luksle utworzono 24 lutego 2007 utworzono 24 lutego 2007 Mam pewien problem z wyskakująca wiadomością "system alert" w pasku zadań i nie wiem jak to usunąć i proszę o przejrzenie mojego loga Logfile of HijackThis v1.99.1Scan saved at 17:48:49, on 2007-02-24Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32csrss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesWinampwinamp.exeC:Program FilesMozilla Firefoxfirefox.exeC:WINDOWSsystem32wbemwmiprvse.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX00.250HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKLM..Run: [MSConfig] C:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /autoO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - C:WINDOWSsystem32cwgppb.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe
Aqui komentarz 24 lutego 2007 komentarz 24 lutego 2007 Uzyj SmitFraudFix z opcji nr 2 w trybie awaryjnym opis--> http://www.pcboard.pl/viewtopic.php?t=14
luksle komentarz 25 lutego 2007 Autor komentarz 25 lutego 2007 dzięki za pomoc :lol: :lol: wszystko już jest już ok.
Aqui komentarz 25 lutego 2007 komentarz 25 lutego 2007 To jeszcze nie koniec.. Masz Ukrainskie DNS-y uzyj FixWareOut opis--> http://www.pcboard.pl/viewtopic.php?t=14
luksle komentarz 25 lutego 2007 Autor komentarz 25 lutego 2007 już skorzystałem z programu FixWareOut i chyba wszystko jest już dobrze?
luksle komentarz 25 lutego 2007 Autor komentarz 25 lutego 2007 Logfile of HijackThis v1.99.1Scan saved at 19:02:30, on 2007-02-25Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesMozilla Firefoxfirefox.exeC:Program FilesWinRARWinRAR.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX00.906HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - (no file)O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe [ Dodano: 2007-02-25, 19:05 ] i co jest coś ciekawego?
Aqui komentarz 25 lutego 2007 komentarz 25 lutego 2007 HKLMSystemCCSServicesTcpip..{5AD12264-A158-4C43-AB58-55DF974BB300}: NameServer = 85.255.115.21,85.255.112.91O17 - HKLMSystemCCSServicesTcpip..{93AF3A18-E9D4-4382-B300-D79CA7A2256E}: NameServer = 85.255.115.21,85.255.112.91 O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91 O17 - HKLMSystemCS2ServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91 O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.115.21 85.255.112.91 O21 - SSODL: exemplars - {2acf3add-34a1-4f2f-99cf-cc69785d1e90} - (no file) Zaznacz te wpisy i wcisnij fix checked.
luksle komentarz 25 lutego 2007 Autor komentarz 25 lutego 2007 Logfile of HijackThis v1.99.1Scan saved at 19:18:33, on 2007-02-25Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32LEXBCES.EXEC:WINDOWSsystem32spoolsv.exeC:WINDOWSsystem32LEXPPS.EXEC:Program FilesAlwil SoftwareAvast4aswUpdSv.exeC:Program FilesAlwil SoftwareAvast4ashServ.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXEC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeC:WINDOWSsystem32nvsvc32.exeC:WINDOWSsystem32svchost.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeC:WINDOWSsystem32RUNDLL32.EXEC:Program FilesJavajre1.5.0_11binjusched.exeC:Program FilesDAEMON Toolsdaemon.exeC:PROGRA~1ALWILS~1Avast4ashDisp.exeC:Program FilesLexmark 2200 Serieslxbvbmgr.exeC:Program FilesArcadeRockstararcaderockstar32.exeC:WINDOWSSOUNDMAN.EXEC:Program FilesZTE CorporationZXDSL852CnxDslTb.exeC:PROGRA~1NEOSTR~1TaskbarIcon.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesAutoConnectAutoConnect.exeC:Program FilesSpybot - Search & DestroyTeaTimer.exeC:Program FilesLexmark 2200 Serieslxbvbmon.exeC:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exeC:Program FilesAlwil SoftwareAvast4ashMaiSv.exeC:Program FilesAlwil SoftwareAvast4ashWebSv.exeC:Program FilesMozilla Firefoxfirefox.exeC:Program FilesWinRARWinRAR.exeC:DOCUME~1HubertUSTAWI~1TempRar$EX11.953HijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.plR1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TPR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLLO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_11binssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dllO4 - HKLM..Run: [nTrayFw] C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnTrayFw.exeO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInitO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exeO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.5.0_11binjusched.exe"O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exeO4 - HKLM..Run: [Lexmark 2200 Series] "C:Program FilesLexmark 2200 Serieslxbvbmgr.exe"O4 - HKLM..Run: [FaxCenterServer] "C:Program FilesLexmark Fax Solutionsfm3032.exe" /sO4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [soundMan] SOUNDMAN.EXEO4 - HKLM..Run: [CnxDslTaskBar] "C:Program FilesZTE CorporationZXDSL852CnxDslTb.exe" "ZTE CorporationZXDSL852"O4 - HKLM..Run: [WOOWATCH] C:PROGRA~1NEOSTR~1Watch.exeO4 - HKLM..Run: [WOOTASKBARICON] C:PROGRA~1NEOSTR~1TaskbarIcon.exeO4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [AutoConnect] C:Program FilesAutoConnectAutoConnect.exeO4 - HKCU..Run: [spybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exeO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_11binssv.dllO9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.jsO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO10 - Unknown file in Winsock LSP: c:windowssystem32nvappfilter.dllO17 - HKLMSystemCCSServicesTcpip..{367A619E-B62A-472F-A89B-141C7EB2EF1F}: NameServer = 194.204.159.1 217.98.63.164O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:Program FilesNVIDIA CorporationNetworkAccessManagerApache GroupApache2binapache.exe" -k runservice (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:WINDOWSsystem32LEXBCES.EXEO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:Program FilesNVIDIA CorporationNetworkAccessManagerbinnSvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe [ Dodano: 2007-02-25, 19:21 ] teraz wszystko dobrze?
Aqui komentarz 25 lutego 2007 komentarz 25 lutego 2007 O4 - HKLM..Run: [arcaderockstar] C:Program FilesArcadeRockstararcaderockstar32.exeO4 - HKLM..Run: [MustRead] C:WINDOWSMustReadMustRead.exe Znasz to?
luksle komentarz 26 lutego 2007 Autor komentarz 26 lutego 2007 znam ale tylko Arcade rockstar a tego drugiego to nie a co może to być to cos groźnego
rysiaczek91 komentarz 26 lutego 2007 komentarz 26 lutego 2007 You must read the attached document for further instructions. ... Aktywny trojan tworzy swoją kopię na dysku w pliku o nazwie lassa.exe oraz modyfikuje tak ... wpisz w google +must +read +trojan wychodzi na to że jest to jakiś trojan
MISTEJK komentarz 27 lutego 2007 komentarz 27 lutego 2007 Przeskanuj plik tym skanerem on-line VIRUS TOTAL i wklej raport: C:WINDOWSMustReadMustRead.exe Opis krok po kroku: http://www.pcboard.pl/viewtopic.php?t=51
luksle komentarz 27 lutego 2007 Autor komentarz 27 lutego 2007 już usunąłem ten program MustRead za pomocą Hijackthis
Aqui komentarz 28 lutego 2007 komentarz 28 lutego 2007 to wyrzuc jeszcze ten folder pogrubiony C:WINDOWSMustReadMustRead.exe
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.