Błąd explorer.exe Log do sprawdzenia

Malpa92 · 15 Październik 2007 19:47

Coraz częściej pojawia mi się błąd exploler.exe dlatego postanowiłem to sprawdzić.

Logfile of HijackThis v1.99.1 Scan saved at 18:04:34, on 2007-10-15 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE C:\Program Files\Programy\Ashampoo FireWall\FireWall.exe C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe C:\WINDOWS\system32\ctfmon.exe C:\program files\gry\cs\steam.exe C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Programy\AQQ\AQQ.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\explorer.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Programy\DC++\DCPlusPlus.exe C:\Documents and Settings\Właściciel\Pulpit\Download\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\Programy\FlashGet\jccatch.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Programy\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\Programy\FlashGet\getflash.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM…\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM…\Run: [avgnt] “C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe” /min O4 - HKLM…\Run: [AtiPTA] atiptaxx.exe O4 - HKLM…\Run: [sony Ericsson PC Suite] “C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” /startoptions O4 - HKLM…\Run: [EPSON Stylus DX5000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE /FU “C:\WINDOWS\TEMP\E_SF6.tmp” /EF “HKLM” O4 - HKLM…\Run: [Ashampoo FireWall] “C:\Program Files\Programy\Ashampoo FireWall\FireWall.exe” -TRAY O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM…\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe O4 - HKLM…\Run: [!AVG Anti-Spyware] “C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe” /minimized O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [AQQ] C:\PROGRA~1\Programy\AQQ\AQQ.exe O4 - HKCU…\Run: [steam] “c:\program files\gry\cs\steam.exe” -silent O4 - HKCU…\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] “C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe” O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\Programy\FlashGet\jc_all.htm O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\Programy\FlashGet\jc_link.htm O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\Programy\MICROS~1\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Programy\MICROS~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\Programy\FlashGet\FlashGet.exe O9 - Extra ‘Tools’ menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\Programy\FlashGet\FlashGet.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O10 - Unknown file in Winsock LSP: c:\program files\programy\ashampoo firewall\spi.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

Z góry dzięki za pomoc :*

Piwollo · 15 Październik 2007 20:21

Spróbuj podmienić explorera:

Co do loga, nic nie widzę, ew. możesz dać loga z SR i CF

Gutek · 15 Październik 2007 21:49

Daj log z ComboFix

Zastosuj się do tego Tematu i zmień tytuł tematu na konkretny inaczej KOSZ

Pozdrawiam Gutek2222

Malpa92 · 16 Październik 2007 05:35

To chyba była wina jakiegoś wirusa bo po sprawdzeniu kompa paroma programami wykryło trochę syfu.

