Skocz do zawartości

Zarchiwizowany

Ten temat jest archiwizowany i nie można dodawać nowych odpowiedzi.

chmiel

porządki w rejestrze

Polecane posty

Nie znalazłem takiego tematu więc stworzyłem takowy. Jeśli jest już taki temat to przprasza adminów/moderatorów.

w każdym razie prosze o pomoc w oczyszczeniu rejestru. z góry dzięki!

:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesCommon FilesSymantec SharedccSetMgr.exe

C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe

C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe

C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe

C:WINDOWSsystem32spoolsv.exe

C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE

C:Program FilesNorton SystemWorksNorton AntiVirusnavapsvc.exe

C:Program FilesNorton SystemWorksNorton AntiVirusIWPNPFMntor.exe

C:WINDOWSSystem32nvsvc32.exe

C:PROGRA~1NORTON~1NORTON~1SPEEDD~1NOPDB.EXE

C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe

C:WINDOWSExplorer.EXE

C:WINDOWSsystem32acctres6.exe

C:Program FilesCommon FilesSymantec SharedccApp.exe

C:Program FilesNaviSearchbinnls.exe

C:PROGRA~1COMMON~1PCSuiteDATALA~1DATALA~1.EXE

D:NokiaNOKIAP~1TRAYAP~1.EXE

C:PROGRA~1COMMON~1PCSuiteServicesSERVIC~1.EXE

D:ProgramyD-Toolsdaemon.exe

C:Program FilesWanadooEspaceWanadoo.exe

C:Program FilesWanadooComComp.exe

C:Program FilesWanadooWatch.exe

D:ProgramyGadu-Gadu 7gg.exe

C:Program FilesMessengermsmsgs.exe

C:Documents and SettingsClimaPulpitHijackThis.exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.onet.pl/

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada Plus wita Cie w Internecie

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza

R3 - Default URLSearchHook is missing

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:ProgramyAcrobat 7.0ActiveXAcroIEHelper.dll

O2 - BHO: NLS UrlCatcher Class - {AEECBFDA-12FA-4881-BDCE-8C3E1CE4B344} - C:WINDOWSsystem32nvms.dll

O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:Program FilesNorton SystemWorksNorton AntiVirusNavShExt.dll

O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:Program FilesNorton SystemWorksNorton AntiVirusNavShExt.dll

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [7697c41ce91d] C:WINDOWSsystem32acctres6.exe

O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"

O4 - HKLM..Run: [bullsEye Network] C:Program FilesBullsEye Networkbinbargains.exe

O4 - HKLM..Run: [NaviSearch] C:Program FilesNaviSearchbinnls.exe

O4 - HKLM..Run: [DataLayer] C:PROGRA~1COMMON~1PCSuiteDATALA~1DATALA~1.EXE

O4 - HKLM..Run: [PCSuiteTrayApplication] D:NokiaNOKIAP~1TRAYAP~1.EXE

O4 - HKLM..Run: [DAEMON Tools-1033] "D:ProgramyD-Toolsdaemon.exe" -lang 1033

O4 - HKCU..Run: [shareaza] "C:Program FilesShareazaShareaza.exe" -tray

O4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background

O4 - HKCU..Run: [Gadu-Gadu] "D:ProgramyGadu-Gadu 7gg.exe" /tray

O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:ProgramyAcrobat 7.0Readerreader_sl.exe

O4 - Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res/C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:WINDOWSsystem32msjava.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:WINDOWSsystem32msjava.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAcc...Bridge-c139.cab

O16 - DPF: {B7E76C25-791F-432E-BDB7-748D01A93FC2} (VacPro.int_ver30) - http://advnt01.com/dialer/int_ver30.CAB

O17 - HKLMSystemCCSServicesTcpip..{F13C5DD9-4E94-46BF-A370-4D65ED94093D}: NameServer = 194.204.152.34 217.98.63.164

