Gubi internet ;/

borgi · 11 Listopad 2007 22:33

Już raz takie coś miałem…tylko strzeliłem formata i przeszło…lecz wróciło ;/ a formata znowu nie chce robić ;/ pomóżcie.oto log :

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:18:44, on 2007-11-11 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\FSGK32.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\VDOTool\TBPanel.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe C:\Program Files\F-Secure Internet Security\FSAUA\program\fsus.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsav32.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\uTorrent\uTorrent.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O4 - HKLM…\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM…\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM…\Run: [soundMAX] “C:\Program Files\Analog Devices\SoundMAX\Smax4.exe” /tray O4 - HKLM…\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe /A O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [Creative Mouse Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Mouse Software 1] C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe O4 - HKLM…\Run: [Creative Keyboard Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Keyboard Software 1] C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe O4 - HKLM…\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM…\Run: [speedTouch USB Diagnostics] “C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” /icon O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” O4 - HKLM…\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM…\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime O4 - HKLM…\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM…\Run: [iSUSScheduler] “C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe” -start O4 - HKLM…\Run: [sony Ericsson PC Suite] “C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” /startoptions O4 - HKLM…\Run: [F-Secure Manager] “C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE” /splash O4 - HKLM…\Run: [F-Secure TNB] “C:\Program Files\F-Secure Internet Security\FSGUI\TNBUtil.exe” /CHECKALL /WAITFORSW O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] “C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe” O4 - HKCU…\Run: [Gadu-Gadu] “C:\Program Files\Gadu-Gadu\gg.exe” /tray O4 - HKCU…\Run: [skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized O4 - HKCU…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033 O4 - HKCU…\Run: [Windows Update] C:\WINDOWS\system32\svchost.exe O4 - HKCU…\Run: [DAEMON Tools Pro Agent] “C:\Program Files\DAEMON Tools Pro\DTProAgent.exe” O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’) O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso … 9966314531 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s … wflash.cab O17 - HKLM\System\CCS\Services\Tcpip…{868117DF-8309-4C40-851D-D41CC4500794}: NameServer = 213.241.79.37 83.238.255.76 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe – End of file - 10299 bytes

