ISTbar\istbarcm.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} -
C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\NEOSTR~1\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye
Network\bin\bargains.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04
\bin\jusched.exe
O4 - HKLM\..\Run: [Winlogin] C:\WINDOWS\system32\winlogin.exe
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840
\dslmon.exe
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} -
C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-
00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-
00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} -
C:\Program Files\SideFind\sidefind.dll (file missing)
O15 - Trusted Zone: <a href="ny.

Obserwuj wątek

Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:00

No, ładnie. wink

Nawet cały się nie zmieścił. big_grin

Odinstaluj ISTbar, SurfAccuracy, BullsEye Network - trzeba uważnie czytać
komunikaty, często tam, gdzie zwykle wciska się Yes, trzeba wcinąć No - albo
odwrotnie. wink

YahooToolbar też można odinstalować, jeśli nie jest używany
("sam" się zainstalował).

Do wyrzucenia:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
szukaj.wp.pl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
www.p2p-load.de/share/?l=e

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Neostrada
TP

R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no
file)
O1 - Hosts: 195.158.172.121 p2p-load.de
O1 - Hosts: 195.158.172.121 www.p2p-load.de
O1 - Hosts: 195.158.172.121 www.usenext.de
O1 - Hosts: 195.158.172.121 usenext.de
O1 - Hosts: 195.158.172.121 www.firstload.de
O1 - Hosts: 195.158.172.121 firstload.de
O1 - Hosts: 195.158.172.121 www.eselfilme.de
O1 - Hosts: 195.158.172.121 eselfilme.de
O1 - Hosts: 195.158.172.121 www.eselfilme.com
O1 - Hosts: 195.158.172.121 eselfilme.com
O1 - Hosts: 195.158.172.121 www.goldesel.6x.to
O1 - Hosts: 195.158.172.121 goldesel.6x.to
O1 - Hosts: 195.158.172.121 www.goldesel.to
O1 - Hosts: 195.158.172.121 goldesel.to
O1 - Hosts: 195.158.172.121 www.goldesel.elite.to
O1 - Hosts: 195.158.172.121 goldesel.elite.to
O1 - Hosts: 195.158.172.121 www.superesel.com
O1 - Hosts: 195.158.172.121 superesel.com
O1 - Hosts: 195.158.172.121 www.torrent.to
O1 - Hosts: 195.158.172.121 torrent.to
O1 - Hosts: 195.158.172.121 www.brainstorm24.com
O1 - Hosts: 195.158.172.121 brainstorm24.com
O1 - Hosts: 195.158.172.121 emule-project.net
O1 - Hosts: 195.158.172.121 www.emule-project.net
O1 - Hosts: 195.158.172.121 emule.de
O1 - Hosts: 195.158.172.121 www.emule.de
O1 - Hosts: 195.158.172.121 edonkey2000.com
O1 - Hosts: 195.158.172.121 www.edonkey2000.com
O1 - Hosts: 195.158.172.121 kazaa.com
O1 - Hosts: 195.158.172.121 www.kazaa.com
O1 - Hosts: 195.158.172.121 winmx.com
O1 - Hosts: 195.158.172.121 www.winmx.com
O1 - Hosts: 195.158.172.121 kazaa.de
O1 - Hosts: 195.158.172.121 www.kazaa.de
O1 - Hosts: 195.158.172.121 winmx.de
O1 - Hosts: 195.158.172.121 www.winmx.de
O1 - Hosts: 195.158.172.121 sex.com
O1 - Hosts: 195.158.172.121 www.sex.com
O1 - Hosts: 195.158.172.121 sex.de
O1 - Hosts: 195.158.172.121 www.sex.de
O1 - Hosts: 195.158.172.121 emule.com
O1 - Hosts: 195.158.172.121 www.emule.com
O1 - Hosts: 195.158.172.121 wbc-board.to
