SonGohan utworzono 31 sierpnia 2008 utworzono 31 sierpnia 2008 Miałem conajmniej kilkanaście aplikacji na liście programów startujących z windows.Uruchamiam sobie kompa,a tu ruszył tylko sygate personal firewall i nic pozatym.Norton Internet security ruszył za drugim razem,ale na liście uruchamiania msconfig są tylko 3 programy.Reszta z kilkunastu poprostu sama znikneła.Wcześniej odinstalowałem tylko google toolbar,ale nie wiem czy to ma związek?Nie mam wirusów,Win XP sp2.Help???
n31T komentarz 31 sierpnia 2008 komentarz 31 sierpnia 2008 Włącz nortona i przeskanuj system, wtedy się dowiesz.
SonGohan komentarz 31 sierpnia 2008 Autor komentarz 31 sierpnia 2008 Włącz nortona i przeskanuj system, wtedy się dowiesz. Włączyłem,również mks online i nic nie ma!Żadnych wirusów.Ad-aware tez skanowałem,nic.
SonGohan komentarz 31 sierpnia 2008 Autor komentarz 31 sierpnia 2008 ComboFix 08-08-30.03 - Xp 2008-08-31 19:31:50.1 - NTFSx86Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.655 [GMT 2:00]Running from: D:\Instalki\ComboFix.exe * Created a new restore point * Resident AV is active[b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b].((((((((((((((((((((((((( Files Created from 2008-07-28 to 2008-08-31 ))))))))))))))))))))))))))))))).2008-08-25 20:51 . 2008-08-25 20:54 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Winamp2008-08-22 00:53 . 2008-08-22 00:53 <DIR> d-------- C:\WINDOWS\nview2008-08-22 00:53 . 2008-08-31 19:04 186,097 --a------ C:\WINDOWS\system32\nvapps.xml2008-08-21 10:34 . 2008-08-21 10:34 <DIR> d-------- C:\Program Files\SkaWit2008-08-21 10:34 . 2008-08-21 10:35 226 --a------ C:\WINDOWS\AWS.ini2008-08-21 10:06 . 2008-08-31 19:21 <DIR> d-------- C:\Program Files\SpeedFan2008-08-21 10:06 . 2008-08-21 10:06 <DIR> d-------- C:\Program Files\Grupa332008-08-21 10:06 . 2008-08-21 10:06 45 --a------ C:\WINDOWS\system32\initdebug.nfo2008-08-20 20:13 . 2008-08-20 20:13 <DIR> d-------- C:\Program Files\SubEdit-Player2008-08-20 20:09 . 2008-08-20 20:09 161 --a------ C:\Delme.bat2008-08-19 21:05 . 2006-11-07 14:58 356,352 --a------ C:\WINDOWS\system32\nvunrm.exe2008-08-19 21:05 . 2006-10-19 09:36 3,903 --a------ C:\WINDOWS\system32\nvnrm.nvu2008-08-19 21:05 . 2006-10-24 13:13 1,732 --a------ C:\WINDOWS\system32\drivers\nvphy.bin2008-08-19 18:50 . 2008-08-20 09:36 <DIR> d-------- C:\Program Files\Norton Internet Security2008-08-19 18:49 . 2008-08-19 19:13 <DIR> d-------- C:\Program Files\Symantec2008-08-19 18:49 . 2008-08-23 14:15 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Symantec2008-08-19 18:49 . 2008-08-19 19:13 123,952 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS2008-08-19 18:49 . 2008-08-19 19:13 60,800 --a------ C:\WINDOWS\system32\S32EVNT1.DLL2008-08-19 18:49 . 2008-08-19 19:13 10,671 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.CAT2008-08-19 18:49 . 2008-08-19 19:13 805 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.INF2008-08-19 18:48 . 2008-08-31 19:32 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared2008-08-19 17:17 . 2008-08-19 17:17 <DIR> d-------- C:\Program Files\Realtek2008-08-19 14:46 . 2008-08-19 14:46 <DIR> d-------- C:\Program Files\Odkurzacz2008-08-19 12:54 . 2008-08-19 12:54 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Auslogics2008-08-19 12:53 . 2008-08-19 12:53 <DIR> d-------- C:\Program Files\Auslogics2008-08-19 11:08 . 2008-08-19 11:08 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\AdobeUM2008-08-19 10:28 . 2008-08-31 19:32 <DIR> d--h----- C:\Documents and Settings\Administrator\Ustawienia lokalne2008-08-19 10:28 . 2008-08-14 20:57 <DIR> d-------- C:\Documents and Settings\Administrator\Ulubione2008-08-19 10:28 . 2008-08-14 19:01 <DIR> d--h----- C:\Documents and Settings\Administrator\Szablony2008-08-19 10:28 . 