x-kom hosting

Pomocy !! system alert!!

luksle

luksle

utworzono
utworzono

Mam pewien problem z wyskakująca wiadomością "system alert" w pasku zadań i nie wiem jak to usunąć i proszę o przejrzenie mojego loga

Logfile of HijackThis v1.99.1Scan saved at 17:48:49, on 2007-02-24Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32csrss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesWinampwinamp.exeC:Program FilesMozilla Firefoxfirefox.exeC:WINDOWSsystem32wbemwmiprvse.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX00.250HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKLM..Run: [MSConfig] C:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /autoO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - C:WINDOWSsystem32cwgppb.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

Aqui

Aqui

komentarz
komentarz

Uzyj SmitFraudFix z opcji nr 2 w trybie awaryjnym

opis--> http://www.pcboard.pl/viewtopic.php?t=14

luksle

luksle

komentarz
  • Autor
komentarz

dzięki za pomoc :lol: :lol: wszystko już jest już ok.

Aqui

Aqui

komentarz
komentarz

To jeszcze nie koniec..

Masz Ukrainskie DNS-y

uzyj FixWareOut

opis--> http://www.pcboard.pl/viewtopic.php?t=14

luksle

luksle

komentarz
  • Autor
komentarz

już skorzystałem z programu FixWareOut i chyba wszystko jest już dobrze? :)

Aqui

Aqui

komentarz
komentarz

Daj nowe logi.

luksle

luksle

komentarz
  • Autor
komentarz 
Logfile of HijackThis v1.99.1Scan saved at 19:02:30, on 2007-02-25Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesMozilla Firefoxfirefox.exeC:Program FilesWinRARWinRAR.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX00.906HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - (no file)O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

[ Dodano: 2007-02-25, 19:05 ]

i co jest coś ciekawego?

Aqui

Aqui

komentarz
komentarz
HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91

O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91

O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91

O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91

O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91

O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - (no file)

Zaznacz te wpisy i wcisnij fix checked.

luksle

luksle

komentarz
  • Autor
komentarz 
Logfile of HijackThis v1.99.1Scan saved at 19:18:33, on 2007-02-25Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesMozilla Firefoxfirefox.exeC:Program FilesWinRARWinRAR.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX11.953HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

[ Dodano: 2007-02-25, 19:21 ]

teraz wszystko dobrze?

Aqui

Aqui

komentarz
komentarz
O4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exe

O4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exe

Znasz to?

luksle

luksle

komentarz
  • Autor
komentarz

znam ale tylko Arcade rockstar a tego drugiego to nie

a co może to być to cos groźnego

rysiaczek91

rysiaczek91

komentarz
komentarz

You must read the attached document for further instructions. ... Aktywny trojan tworzy swoją kopię na dysku w pliku o nazwie lassa.exe oraz modyfikuje tak ...

wpisz w google +must +read +trojan

wychodzi na to że jest to jakiś trojan

MISTEJK

MISTEJK

komentarz
komentarz

Przeskanuj plik tym skanerem on-line VIRUS TOTAL i wklej raport:

C:WINDOWSMustReadMustRead.exe

Opis krok po kroku: http://www.pcboard.pl/viewtopic.php?t=51

luksle

luksle

komentarz
  • Autor
komentarz

już usunąłem ten program MustRead za pomocą Hijackthis

Aqui

Aqui

komentarz
komentarz

to wyrzuc jeszcze ten folder pogrubiony

C:WINDOWSMustReadMustRead.exe

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

Zadaj pytanie bez logowania
Przejdź do listy tematów
×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.

  Akceptuję