Gutek · 11 Listopad 2007 23:30

usuń wpis HJT

Pobierz program SDFix

borgi · 12 Listopad 2007 07:56

SDFix: Version 1.114 Run by Maciek on 2007-11-12 at 07:36 Microsoft Windows XP [Wersja 5.1.2600] Running From: C:\SDFix Safe Mode: Checking Services: Restoring Windows Registry Values Restoring Windows Default Hosts File Rebooting… Normal Mode: Checking Files: Trojan Files Found: C:\DOCUME~1\Maciek\USTAWI~1\Temp\uninstall.exe - Deleted Removing Temp Files… ADS Check: C:\WINDOWS No streams found. C:\WINDOWS\system32 No streams found. C:\WINDOWS\system32\svchost.exe No streams found. C:\WINDOWS\system32\ntoskrnl.exe No streams found. Final Check: catchme 0.3.1262.1 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-12 07:39:45 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden services & system hive … [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] “s1”=dword:2df9c43f “s2”=dword:110480d0 “h0”=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] “p0”=“C:\Program Files\DAEMON Tools Pro” “h0”=dword:00000001 “hdf12”=hex:52,e6,34,3a,07,bb,71,13,ce,4a,96,25,97,42,23,1f,90,d6,f2,b9,d4,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001] “a0”=hex:20,01,00,00,81,6d,32,5f,94,40,79,b0,21,3f,5d,7c,df,d3,63,5b,c7,… “hdf12”=hex:4f,aa,b0,e1,c8,b8,e9,d9,4d,17,5b,ad,7c,67,96,44,28,4c,80,45,a7,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0] “hdf12”=hex:78,ae,83,6e,68,a2,a8,50,59,67,dc,a0,a7,68,ee,68,61,c6,86,2d,f3,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002] “a0”=hex:20,01,00,00,2c,45,34,5f,9d,18,14,01,0c,e1,31,12,f1,d7,42,a2,61,… “hdf12”=hex:db,74,63,c8,43,6a,40,28,2f,3d,87,3e,48,f7,8e,1a,4b,1f,4b,03,26,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002\gdq0] “hdf12”=hex:f6,59,63,20,cc,9f,fd,2c,7f,9b,05,2e,20,30,7b,4d,a0,0e,60,49,9c,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] “p0”=“C:\Program Files\DAEMON Tools” “h0”=dword:00000000 “khjeh”=hex:6a,5b,72,6f,00,10,b9,1f,1b,c6,73,12,20,b2,39,b4,07,6d,d2,4e,f6,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] “a0”=hex:20,01,00,00,50,83,0c,ae,41,aa,b6,c0,c8,fc,84,c9,04,c7,24,1b,86,… “khjeh”=hex:00,4d,97,1b,d2,d6,30,6f,22,ca,49,c4,00,7b,32,89,aa,81,bd,06,ee,… [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] “khjeh”=hex:fe,fe,e3,3d,2d,1a,83,93,bd,73,0a,99,3a,b4,88,2c,8d,90,18,59,4b,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] “p0”=“C:\Program Files\DAEMON Tools Pro” “h0”=dword:00000001 “hdf12”=hex:52,e6,34,3a,07,bb,71,13,ce,4a,96,25,97,42,23,1f,90,d6,f2,b9,d4,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001] “a0”=hex:20,01,00,00,81,6d,32,5f,94,40,79,b0,21,3f,5d,7c,df,d3,63,5b,c7,… “hdf12”=hex:4f,aa,b0,e1,c8,b8,e9,d9,4d,17,5b,ad,7c,67,96,44,28,4c,80,45,a7,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0] “hdf12”=hex:78,ae,83,6e,68,a2,a8,50,59,67,dc,a0,a7,68,ee,68,61,c6,86,2d,f3,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002] “a0”=hex:20,01,00,00,2c,45,34,5f,9d,18,14,01,0c,e1,31,12,f1,d7,42,a2,61,… “hdf12”=hex:db,74,63,c8,43,6a,40,28,2f,3d,87,3e,48,f7,8e,1a,4b,1f,4b,03,26,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002\gdq0] “hdf12”=hex:f6,59,63,20,cc,9f,fd,2c,7f,9b,05,2e,20,30,7b,4d,a0,0e,60,49,9c,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] “p0”=“C:\Program Files\DAEMON Tools” “h0”=dword:00000000 “khjeh”=hex:6a,5b,72,6f,00,10,b9,1f,1b,c6,73,12,20,b2,39,b4,07,6d,d2,4e,f6,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] “a0”=hex:20,01,00,00,50,83,0c,ae,41,aa,b6,c0,c8,fc,84,c9,04,c7,24,1b,86,… “khjeh”=hex:00,4d,97,1b,d2,d6,30,6f,22,ca,49,c4,00,7b,32,89,aa,81,bd,06,ee,… [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] “khjeh”=hex:fe,fe,e3,3d,2d,1a,83,93,bd,73,0a,99,3a,b4,88,2c,8d,90,18,59,4b,… scanning hidden registry entries … [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\A\1\5\1c] “Order”=hex:08,00,00,00,02,00,00,00,b8,01,00,00,01,00,00,00,04,00,00,00,8c,… scanning hidden files … scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services: ------------------ Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" “C:\Program Files\uTorrent\uTorrent.exe”=“C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:uTorrent” “%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" “C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\diskw\usr\local\Apache2\bin\Apache.exe”=“C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\diskw\usr\local\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server” “C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\diskw\usr\local\mysql\bin\mysqld-nt.exe”=“C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\diskw\usr\local\mysql\bin\mysqld-nt.exe:*:Enabled:mysqld-nt” “C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\logonserver.exe”=“C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\logonserver.exe:*:Enabled:logonserver” “C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\ascent.exe”=“C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\ascent.exe:*:Enabled:ascent” “C:\Program Files\Gadu-Gadu\gg.exe”=“C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program g˘wny” “C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\start.bat”=“C:\Documents and Settings\Maciek\Pulpit\WoWPlanet-Forumwow.Net-Ascent-TBC~15.09.07~\start.bat:*:Enabled:start” “C:\Documents and Settings\Maciek\Ustawienia lokalne\Temp\nsh539.tmp\utorrent.exe”=“C:\Documents and Settings\Maciek\Ustawienia lokalne\Temp\nsh539.tmp\utorrent.exe:*:Enabled:uTorrent” “C:\Program Files\World of Warcraft\Repair.exe”=“C:\Program Files\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility” “C:\Program Files\mIRC\mirc.exe”=“C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC” “C:\Program Files\Mozilla Firefox\firefox.exe”=“C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox” “C:\Program Files\Warcraft III\Warcraft III.exe”=“C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III” “C:\Documents and Settings\Maciek\Pulpit\CabalTemp\ESTSetupLoader.exe”=“C:\Documents and Settings\Maciek\Pulpit\CabalTemp\ESTSetupLoader.exe:*:Enabled:EST! download engine” “C:\Program Files\BearShare Applications\BearShare\BearShare.exe”=“C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare” “C:\Program Files\The All-Seeing Eye\eye.exe”=“C:\Program Files\The All-Seeing Eye\eye.exe:*:Enabled:Yahoo! All-Seeing Eye” “D:\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe”=“D:\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer” “C:\Program Files\Skype\Phone\Skype.exe”=“C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype” [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" “%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" Remaining Files: --------------- File Backups: - C:\SDFix\backups\backups.zip Files with Hidden Attributes: Thu 20 Sep 2007 0 A…H. — “C:\WINDOWS\SoftwareDistribution\Download\8d097da1e8c89a333191843e23dfc161\BIT8.tmp” Finished!

