Przeskanowałem swoj komputer programem MWAV, ale program jest płatny. Więc nie moge usunąć wirusów.
Oto co mi wykrył :
Obiekt “troj/taladra-f BackDoor” został znaleziony w systemie plików!
Obiekt “gain.gator Spyware/Adware” został znaleziony w systemie plików!
Obiekt “conducent flexpak Spyware/Adware” został znaleziony w systemie plików!
Obiekt "dyfuca Spyware/Adware"został znaleziony w systemie plików!
PROSZE O POMOC!!
Dam jeszcze loga:
Logfile of HijackThis v1.99.1
Scan saved at 17:30:08, on 2006-09-09
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSSYSTEM32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesWindows DefenderMsMpEng.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesIntelWirelessBinEvtEng.exe
C:Program FilesIntelWirelessBinS24EvMon.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:AcereManageranbmServ.exe
C:Program Filesxamppapacheinapache.exe
C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe
C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe
C:Program FilesAcerAcer ArcadeKernelTVCLCapSvc.exe
C:Program FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLServer.exe
C:Program FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLService.exe
C:Program Filesewido anti-spyware 4.0guard.exe
C:Program FilesxamppFileZillaFTPFileZillaServer.exe
C:Program Filesxamppmysqlinmysqld-nt.exe
C:PROGRA~1AGNITUMOUTPOS~1.0outpost.exe
C:Program FilesIntelWirelessBinRegSrvc.exe
C:Program FilesCyberLinkShared FilesRichVideo.exe
C:Program FilesAcerAcer ArcadeKernelTVCLSched.exe
C:Program Filesxamppapacheinapache.exe
C:WINDOWSsystem32hkcmd.exe
C:Program FilesSynapticsSynTPSynTPLpr.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesAcerAcer ArcadePCMService.exe
C:acerepmepm-dm.exe
C:Program FilesAcereRecoveryMonitor.exe
C:WINDOWSsystem32 askswitch.exe
C:Program FilesJavajre1.5.0_06injusched.exe
C:PROGRA~1GrisoftAVGFRE~1avgcc.exe
C:Program FilesArovax ShieldArovaxShield.exe
C:Program FilesiPlusiPlusFlashSkin.exe
C:Program FilesMozilla Firefoxfirefox.exe
D:hijackthisHijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.wp.pl
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://global.acer.com
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:PROGRA~1SPYBOT~1SDHelper.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnyt.dll
O4 - HKLM…Run: [LaunchApp] Alaunch
O4 - HKLM…Run: [igfxTray] C:WINDOWSsystem32igfxtray.exe
O4 - HKLM…Run: [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
O4 - HKLM…Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM…Run: [AzMixerSel] C:Program FilesRealtekInstallShieldAzMixerSel.exe
O4 - HKLM…Run: [synTPLpr] C:Program FilesSynapticsSynTPSynTPLpr.exe
O4 - HKLM…Run: [synTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM…Run: [iMJPMIG8.1] “C:WINDOWSIMEimjp8_1IMJPMIG.EXE” /Spoil /RemAdvDef /Migration32
O4 - HKLM…Run: [MSPY2002] C:WINDOWSsystem32IMEPINTLGNTImScInst.exe /SYNC
O4 - HKLM…Run: [PHIME2002ASync] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /SYNC
O4 - HKLM…Run: [PHIME2002A] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /IMEName
O4 - HKLM…Run: [PCMService] “C:Program FilesAcerAcer ArcadePCMService.exe”
O4 - HKLM…Run: [EPM-DM] c:acerepmepm-dm.exe
O4 - HKLM…Run: [ePowerManagement] C:AcerePMePM.exe boot
O4 - HKLM…Run: [eRecoveryService] C:Program FilesAcereRecoveryMonitor.exe
O4 - HKLM…Run: [iPlusManager] C:Program FilesiPlusiPlusChecker.exe
O4 - HKLM…Run: [CoolSwitch] C:WINDOWSsystem32 askswitch.exe
O4 - HKLM…Run: [LManager] C:PROGRA~1LAUNCH~1QtZgAcer.EXE
O4 - HKLM…Run: [sunJavaUpdateSched] C:Program FilesJavajre1.5.0_06injusched.exe
O4 - HKLM…Run: [Outpost Firewall] C:Program FilesAgnitumOutpost Firewall 1.0outpost.exe /waitservice
O4 - HKLM…Run: [AVG7_CC] C:PROGRA~1GrisoftAVGFRE~1avgcc.exe /STARTUP
O4 - HKLM…Run: [Arovax Shield] C:Program FilesArovax ShieldArovaxShield.exe -tray
O4 - Global Startup: Adobe Reader Speed Launch.lnk.disabled
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program FilesAdobeAcrobat 7.0Reader eader_sl.exe
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O9 - Extra button: Szybkie dostosowywanie programu Outpost Firewall Pro - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:PROGRA~1AGNITUMOUTPOS~1.0PluginsBrowserBarie_bar.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup … 2600350015
O17 - HKLMSystemCCSServicesTcpip…{CA4DBDBD-DEDC-4501-B202-B6C36B28D173}: NameServer = 212.2.96.51 212.2.96.52
O20 - AppInit_DLLs: C:PROGRA~1AGNITUMOUTPOS~1.0wl_hook.dll,C:WINDOWSsystem32wmfhotfix.dll
O20 - Winlogon Notify: igfxcui - C:WINDOWSSYSTEM32igfxdev.dll
O20 - Winlogon Notify: SASWinLogon - C:Program FilesSUPERAntiSpywareSASWINLO.dll
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:AcereManageranbmServ.exe
O23 - Service: Apache2 - Unknown owner - C:Program Filesxamppapacheinapache.exe" -k runservice (file missing)
O23 - Service: AVE Service (AVEService) - Unknown owner - C:Program FilesAVIRA DesktopAVESVC.EXE (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe
O23 - Service: AVIRA Mail Security Service (AVIRAMailService) - Unknown owner - C:Program FilesAVIRA DesktopAVMAILC.EXE (file missing)
O23 - Service: AVIRA Service (AVIRAService) - Unknown owner - C:Program FilesAVIRA DesktopAVGUARD.EXE (file missing)
O23 - Service: AVIRA Update (AVWUpSrv) - Unknown owner - C:Program FilesAVIRA DesktopAVWUPSRV.EXE (file missing)
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:Program FilesAcerAcer ArcadeKernelTVCLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:Program FilesAcerAcer ArcadeKernelTVCLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:Program FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLServer.exe
O23 - Service: EvtEng - Intel Corporation - C:Program FilesIntelWirelessBinEvtEng.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:Program Filesewido anti-spyware 4.0guard.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:Program FilesxamppFileZillaFTPFileZillaServer.exe
O23 - Service: mysql - Unknown owner - C:Program Filesxamppmysqlinmysqld-nt.exe" “–defaults-file=C:Program Filesxamppmysqlinmy.cnf” mysql (file missing)
O23 - Service: Outpost Firewall Service (OutpostFirewall) - Agnitum Ltd. - C:PROGRA~1AGNITUMOUTPOS~1.0outpost.exe
O23 - Service: RegSrvc - Intel Corporation - C:Program FilesIntelWirelessBinRegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:Program FilesCyberLinkShared FilesRichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%WinPcap pcapd.exe" -d -f "%ProgramFiles%WinPcap pcapd.ini (file missing)
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:Program FilesIntelWirelessBinS24EvMon.exe
O23 - Service: SysEnforce - Unknown owner - C:PROGRA~1TRISNA~1SSISYSENF~1.EXE (file missing)