O1 - Hosts: 195.158.172.121 www.wbc-board.to
O1 - Hosts: 195.158.172.121 musicload.de
O1 - Hosts: 195.158.172.121 www.musicload.de
O1 - Hosts: 195.158.172.121 musik.de
O1 - Hosts: 195.158.172.121 www.musik.de
O1 - Hosts: 195.158.172.121 www.film.de
O1 - Hosts: 195.158.172.121 www.filme.de
O1 - Hosts: 195.158.172.121 film.de
O1 - Hosts: 195.158.172.121 filme.de
O1 - Hosts: 195.158.172.121 www.mp3.de
O1 - Hosts: 195.158.172.121 www.mp3.com
O1 - Hosts: 195.158.172.121 mp3.de
O1 - Hosts: 195.158.172.121 mp3.com
O1 - Hosts: 195.158.172.121 music.download.com
O1 - Hosts: 195.158.172.121 www.music.download.com
O1 - Hosts: 195.158.172.121 download.com
O1 - Hosts: 195.158.172.121 www.download.com
O1 - Hosts: 195.158.172.121 download.de
O1 - Hosts: 195.158.172.121 www.download.de
O1 - Hosts: 195.158.172.121 cheats.de
O1 - Hosts: 195.158.172.121 www.cheats.de
O1 - Hosts: 195.158.172.121 cheats.com
O1 - Hosts: 195.158.172.121 www.cheats.com
O1 - Hosts: 195.158.172.121 cracks.de
O1 - Hosts: 195.158.172.121 www.cracks.de
O1 - Hosts: 195.158.172.121 cracks.com
O1 - Hosts: 195.158.172.121 www.cracks.com
O1 - Hosts: 195.158.172.121 chat.de
O1 - Hosts: 195.158.172.121 www.chat.de
O1 - Hosts: 195.158.172.121 chat.com
O1 - Hosts: 195.158.172.121 www.chat.com
O1 - Hosts: 195.158.172.121 bitreactor.to
O1 - Hosts: 195.158.172.121 www.bitreactor.to
O1 - Hosts: 195.158.172.121 astalavista.de
O1 - Hosts: 195.158.172.121 www.astalavista.de
O1 - Hosts: 195.158.172.121 emule-mods.de
O1 - Hosts: 195.158.172.121 www.emule-mods.de
O1 - Hosts: 195.158.172.121 slsknet.org
O1 - Hosts: 195.158.172.121 www.slsknet.org
O1 - Hosts: 195.158.172.121 grokster.com
O1 - Hosts: 195.158.172.121 www.grokster.com
O1 - Hosts: 195.158.172.121 shareaza.com
O1 - Hosts: 195.158.172.121 www.shareaza.com
O1 - Hosts: 195.158.172.121 morpheus.com
O1 - Hosts: 195.158.172.121 www.morpheus.com
O1 - Hosts: 195.158.172.121 limewire.com
O1 - Hosts: 195.158.172.121 www.limewire.com
O1 - Hosts: 195.158.172.121 imesh.com
O1 - Hosts: 195.158.172.121 www.imesh.com
O1 - Hosts: 195.158.172.121 ircspy.com
O1 - Hosts: 195.158.172.121 www.ircspy.com
O1 - Hosts: 195.158.172.121 packetnews.com
O1 - Hosts: 195.158.172.121 www.packetnews.com
O1 - Hosts: 195.158.172.121 warez.com
O1 - Hosts: 195.158.172.121 www.warez.com
O1 - Hosts: 195.158.172.121 warez.de
O1 - Hosts: 195.158.172.121 www.warez.de
O1 - Hosts: 195.158.172.121 gns-net.de
O3 - Toolbar: ISTbar - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - C:\Program
Files\ISTbar\istbarcm.dll

O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye
Network\bin\bargains.exe

O4 - HKLM\..\Run: [Winlogin] C:\WINDOWS\system32\winlogin.exe

No i nowy log ofkoz. wink

Drzewko
Od najstarszego
Od najnowszego

dziuunia niezły co? ;))) ,n/txt 08.10.05, 16:57
- Gość: T-800 Re: niezły co? ;))) ,n/txt IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:01
  
  Gites.
Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:00

No, ładnie. Nawet cały się nie zmieścił.

Odinstaluj ISTbar, SurfAccuracy, BullsEye Network - trzeba uważnie czytać
komunikaty, często tam, gdzie zwykle wciska się Yes, trzeba wcinąć No - albo
odwrotnie. YahooToolbar też można odinstalować, jeśli nie jest używany
("sam" się zainstalował).