zapomniałem usunać wpis HJT ale juz go nie ma…

Złączono Posta : 12.11.2007 (Pon) 9:01

chyba…sie usunał…ale nie wiem…zobacze… btw.sorki ale nie moglem znalezc “edit”

Złączono Posta : 12.11.2007 (Pon) 9:02

dla bezpieczenstwa dam log hijackthis :

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:18:44, on 2007-11-11 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\FSGK32.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\VDOTool\TBPanel.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe C:\Program Files\F-Secure Internet Security\FSAUA\program\fsus.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsav32.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\uTorrent\uTorrent.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O4 - HKLM…\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM…\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM…\Run: [soundMAX] “C:\Program Files\Analog Devices\SoundMAX\Smax4.exe” /tray O4 - HKLM…\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe /A O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [Creative Mouse Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Mouse Software 1] C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe O4 - HKLM…\Run: [Creative Keyboard Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Keyboard Software 1] C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe O4 - HKLM…\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM…\Run: [speedTouch USB Diagnostics] “C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” /icon O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” O4 - HKLM…\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM…\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime O4 - HKLM…\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM…\Run: [iSUSScheduler] “C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe” -start O4 - HKLM…\Run: [sony Ericsson PC Suite] “C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” /startoptions O4 - HKLM…\Run: [F-Secure Manager] “C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE” /splash O4 - HKLM…\Run: [F-Secure TNB] “C:\Program Files\F-Secure Internet Security\FSGUI\TNBUtil.exe” /CHECKALL /WAITFORSW O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] “C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe” O4 - HKCU…\Run: [Gadu-Gadu] “C:\Program Files\Gadu-Gadu\gg.exe” /tray O4 - HKCU…\Run: [skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized O4 - HKCU…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033 O4 - HKCU…\Run: [Windows Update] C:\WINDOWS\system32\svchost.exe O4 - HKCU…\Run: [DAEMON Tools Pro Agent] “C:\Program Files\DAEMON Tools Pro\DTProAgent.exe” O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’) O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso … 9966314531 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s … wflash.cab O17 - HKLM\System\CCS\Services\Tcpip…{868117DF-8309-4C40-851D-D41CC4500794}: NameServer = 213.241.79.37 83.238.255.76 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe – End of file - 10299 bytes

