Po kazdym formacie jest to samo. Kiedy chce przelaczyc uzytkownika/przelogowac sie, wyskakuje mi ze mam haslo, ktorego wcale niemam, a gdy wcisne “enter” wyskakuje jakis blad logowania.
Na necie po prostu wogole nie mozna smigac, strona otwiera sie 15 minut, to cud ze pisze tego posta, ale to i tak z trybu awaryjnego, poza tym po wlaczeniu komputera normalnie, niemoge ani uruchomic HiJack’a, ani wyswietlic menedzera zadan. Prosze o pomoc bo juz sam niewiem co robic po blisko 10 formatach i nieustannym meczeniu sie z tym problemem. Jak sie przed tym “syfem” zabezpieczyc?
Logfile of HijackThis v1.99.1
Scan saved at 22:35:04, on 2006-03-24
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\System32\vmmon32.exe
C:\Documents and Settings\Administrator\Pulpit\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6001CDF7-6F45-471b-A203-0225615E35A7} - C:\WINDOWS\DH.dll (file missing)
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [Spik] C:\Program Files\Spik\Spik.exe -autostart
O4 - HKLM\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\Run: [Microsoft Command C] winhost32.exe
O4 - HKLM\..\Run: [Windows Update Manager] C:\WINDOWS\taskbar.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [newname] C:\\newname3.exe
O4 - HKLM\..\Run: [mousepad] C:\\mousepad3.exe
O4 - HKLM\..\Run: [keyboard] C:\\keyboard3.exe
O4 - HKLM\..\Run: [Installed] 195
O4 - HKLM\..\RunServices: [Microsoft Command C] winhost32.exe
O4 - HKLM\..\RunServices: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\RunServices: [Windows Update Manager] C:\WINDOWS\taskbar.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Command C] winhost32.exe
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKCU\..\Run: [Windows Update Manager] C:\WINDOWS\taskbar.exe
O4 - HKCU\..\RunServices: [Microsoft Command C] winhost32.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Seekmo/ie/bridge-c32.cab?952ca1285316872cdac5e11d
O17 - HKLM\System\CCS\Services\Tcpip\..\{3C25583C-8E32-4BD1-87BA-819A16093EC5}: NameServer = 217.30.129.149,217.30.137.200
O17 - HKLM\System\CS1\Services\Tcpip\..\{3C25583C-8E32-4BD1-87BA-819A16093EC5}: NameServer = 217.30.129.149,217.30.137.200
O17 - HKLM\System\CS2\Services\Tcpip\..\{3C25583C-8E32-4BD1-87BA-819A16093EC5}: NameServer = 217.30.129.149,217.30.137.200
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
pozdrawiam
Drizzit