2008-08-14 20:57 <DIR> d-------- C:\Documents and Settings\Administrator\Pulpit2008-08-19 10:28 . 2008-08-14 20:57 <DIR> d-------- C:\Documents and Settings\Administrator\Moje dokumenty2008-08-19 10:28 . 2008-08-14 20:57 <DIR> dr------- C:\Documents and Settings\Administrator\Menu Start2008-08-19 10:28 . 2008-08-14 20:57 <DIR> dr-h----- C:\Documents and Settings\Administrator\Dane aplikacji2008-08-19 10:28 . 2008-08-19 10:28 <DIR> d-------- C:\Documents and Settings\Administrator2008-08-18 15:57 . 2008-08-18 15:57 <DIR> dr-h----- C:\Documents and Settings\Xp\Dane aplikacji\SecuROM2008-08-18 15:57 . 2008-08-18 15:57 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll2008-08-18 15:54 . 2008-08-18 15:54 <DIR> d-------- C:\Program Files\Common Files\DirectX2008-08-18 15:47 . 2007-09-14 06:21 3,495,784 --a------ C:\WINDOWS\system32\d3dx9_33.dll2008-08-18 15:47 . 2007-09-14 06:21 81,768 --a------ C:\WINDOWS\system32\xinput1_3.dll2008-08-15 18:26 . 2008-08-15 18:26 <DIR> d-------- C:\Program Files\RaimaRadioPro2008-08-15 18:26 . 2008-08-15 18:26 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\RaimaRadioPro2008-08-15 14:07 . 2008-08-15 14:07 <DIR> d-------- C:\Program Files\Alcohol Soft2008-08-15 14:05 . 2008-08-15 14:05 716,272 --a------ C:\WINDOWS\system32\drivers\sptd.sys2008-08-14 18:08 . 2008-08-14 18:08 <DIR> d-------- C:\Program Files\Common Files\Sony Shared2008-08-14 18:08 . 2008-08-15 09:25 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Sony Corporation2008-08-14 18:08 . 2008-08-14 18:08 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Sony Corporation2008-08-14 17:52 . 2008-08-31 08:55 69 --a------ C:\WINDOWS\NeroDigital.ini2008-08-14 16:48 . 2008-08-14 17:14 <DIR> d-------- C:\Program Files\SkanerOnline2008-08-14 16:45 . 2008-08-14 16:45 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\ACD Systems2008-08-14 16:45 . 2008-08-16 18:38 2,211,894 --a------ C:\WINDOWS\ACD Wallpaper.bmp2008-08-14 16:32 . 2008-08-14 16:32 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Thunderbird2008-08-14 16:31 . 2008-08-31 19:19 <DIR> d-------- C:\Program Files\Mozilla Thunderbird2008-08-14 16:31 . 2008-08-14 16:31 <DIR> d-------- C:\Program Files\DNA2008-08-14 16:31 . 2008-08-14 16:31 <DIR> d-------- C:\Program Files\BitTorrent2008-08-14 16:31 . 2008-08-23 10:51 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\DNA2008-08-14 16:31 . 2008-08-31 08:05 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\BitTorrent2008-08-14 16:25 . 2008-08-14 16:25 <DIR> d-------- C:\Program Files\Lavasoft2008-08-14 16:25 . 2008-08-22 00:45 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard2008-08-14 16:25 . 2008-08-14 16:28 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft2008-08-14 16:17 . 2008-08-14 16:17 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\MailFrontier2008-08-14 16:17 . 2004-04-27 04:40 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll2008-08-14 16:17 . 2008-08-14 16:18 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat2008-08-14 16:16 . 2008-08-14 20:42 <DIR> d-------- C:\WINDOWS\Internet Logs2008-08-14 15:50 . 2008-08-14 15:50 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Gadu-Gadu2008-08-14 15:49 . 2008-08-14 15:49 <DIR> d-------- C:\Program Files\Gadu-Gadu2008-08-14 15:10 . 2008-08-20 20:15 <DIR> d-------- C:\Program Files\Real Alternative2008-08-14 14:59 . 2008-08-14 14:59 <DIR> d-------- C:\Program Files\Common Files\Adobe2008-08-14 14:56 . 2008-08-14 14:56 <DIR> d-------- C:\Program Files\CyberLink2008-08-14 14:56 . 2008-08-14 14:56 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink2008-08-14 14:51 . 2008-08-17 09:53 <DIR> d-------- C:\Documents and Settings\Xp\Gadu-Gadu2008-08-14 14:34 . 2008-08-14 14:34 <DIR> d-------- C:\Documents and Settings\Xp\Dane aplikacji\Talkback2008-08-14 14:34 . 