Log z ComboFix

ComboFix 07-10-12.4 - Waciciel 2007-10-16 7:32:55.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.588 [GMT 2:00] Running from: C:\Documents and Settings\Waciciel\Pulpit\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2007-09-16 to 2007-10-16 ))))))))))))))))))))))))))))))) . 2007-10-16 07:32 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-10-16 07:23 23 --ahs---- C:\WINDOWS\system32\acdebeeb3_r.dll 2007-10-15 21:45 2007-10-15 17:24 2007-10-15 17:24 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys 2007-10-15 17:16 2007-10-15 17:14 2007-10-15 17:14 2007-10-15 17:14 162,304 --a------ C:\WINDOWS\system32\ztvunrar36.dll 2007-10-15 17:14 153,088 --a------ C:\WINDOWS\system32\UNRAR3.dll 2007-10-15 17:14 77,312 --a------ C:\WINDOWS\system32\ztvunace26.dll 2007-10-15 17:14 75,264 --a------ C:\WINDOWS\system32\unacev2.dll 2007-10-15 17:14 69,632 --a------ C:\WINDOWS\system32\ztvcabinet.dll 2007-10-15 16:46 36,734 --a------ C:\WINDOWS\system32\OggDSuninst.exe 2007-10-10 20:02 2007-10-10 19:52 2007-10-10 19:52 2007-10-06 21:39 2007-10-06 11:24 2007-10-06 11:24 2007-10-05 13:56 2007-10-04 19:20 4,992 --a------ C:\WINDOWS\system32\drivers\loop.sys 2007-10-04 19:20 4,992 --a–c— C:\WINDOWS\system32\dllcache\loop.sys 2007-10-04 17:08 17,920 --a------ C:\WINDOWS\system32\mdimon.dll 2007-10-04 17:07 2007-10-04 17:07 2007-10-04 17:05 2007-10-04 17:02 682,232 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2007-10-04 16:38 2007-10-04 16:37 2007-10-04 16:35 73,216 --a------ C:\WINDOWS\system32\E_FLBBVE.DLL 2007-10-04 16:35 62,976 --a------ C:\WINDOWS\system32\E_FD4BBVE.DLL 2007-10-04 16:35 49,152 --a------ C:\WINDOWS\system32\E_DCINST.DLL 2007-10-04 16:35 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys 2007-10-04 16:35 31,616 --a–c— C:\WINDOWS\system32\dllcache\usbccgp.sys 2007-10-04 16:35 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys 2007-10-04 16:35 25,856 --a–c— C:\WINDOWS\system32\dllcache\usbprint.sys 2007-10-04 16:35 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys 2007-10-04 16:35 15,104 --a–c— C:\WINDOWS\system32\dllcache\usbscan.sys 2007-10-04 16:26 2007-10-04 16:26 63,488 --a------ C:\WINDOWS\system32\escwiad.dll 2007-10-03 16:45 2007-10-03 15:29 2007-10-03 13:58 2007-10-03 13:56 2007-10-03 07:22 26,496 --a–c— C:\WINDOWS\system32\dllcache\usbstor.sys 2007-10-02 21:41 2007-10-02 21:40 306,688 --a------ C:\WINDOWS\IsUninst.exe 2007-10-02 20:34 2007-10-02 20:34 2007-10-02 20:34 2007-10-02 20:33 2007-10-02 20:33 2007-10-02 20:32 2007-10-02 20:31 6,144 --a------ C:\WINDOWS\system32\drivers\k750cm.sys 2007-10-02 20:31 5,744 --a------ C:\WINDOWS\system32\drivers\k750wh.sys 2007-10-02 20:30 2007-10-02 16:02 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe 2007-10-02 15:10 2007-10-01 21:54 2007-10-01 21:38 516,096 --------- C:\WINDOWS\system32\ati2sgag.exe 2007-10-01 21:37 2007-10-01 21:35 2007-10-01 21:35 451,072 --a------ C:\WINDOWS\Radeon Omega Drivers v3.8.360 Uninstall.exe 2007-10-01 21:03 1,411 --a------ C:\WINDOWS\mozver.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-10-16 05:23 --------- d-----w C:\Program Files\Programy 2007-10-15 19:55 2,359,296 —ha-w C:\Documents and Settings\Właściciel\NTUSER.DAT 2007-10-13 13:53 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-10-04 14:41 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-10-02 18:43 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\AntiVir PersonalEdition Classic 2007-10-01 18:58 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy 2007-10-01 18:37 --------- d-----w C:\Program Files\Skype 2007-10-01 18:37 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Skype 2007-10-01 18:27 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2007-10-01 18:13 --------- d-----w C:\Program Files\Marvell 2007-10-01 18:12 --------- d-----w C:\Program Files\Realtek Sound Manager 2007-10-01 18:12 --------- d-----w C:\Program Files\AvRack 2007-10-01 18:06 --------- d-----w C:\Program Files\microsoft frontpage 2007-10-01 18:04 --------- d-----w C:\Program Files\Usługi online 2007-08-21 06:18 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-07-30 17:19 92,504 ----a-w C:\WINDOWS\system32\cdm.dll 2007-07-30 17:19 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll 2007-07-30 17:19 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe 2007-07-30 17:19 43,352 ----a-w C:\WINDOWS\system32\wups2.dll 2007-07-30 17:19 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll 2007-07-30 17:19 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll 2007-07-30 17:19 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll 2007-07-30 17:18 33,624 ----a-w C:\WINDOWS\system32\wups.dll 2007-07-26 23:06 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2007-07-26 23:06 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2007-07-19 22:57 267,112 ----a-w C:\WINDOWS\system32\xactengine2_9.dll 2007-07-19 22:54 18,280 ----a-w C:\WINDOWS\system32\x3daudio1_2.dll 2007-07-19 16:14 444,776 ----a-w C:\WINDOWS\system32\d3dx10_35.dll 2007-07-19 16:14 3,727,720 ----a-w C:\WINDOWS\system32\d3dx9_35.dll 2007-07-19 16:14 1,358,192 ----a-w C:\WINDOWS\system32\D3DCompiler_35.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “SoundMan”=“SOUNDMAN.EXE” [2005-04-15 05:01 C:\WINDOWS\SOUNDMAN.EXE] “avgnt”=“C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe” [2007-10-10 20:45] “AtiPTA”=“atiptaxx.exe” [2006-02-22 02:05 C:\WINDOWS\system32\atiptaxx.exe] “Sony Ericsson PC Suite”=“C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” [2005-10-26 16:17] “Ashampoo FireWall”=“C:\Program Files\Programy\Ashampoo FireWall\FireWall.exe” [2007-04-05 14:57] “NeroFilterCheck”=“C:\WINDOWS\system32\NeroCheck.exe” [2001-07-09 10:50] “TrojanScanner”=“C:\Program Files\Trojan Remover\Trjscan.exe” [2007-09-30 19:38] “!AVG Anti-Spyware”=“C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe” [2007-06-11 11:25] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [2006-03-02 14:00] “AQQ”=“C:\PROGRA~1\Programy\AQQ\AQQ.exe” [2007-02-28 14:18] “Steam”=“c:\program files\gry\cs\steam.exe” [2007-10-05 19:18] “BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}”=“C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe” [2005-10-28 16:25] R3 msloop;Sterownik karty Microsoft Loopback;C:\WINDOWS\system32\DRIVERS\loop.sys *Newly Created Service* - CATCHME . ************************************************************************** catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-10-16 07:34:05 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden autostart entries … scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2007-10-16 7:34:40 . — E O F —

adam9870 · 16 Październik 2007 14:21

Już jest Ok. Czy masz jeszcze jakieś problemy?

Kosmetyka:

Start >>> uruchom >>> msconfig >>> zakładka Uruchamianie => możesz odznaczyć w/w.

Jeśli nie korzystasz z zaawansowanych usług tekstowych to je wyłącz: Panel sterowania >>> Opcje regionalne >>> Języki >>> Szczegóły >>> Zaawansowane >>> zaznacz wyłącz zaawansowane usługi tekstowe.

W opcjach AQQ (Program >>> Ustawienia AQQ >>> Przy starcie AQQ >>> Automatycznie uruchom AQQ przy starcie systemu) możesz wyłączyć uruchamianie przy starcie systemu jeśli nie jest Ci potrzebne.

Dodatkowo możesz przejrzeć temat Optymalizacja i odchudzanie Windowsa XP.

Malpa92 · 16 Październik 2007 16:17

Kurde, chyba Was kocham ;* Wielkie dzięki za całą pomoc ; )