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe

O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:Program FilesNorton SystemWorksNorton AntiVirusnavapsvc.exe

O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:Program FilesNorton SystemWorksNorton AntiVirusIWPNPFMntor.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSSystem32nvsvc32.exe

O23 - Service: SAVScan - Symantec Corporation - C:Program FilesNorton SystemWorksNorton AntiVirusSAVScan.exe

O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:PROGRA~1COMMON~1SYMANT~1SCRIPT~1SBServ.exe

O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe

O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe

O23 - Service: Speed Disk service - Symantec Corporation - C:PROGRA~1NORTON~1NORTON~1SPEEDD~1NOPDB.EXE

O23 - Service: Symantec Core LC - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe

Link do komentarza
Udostępnij na innych stronach

lgo jest niekompletny, brakuje początku.

zabij następujące procesy, a następnie wywal pliki:

C:WINDOWSsystem32acctres6.exe

C:Program FilesNaviSearchbinnls.exe

do wywalenia:

R3 - Default URLSearchHook is missing

O2 - BHO: NLS UrlCatcher Class - {AEECBFDA-12FA-4881-BDCE-8C3E1CE4B344} - C:WINDOWSsystem32nvms.dll

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O4 - HKLM..Run: [7697c41ce91d] C:WINDOWSsystem32acctres6.exe

O4 - HKLM..Run: [bullsEye Network] C:Program FilesBullsEye Networkbinbargains.exe

O4 - HKLM..Run: [NaviSearch] C:Program FilesNaviSearchbinnls.exe

O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAcc...Bridge-c139.cab

O16 - DPF: {B7E76C25-791F-432E-BDB7-748D01A93FC2} (VacPro.int_ver30) - http://advnt01.com/dialer/int_ver30.CAB

jeśli coś się nie da wywalić (plik w użyciu) -> killbox. jeśli ciągle się nie da, zaznacz opcję 'delete on reboot'. wywal wszystkie pliki jednocześnie, a nie kilka restart, kilka restart, bo się będą odnawiać. robisz to tak, że dodajesz plik, klikasz na delete, spyta czy wywalić po restarcie, zgodzisz się, spyta czy zrestartować, dasz nie i wybierzesz kolejny plik i tak w kółko, aż wszystkie będą dodane.

zabezpiecz system -> wwdc.

całość operacji koniecznie przeprowadź przy odłączonym necie i nie podłączaj aż nie będzie czysto. po skończonej operacji 'czyszczenia' wklej nowy log, do weryfikacji. .. tym razem w całości:)

Link do komentarza
Udostępnij na innych stronach

Znowu prosze o pomoc. poprzedni rejestr należał do kuzyna, tym razem mój jest do zrobienia. Z góry dzięki

Logfile of HijackThis v1.99.1

Scan saved at 14:42:39, on 2005-11-13

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSSYSTEM32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

C:Program FilesNetropaMultimedia Keyboardnhksrv.exe

C:Program FilesArcaVirBinNetMonSv.exe

C:Program FilesArcaVirBinavmonsv.exe

C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE

C:WINDOWSsystem32nvsvc32.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32UAService7.exe

