Czy może ktoś sprawdzić loga


(Felsky) #1

Nie wiem czy dobrze wkleiłem loga! Przy uruchomieniu systemu pokazuje mi ze brakuje pliku socks.exe!!!

Czy reszta jest ok?

Do loga brakuje chyba Running Processes, ale nie wiem dlaczego!

Logfile of HijackThis v1.99.1

Scan saved at 14:31:37, on 05-12-19

Platform: Windows NT 4 SP6 (WinNT 4.00.1381)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)


(Unable to list running processes (error#53))

R1 - HKCU/Software/Microsoft/Internet Explorer/Main,Search Page = http://men01/

R0 - HKCU/Software/Microsoft/Internet Explorer/Main,Start Page = http://men01/

R0 - HKLM/Software/Microsoft/Internet Explorer/Main,Local Page = 

R1 - HKCU/Software/Microsoft/Windows/CurrentVersion/Internet Settings,ProxyServer = http://men01:80

R1 - HKCU/Software/Microsoft/Windows/CurrentVersion/Internet Settings,ProxyOverride = http://men01

F2 - REG:system.ini: UserInit=userinit,nddeagnt.exe

O2 - BHO: HBO Class - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - C:/WINNT.SBS/INET20~1/300~1.11

O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:/PROGRA~1/FlashGet/Jccatch.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:/program files/google/googletoolbar1.dll

O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:/PROGRA~1/FlashGet/fgiebar.dll

O3 - Toolbar: Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:/program files/google/googletoolbar1.dll

O3 - Toolbar: Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:/WINNT.SBS/System32/msdxm.ocx

O4 - HKLM/../Run: [SystemTray] SysTray.Exe

O4 - HKLM/../Run: [BrowserWebCheck] loadwc.exe

O4 - HKLM/../Run: [MENLogOn] //MEN01/NETLOGON/MenLogOnNT

O4 - HKLM/../Run: [Microsoft standard protector] C:/WINNT.SBS/inet20096/socks.exe 20096

O4 - HKLM/../Run: [SchedulingAgent] mstinit.exe /logon

O4 - Startup: ATI Scheduler.lnk = C:/ati/atidesk/atisched.exe

O8 - Extra context menu item: Google Search - res://C:/Program Files/Google/GoogleToolbar1.dll/cmsearch.html

O8 - Extra context menu item: Backward Links - res://C:/Program Files/Google/GoogleToolbar1.dll/cmbacklinks.html

O8 - Extra context menu item: Cached Snapshot of Page - res://C:/Program Files/Google/GoogleToolbar1.dll/cmcache.html

O8 - Extra context menu item: Similar Pages - res://C:/Program Files/Google/GoogleToolbar1.dll/cmsimilar.html

O8 - Extra context menu item: Translate into English - res://C:/Program Files/Google/GoogleToolbar1.dll/cmtrans.html

O8 - Extra context menu item: Ściągnij przy pomocy FlashGet'a - C:/Program Files/FlashGet/jc_link.htm

O8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a - C:/Program Files/FlashGet/jc_all.htm

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:/WINNT.SBS/web/related.htm

O9 - Extra 'Tools' menuitem: Show Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:/WINNT.SBS/web/related.htm

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:/PROGRA~1/FlashGet/flashget.exe

O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:/PROGRA~1/FlashGet/flashget.exe

O13 - WWW. Prefix: http://

O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/180solutions/ie/bridge-c18.cab

O17 - HKLM/System/CCS/Services/Tcpip/Parameters: Domain = men.org.pl

O17 - HKLM/System/CS1/Services/Tcpip/Parameters: Domain = men.org.pl

O17 - HKLM/System/CS1/Services/Tcpip/Parameters: NameServer = 192.168.19.77

O17 - HKLM/System/CS2/Services/Tcpip/Parameters: Domain = men.org.pl

O17 - HKLM/System/CS2/Services/Tcpip/Parameters: NameServer = 192.168.19.77

O17 - HKLM/System/CCS/Services/Tcpip/Parameters: NameServer = 192.168.19.77


Wesołych Świąt

:slight_smile:


(Gutek) #2

usuń wpisy hijackiem w trybie awaryjnym a na czerwono zaznaczony folder ręcznie


(Felsky) #3

Dziękuję pięknie:)