MariuszListecki · 12 Listopad 2007 08:47

Przepraszam że pytam ale jaki to net kabel radio satelita czy jeszcze inne ustrojstwo :o

borgi · 12 Listopad 2007 08:56

miałem kabel…i tak było…teraz mam modem i Netie i też jest

MariuszListecki · 12 Listopad 2007 09:02

To wątpliwe ale może to dostawca

borgi · 12 Listopad 2007 09:04

ale zeby dwoch? …sprawdzilem HJT…nie ma juz tego wpisu…

MariuszListecki · 12 Listopad 2007 09:15

W tym kraju niema rzeczy nie możliwych

Złączono Posta : 12.11.2007 (Pon) 10:19

Ale oki może sie mylę może to jakiś syf ale skoro mówisz że wpis usunięty to

raczej nie ja bym naprawdę obwiniał dostawcę

borgi · 12 Listopad 2007 09:25

heh…jak byl kiedys gosciu od osiedlowki…(bo taka wczesniej mialem) mowil ze plyta glowna…ale w takim razie po formacie tez by bylo…zobacze czy nadal tak bedzie…

Złączono Posta : 12.11.2007 (Pon) 16:15

nadal rozlacza;/

Złączono Posta : 12.11.2007 (Pon) 18:15

błagam pomóżcie, to strasznie wkurza…;//

Gutek · 12 Listopad 2007 17:19

usuń wpis HJT

Daj log z ComboFix

EDIT: Nowy log nie stary. Ok sprawdzam

borgi · 12 Listopad 2007 17:54

nie moglem usunac bo byl uzywany ;/ a gdy chcialem wylaczyc proces wlaczylo sie okno w wylaczaniem systemu… a oto log