C:Program FilesArcaVirBinArcaScan.exe

C:WINDOWSExplorer.EXE

C:WINDOWSSOUNDMAN.EXE

C:Program FilesNetropaMultimedia KeyboardMMKeybd.exe

C:PROGRA~1LogitechMOUSEW~1SYSTEMEM_EXEC.EXE

D:Programydaemon.exe

C:Program FilesJavajre1.5.0_01binjusched.exe

C:Program FilesCommon FilesRealUpdate_OBrealsched.exe

D:Programynoki 6230Nokia PC Suite 6LaunchApplication.exe

C:Program FilesArcaVirBinABmenu.exe

C:Program FilesArcaVirBinABregmon.exe

C:WINDOWSsystem32RUNDLL32.EXE

D:ProgramyAnti-BlaxxAnti-Blaxx.exe

D:ProgramypowDVDPDVDServ.exe

D:ProgramyWinampwinampa.exe

C:WINDOWSsystem32ctfmon.exe

C:Program FilesMessengermsmsgs.exe

D:ProgramyGADU-G~1GADU-G~1gg.exe

C:WINDOWSsystem32rundll32.exe

C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe

C:Program FilesGetRightgetright.exe

C:Program FilesNetropaMultimedia KeyboardTrayMon.exe

C:Program FilesNetropaOnscreen DisplayOSD.exe

C:PROGRA~1COMMON~1PCSuiteServicesSERVIC~1.EXE

C:Program FilesGetRightgetright.exe

D:ProgramyNOKI62~1NOKIAP~1VFSWRA~1.EXE

C:PROGRA~1COMMON~1PCSuiteDATALA~1DATALA~1.EXE

C:PROGRA~1COMMON~1NokiaMPAPIMPAPI3s.exe

D:ProgramyMozillafirefox.exe

C:Documents and SettingsChmielPulpitHijackThis.exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = file:///C:/Documents%20and%20Settings/Chmiel/Moje%20dokumenty/w.html

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza

O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:Program FilesGetRightxx2gr.dll

O2 - BHO: Burn4Free Toolbar Helper - {F8E5CA21-C27B-43e7-B2BE-4CA93C9F9A1F} - C:Program FilesBurn4Free Toolbarv2.0.0.0Burn4Free_Toolbar.dll

O3 - Toolbar: Burn4Free Toolbar - {70DE7956-479D-4eb7-8641-2B45774C350E} - C:Program FilesBurn4Free Toolbarv2.0.0.0Burn4Free_Toolbar.dll

O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [nwiz] nwiz.exe /install

O4 - HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSsystem32spooldriversw32x863hpztsb07.exe

O4 - HKLM..Run: [MULTIMEDIA KEYBOARD] C:Program FilesNetropaMultimedia KeyboardMMKeybd.exe

O4 - HKLM..Run: [EM_EXEC] C:PROGRA~1LogitechMOUSEW~1SYSTEMEM_EXEC.EXE

O4 - HKLM..Run: [DAEMON Tools-1033] "D:Programydaemon.exe" -lang 1033

O4 - HKLM..Run: [sunJavaUpdateSched] C:Program FilesJavajre1.5.0_01binjusched.exe

O4 - HKLM..Run: [TkBellExe] "C:Program FilesCommon FilesRealUpdate_OBrealsched.exe" -osboot

O4 - HKLM..Run: [PCSuiteTrayApplication] D:Programynoki 6230Nokia PC Suite 6LaunchApplication.exe -onlytray

O4 - HKLM..Run: [QuickTime Task] "c:documents and settingschmielpulpitqttask.exe" -atboottime

O4 - HKLM..Run: [ABmenu] C:Program FilesArcaVirBinABmenu.exe

O4 - HKLM..Run: [ABREGMON] C:Program FilesArcaVirBinABregmon.exe

O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit

O4 - HKLM..Run: [Anti-Blaxx Manager] D:ProgramyAnti-BlaxxAnti-Blaxx.exe

O4 - HKLM..Run: [RemoteControl] D:ProgramypowDVDPDVDServ.exe

O4 - HKLM..Run: [WinampAgent] D:ProgramyWinampwinampa.exe

O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k

O4 - HKLM..Run: [MSConfig] C:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /auto

O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe

O4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background

O4 - HKCU..Run: [Gadu-Gadu] "D:ProgramyGADU-G~1GADU-G~1gg.exe" /tray

O4 - Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe

O4 - Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe

O4 - Global Startup: GetRight - Tray Icon.lnk = C:Program FilesGetRightgetright.exe

O8 - Extra context menu item: Download with GetRight - C:Program FilesGetRightGRdownload.htm

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O8 - Extra context menu item: Open with GetRight Browser - C:Program FilesGetRightGRbrowse.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab

O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://skaner.mks.com.pl/SkanerOnline.cab

O17 - HKLMSystemCCSServicesTcpip..{7680F496-1A2C-4233-893C-293984DC1EEF}: NameServer = 194.204.152.34 217.98.63.164

O23 - Service: ArcaBit NetMonitor (ABNetMon) - ArcaBit sp. z o.o. - C:Program FilesArcaVirBinNetMonSv.exe

O23 - Service: Adobe LM Service - Unknown owner - C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe

O23 - Service: ArcaVir Monitor (ArcaMonSvc) - Unknown owner - C:Program FilesArcaVirBinavmonsv.exe

O23 - Service: ArcaScan - ArcaBit - C:Program FilesArcaVirBinArcaScan.exe

O23 - Service: arcaserv - ArcaBit Sp. z o. o. - C:Program FilesArcaVirbinarcaserv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:Program FilesNetropaMultimedia Keyboardnhksrv.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:Program FilesCommon FilesPanda SoftwarePavShldpavprsrv.exe

O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:WINDOWSsystem32UAService7.exe

Link do komentarza
Udostępnij na innych stronach

nie ma źle, do wywalenia:

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = file:///C:/Documents%20and%20Settings/Chmiel/Moje%20dokumenty/w.html

O2 - BHO: Burn4Free Toolbar Helper - {F8E5CA21-C27B-43e7-B2BE-4CA93C9F9A1F} - C:Program FilesBurn4Free Toolbarv2.0.0.0Burn4Free_Toolbar.dll

O3 - Toolbar: Burn4Free Toolbar - {70DE7956-479D-4eb7-8641-2B45774C350E} - C:Program FilesBurn4Free Toolbarv2.0.0.0Burn4Free_Toolbar.dll

procedura postępowania tak jak wyżej podałem. w sumie możesz to zrobić w awaryjnym, nawet lepiej będzie.

a masz jakiś konkretny problem, czy profilaktyka?

Link do komentarza
Udostępnij na innych stronach

Nie rozumiem was. Po co się męczyć zainstalujcie easy cleanera i wystarczy tam kliknąc na rejestr/znajdź/i jak znajdzie to - usuń wszystko i po kłopocie. Program usuwa także niepotrzebne pliki, czyści historie i MRU oraz Ciasteczka. Program darmowy. :lol:

Link do komentarza
Udostępnij na innych stronach

Logfile of HijackThis v1.99.1

Scan saved at 22:09:34, on 2005-12-14

Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesCommon FilesSymantec SharedccProxy.exe

C:WINDOWSExplorer.EXE

C:Program FilesCommon FilesSymantec SharedccSetMgr.exe

C:Program FilesNorton Internet SecurityISSVC.exe

C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe

C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe

C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe

C:Program FilesRazerrazertra.exe

C:Program FilesCommon FilesSymantec SharedccApp.exe

C:WINDOWSSOUNDMAN.EXE

C:Program FilesRazerrazerofa.exe

C:Program FilesRazerrazerhid.exe

C:WINDOWSSystem32RUNDLL32.EXE

C:Program FilesPicasa2PicasaMediaDetector.exe

C:Program FilesDAEMON Toolsdaemon.exe

C:WINDOWSsystem32spoolsv.exe

C:Program FilesNorton Internet SecurityNorton AntiVirusnavapsvc.exe

C:WINDOWSSystem32nvsvc32.exe

C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe

C:WINDOWSSystem32tlntsvr.exe

C:Program FilesNeostrada TPNeostradaTP.exe

C:Program FilesNeostrada TPComComp.exe

C:Program FilesNeostrada TPWatch.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSSystem32wuauclt.exe

C:Program Filesinternetowemozillafirefox.exe

C:Program FilesinternetowegadulecGadu-Gadugg.exe

C:Program FilesWindows Media Playerwmplayer.exe

C:Documents and SettingskuubaaPulpithijackthis_199HijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://szukaj.wp.pl

