Programy same się wyłączają - Log hijackthis

stasiorawicz · 17 Czerwiec 2007 10:36

Programy same się wyłączają i komp sie czasem resetuje

Log:

Logfile of HijackThis v1.99.1 Scan saved at 12:23:50, on 2007-06-17 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\RunDll32.exe C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\DAEMON Tools\daemon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\VIA\RAID\raid_tool.exe C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Winamp\winamp.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\FlashGet\FlashGet.exe C:\Downloads\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.19.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O4 - HKLM…\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM…\Run: [RemoteControl] “C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe” O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM…\Run: [FaxCenterServer] “C:\Program Files\Lexmark Fax Solutions\fm3032.exe” /s O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe” O4 - HKLM…\Run: [GrooveMonitor] “C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe” O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033 O4 - HKLM…\Run: [bootSkin Startup Jobs] “C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe” /StartupJobs O4 - HKLM…\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM…\Run: [LXCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCCtime.dll,_RunDLLEntry@16 O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [Gadu-Gadu] “C:\Program Files\Gadu-Gadu\gg.exe” /tray O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe O4 - Startup: Y’z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe O8 - Extra context menu item: &Ściągnij przy pomocy FlashGet’a - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: &Ściągnij wszystko przy pomocy FlashGet’a - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra ‘Tools’ menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra ‘Tools’ menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip…{CD7B9A47-5DD2-4826-A45B-2D59A33D6920}: NameServer = 10.4.12.1 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\ O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: lxcc_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcccoms.exe

qrczak13 · 17 Czerwiec 2007 15:32

Usuń w HJT.

Po wykonaniu w/w daj log z ComboFix.

stasiorawicz · 17 Czerwiec 2007 19:28

To co kazales usunalem:

ComboFix 07-06-17 - C:\Downloads\ComboFix.exe “x” - 2007-06-17 21:25:01 - Dodatek Service Pack 2 NTFS ((((((((((((((((((((((((( Files Created from 2007-05-17 to 2007-06-17 ))))))))))))))))))))))))))))))) 2007-06-17 21:23 49,152 --a------ C:\WINDOWS\nircmd.exe 2007-06-16 14:11 2007-06-11 19:26 2007-06-10 00:11 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll 2007-06-10 00:11 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll 2007-06-10 00:11 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll 2007-06-10 00:11 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll 2007-06-10 00:11 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll 2007-06-10 00:11 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll 2007-06-10 00:11 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll 2007-06-10 00:11 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll 2007-06-09 18:47 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll 2007-06-09 10:53 2007-06-08 17:25 2007-06-08 17:20 2007-06-05 17:36 2007-06-05 17:35 2007-06-05 15:37 2007-06-02 14:26 97,280 --a------ C:\WINDOWS\system32\ccrpbds5.dll 2007-06-02 14:26 78,085 --a------ C:\WINDOWS\system32\pattern.dat 2007-06-02 14:26 307,200 --a------ C:\WINDOWS\system32\fxstudio.dll 2007-06-02 14:26 282,624 --a------ C:\WINDOWS\system32\animation2.dll 2007-06-02 14:26 159,744 --a------ C:\WINDOWS\system32\DartSock.dll 2007-06-02 14:26 106,496 --a------ C:\WINDOWS\system32\DartWeb.dll 2007-06-02 14:26 2007-06-02 14:25 75,976 --a------ C:\WINDOWS\system32\BASSDEC.dll 2007-06-02 14:25 45,056 --a------ C:\WINDOWS\system32\fader.dll 2007-06-02 14:25 307,200 --a------ C:\WINDOWS\system32\drumpad.dll 2007-06-02 14:25 280,576 --a------ C:\WINDOWS\system32\pxd_kom.dll 2007-06-02 11:54 2007-06-02 11:54 2007-06-02 09:26 2007-06-02 09:26 2007-05-30 15:13 2007-05-28 14:11 2007-05-27 16:26 2007-05-27 12:53 2007-05-27 12:53 2007-05-27 12:51 317,952 --a------ C:\WINDOWS\system32\Roboex32.dll 2007-05-27 12:51 2007-05-27 12:51 2007-05-25 22:20 2007-05-25 22:01 163,712 --a------ C:\WINDOWS\system32\drivers\vidstub.sys 2007-05-25 22:01 2007-05-25 22:01 2007-05-25 18:33 2007-05-25 13:33 0 -ra------ C:\logwmemory.bin 2007-05-25 13:30 2007-05-25 13:25 24,072 --a------ C:\WINDOWS\system32\uxtuneup.dll 2007-05-25 13:24 2007-05-25 13:24 2007-05-25 13:24 2007-05-25 13:23 2,289 --a------ C:\WINDOWS\unins000.dat 2007-05-25 13:23 2007-05-23 18:30 2007-05-23 18:29 2007-05-23 18:27 639,224 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2007-05-23 18:01 108,144 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2007-05-23 18:01 2007-05-22 23:07 2007-05-20 17:41 2007-05-20 16:53 2007-05-20 15:35 2007-05-20 15:34 2007-05-20 15:34 2007-05-20 15:34 2007-05-19 10:22 95,872 --a------ C:\WINDOWS\system32\AvastSS.scr 2007-05-19 10:22 94,552 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2007-05-19 10:22 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2007-05-19 10:22 745,600 --a------ C:\WINDOWS\system32\aswBoot.exe 2007-05-19 10:22 43,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2007-05-19 10:22 26,888 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2007-05-19 10:22 23,416 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2007-05-17 07:25 2007-05-17 07:24 (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-06-11 17:48:34 -------- d-----w C:\Program Files\Gadu-Gadu 2007-06-11 17:11:30 -------- d-----w C:\Program Files\Lx_cats 2007-06-08 18:34:48 -------- d–h--w C:\Program Files\InstallShield Installation Information 2007-06-08 15:22:06 73,752 ----a-w C:\WINDOWS\system32\perfc015.dat 2007-06-08 15:22:06 495,780 ----a-w C:\WINDOWS\system32\perfh015.dat 2007-06-05 13:50:07 -------- d-----w C:\DOCUME~1\x\DANEAP~1\Real 2007-06-02 09:51:54 -------- d-----w C:\Program Files\eMule 2007-05-28 12:10:45 -------- d-----w C:\Program Files\Common Files\InstallShield 2007-05-27 14:50:29 2,560 ----a-w C:\WINDOWS\system32\BitCometRes.dll 2007-05-23 20:04:30 -------- d-----w C:\Program Files\Winamp 2007-05-23 16:16:45 -------- d-----w C:\Program Files\D-Tools 2007-05-16 15:18:58 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-05-13 10:06:28 -------- d-----w C:\Program Files\3D GIF Designer 2007-05-10 13:09:01 -------- d-----w C:\Program Files\IrfanView 2007-05-09 05:22:25 -------- d-----w C:\Program Files\Microsoft Works 2007-05-09 05:22:15 -------- d-----w C:\Program Files\MSBuild 2007-05-08 22:15:39 1,277 ----a-w C:\WINDOWS\mozver.dat 2007-05-08 21:47:29 -------- d-----w C:\Program Files\Damian Pasternak 2007-05-08 15:59:59 -------- d-----w C:\Program Files\Easy Video Splitter 2007-05-08 15:33:44 -------- d-----w C:\Program Files\Audacity 2007-05-07 20:41:53 -------- d-----w C:\Program Files\Messenger 2007-05-07 18:25:47 -------- d-----w C:\Program Files\Bluzgers v2.1.0 2007-05-07 15:47:32 50,808 ----a-w C:\WINDOWS\BricoPackUninst.cmd 2007-05-07 15:47:32 3,010 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd 2007-05-07 15:47:32 219,648 ----a-w C:\WINDOWS\system32\uxtheme.dll 2007-05-07 15:04:01 -------- d-----w C:\DOCUME~1\x\DANEAP~1\Media Player Classic 2007-05-07 15:02:42 -------- d-----w C:\Program Files\K-Lite Codec Pack 2007-05-07 15:02:32 -------- d-----w C:\Program Files\ffdshow 2007-05-07 14:31:58 -------- d-----w C:\DOCUME~1\x\DANEAP~1\FaxCtr 2007-05-07 14:05:05 -------- d-----w C:\Program Files\Alwil Software 2007-05-07 13:47:26 -------- d-----w