Mam problem, a mianowicie ciągłe wyskakiwanie stron w IE np:
http://www.hug-ediscounts.com/normal/yyy102.html
http://www.mediapurchases.com/normal/yyy102.html
a na dodatek strona przeglądana nagle się zmienia
i pojawia się strona z jakąś reklamą.
Mój LOG z HIJACK:
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Progress\bin\AdmSrvc.exe
C:\WINDOWS\system32\jview.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Borland\InterBase\bin\ibguard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
C:\Program Files\Common Files\PWP\ACS\PWPACSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\Program Files\Borland\InterBase\bin\ibserver.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\PestPatrol\PPControl.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\ctfmon.exe
O:\P2M1\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.pl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.onet.pl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.pl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.onet.pl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [PestPatrol Control Center] C:\Program Files\PestPatrol\PPControl.exe
O4 - HKCU\..\Run: [Dzieńdobry!] C:\Program Files\VSD Software\Dzieńdobry!\dziendobry.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: siec.bat
O4 - Startup: Skrót do ksawicki.lnk = ?
O4 - Global Startup: siec.bat
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = miastkowo.pl
O17 - HKLM\Software\..\Telephony: DomainName = miastkowo.pl
O17 - HKLM\System\CCS\Services\Tcpip\..\{195C04CF-7E96-47C5-8399-C85C4896ED1B}: NameServer = 194.204.159.1,194.204.152.34
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = miastkowo.pl
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = miastkowo.pl
O20 - Winlogon Notify: Applets - C:\WINDOWS\system32\k2260cfsef260.dll
O23 - Service: AdminService for PROGRESS 9.1B (AdminService9.1B) - Unknown owner - C:\Program Files\Progress\bin\AdmSrvc.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: InterBase Guardian (InterBaseGuardian) - Inprise Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: InterBase Server (InterBaseServer) - Inprise Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: Klient Symantec AntiVirus (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: Serwer Uprawnień PWP v1.0.0.35 (PWPACSrv) - DW ABC, PWP Sp. z o.o. - C:\Program Files\Common Files\PWP\ACS\PWPACSrv.exe