proszę mi pomuc bo jestem komletnym laikiem :(

07.12.04, 13:03
komp się zwiesza raz dwa pulpit pokazuje się po długiej chwili, wyskakuje mi jakis kasperski i pyta o klucz licencyjny oczywiscie klikam zamknij, nie moge juz własciwie otworzyc explorera wiec właczam opere ktora juz rowniez zaczyna sie zwieszac i wolno otwierac, jak w temacie jestem laikiem i jezeli ktos mogłby mi krok po kroku pomoc byłabym wdzieczna a jeszcze programy skanujace nie chca sie sciagnac:(
    • zuz13 Re: proszę mi pomuc bo jestem komletnym laikiem : 07.12.04, 13:05
      no i to pomUc, sorry za takiego byka:)
      • netsec Re: proszę mi pomuc bo jestem komletnym laikiem : 07.12.04, 13:27
        Log z Hijack wklej :)
        forum.gazeta.pl/forum/72,2.html?f=23618&w=16131117&wv.x=2&a=17082886
    • zuz13 Re: proszę mi pomuc bo jestem komletnym laikiem : 07.12.04, 13:41
      hej wielkie dzieki:)to chyba to:)wklejam no i czekam na odpowiedz.Logfile of HijackThis v1.98.2
      Scan saved at 13:37:36, on 2004-12-07
      Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\explorer.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\Hotbar\bin\4.5.1.0\WeatherOnTray.exe
      C:\WINDOWS\System32\dirqfm.exe
      C:\Program Files\Web_Rebates\WebRebates0.exe
      C:\temp\salm.exe
      C:\Program Files\Windows AdControl\WinAdCtl.exe
      C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe
      C:\Program Files\Hotbar\bin\4.5.1.0\HbInst.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Windows AdControl\WinAdAlt.exe
      C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Web_Rebates\WebRebates1.exe
      C:\Program Files\Gadu-Gadu\gg.exe
      C:\totalcmd\TOTALCMD.EXE
      C:\DOCUME~1\Baron\USTAWI~1\Temp\$wc\HIJACK~1.EXE