Do wyrzucenia:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
szukaj.wp.pl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
www.p2p-load.de/share/?l=e

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Neostrada
TP

R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no
file)
O1 - Hosts: 195.158.172.121 p2p-load.de
O1 - Hosts: 195.158.172.121 www.p2p-load.de
O1 - Hosts: 195.158.172.121 www.usenext.de
O1 - Hosts: 195.158.172.121 usenext.de
O1 - Hosts: 195.158.172.121 www.firstload.de
O1 - Hosts: 195.158.172.121 firstload.de
O1 - Hosts: 195.158.172.121 www.eselfilme.de
O1 - Hosts: 195.158.172.121 eselfilme.de
O1 - Hosts: 195.158.172.121 www.eselfilme.com
O1 - Hosts: 195.158.172.121 eselfilme.com
O1 - Hosts: 195.158.172.121 www.goldesel.6x.to
O1 - Hosts: 195.158.172.121 goldesel.6x.to
O1 - Hosts: 195.158.172.121 www.goldesel.to
O1 - Hosts: 195.158.172.121 goldesel.to
O1 - Hosts: 195.158.172.121 www.goldesel.elite.to
O1 - Hosts: 195.158.172.121 goldesel.elite.to
O1 - Hosts: 195.158.172.121 www.superesel.com
O1 - Hosts: 195.158.172.121 superesel.com
O1 - Hosts: 195.158.172.121 www.torrent.to
O1 - Hosts: 195.158.172.121 torrent.to
O1 - Hosts: 195.158.172.121 www.brainstorm24.com
O1 - Hosts: 195.158.172.121 brainstorm24.com
O1 - Hosts: 195.158.172.121 emule-project.net
O1 - Hosts: 195.158.172.121 www.emule-project.net
O1 - Hosts: 195.158.172.121 emule.de
O1 - Hosts: 195.158.172.121 www.emule.de
O1 - Hosts: 195.158.172.121 edonkey2000.com
O1 - Hosts: 195.158.172.121 www.edonkey2000.com
O1 - Hosts: 195.158.172.121 kazaa.com
O1 - Hosts: 195.158.172.121 www.kazaa.com
O1 - Hosts: 195.158.172.121 winmx.com
O1 - Hosts: 195.158.172.121 www.winmx.com
O1 - Hosts: 195.158.172.121 kazaa.de
O1 - Hosts: 195.158.172.121 www.kazaa.de
O1 - Hosts: 195.158.172.121 winmx.de
O1 - Hosts: 195.158.172.121 www.winmx.de
O1 - Hosts: 195.158.172.121 sex.com
O1 - Hosts: 195.158.172.121 www.sex.com
O1 - Hosts: 195.158.172.121 sex.de
O1 - Hosts: 195.158.172.121 www.sex.de
O1 - Hosts: 195.158.172.121 emule.com
O1 - Hosts: 195.158.172.121 www.emule.com
O1 - Hosts: 195.158.172.121 wbc-board.to
O1 - Hosts: 195.158.172.121 www.wbc-board.to
O1 - Hosts: 195.158.172.121 musicload.de
O1 - Hosts: 195.158.172.121 www.musicload.de
O1 - Hosts: 195.158.172.121 musik.de
O1 - Hosts: 195.158.172.121 www.musik.de
O1 - Hosts: 195.158.172.121 www.film.de
O1 - Hosts: 195.158.172.121 www.filme.de
O1 - Hosts: 195.158.172.121 film.de
O1 - Hosts: 195.158.172.121 filme.de
O1 - Hosts: 195.158.172.121 www.mp3.de
O1 - Hosts: 195.158.172.121 www.mp3.com
O1 - Hosts: 195.158.172.121 mp3.de
O1 - Hosts: 195.158.172.121 mp3.com
O1 - Hosts: 195.158.172.121 music.download.com
O1 - Hosts: 195.158.172.121 www.music.download.com
O1 - Hosts: 195.158.172.121 download.com
O1 - Hosts: 195.158.172.121 www.download.com
O1 - Hosts: 195.158.172.121 download.de
O1 - Hosts: 195.158.172.121 www.download.de
O1 - Hosts: 195.158.172.121 cheats.de
O1 - Hosts: 195.158.172.121 www.cheats.de
O1 - Hosts: 195.158.172.121 cheats.com
O1 - Hosts: 195.158.172.121 www.cheats.com
O1 - Hosts: 195.158.172.121 cracks.de
O1 - Hosts: 195.158.172.121 www.cracks.de
O1 - Hosts: 195.158.172.121 cracks.com
O1 - Hosts: 195.158.172.121 www.cracks.com
O1 - Hosts: 195.158.172.121 chat.de
O1 - Hosts: 195.158.172.121 www.chat.de
O1 - Hosts: 195.158.172.121 chat.com
O1 - Hosts: 195.158.172.121 www.chat.com
O1 - Hosts: 195.158.172.121 bitreactor.to
O1 - Hosts: 195.158.172.121 www.bitreactor.to
O1 - Hosts: 195.158.172.121 astalavista.de
O1 - Hosts: 195.158.172.121 www.astalavista.de
O1 - Hosts: 195.158.172.121 emule-mods.de
O1 - Hosts: 195.158.172.121 www.emule-mods.de
O1 - Hosts: 195.158.172.121 slsknet.org
O1 - Hosts: 195.158.172.121 www.slsknet.org
O1 - Hosts: 195.158.172.121 grokster.com
O1 - Hosts: 195.158.172.121 www.grokster.com
O1 - Hosts: 195.158.172.121 shareaza.com
O1 - Hosts: 195.158.172.121 www.shareaza.com
O1 - Hosts: 195.158.172.121 morpheus.com
O1 - Hosts: 195.158.172.121 www.morpheus.com
O1 - Hosts: 195.158.172.121 limewire.com
O1 - Hosts: 195.158.172.121 www.limewire.com
O1 - Hosts: 195.158.172.121 imesh.com
O1 - Hosts: 195.158.172.121 www.imesh.com
O1 - Hosts: 195.158.172.121 ircspy.com
O1 - Hosts: 195.158.172.121 www.ircspy.com
O1 - Hosts: 195.158.172.121 packetnews.com
O1 - Hosts: 195.158.172.121 www.packetnews.com
O1 - Hosts: 195.158.172.121 warez.com
O1 - Hosts: 195.158.172.121 www.warez.com
O1 - Hosts: 195.158.172.121 warez.de
O1 - Hosts: 195.158.172.121 www.warez.de
O1 - Hosts: 195.158.172.121 gns-net.de
O3 - Toolbar: ISTbar - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - C:\Program
Files\ISTbar\istbarcm.dll