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.neostrada.pl

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Neostrada TP

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:PROGRA~1NEOSTR~1SEARCH~1.DLL

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll

O2 - BHO: ohb - {999A06FF-10EF-4A29-8640-69E99882C26B} - (no file)

O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll

O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:Program FilesNorton Internet SecurityNorton AntiVirusNavShExt.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINDOWSSystem32msdxm.ocx

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll

O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:Program FilesNorton Internet SecurityNorton AntiVirusNavShExt.dll

O4 - HKLM..Run: [razertra] C:Program FilesRazerrazertra.exe

O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"

O4 - HKLM..Run: [sSC_UserPrompt] C:Program FilesCommon FilesSymantec SharedSecurity CenterUsrPrmpt.exe

O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM..Run: [razer] C:Program FilesRazerrazerhid.exe

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [nwiz] nwiz.exe /install

O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSSystem32NvMcTray.dll,NvTaskbarInit

O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe

O4 - HKLM..Run: [Picasa Media Detector] C:Program FilesPicasa2PicasaMediaDetector.exe

O4 - HKLM..Run: [DAEMON Tools] "C:Program FilesDAEMON Toolsdaemon.exe" -lang 1033

O4 - HKCU..Run: [googletalk] "C:Program FilesGoogleGoogle Talkgoogletalk.exe" /autostart

O8 - Extra context menu item: Add selected links to Link Container - C:PROGRA~1ANTIVI~1WEBFIL~1SystemScriptsoff_collector_sel.htm

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000

O8 - Extra context menu item: Show domain links - C:PROGRA~1ANTIVI~1WEBFIL~1SystemScriptsoff_domain_links.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll

O9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.js

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll

O17 - HKLMSystemCCSServicesTcpip..{F4424CA0-9974-4256-A9A3-3B421198BC25}: NameServer = 194.204.152.34 217.98.63.164

O23 - Service: CA ISafe (CAISafe) - Unknown owner - C:WINDOWSSystem32ZoneLabsisafe.exe (file missing)

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe

O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccProxy.exe

O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver1050Intel 32IDriverT.exe

O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:Program FilesNorton Internet SecurityISSVC.exe

O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:Program FilesNorton Internet SecurityNorton AntiVirusnavapsvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSSystem32nvsvc32.exe

O23 - Service: SAVScan - Symantec Corporation - C:Program FilesNorton Internet SecurityNorton AntiVirusSAVScan.exe

O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:PROGRA~1COMMON~1SYMANT~1SCRIPT~1SBServ.exe

O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe

O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe

O23 - Service: Symantec Core LC - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Unknown owner - C:WINDOWSsystem32ZoneLabsvsmon.exe (file missing)

Moglbym prosic o jakas analize? I pomoc we wskazaniu elementow do usuniecia. Z gory dziekuje.

Link do komentarza
Udostępnij na innych stronach

do usunięcia:

O2 - BHO: ohb - {999A06FF-10EF-4A29-8640-69E99882C26B} - (no file)

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O9 - Extra button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:Program FilesCommon Filesmoje.js <- jeśli wiesz co to jest, to zostaw, jeśli nie, wywal

O10 - Unknown file in Winsock LSP: c:windowssystem32ua_lsp.dll <- przeskanuj tym lspfix.

te dwa są nieszkodliwe, ale jak wiszisz (file missing) więc jeśli chcesz możesz usunąć.

O23 - Service: CA ISafe (CAISafe) - Unknown owner - C:WINDOWSSystem32ZoneLabsisafe.exe (file missing)

O23 - Service: TrueVector Internet Monitor (vsmon) - Unknown owner - C:WINDOWSsystem32ZoneLabsvsmon.exe (file missing)

w sumie nie ma najgorzej. gorąco polecałbym odinstalowanie aplikacji neostrady i stworzenie połączenia ręcznie (a później do tego np autoconnect i jest miodzio).

jeśli masz z czymś konkretnym problem to napisz co i jak.