ComboFix 07-11-08.1 - Maciek 2007-11-12 18:48:41.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.477 [GMT 1:00] Running from: C:\Documents and Settings\Maciek\Pulpit\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2007-10-12 to 2007-11-12 ))))))))))))))))))))))))))))))) . 2007-11-12 18:47 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-11-12 07:35 2007-11-11 23:15 2007-11-11 15:09 2007-11-07 21:48 2007-11-07 21:47 2007-11-07 21:28 6,928,497 --a------ C:\WINDOWS\system32\jcodec.dll 2007-11-07 21:28 18,165 --a------ C:\WINDOWS\system32\jcodecsh.dll 2007-11-07 21:25 2007-11-04 14:02 58,128 --a------ C:\WINDOWS\system32\drivers\fsdfw.sys 2007-11-04 14:02 37,008 --a------ C:\WINDOWS\system32\drivers\fsndis5.sys 2007-11-03 16:15 90,800 -ra------ C:\WINDOWS\system32\drivers\se27unic.sys 2007-11-03 16:15 18,704 -ra------ C:\WINDOWS\system32\drivers\se27nd5.sys 2007-11-03 16:15 4,128 -ra------ C:\WINDOWS\system32\drivers\se27cr.sys 2007-11-03 16:14 97,184 -ra------ C:\WINDOWS\system32\drivers\SE27mdm.sys 2007-11-03 16:14 88,688 -ra------ C:\WINDOWS\system32\drivers\SE27mgmt.sys 2007-11-03 16:14 86,560 -ra------ C:\WINDOWS\system32\drivers\SE27obex.sys 2007-11-03 16:14 61,600 -ra------ C:\WINDOWS\system32\drivers\SE27bus.sys 2007-11-03 16:14 9,360 -ra------ C:\WINDOWS\system32\drivers\SE27mdfl.sys 2007-11-03 16:14 6,240 -ra------ C:\WINDOWS\system32\drivers\SE27cmnt.sys 2007-11-03 16:14 6,240 -ra------ C:\WINDOWS\system32\drivers\SE27cm.sys 2007-11-03 16:14 5,872 -ra------ C:\WINDOWS\system32\drivers\SE27whnt.sys 2007-11-03 16:14 5,872 -ra------ C:\WINDOWS\system32\drivers\SE27wh.sys 2007-10-30 22:59 2007-10-29 22:18 97,088 -ra------ C:\WINDOWS\system32\drivers\se45mdm.sys 2007-10-29 22:18 90,800 -ra------ C:\WINDOWS\system32\drivers\se45unic.sys 2007-10-29 22:18 88,624 -ra------ C:\WINDOWS\system32\drivers\se45mgmt.sys 2007-10-29 22:18 86,432 -ra------ C:\WINDOWS\system32\drivers\se45obex.sys 2007-10-29 22:18 18,704 -ra------ C:\WINDOWS\system32\drivers\se45nd5.sys 2007-10-29 22:18 9,360 -ra------ C:\WINDOWS\system32\drivers\se45mdfl.sys 2007-10-29 22:18 6,240 -ra------ C:\WINDOWS\system32\drivers\se45cmnt.sys 2007-10-29 22:18 6,240 -ra------ C:\WINDOWS\system32\drivers\se45cm.sys 2007-10-29 22:18 4,128 -ra------ C:\WINDOWS\system32\drivers\se45cr.sys 2007-10-29 22:16 2007-10-29 22:10 2007-10-29 22:09 61,536 -ra------ C:\WINDOWS\system32\drivers\se45bus.sys 2007-10-29 22:09 5,872 -ra------ C:\WINDOWS\system32\drivers\se45whnt.sys 2007-10-29 22:09 5,872 -ra------ C:\WINDOWS\system32\drivers\se45wh.sys 2007-10-29 21:55 2007-10-29 21:54 2007-10-29 21:51 2007-10-29 21:50 2007-10-29 21:50 2007-10-29 21:50 2007-10-29 21:50 2007-10-28 20:24 2007-10-28 20:24 2007-10-28 20:22 2007-10-28 19:37 278,984 --a------ C:\WINDOWS\system32\drivers\atksgt.sys 2007-10-28 19:37 25,416 --a------ C:\WINDOWS\system32\drivers\lirsgt.sys 2007-10-28 19:36 3,727,720 --a------ C:\WINDOWS\system32\d3dx9_35.dll 2007-10-28 19:36 3,497,832 --a------ C:\WINDOWS\system32\d3dx9_34.dll 2007-10-28 19:36 1,358,192 --a------ C:\WINDOWS\system32\D3DCompiler_35.dll 2007-10-28 19:36 1,124,720 --a------ C:\WINDOWS\system32\D3DCompiler_34.dll 2007-10-28 19:36 444,776 --a------ C:\WINDOWS\system32\d3dx10_35.dll 2007-10-28 19:36 443,752 --a------ C:\WINDOWS\system32\d3dx10_34.dll 2007-10-28 19:36 267,112 --a------ C:\WINDOWS\system32\xactengine2_9.dll 2007-10-28 19:36 266,088 --a------ C:\WINDOWS\system32\xactengine2_8.dll 2007-10-28 19:36 18,280 --a------ C:\WINDOWS\system32\x3daudio1_2.dll 2007-10-28 18:57 2007-10-28 18:56 2007-10-24 20:41 2007-10-24 20:41 2007-10-22 16:27 2007-10-21 19:28 2007-10-19 19:03 2007-10-19 18:10 2007-10-19 18:07 685,816 --a------ C:\WINDOWS\system32\drivers\sptd.sys . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-11-12 17:47 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Skype 2007-11-12 17:40 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\uTorrent 2007-11-12 17:31 --------- d-----w C:\Program Files\DivX 2007-11-11 14:05 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-11-10 14:42 --------- d-----w C:\Program Files\Gadu-Gadu 2007-11-09 21:43 --------- d-----w C:\Program Files\F-Secure Internet Security 2007-11-09 21:37 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\fssg 2007-11-09 20:22 --------- d-----w C:\Program Files\World of Warcraft 2007-11-04 13:02 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\F-Secure 2007-10-30 15:50 --------- d-----w C:\Program Files\Kopia World of Warcraft 2007-10-29 16:12 --------- d-----w C:\Program Files\Java 2007-10-26 16:42 --------- d-----w C:\Program Files\Winamp 2007-10-25 20:05 --------- d-----w C:\Program Files\MobMapUpdater 2007-10-24 20:42 --------- d-----w C:\Program Files\Silkroad 2007-10-22 15:23 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-10-16 15:39 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\F-Secure 2007-10-10 16:16 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\mIRC 2007-10-09 17:53 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Ahead 2007-10-09 12:21 --------- d-----w C:\Program Files\Mozilla Thunderbird 2007-09-28 10:18 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Apple Computer 2007-09-28 10:17 --------- d-----w C:\Program Files\QuickTime 2007-09-28 10:16 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer 2007-09-19 15:39 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Media Player Classic 2007-09-18 14:34 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\LightScribe 2007-09-17 18:26 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Sony Corporation 2007-09-17 09:22 --------- d-----w C:\Program Files\Microsoft Works 2007-09-17 09:20 --------- d-----w C:\Program Files\MSXML 6.0 2007-09-16 18:31 --------- d-----w C:\Program Files\Reference Assemblies 2007-09-16 18:31 --------- d-----w C:\Program Files\MSBuild 2007-09-16 16:40 --------- d-----w C:\Program Files\Common Files\Java 2007-09-16 15:38 --------- d-----w C:\Program Files\uTorrent 2007-09-16 14:33 --------- d-----w C:\Program Files\Common Files\Blizzard Entertainment 2007-09-16 14:14 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Thunderbird 2007-09-16 13:50 --------- d-----w C:\Program Files\Thomson 2007-09-16 13:47 --------- d-----w C:\Program Files\K-Lite Codec Pack 2007-09-16 13:44 --------- d-----w C:\Program Files\Skype 2007-09-16 13:44 --------- d-----w C:\Program Files\Common Files\Skype 2007-09-16 13:44 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Skype 2007-09-16 13:43 --------- d-----w C:\Documents and Settings\Maciek\Dane aplikacji\Gadu-Gadu 2007-09-16 13:23 --------- d-----w C:\Program Files\Microsoft.NET 2007-09-16 13:10 --------- d-----w C:\Program Files\Sony Corporation 2007-09-16 13:10 --------- d-----w C:\Program Files\Sony 2007-09-16 13:10 --------- d-----w C:\Program Files\Common Files\Sony Shared 2007-09-16 13:09 151,552 ------w C:\WINDOWS\system32\pxwma.dll 2007-09-16 13:09 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Sony Corporation 2007-09-16 13:07 --------- d-----w C:\Program Files\Common Files\LightScribe 2007-09-16 13:07 --------- d-----w C:\Program Files\Common Files\Ahead 2007-09-16 13:04 --------- d-----w C:\Program Files\Nero 2007-09-16 13:04 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Nero 2007-09-16 13:01 --------- d-----w C:\Program Files\Creative 2007-09-16 12:50 --------- d-----w C:\Program Files\VDOTool 2007-09-16 12:49 --------- d-----w C:\Program Files\Common Files\Adobe 2007-09-16 12:47 --------- d-----w C:\Program Files\Realtek 2007-09-16 12:43 --------- d-----w C:\Program Files\Analog Devices 2007-09-16 12:40 --------- d-----w C:\Program Files\Intel 2007-09-16 11:39 --------- d-----w C:\Program Files\microsoft frontpage 2007-09-16 11:38 --------- d-----w C:\Program Files\Usługi online 2007-09-11 23:14 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2007-08-21 06:18 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-08-15 