Log Hijack This PLZ!
19 Wrz 2006, 19:13
Prosze o sprawdzenie loga z hijack this bo masakra sie stała:/
Sciognelem jakis plik z emule, uruchomilem go nic sie nie pojawilo , a net przestal dzialac wogule go nie widac skanowalem kasperskim znalazl trojany itd ewido tesh skanowalem nic nie znalazł,ad-aware tesh!!
i nadal nic!!!!!!!
prosze pomuzcie!!11
Logfile of HijackThis v1.99.1
Scan saved at 19:07:58, on 2006-09-19
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSSystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program Filesewido anti-spyware 4.0guard.exe
C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
C:Program FilesVIAudioiSBADeckADeck.exe
C:Program FilesGadu-Gadugg.exe
G:HijackThis1991.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = www.google.pl
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = www.google.pl
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = www.google.pl
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Microsoft Internet Explorer
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O4 - HKLM..Run: [AudioDeck] C:Program FilesVIAudioiSBADeckADeck.exe 1
O4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /tray
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:WINDOWSSystem32Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe
O23 - Service: Active Virus Shield (AVP) - Unknown owner - C:Program FilesAOLActive Virus Shieldavp.exe" -r (file missing)
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - (no file)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe (file missing)
O23 - Service: Symantec Password Validation (ccPwdSvc) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:Program Filesewido anti-spyware 4.0guard.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:Program FilesF-SecureAnti-Virusfsgk32st.exe (file missing)
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:Program FilesF-SecureFWESProgramfsdfwd.exe (file missing)
O23 - Service: F-Secure Management Agent (FSMA) - Unknown owner - C:Program FilesF-SecureCommonFSMA32.EXE (file missing)
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Unknown owner - C:Program FilesNorton AntiVirus 2004
avapsvc.exe (file missing)
O23 - Service: Norton Unerase Protection (NProtectService) - Unknown owner - C:Program FilesNorton AntiVirus 2004AdvToolsNPROTECT.EXE (file missing)
O23 - Service: SAVScan - Unknown owner - C:Program FilesNorton AntiVirus 2004SAVScan.exe (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:PROGRA~1COMMON~1SYMANT~1Script BlockingSBServ.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
O23 - Service: Symantec Core LC - Unknown owner - C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe (file missing)
Sciognelem jakis plik z emule, uruchomilem go nic sie nie pojawilo , a net przestal dzialac wogule go nie widac skanowalem kasperskim znalazl trojany itd ewido tesh skanowalem nic nie znalazł,ad-aware tesh!!
i nadal nic!!!!!!!
prosze pomuzcie!!11
Logfile of HijackThis v1.99.1
Scan saved at 19:07:58, on 2006-09-19
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSSystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program Filesewido anti-spyware 4.0guard.exe
C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
C:Program FilesVIAudioiSBADeckADeck.exe
C:Program FilesGadu-Gadugg.exe
G:HijackThis1991.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = www.google.pl
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = www.google.pl
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = www.google.pl
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Microsoft Internet Explorer
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O4 - HKLM..Run: [AudioDeck] C:Program FilesVIAudioiSBADeckADeck.exe 1
O4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /tray
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:WINDOWSSystem32Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe
O23 - Service: Active Virus Shield (AVP) - Unknown owner - C:Program FilesAOLActive Virus Shieldavp.exe" -r (file missing)
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - (no file)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe (file missing)
O23 - Service: Symantec Password Validation (ccPwdSvc) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:Program Filesewido anti-spyware 4.0guard.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:Program FilesF-SecureAnti-Virusfsgk32st.exe (file missing)
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:Program FilesF-SecureFWESProgramfsdfwd.exe (file missing)
O23 - Service: F-Secure Management Agent (FSMA) - Unknown owner - C:Program FilesF-SecureCommonFSMA32.EXE (file missing)
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Unknown owner - C:Program FilesNorton AntiVirus 2004
avapsvc.exe (file missing)
O23 - Service: Norton Unerase Protection (NProtectService) - Unknown owner - C:Program FilesNorton AntiVirus 2004AdvToolsNPROTECT.EXE (file missing)
O23 - Service: SAVScan - Unknown owner - C:Program FilesNorton AntiVirus 2004SAVScan.exe (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:PROGRA~1COMMON~1SYMANT~1Script BlockingSBServ.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
O23 - Service: Symantec Core LC - Unknown owner - C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe (file missing)
19 Wrz 2006, 20:32
Hmm dodaj loga z silent runners, użyj "szukaj". Zarzuć loga z gmera gmer.net rootikit>>skan>>ctrl+v>>wklej go tu.
Hmm i jakiego używasz obecnie antywirusa, bo widze dwa
Hmm i jakiego używasz obecnie antywirusa, bo widze dwa