C:\DOCUME~1\x\DANEAP~1\WinRAR 2007-05-07 13:44:17 0 ----a-w C:\WINDOWS\nsreg.dat 2007-05-07 13:39:03 -------- d-----w C:\DOCUME~1\x\DANEAP~1\MusicIP 2007-05-07 13:17:38 -------- d-----w C:\DOCUME~1\x\DANEAP~1\CyberLink 2007-05-07 13:10:15 -------- d-----w C:\Program Files\Abbyy FineReader 6.0 Sprint 2007-05-07 13:06:06 -------- d-----w C:\Program Files\Lexmark Fax Solutions 2007-05-07 13:05:08 -------- d-----w C:\Program Files\Lexmark_3300 Series 2007-05-07 13:05:08 -------- d-----w C:\Program Files\Lexmark 3300 Series 2007-05-07 11:13:55 -------- d-----w C:\Program Files\Common Files\ODBC 2007-05-07 11:13:47 -------- d-----w C:\Program Files\Common Files\SpeechEngines 2007-05-07 11:04:53 -------- d-----w C:\Program Files\Common Files\LightScribe 2007-05-07 11:03:30 -------- d-----w C:\Program Files\Ahead 2007-05-07 11:03:10 -------- d-----w C:\Program Files\Common Files\Ahead 2007-05-07 11:02:37 -------- d-----w C:\Program Files\CyberLink 2007-05-07 11:02:31 -------- d-----w C:\Program Files\CyberLink DVD Solution 2007-05-07 10:54:15 -------- d-----w C:\Program Files\Divxpack 2007-05-07 10:53:56 -------- d-----w C:\Program Files\DivX 2007-05-07 10:53:31 -------- d-----w C:\Program Files\DirectShow Pack 2007-05-07 09:55:55 -------- d-----w C:\Program Files\VIA 2007-05-07 09:50:44 -------- d-----w C:\Program Files\C-Media 3D Audio 2007-05-07 09:34:27 -------- d-----w C:\Program Files\microsoft frontpage 2007-05-07 09:34:09 0 --sha-r C:\MSDOS.SYS 2007-05-07 09:34:09 0 --sha-r C:\IO.SYS 2007-05-07 09:34:09 0 ----a-w C:\CONFIG.SYS 2007-05-07 09:34:09 0 ----a-w C:\AUTOEXEC.BAT 2007-05-07 09:30:28 -------- d–h--w C:\Program Files\WindowsUpdate 2007-05-07 09:30:22 -------- d-----w C:\Program Files\Usługi online 2007-05-07 09:29:00 -------- d-----w C:\Program Files\Common Files\MSSoap 2007-05-07 09:28:46 -------- d-----w C:\Program Files\Movie Maker 2007-05-07 09:28:04 21,856 ----a-w C:\WINDOWS\system32\emptyregdb.dat 2007-05-07 09:26:33 -------- d-----w C:\Program Files\MSN Gaming Zone 2007-05-07 09:26:20 -------- d-----w C:\Program Files\Windows NT 2007-04-25 14:23:30 144,896 ----a-w C:\WINDOWS\system32\schannel.dll 2007-04-18 16:14:32 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll 2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll 2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll 2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll 2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll 2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll 2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll 2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe 2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll 2007-03-17 13:45:36 293,376 ----a-w C:\WINDOWS\system32\winsrv.dll ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 06:12] {2F364306-AA45-47B5-9F9D-39A8B94E7EF7}=C:\Program Files\FlashGet\jccatch.dll [2007-05-16 11:03] {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}=C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.19.dll [2007-05-18 20:17] {72853161-30C5-4D22-B7F9-0BBC1D38A37E}=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 00:48] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43] {F156768E-81EF-470C-9057-481BA8380DBA}=C:\Program Files\FlashGet\getflash.dll [2007-05-16 07:05] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “Cmaudio”=“cmicnfg.cpl” [] “RemoteControl”=“C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe” [2004-11-02 20:24] “FaxCenterServer”=“C:\Program Files\Lexmark Fax Solutions\fm3032.exe” [2005-01-20 04:19] “SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe” [2007-03-14 03:43] “GrooveMonitor”=“C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe” [2006-10-27 00:47] “avast!”=“C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [2007-04-30 17:42] “DAEMON Tools”=“C:\Program Files\DAEMON Tools\daemon.exe” [2006-11-12 12:48] “BootSkin Startup Jobs”=“C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe” [2004-04-26 16:21] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-04 14:00] “Gadu-Gadu”=“C:\Program Files\Gadu-Gadu\gg.exe” [2007-05-10 16:36] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] “{B5A7F190-DDA6-4420-B3BA-52453494E6CD}”=“C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL” [2006-10-27 00:48] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] “Gadu-Gadu”=“C:\Program Files\Gadu-Gadu\gg.exe” /tray “UberIcon”=“C:\WINDOWS\BricoPacks\Vista Inspirat\UberIcon\UberIcon Manager.exe” “Skype”=“C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] “Flashget”=C:\Program Files\FlashGet\FlashGet.exe /min “lxccmon.exe”=“C:\Program Files\Lexmark 3300 Series\lxccmon.exe” HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - netsvcs UxTuneUp Contents of the ‘Scheduled Tasks’ folder 2007-06-15 15:16:59 C:\WINDOWS\tasks\1-Click Maintenance.job ************************************************************************** catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-06-17 21:25:51 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … cmd.exe [2772] scanning hidden autostart entries … scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** Completion time: 2007-06-17 21:26:41 — E O F —

Gutek · 18 Czerwiec 2007 14:40

Czyszczenie rejestru:

RegCleaner - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=177

możesz rejestr przelecieć albo

jv16 PowerTools - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=509