22:33 129,784 ------w C:\WINDOWS\system32\pxafs.dll 2007-08-15 22:33 120,056 ------w C:\WINDOWS\system32\pxcpyi64.exe 2007-08-15 22:33 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “High Definition Audio Property Page Shortcut”=“HDAShCut.exe” [2004-10-27 14:21 C:\WINDOWS\system32\HdAShCut.exe] “SoundMAXPnP”=“C:\Program Files\Analog Devices\Core\smax4pnp.exe” [2005-05-18 09:00] “SoundMAX”=“C:\Program Files\Analog Devices\SoundMAX\Smax4.exe” [2005-07-26 08:54] “Gainward”=“C:\Program Files\VDOTool\TBPanel.exe” [2007-02-01 17:47] “NvCplDaemon”=“C:\WINDOWS\system32\NvCpl.dll” [2007-03-01 06:36] “nwiz”=“nwiz.exe” [2007-03-01 06:36 C:\WINDOWS\system32\nwiz.exe] “NvMediaCenter”=“C:\WINDOWS\system32\NvMcTray.dll” [2007-03-01 06:36] “Creative Mouse Software”=“C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe” [2005-10-24 13:52] “Creative Mouse Software 1”=“C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe” [2005-03-15 12:18] “Creative Keyboard Software”=“C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe” [2005-10-24 13:52] “Creative Keyboard Software 1”=“C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe” [2005-04-05 00:11] “NeroFilterCheck”=“C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe” [2006-01-12 14:40] “SpeedTouch USB Diagnostics”=“C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” [2004-03-23 11:06] “WinampAgent”=“C:\Program Files\Winamp\winampa.exe” [2007-05-14 23:22] “SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” [2007-09-25 01:11] “SsAAD.exe”=“C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe” [2005-01-24 18:58] “QuickTime Task”=“C:\Program Files\QuickTime\QTTask.exe” [2007-06-29 05:24] “ISUSPM Startup”=“C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe” [2004-04-17 11:41] “ISUSScheduler”=“C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe” [2004-04-13 05:07] “Sony Ericsson PC Suite”=“C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” [2006-11-24 01:06] “F-Secure Manager”=“C:\Program Files\F-Secure Internet Security\Common\FSM32.exe” [2007-05-25 14:12] “F-Secure TNB”=“C:\Program Files\F-Secure Internet Security\FSGUI\TNBUtil.exe” [2007-05-25 14:11] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-03 23:44] “BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}”=“C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe” [2006-12-23 17:05] “Gadu-Gadu”=“C:\Program Files\Gadu-Gadu\gg.exe” [2007-07-09 08:39] “Skype”=“C:\Program Files\Skype\Phone\Skype.exe” [2007-08-31 16:40] “DAEMON Tools”=“C:\Program Files\DAEMON Tools\daemon.exe” [2007-09-18 15:16] “DAEMON Tools Pro Agent”=“C:\Program Files\DAEMON Tools Pro\DTProAgent.exe” [2007-09-06 14:08] R0 FSFW;F-Secure Firewall Driver;C:\WINDOWS\system32\drivers\fsdfw.sys R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);C:\WINDOWS\system32\drivers\sfdrv01a.sys R1 F-Secure HIPS;F-Secure HIPS;??\C:\Program Files\F-Secure Internet Security\HIPS\fshs.sys R3 AEAudioService;AEAudio Service;C:\WINDOWS\system32\drivers\AEAudio.sys R3 F-Secure Gatekeeper;F-Secure Gatekeeper;??\C:\Program Files\F-Secure Internet Security\Anti-Virus\minifilter\fsgk.sys S3 CEDRIVER53;CEDRIVER53;??\C:\Program Files\Cheat Engine\dbk32.sys S3 usb2vcom;USB to Serial Bridge Controller;C:\WINDOWS\system32\Drivers\usb2vcom.sys S4 F-Secure Filter;F-Secure File System Filter;??\C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSfilter.sys S4 F-Secure Recognizer;F-Secure File System Recognizer;??\C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSrec.sys [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components{ECABE060-DAD2-D904-EED9-EF6419549337}] C:\WINDOWS\system32\svchost.exe . ************************************************************************** catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-12 18:50:13 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden autostart entries … scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2007-11-12 18:50:44 . — E O F —