2008-08-14 14:34 100,482 --a------ C:\WINDOWS\UninstallFirefox.exe2008-08-14 14:34 . 2008-08-14 14:34 3,143 --a------ C:\WINDOWS\mozver.dat2008-08-14 14:34 . 2008-08-14 14:34 0 --a------ C:\WINDOWS\nsreg.dat2008-08-14 14:31 . 2008-08-14 14:31 <DIR> d-------- C:\Program Files\Common Files\Ahead2008-08-14 14:31 . 2008-08-14 14:31 <DIR> d-------- C:\Program Files\Ahead2008-08-14 14:31 . 2004-07-26 17:16 1,568,768 --------- C:\WINDOWS\system32\ImagX7.dll2008-08-14 14:31 . 2004-07-26 17:16 476,320 --------- C:\WINDOWS\system32\ImagXpr7.dll2008-08-14 14:31 . 2004-07-26 17:16 471,040 --------- C:\WINDOWS\system32\ImagXRA7.dll2008-08-14 14:31 . 2004-07-26 17:16 262,144 --------- C:\WINDOWS\system32\ImagXR7.dll2008-08-14 14:31 . 2001-07-09 11:50 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe2008-08-14 14:31 . 2004-03-02 17:37 125,184 --------- C:\WINDOWS\system32\drivers\imagesrv.sys2008-08-14 14:31 . 2000-06-26 11:45 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll2008-08-14 14:31 . 2004-03-02 17:37 5,504 --------- C:\WINDOWS\system32\drivers\imagedrv.sys2008-08-14 14:24 . 2008-08-14 14:25 <DIR> d-------- C:\Program Files\Common Files\ACD Systems2008-08-14 14:24 . 2008-08-14 14:24 <DIR> d-------- C:\Program Files\ACD Systems2008-08-14 14:24 . 2008-08-14 14:25 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems2008-08-14 14:22 . 2008-08-14 14:22 <DIR> d-------- C:\WINDOWS\Downloaded Installations2008-08-14 14:21 . 2008-08-14 14:21 <DIR> d-------- C:\Program Files\Usb to Serial Driver 1.12.282008-08-14 14:21 . 2005-03-22 10:03 32,910 --a------ C:\WINDOWS\system32\drivers\ser120.sys2008-08-14 14:17 . 2001-08-17 22:02 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys2008-08-14 14:17 . 2001-08-17 22:02 9,600 --a--c--- C:\WINDOWS\system32\dllcache\hidusb.sys2008-08-14 13:47 . 2008-08-14 13:48 <DIR> d-------- C:\Program Files\Smarty Uninstaller Pro2008-08-14 13:47 . 2004-06-14 16:01 608,448 --a------ C:\WINDOWS\system32\comctl32.ocx2008-08-14 13:47 . 2006-09-08 13:34 417,792 --a------ C:\WINDOWS\system32\vbalCmdBar6.ocx2008-08-14 13:47 . 2006-09-08 13:33 262,144 --a------ C:\WINDOWS\system32\lst_v.ocx2008-08-14 13:47 . 2006-09-08 13:33 167,683 --a------ C:\WINDOWS\system32\COMCT232.OCX2008-08-14 13:47 . 2006-09-08 13:34 159,744 --a------ C:\WINDOWS\system32\wt_menu.dll2008-08-14 13:47 . 2006-09-08 13:33 94,208 --a------ C:\WINDOWS\system32\img_lst.ocx2008-08-14 13:47 . 2006-09-08 13:34 40,960 --a------ C:\WINDOWS\system32\ssubtmr6.dll.(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2008-08-30 19:50 --------- d-----w C:\Program Files\ESET2008-08-26 20:06 --------- d-----w C:\Documents and Settings\Xp\Dane aplikacji\OpenOffice.org22008-08-19 19:08 15,600 ----a-w C:\WINDOWS\gdrv.sys2008-08-19 15:17 --------- d--h--w C:\Program Files\InstallShield Installation Information2008-08-14 18:44 512,096 ----a-w C:\WINDOWS\system32\drivers\amon.sys2008-08-14 18:44 298,104 ----a-w C:\WINDOWS\system32\imon.dll2008-08-14 18:44 15,424 ----a-w C:\WINDOWS\system32\drivers\nod32drv.sys2008-08-14 18:37 --------- d-----w C:\Program Files\Sygate2008-08-14 17:50 --------- d-----w C:\Program Files\Ashampoo2008-08-14 17:20 --------- d-----w C:\Program Files\K-Lite Codec Pack2008-08-14 17:18 --------- d-----w C:\Program Files\OpenOffice.org 2.32008-08-14 17:11 315,392 ----a-w C:\WINDOWS\HideWin.exe2008-08-14 17:11 --------- d-----w C:\Program Files\DIFX2008-08-14 17:10 --------- d-----w C:\Documents and Settings\Xp\Dane aplikacji\InstallShield2008-08-14 17:04 --------- d-----w C:\Program Files\microsoft frontpage2008-08-14 17:03 --------- d-----w C:\Program Files\Usługi online2008-08-14 12:56 --------- d-----w C:\Program Files\Common Files\InstallShield2008-08-14 11:48 --------- d-----w