Gość: Tomek
IP: *.zax.pl / *.zax.pl
23.01.05, 22:57
Cześć.
Proszę, poradzcie co mam wykasować, aby znowu bylo ok :)
Z góry dziekuję za pomoc.
Logfile of HijackThis v1.99.0
Scan saved at 22:55:56, on 2005-01-23
Platform: Windows 2000 SP2 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINNT\System32\CTSVCCDA.EXE
C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\snmp.exe
C:\PROGRA~1\NORTON~1\SPEEDD~1\n opdb.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt. exe
C:\WINNT\System32\mspmspsv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINNT\system32\rundll32.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\igfxtray.exe
C:\WINNT\System32\hkcmd.exe
C:\WINNT\LTSMMSG.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Fujitsu\BATTERYAID\BATTER YAID.exe
C:\WINNT\System32\PRPCUI.exe
C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Creative\ShareDLL\CtNotif y.exe
C:\Program Files\Motive\AsstCommon\motmon. exe
C:\PROGRA~1\NORTON~1\NORTON~1\n avapw32.exe
C:\WINNT\System32\spool\drivers \w32x86\3\hpztsb05.exe
C:\Program Files\Common Files\Real\Update_OB\realsched. exe
C:\Program Files\iRiver\iRiver Manager\Updater\Updater.exe
C:\WINNT\System32\RUNDLL32.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINNT\loadqm.exe
C:\WINNT\System32\cmd32.exe
C:\Program Files\Creative\ShareDLL\MediaDe t.exe
C:\WINNT\System32\wsxsvc\wsxsvc .exe
C:\WINNT\System32\vmss\vmss.exe
C:\Program Files\AutoUpdate\AutoUpdate.exe
C:\PROGRA~1\ALWILS~1\Avast4\ash Disp.exe
C:\WINNT\System32\yyrvwg.exe
C:\WINNT\System32\internat.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Documents and Settings\Administrator\Applicat ion Data\hhro.exe
C:\WINNT\System32\?ti2evxx.exe
C:\Program Files\INS\VitalAgent\Program\Vt lAgent.exe
C:\Program Files\AdStatus Service\AdStatServ.exe
C:\Program Files\AdStatus Service\AdStatKeep.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\temp\salm.exe
C:\Program Files\SED\SED.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\T emp\Rar$EX00.317\HijackThis.exe
R1 - HKCU\Software\Microsoft\Interne t Explorer\Main,Search Bar =
about:NavigationFailure
R1 - HKCU\Software\Microsoft\Interne t Explorer\Main,Search Page =
about:NavigationFailure
R1 - HKLM\Software\Microsoft\Interne t Explorer\Main,Search Bar =
about:NavigationFailure
R1 - HKLM\Software\Microsoft\Interne t Explorer\Main,Search Page =
about:NavigationFailure
R1 - HKCU\Software\Microsoft\Interne t Explorer\Search,SearchAssistant =
about:NavigationFailure
R0 - HKLM\Software\Microsoft\Interne t Explorer\Search,SearchAssistant =
about:NavigationFailure
R1 - HKCU\Software\Microsoft\Interne t Explorer\Main,HomeOldSP = about:blank
R0 - HKLM\Software\Microsoft\Interne t Explorer\Main,Local Page =
R1 - HKLM\Software\Microsoft\Interne t Explorer\Main,HomeOldSP = about:blank
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04 FD64497} - (no
file)
N2 - Netscape 6: user_pref
("browser.startup.homepage", "<a href="www.onet.pl/");" target="_blank">www.onet.pl/"); </a> (C:\Documents and
Settings\Administrator\Applicat ion
Data\Mozilla\Profiles\default\o ii3br9r.slt\prefs.js)
N2 - Netscape 6: user_pref("browser.search.defau ltengine", "engine://C%3A%
5CProgram%20Files%5CNetscape%5C Netscape%206%5Csearchplugins%5C SBWeb_01.src");
(C:\Documents and Settings\Administrator\Applicat ion
Data\Mozilla\Profiles\default\o ii3br9r.slt\prefs.js)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF 00B1D6} -
C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: AIM Search - {40D41A8B-D79B-43d7-99A7-9EE0F3 44C385} -
C:\Program Files\AIM Toolbar\AIMBar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9 082467} -
C:\WINNT\System32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [BATTERYAID] C:\Program
Files\Fujitsu\BATTERYAID\BATTER YAID.exe
O4 - HKLM\..\Run: [PRPCMonitor] PRPCUI.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program
Files\Fujitsu\Application Panel\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [Disc Detector] C:\Program
Files\Creative\ShareDLL\CtNotif y.exe
O4 - HKLM\..\Run: [MotiveMonitor] C:\Program
Files\Motive\AsstCommon\motmon. exe
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\NORTON~1\n avapw32.exe
O4 - HKLM\..\Run: [SymTray - Norton SystemWorks] C:\Program Files\Common
Files\Symantec Shared\Symtray.exe SetReg
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINNT\System32
\spool\drivers\w32x86\3\hpztsb0 5.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
Files\Real\Update_OB\realsched. exe" -osboot
O4 - HKLM\..\Run: [iRiver Updater] C:\Program Files\iRiver\iRiver
Manager\Updater\Updater.exe
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program
Files\WildTangent\Apps\CDA\cdaE ngine0400.dll",cdaEngineMain
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint
Manager\ViewMgr.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ControlPanel] C:\WINNT\System32\cmd32.exe
internat.dll,LoadKeyboardProfil e
O4 - HKLM\..\Run: [stcloader] C:\WINNT\System32\stcloader.exe
O4 - HKLM\..\Run: [winupdtl] C:\WINNT\System32\winupdtl.exe
O4 - HKLM\..\Run: [ayiiwad] C:\WINNT\System32\gymexj.exe
O4 - HKLM\..\Run: [CSV10P70] C:\Program Files\CSBB\CSv10P070.exe
O4 - HKLM\..\Run: [ecuxwc] C:\WINNT\System32\ecuxwc.exe
O4 - HKLM\..\Run: [Dvx] C:\WINNT\System32\wsxsvc\wsxsvc .exe
O4 - HKLM\..\Run: [vmss] C:\WINNT\System32\vmss\vmss.exe
O4 - HKLM\..\Run: [pn4g36X] maphnd.exe
O4 - HKLM\..\Run: [VBundleOuterDL] C:\Program Files\VBouncer\BundleOuter.EXE
O4 - HKLM\..\Run: [AutoUpdater] "C:\Program Files\AutoUpdate\AutoUpdate.exe "
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ash Disp.exe
O4 - HKLM\..\Run: [AdStatus Service] C:\Program Files\AdStatus
Service\AdStatServ.exe
O4 - HKLM\..\Run: [salm] c:\temp\salm.exe
O4 - HKLM\..\Run: [xufkpcn] C:\WINNT\xufkpcn.exe
O4 - HKLM\..\Run: [SESync] "C:\Program Files\SED\SED.exe"
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe
O4 - HKCU\..\Run: [rate.exe] C:\WINNT\System32\i11r54n4.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN
Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program
Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [Aetd] C:\Documents and Settings\Administrator\Applicat ion
Data\hhro.exe
O4 - HKCU\..\Run: [Nny] C:\WINNT\System32\?ti2evxx.exe
O4 - HKCU\..\Run: [DR_S] C:\Program Files\DR_S\DR_S.exe
O4 - Global Startup: MyVitalAgent.lnk = C:\Program
Files\INS\VitalAgent\Program\Vt lAgent.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM
Toolbar\AIMBar.dll/aimsearch.ht m