Link do komentarza
Udostępnij na innych stronach

chodzilo mi o to, ze cos mi sie ostatnio komp czesto resetowal i minimalizowalo mi aplikacje czesto dosyc... Mam nadzieje ze teraz sie to uspokoi.

Mam takie pytanie odnosnie tej neostrady. W jaki sposob mam to zrobic? W tej kwestii jestem zupelnie zielony...

Link do komentarza
Udostępnij na innych stronach

nastukałem wszystko krok po kroku, ale poszło się wietrzyć, więc masz w zamian link z obrazkami kroczek po kroczku, równie dobry jak mój opis.

3 ostatnie kroki tyczą się programu autoconnect, który bardzo polecam.

http://shider.net/AutoConnect/nowe_polaczenie/index.html

powodzenia.

ps. na google bez problemu znalazłbyś opis...

Link do komentarza
Udostępnij na innych stronach

Witam! poraz kolejny prosze o pomoc.

Logfile of HijackThis v1.99.1

Scan saved at 13:30:55, on 2006-06-20

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSSYSTEM32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSExplorer.EXE

C:Program FilesArcaVirBinABmenu.exe

C:Program FilesArcaVirBinABregmon.exe

C:Documents and SettingsChmielPulpitHijackThis.exe

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =

R1 - HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://uts.ubi.com/stats.aspx?system=DEMOT...mp;hds=807d3b5f (obfuscated)

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza

O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:Program FilesGetRightxx2gr.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.5.0_06binssv.dll

O3 - Toolbar: TextAloud - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - D:ProgramyTextAloudTAForIE.dll

O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [nwiz] nwiz.exe /install

O4 - HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSsystem32spooldriversw32x863hpztsb07.exe

O4 - HKLM..Run: [MULTIMEDIA KEYBOARD] C:Program FilesNetropaMultimedia KeyboardMMKeybd.exe

O4 - HKLM..Run: [EM_EXEC] C:PROGRA~1LogitechMOUSEW~1SYSTEMEM_EXEC.EXE

O4 - HKLM..Run: [sunJavaUpdateSched] C:Program FilesJavajre1.5.0_06binjusched.exe

O4 - HKLM..Run: [QuickTime Task] "c:documents and settingschmielpulpitqttask.exe" -atboottime

O4 - HKLM..Run: [ABmenu] C:Program FilesArcaVirBinABmenu.exe

O4 - HKLM..Run: [ABREGMON] C:Program FilesArcaVirBinABregmon.exe

O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k

O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit

O4 - HKLM..Run: [DAEMON Tools] "D:ProgramydaemonDAEMON Toolsdaemon.exe" -lang 1033

O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe

O4 - Global Startup: DSLMON.lnk = C:Program FilesSAGEMSAGEM F@st 800-840dslmon.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_06binnpjpi150_06.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_06binnpjpi150_06.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe

O23 - Service: ArcaBit NetMonitor (ABNetMon) - ArcaBit sp. z o.o. - C:Program FilesArcaVirBinNetMonSv.exe

O23 - Service: Adobe LM Service - Unknown owner - C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe

O23 - Service: ArcaVir Monitor (ArcaMonSvc) - Unknown owner - C:Program FilesArcaVirBinavmonsv.exe

O23 - Service: ArcaScan - ArcaBit - C:Program FilesArcaVirBinArcaScan.exe

O23 - Service: arcaserv - ArcaBit Sp. z o. o. - C:Program FilesArcaVirbinarcaserv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:Program FilesAheadInCDInCDsrv.exe

O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:Program FilesNetropaMultimedia Keyboardnhksrv.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:Program FilesCommon FilesPanda SoftwarePavShldpavprsrv.exe

Link do komentarza
Udostępnij na innych stronach



  • Kto przegląda   0 użytkowników

    • Brak zalogowanych użytkowników przeglądających tę stronę.
×
×
  • Utwórz nowe...