C:\Program Files\MarBit2008-08-02 10:20 453,152 ----a-w C:\WINDOWS\system32\nvudisp.exe2008-07-29 16:05 453,152 ----a-w C:\WINDOWS\system32\NVUNINST.EXE2008-05-19 04:33 4,445,184 ----a-w C:\WINDOWS\system32\msi.dll2008-05-19 04:33 332,800 ----a-w C:\WINDOWS\system32\msihnd.dll2008-05-19 04:33 18,944 ----a-w C:\WINDOWS\system32\msisip.dll2008-05-18 23:57 95,744 ----a-w C:\WINDOWS\system32\msiexec.exe2008-05-16 09:58 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-05-16 14:01 13529088]"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-01-09 23:59 115816][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 02:44 15360]C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 14:44:06 29696][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]"vidc.3iv2"= 3ivxVfWCodec.dll"VIDC.HFYU"= huffyuv.dll"VIDC.VP31"= vp31vfw.dll[HKEY_LOCAL_MACHINE\software\microsoft\security center]"AntiVirusDisableNotify"=dword:00000001"UpdatesDisableNotify"=dword:00000001[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]"DisableMonitoring"=dword:00000001[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]"DisableMonitoring"=dword:00000001[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]"DisableMonitoring"=dword:00000001[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"EnableFirewall"= 0 (0x0)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="C:\\Program Files\\Gadu-Gadu\\gg.exe"="C:\\Program Files\\DNA\\btdna.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe"=R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 16:35]R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 16:37]R3 SER120;OTI Serial port driver;C:\WINDOWS\system32\DRIVERS\SER120.sys [2005-03-22 10:03]S2 NIOC;NIOC Service;C:\WINDOWS\system32\NIOC.SYS []S2 WZCBDLService;WZCBDL Service;C:\Program Files\WZCBDL Service\WZCBDLS.exe [][HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9705dd36-6a24-11dd-85ff-001d7d5d206b}]\Shell\AutoRun\command - open.exe\Shell\explore\command - open.exe\Shell\open\command - open.exe*Newly Created Service* - CATCHME*Newly Created Service* - COMHOST*Newly Created Service* - PROCEXP90.Contents of the 'Scheduled Tasks' folder2008-08-31 C:\WINDOWS\Tasks\Norton Internet Security - Run Full System Scan - Xp.job- C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 03:09]..------- Supplementary Scan -------.FireFox -: Profile - C:\Documents and Settings\Xp\Dane aplikacji\Mozilla\Firefox\Profiles\anv2kl4i.default\FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.pl/FF -: plugin - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dllFF -: plugin - C:\Program Files\DNA\plugins\npbtdna.dllFF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dllFF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll.**************************************************************************catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2008-08-31 19:32:55Windows 5.1.2600 Dodatek Service Pack 2 NTFSscanning hidden processes ... scanning hidden autostart entries ...scanning hidden files ... scan completed successfullyhidden files: 0**************************************************************************[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\vsdatant]"ImagePath"="".--------------------- DLLs Loaded Under Running Processes ---------------------PROCESS: C:\WINDOWS\system32\lsass.exe-> C:\Program Files\Eset\pr_imon.dll.Completion time: 2008-08-31 19:33:24ComboFix-quarantined-files.txt 2008-08-31 17:33:21Pre-Run: 47,877,402,624 bajtów wolnychPost-Run: 48,090,451,968 bajtów wolnych218 A co najlepsze to te programy działają jako procesy tylko nie ma ich na liście autostartu.Znikneła również ikona mixera z karty dżwiękowej i jest nie do przywrócenia.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.