O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye
Network\bin\bargains.exe

O4 - HKLM\..\Run: [Winlogin] C:\WINDOWS\system32\winlogin.exe

No i nowy log ofkoz.
- dziuunia Re: log 08.10.05, 17:06
  
  Logfile of HijackThis v1.99.1
  Scan saved at 17:05:29, on 2005-10-08
  Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
  MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\spoolsv.exe
  C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  C:\Program Files\Alwil Software\Avast4\ashServ.exe
  C:\WINDOWS\Explorer.EXE
  C:\PROGRA~1\NEOSTR~1\CnxMon.exe
  C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
  C:\Program Files\SurfAccuracy\SAcc.exe
  C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
  C:\Program Files\Gadu-Gadu\gg.exe
  C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
  C:\Program Files\Neostrada TP\NeostradaTP.exe
  C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
  C:\Program Files\Neostrada TP\ComComp.exe
  C:\Program Files\Neostrada TP\Watch.exe
  C:\Program Files\Internet Explorer\IEXPLORE.EXE
  C:\Documents and Settings\Rodzice\Moje dokumenty\HijackThis.exe
  
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
  www.neostrada.pl
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
  O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\NEOSTR~1\CnxMon.exe
  O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe
  O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
  O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
  O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04
  \bin\jusched.exe
  O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
  O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840
  \dslmon.exe
  O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} -
  C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-
  00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
  C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
  O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-
  00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
  O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} -
  C:\Program Files\SideFind\sidefind.dll (file missing)
  O15 - Trusted Zone: ny.contentmatch.net (HKLM)
  O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) -
  www.180searchassistant.com/180saax.cab
  O17 - HKLM\System\CCS\Services\Tcpip\..\{9E8C334C-CC3E-47A0-926C-D745E6EEED78}:
  NameServer = 194.204.152.34 217.98.63.164
  O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner -
  C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil
  Software\Avast4\ashServ.exe
  O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil
  Software\Avast4\ashMaiSv.exe" /service (file missing)
  O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil
  Software\Avast4\ashWebSv.exe" /service (file missing)
  - Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:14
    
    Do wyrzucenia:
    
    > O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
    
    > O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} -
    > C:\Program Files\SideFind\sidefind.dll (file missing)
    > O15 - Trusted Zone: ny.contentmatch.net (HKLM)
    > O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) -
    > www.180searchassistant.com/180saax.cab
    
    Jak wróci, to w awaryjnym spróbuj.
    