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.hotbar.com/dyn/hotbar/3.0/sb_searchPageHome.htm
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
      F2 - REG:system.ini: Shell=explorer.exe
      O2 - BHO: LocalNRDObj Class - {00320615-B6C2-40A6-8F99-F1C52D674FAD} - C:\WINDOWS\localNRD.dll
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: Var1Helper Class - {1C4DA27D-4D52-4465-A089-98E01BB725CA} - C:\WINDOWS\System32\inetdctr.dll
      O2 - BHO: (no name) - {83DE62E0-5805-11D8-9B25-00E04C60FAF2} - C:\WINDOWS\2_0_1browserhelper2.dll
      O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
      O2 - BHO: Hotbar - {B195B3B3-8A05-11D3-97A4-0004ACA6948E} - C:\Program Files\Hotbar\bin\4.5.1.0\HbHostIE.dll
      O2 - BHO: defy bone bind - {B945B948-4808-016E-244F-8476E0148B9F} - C:\PROGRA~1\WEBFIL~1\HIDEBOOB.dll (file missing)
      O2 - BHO: IEBho Class - {D8E25C53-9508-4f5c-9249-D98D438891D5} - C:\WINDOWS\System32\ssurf022.dll
      O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
      O3 - Toolbar: ref grey - {825A94ED-188C-D3E7-F709-C565FC05EBE4} - C:\PROGRA~1\WEBFIL~1\HIDEBOOB.dll (file missing)
      O3 - Toolbar: &Hotbar - {B195B3B3-8A05-11D3-97A4-0004ACA6948E} - C:\Program Files\Hotbar\bin\4.5.1.0\HbHostIE.dll
      O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
      O3 - Toolbar: McAfee VirusScan - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - C:\Program Files\McAfee\McAfee VirusScan\VSCShellExtension.dll
      O4 - HKLM\..\Run: [intdctrr] C:\WINDOWS\System32\idctup20.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\Hotbar\bin\4.5.1.0\WeatherOnTray.exe
      O4 - HKLM\..\Run: [dlexport] C:\Program Files\Windows Media Player\dlexport.exe
      O4 - HKLM\..\Run: [hwkrqj] C:\WINDOWS\System32\dirqfm.exe
      O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
      O4 - HKLM\..\Run: [WebRebates0] "C:\Program Files\Web_Rebates\WebRebates0.exe"
      O4 - HKLM\..\Run: [salm] c:\temp\salm.exe
      O4 - HKLM\..\Run: [tchwl] C:\WINDOWS\tchwl.exe
      O4 - HKLM\..\Run: [Windows AdControl] C:\Program Files\Windows AdControl\WinAdCtl.exe
      O4 - HKLM\..\Run: [McAfee Guardian] "C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe" /SU
      O4 - HKLM\..\Run: [KAVPersonal50] C:\Documents and Settings\Baron\Moje dokumenty\Kaspersky Anti-Virus Personal\kav.exe /minimize
      O4 - HKLM\..\Run: [Hotbar] C:\Program Files\Hotbar\bin\4.5.1.0\HbInst.exe /Upgrade
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [McAfee.InstantUpdate.Monitor] "C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe" /STARTMONITOR
      O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
      O8 - Extra context menu item: Web Rebates - file://C:\Program Files\Web_Rebates\Sy1150\Tp1150\scri1150a.htm
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
      O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
      O16 - DPF: ppctlcab - http://www.pestscan.com/scanner/ppctlcab.cab
      O16 - DPF: {03C543A1-C090-418F-A1D0-FB96380D601D} (preload control) - http://www.thepaymentcentre3.com/build/preload.cab
      O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - http://akamai.downloadv3.com/binaries/IA/dtc32_EN_XP.cab
      O16 - DPF: {11111111-1111-1111-1111-111111111113} - mhtml:C:\\NO_SUCH_MHTML.MHT!http://66.79.166.152/go.exe
      O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_file.php?bt=ie&p=7fd1b1487ea24557e81cb1f266ef2780947d11d735d3f73d567bbcc1cd65aeb860d24e26488494fe11db2684f9909f72dc77fd77a214:2e5848e0a9d3ad577e6a6478c1291781
      O16 - DPF: {18506D80-9B80-11D4-82C2-0080C8D7ED4A} (GINROULETTE Class) - http://gryonline.wp.pl/files/roulette_2_0_0_6.cab
      O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://imgfarm.com/images/nocache/funwebproducts/CursorManiaInitialSetup1.0.0.6.cab
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
      O16 - DPF: {479B29EF-9A2C-11D0-B696-00A0C903487A} (SunLoad Class) - http://www.dmbigbg.com.pl/promak-web/ie/sunloadn.cab
      O16 - DPF: {486E48B5-ABF2-42BB-A327-2679DF3FB822} - http://akamai.downloadv3.com/binaries/IA/ia_XP.cab
      O16 - DPF: {776290B9-F53C-4676-8DAF-3DBEFC297308} (GING358 Class) - http://gryonline.wp.pl/files/G358_2_0_0_6.cab
      O16 - DPF: {8626DFA9-2BAC-4BDA-8663-8DAA0F942C0D} - http://megapanel.gem.pl/temp/netp/6821/2322/5878/6400/7_6821232258786400.ocx
      O16 - DPF: {88D8E8B7-A33B-4417-A385-8373484D43ED} (InstallHelper Class) - file://C:\DOCUME~1\Baron\USTAWI~1\Temp\ThereInstallHelper.dll
      O16 - DPF: {8B486EF6-6B2A-4A1E-BB0D-236CB2DBB8D2} (There Voice Trainer) - file://C:\Program Files\There\ThereClient\ThereVoiceTrainer.dll
      O16 - DPF: {94742E3F-D9A1-4780-9A87-2FFA43655DA2} - http://akamai.downloadv3.com/binaries/DialHTML/EGDHTML_pack_XP.cab
      O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
      O16 - DPF: {AAF421E6-7914-430A-9981-72B31AFF3BF4} (There Launcher) - file://C:\Program Files\There\ThereClient\ThereLauncher.dll
      O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://skaner.mks.com.pl/SkanerOnline.cab
      O16 - DPF: {FA65E95C-9B0E-11D6-9BC9-00104B0B4D56} (ActX2 Control) - http://www.certum.pl/unizeto.cab

      • netsec Re: HiJack log 07.12.04, 14:35
        Zacznij od odinstalowania wszystkiego czego nie znasz w Panelu sterowania,
        Dodaj/Usuń programy. Jeśli nie masz pewności co do usunięcia programu, zapytaj
        na forum.
      • netsec Nowy HiJack. 07.12.04, 14:37
        Po odinstalowaniu nieznanych programów, wklej nowy log z HiJack.
    • zuz13 Re: proszę mi pomuc bo jestem komletnym laikiem : 07.12.04, 14:54
      jessuuu ja nie wiem o co chodzi:(może chciałabyś mi pomóc mój gg 3190784 alina
      • netsec Re: proszę mi pomuc bo jestem komletnym laikiem : 07.12.04, 15:35
        To Ty mnie poszukaj na GG, jestem zazwyczaj wieczorem.
        Mój nik na GG jest taki sam jak na forum -:)
Pełna wersja