hej mam tera zlonghorna build 4074 i prosze o sprawdzenie loga:
Logfile of HijackThis v1.99.1
Scan saved at 11:38:38 AM, on 4/28/2005
Platform: Unknown Windows (WinNT 6.00.4074)
MSIE: Internet Explorer v6.05 (6.05.4074.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\wininit.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\RunDll32.exe
C:\WINDOWS\system32\RsFxSvc.exe
C:\WINDOWS\system32\avrtsvr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fontcacheservice.exe
C:\WINDOWS\assembly\gac_msil\FontCacheService\6.0.4074.0__365143bb27e7ac8b\fontcacheservice.exe
C:\WINDOWS\assembly\gac_msil\WindowsEventForwardingService\6.0.4074.0__365143bb27e7ac8b\WindowsEventForwardingService.exe
C:\WINDOWS\system32\WinFS\WinFS.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\WinFS\FSAgent.exe
C:\WINDOWS\system32\WinFS\msidx35.exe
C:\WINDOWS\system32\WinFS\WinFPM.exe
C:\WINDOWS\system32\WinFS\msgthr35.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Administrator\Local Settings\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O9 - Extra button: @shdocvw.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra ‘Tools’ menuitem: @shdocvw.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O17 - HKLM\System\CCS\Services\Tcpip…{19BFAB60-6C13-4499-800E-9B28AB07452B}: NameServer = 194.204.152.34 217.98.63.164
O17 - HKLM\System\CS1\Services\Tcpip…{19BFAB60-6C13-4499-800E-9B28AB07452B}: NameServer = 194.204.152.34 217.98.63.164
O17 - HKLM\System\CS2\Services\Tcpip…{19BFAB60-6C13-4499-800E-9B28AB07452B}: NameServer = 194.204.152.34 217.98.63.164
O18 - Protocol: msmailhtml - {F6D6F026-E766-436B-8291-5CF29E916348} - C:\WINDOWS\system32\msmail.dll
O18 - Protocol: shell - {D34D28CB-3C24-4925-A40C-F3E1808953B2} - C:\WINDOWS\system32\SHELL32.dll
O18 - Filter hijack: application/octet-stream - {8458A88A-033A-4456-9872-5693831F1565} - C:\WINDOWS\Microsoft.NET\Windows\v6.0.4030\PresentationHost.dll
O18 - Filter hijack: application/x-complus - {8458A88A-033A-4456-9872-5693831F1565} - C:\WINDOWS\Microsoft.NET\Windows\v6.0.4030\PresentationHost.dll
O18 - Filter hijack: application/x-msdownload - {8458A88A-033A-4456-9872-5693831F1565} - C:\WINDOWS\Microsoft.NET\Windows\v6.0.4030\PresentationHost.dll
O20 - Winlogon Notify: EFS - C:\WINDOWS\SYSTEM32\sclgntfy.dll
O23 - Service: Discovery Persistence Service - Unknown owner - C:\WINDOWS\assembly\gac_msil\MSSDPersistence\6.0.4074.0__365143bb27e7ac8b\MSSDPersistence.exe
O23 - Service: Font Cache Service - Unknown owner - C:\WINDOWS\system32\fontcacheservice.exe
O23 - Service: FontCacheService - Unknown owner - C:\WINDOWS\assembly\gac_msil\FontCacheService\6.0.4074.0__365143bb27e7ac8b\fontcacheservice.exe
O23 - Service: Fusion Isolation Service - Unknown owner - C:\WINDOWS\assembly\gac_msil\Microsoft.Windows.IsolationService\6.0.4074.0__365143bb27e7ac8b\Microsoft.Windows.IsolationService.exe
O23 - Service: Location Discovery (LocSvc) - Unknown owner - C:\WINDOWS\system32\Location.SvcWrap.exe
O23 - Service: WindowsEventForwardingService - Unknown owner - C:\WINDOWS\assembly\gac_msil\WindowsEventForwardingService\6.0.4074.0__365143bb27e7ac8b\WindowsEventForwardingService.exe
O23 - Service: WinFS Rules (WinFSRules) - Unknown owner - C:\WINDOWS\system32\WinFS\WinFS-Rules.exe