Złączono Posta : 12.11.2007 (Pon) 18:56

dodam jeszcze HJT

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:55:15, on 2007-11-12 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\FSGK32.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\VDOTool\TBPanel.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe C:\Program Files\F-Secure Internet Security\FSAUA\program\fsus.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsav32.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O4 - HKLM…\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM…\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM…\Run: [soundMAX] “C:\Program Files\Analog Devices\SoundMAX\Smax4.exe” /tray O4 - HKLM…\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe /A O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [Creative Mouse Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Mouse Software 1] C:\Program Files\Creative\Input Devices\MOUSE\CTPoint.exe O4 - HKLM…\Run: [Creative Keyboard Software] C:\Program Files\Creative\Shared Files\CIDS\CTStray.exe O4 - HKLM…\Run: [Creative Keyboard Software 1] C:\Program Files\Creative\Input Devices\Keyboard\CTType.exe O4 - HKLM…\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM…\Run: [speedTouch USB Diagnostics] “C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” /icon O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” O4 - HKLM…\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM…\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime O4 - HKLM…\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM…\Run: [iSUSScheduler] “C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe” -start O4 - HKLM…\Run: [sony Ericsson PC Suite] “C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe” /startoptions O4 - HKLM…\Run: [F-Secure Manager] “C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE” /splash O4 - HKLM…\Run: [F-Secure TNB] “C:\Program Files\F-Secure Internet Security\FSGUI\TNBUtil.exe” /CHECKALL /WAITFORSW O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] “C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe” O4 - HKCU…\Run: [Gadu-Gadu] “C:\Program Files\Gadu-Gadu\gg.exe” /tray O4 - HKCU…\Run: [skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized O4 - HKCU…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033 O4 - HKCU…\Run: [DAEMON Tools Pro Agent] “C:\Program Files\DAEMON Tools Pro\DTProAgent.exe” O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’) O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso … 9966314531 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s … wflash.cab O17 - HKLM\System\CCS\Services\Tcpip…{868117DF-8309-4C40-851D-D41CC4500794}: NameServer = 213.241.79.37 83.238.255.76 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FSAUA\program\fsaua.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe – End of file - 10191 bytes

Gutek · 12 Listopad 2007 18:09

Już jest Ok

borgi · 12 Listopad 2007 18:13

zobaczymy…jak mnie rozlaczy to napisze

Złączono Posta : 12.11.2007 (Pon) 23:17

mam prośbe o podanie komendy w cmd by sprawdzic lacze…pamietam jak facet od osiedlowki wpisywal cos tam cos tam i jakis ping i sie obciazala…i wtedy bylo widac czy przerywa czy nie…

Złączono Posta : 13.11.2007 (Wto) 16:16

przerywa ;//

Złączono Posta : 13.11.2007 (Wto) 21:10

pomoze ktos…bo juz nie wiem co robic…

Złączono Posta : 15.11.2007 (Czw) 16:09

czy ktos mi pomoze??

Złączono Posta : 18.11.2007 (Nie) 22:18

zmieniłem antywira i jest good;p