Komp starsznie zmula

maksiurski · 15 Czerwiec 2007 13:31

heh, jako, że władza na tym forum działa sposobami Łukaszenki, zmienilem nazwe topiku (jakby to miało jakieś olbrzymie znaczenie hehe). Prosze w takim razie o sprawdzenie loga, komp mi strasznie wolno chodzi obawiam się ze nałapałem jakiegoś dziadostwa.

Logfile of HijackThis v1.99.1

Scan saved at 15:31:02, on 2007-06-15

Platform: Windows 2000 SP4 (WinNT 5.00.2195)

MSIE: Internet Explorer v5.00 SP4 (5.00.2920.0000)


Running processes:

E:\WINNT\System32\smss.exe

E:\WINNT\system32\winlogon.exe

E:\WINNT\system32\services.exe

E:\WINNT\system32\lsass.exe

E:\WINNT\system32\Ati2evxx.exe

E:\WINNT\system32\svchost.exe

E:\WINNT\system32\spoolsv.exe

E:\Program Files\AntiVir PersonalEdition Classic\sched.exe

E:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

E:\WINNT\System32\svchost.exe

E:\WINNT\system32\regsvc.exe

E:\WINNT\system32\MSTask.exe

E:\WINNT\system32\stisvc.exe

E:\WINNT\System32\WBEM\WinMgmt.exe

E:\WINNT\system32\mspmspsv.exe

E:\WINNT\system32\svchost.exe

E:\WINNT\system32\Ati2evxx.exe

E:\WINNT\Explorer.EXE

E:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

E:\Program Files\iTunes\iTunesHelper.exe

E:\Program Files\Lexmark 2300 Series\ezprint.exe

E:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe

E:\Program Files\iPod\bin\iPodService.exe

E:\WINNT\system32\lxcgcoms.exe

E:\WINNT\system32\wuauclt.exe

E:\Program Files\Mozilla Firefox\firefox.exe

E:\Program Files\Free Download Manager\fdm.exe

E:\Program Files\Last.fm\LastFM.exe

E:\Program Files\Gadu-Gadu\gg.exe

C:\hijackthis\HijackThis.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\adobre\ActiveX\AcroIEHelper.dll

O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL (file missing)

O2 - BHO: WgBHO Class - {67E9834D-B226-49E6-B6F6-85AA64E14BA3} - E:\Program Files\Free Download Manager\iefdm.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre1.5.0_09\bin\ssv.dll

O3 - Toolbar: @msdxmLC.dll,-1@1045,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINNT\System32\msdxm.ocx

O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - E:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL (file missing)

O4 - HKLM\..\Run: [avgnt] "E:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINNT\system32\NeroCheck.exe

O4 - HKLM\..\Run: [REGSHAVE] E:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN

O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon

O4 - HKLM\..\Run: [DAEMON Tools] "E:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "E:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [LXCGCATS] rundll32 E:\WINNT\system32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16

O4 - HKLM\..\Run: [lxcgmon.exe] "E:\Program Files\Lexmark 2300 Series\lxcgmon.exe"

O4 - HKLM\..\Run: [EzPrint] "E:\Program Files\Lexmark 2300 Series\ezprint.exe"

O4 - HKLM\..\Run: [FaxCenterServer] "E:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\RunServices: [mysvcig38] mysvcc.exe

O4 - HKCU\..\Run: [Gadu-Gadu] "E:\Program Files\Gadu-Gadu\gg.exe" /tray

O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "E:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"

O4 - Global Startup: Exif Launcher.lnk = E:\Program Files\FinePixViewer\QuickDCF.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\adobre\Reader\reader_sl.exe

O8 - Extra context menu item: Download all with Free Download Manager - file://E:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Download selected with Free Download Manager - file://E:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Download with Free Download Manager - file://E:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://D:\WINDOW~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.5.0_09\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.5.0_09\bin\ssv.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\WINDOW~1\OFFICE11\REFIEBAR.DLL

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - E:\Program Files\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - E:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINNT\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - E:\WINNT\system32\ati2sgag.exe

O23 - Service: Usługa administracyjna Menedżera dysków logicznych (dmadmin) - VERITAS Software Corp. - E:\WINNT\System32\dmadmin.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Computer, Inc. - E:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxcg_device - - E:\WINNT\system32\lxcgcoms.exe

adam9870 · 15 Czerwiec 2007 20:55

Plik zaznaczony na czerwono usuń ręcznie z dysku w trybie awaryjnym natomiast wpisy HijackThis.

Po wykonaniu wklej nowy log z HijackThis i SilentRunners. Jeżeli podczas uruchamiania silenta pokaże się jakiś błąd, to proszę podać jego dokładną treść.