    Potem przeskanuj czymś, najlepiej też w awaryjnym.
    
    Microsoft AntiSpyware
    download.microsoft.com/download/8/1/5/815d2d60-49b5-44dc-ae35-fca2f2c6f0cc/MicrosoftAntiSpywareInstall.exe
    
    Ad-Aware
    ftp://ftp.download.com/pub/win95/utilities/aawsepersonal.exe
    Spolszczenie
    ftp://213.241.80.209/aawsepersonal_pl.exe
    Spybot - Search & Destroy
    www.download.com/Spybot-Search-Destroy/3000-8022_4-10401314.html
    
    W przypadku Spybota przed aktualizacją trzeba zmienić serwer, z którego są one
    pobierane, bo ten domyślny jest bardzo obciążony.
    - Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:15
      
      Te 180searchassistant spróbuj najpierw odinstalować.
    - Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:24
      
      Aktualizacje ściągaj w normalnym, potem przechodź do awaryjnego.
      
      MS AntiSpyware czepia się wpisów eDonkeya, trzeba przy nich wybrać Ignore.
      
      A w ogóle Koleżanka na przyszłość powinna instalować czystą wersję.
Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:03

Kurczę, mi też ucięło. Odinstaluj jeszcze SideFind.

Do wyrzucenia:

O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} -
C:\Program Files\SideFind\sidefind.dll (file missing)
dziuunia IMHO jeszcze 015 i 016 do wywalenia,n/txt 08.10.05, 17:10
dziuunia Re: log 08.10.05, 17:37

Logfile of HijackThis v1.99.1
Scan saved at 17:36:20, on 2005-10-08
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\NEOSTR~1\CnxMon.exe
C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Neostrada TP\ComComp.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Neostrada TP\NeostradaTP.exe
C:\Program Files\Neostrada TP\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Rodzice\Moje dokumenty\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
www.neostrada.pl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\NEOSTR~1\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04
\bin\jusched.exe
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840
\dslmon.exe
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} -
C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-
00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-
00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O15 - Trusted Zone: ny.contentmatch.net (HKLM)
O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) -
www.180searchassistant.com/180saax.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9E8C334C-CC3E-47A0-926C-D745E6EEED78}:
NameServer = 194.204.152.34 217.98.63.164
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner -
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil
Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil
Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil
Software\Avast4\ashWebSv.exe" /service (file missing)
- Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:45
  
  Wywal w awaryjnym:
  
  > O15 - Trusted Zone: ny.contentmatch.net (HKLM)
  > O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) -
  > www.180searchassistant.com/180saax.cab
  
  i przeskanuj czymś.
  - dziuunia Re: log 08.10.05, 17:57
    
    Logfile of HijackThis v1.99.1
    Scan saved at 17:53:25, on 2005-10-08
    Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    
    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\PROGRA~1\NEOSTR~1\CnxMon.exe
    C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
    C:\Program Files\Gadu-Gadu\gg.exe
    C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Documents and Settings\Rodzice\Moje dokumenty\HijackThis.exe
    
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    www.neostrada.pl
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
    O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\NEOSTR~1\CnxMon.exe
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04
    \bin\jusched.exe
    O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
    O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840
    \dslmon.exe
    O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} -
    C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-
    00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
    C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-
    00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner -
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil
    Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil
    Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil
    Software\Avast4\ashWebSv.exe" /service (file missing)
    - Gość: T-800 Re: log IP: *.tpnet.pl / *.tpnet.pl 08.10.05, 17:58
      
      Czysto! To teraz możecie sobie poplotkować. ))
      - dziuunia dziękujemy bardzo :))),n/txt 08.10.05, 18:13
Gość: 1777968580-1438574509-242531893 1507507032-249012326-151538214 IP: *.neoplus.adsl.tpnet.pl 03.11.05, 23:16

-1849538778-1850909391

Najnowsze z forum Testowe

Zaloguj się