qwerty123 utworzono 9 lipca 2007 utworzono 9 lipca 2007 Witam mam nastepujacy problem.......otoz przyjmijmy chodze sobie po necie i nagle chce wejsc w cos na puplicie np "moj komputer" no to klikam i pojawia sie problem bo nie otwiera sie wcale ten folder a do tego zacina sie caly pasek zadan(tzn nie mozna na nim nic zrobic nic wcisnac itp) ale co dziwne np po stronie internetowej moge chodzic bo to sie nie zacina....... Wiecie co zrobic? to nie jedyny problem ale glowny ale oglnie komp zaczal wolniej chodzic jak klikam na jakis link na stronie to tez stasznie dlugo trzeba czekac az wogole ta strona sie wyswietli a dopiero naladuje..... CZekam na pomoc
qwerty123 komentarz 9 lipca 2007 Autor komentarz 9 lipca 2007 Logfile of HijackThis v1.99.1 Scan saved at 19:22:13, on 2007-07-09 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:WINDOWSsystem32spoolsv.exe C:Program Filesantyvirr w32.ecpuguard.exe C:Program FilesCommon FilesSymantec SharedccProxy.exe C:Program FilesCommon FilesSymantec SharedccSetMgr.exe C:WINDOWSsystem32CTsvcCDA.exe C:Program FilesCommon FilesLightScribeLSSrvc.exe C:Program Filesantywir w32.ecpusvcntaux.exe C:Program Filesantywir w32.ecpuswdsvc.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSExplorer.EXE C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe C:Program Filesantywir w32.ecpuSDTrayApp.exe C:WINDOWSsystem32svchost.exe C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe C:Program FilesATI TechnologiesATI Control Panelatiptaxx.exe C:WINDOWSautoclk.exe C:PROGRA~1WanadooTaskbarIcon.exe C:Program FilesRoxioEasy CD Creator 5DirectCDDirectCD.exe C:Program FilesJavajre1.5.0_10binjusched.exe C:Program FilesPowerDVDPDVDServ.exe C:Program FilesCommon FilesSymantec SharedccApp.exe C:Program Filesantyvirr w32.ecpuavgas.exe C:WINDOWSsystem32ctfmon.exe C:Program FilesGadu-Gadugg.exe C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe C:Program FilesWanadooEspaceWanadoo.exe C:Program FilesWanadooComComp.exe C:Program FilesWanadooWatch.exe C:WINDOWSsystem32wuauclt.exe C:Program FilesInternet Exploreriexplore.exe C:Program FilesInternet Exploreriexplore.exe C:DOCUME~1RADEK~1.WASUSTAWI~1TempKatalog tymczasowy 1 dla hijackthis.zipHijackThis.exe C:Program FilesMessengermsmsgs.exe R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://szukaj.wp.pl R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.pl R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada Plus wita Cie w Internecie R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza R3 - URLSearchHook: Multi_Media toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:Program FilesMulti_MediatbMul0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:PROGRA~1MEGAUP~1MEGAUP~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_10binssv.dll O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll O2 - BHO: Multi_Media toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:Program FilesMulti_MediatbMul0.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:Program FilesNorton Internet SecurityNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [ATIPTA] C:Program FilesATI TechnologiesATI Control Panelatiptaxx.exe O4 - HKLM..Run: [autoclk] autoclk.exe O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1WanadooWatch.exe O4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1WanadooTaskbarIcon.exe O4 - HKLM..Run: [AdaptecDirectCD] "C:Program FilesRoxioEasy CD Creator 5DirectCDDirectCD.exe" O4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_10binjusched.exe" O4 - HKLM..Run: [sony Ericsson PC Suite] "C:Program FilesSony EricssonMobile2Application LauncherApplication Launcher.exe" /startoptions O4 - HKLM..Run: [RemoteControl] "C:Program FilesPowerDVDPDVDServ.exe" O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe" O4 - HKLM..Run: [urlLSTCK.exe] C:Program FilesNorton Internet SecurityUrlLstCk.exe O4 - HKLM..Run: [symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe /Consumer O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [bearShare] "C:Program FilesBearShareBearShare.exe" /pause O4 - HKLM..Run: [TkBellExe] "C:Program FilesCommon FilesRealUpdate_OBrealsched.exe" -osboot O4 - HKLM..Run: [sDTray] "C:Program Filesantywir w32.ecpuSDTrayApp.exe" O4 - HKLM..Run: [!AVG Anti-Spyware] "C:Program Filesantyvirr w32.ecpuavgas.exe" /minimized O4 - HKLM..Run: [adiras] adiras.exe O4 - HKLM..RunOnce: [Execute] C:WINDOWSSystem32ToolsDelFolders.exe O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [Komunikator] "C:Tlen.pltlen.exe" O4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /tray O4 - Startup: Reboot.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe O4 - Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe O4 - Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOfficeOSA9.EXE O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe O17 - HKLMSystemCCSServicesTcpip..{C7A3DD28-E190-4A3E-96AA-A4064AF99082}: NameServer = 194.204.159.1 217.98.63.164 O23 - Service: Adobe LM Service - Unknown owner - C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:WINDOWSsystem32Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:Program Filesantyvirr w32.ecpuguard.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:WINDOWSsystem32CTsvcCDA.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon FilesLightScribeLSSrvc.exe O23 - Service: Usługa Auto Protect programu Norton AntiVirus (navapsvc) - Symantec Corporation - C:Program FilesNorton Internet SecurityNorton AntiVirusnavapsvc.exe O23 - Service: SAVScan - Symantec Corporation - C:Program FilesNorton Internet SecurityNorton AntiVirusSAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:PROGRA~1COMMON~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:Program Filesantywir w32.ecpusvcntaux.exe O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:Program Filesantywir w32.ecpuswdsvc.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
CatchMe komentarz 10 lipca 2007 komentarz 10 lipca 2007 -Wejdź w tryb awaryjny. -Pogrubione pliki i foldery usuwasz z dysku. -Wpisy kasujesz w HijackThis: C:Program Filesantywir w32.ecpuSDTrayApp.exe O4 - HKLM..Run: [sDTray] "C:Program Filesantywir w32.ecpuSDTrayApp.exe" C:WINDOWSautoclk.exe O4 - HKLM..RunOnce: [Execute] C:WINDOWSSystem32ToolsDelFolders.exe O4 - Startup: Reboot.exe C:Program Filesantywir w32.ecpu - to mnie zastanawia. Jeżeli znasz to (SD) to nie usuwasz oczywiście. - Następnie wklejasz nowe logi z HijackThis i ComboFix.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.