prosba o sprawdzenie loga i pomoc jak usunac w32.myzor.fk@yf

[arkadek1]

hej

moj koles zabojad ( francuz ) zalapal - w32.myzor.fk@yf

polecono mi wkleic loga ktory stworzony zostal przez program HijackThis v1.99.1
i zamiescic na tym forum , mowiac ze ktos mi pomoze pozdr


Logfile of HijackThis v1.99.1

typ ma win i wszystko po francusku jesli to ma jakies znaczenie


Scan saved at 03:02:44, on 14/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:ProgrammiIntelWirelessBinEvtEng.exe
C:ProgrammiIntelWirelessBinS24EvMon.exe
C:WINDOWSExplorer.EXE
C:ProgrammiFile comuniSymantec SharedccSetMgr.exe
C:ProgrammiFile comuniSymantec SharedSPBBCSPBBCSvc.exe
C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe
C:WINDOWSsystem32spoolsv.exe
C:ProgrammiAlwil SoftwareAvast4aswUpdSv.exe
C:ProgrammiAlwil SoftwareAvast4ashServ.exe
C:ProgrammiSymantec AntiVirusDefWatch.exe
C:ProgrammiFile comuniMicrosoft SharedVS7DEBUGMDM.EXE
C:ProgrammiIntelWirelessBinRegSrvc.exe
C:ProgrammiAnalog DevicesSoundMAXSMAgent.exe
C:ProgrammiSymantec AntiVirusRtvscan.exe
C:ProgrammiAlwil SoftwareAvast4ashMaiSv.exe
C:ProgrammiAlwil SoftwareAvast4ashWebSv.exe
C:WINDOWSsystem32wscntfy.exe
C:ProgrammiVideo ActiveX Objectpmsngr.exe
C:ProgrammiVideo ActiveX Objectisamonitor.exe
C:WINDOWSSystem32hkcmd.exe
C:ProgrammiVideo ActiveX Objectpmmon.exe
C:ProgrammiApointApoint.exe
C:WINDOWSsystem32ICO.EXE
C:ProgrammiVideo ActiveX Objectisamini.exe
C:ProgrammiSonyHotKey UtilityHKserv.exe
C:Programmisonyvaio update 2VAIOUpdt.exe
C:Programmisonyvaio power managementSPMgr.exe
C:ProgrammiUtimacoSafeGuard PrivateDiskpdservice.exe
C:ProgrammiFile comuniSymantec SharedccApp.exe
C:PROGRA~1SYMANT~1VPTray.exe
C:ProgrammiD-Toolsdaemon.exe
C:ProgrammiAdobePhotoshop Album Starter Edition3.0Appsapdproxy.exe
C:ProgrammiBearFlixBearFlix.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:ProgrammiMessengermsmsgs.exe
C:ProgrammiGoogleGoogleToolbarNotifier1.2.908.5008GoogleToolbarNotifier.exe
C:ProgrammiSkypePhoneSkype.exe
C:WINDOWSSystem32igfxext.exe
C:WINDOWSsystem32ctfmon.exe
C:ProgrammiApointApntex.exe
C:ProgrammiSonyHotKey UtilityHKWnd.exe
C:Programmisonysonicstage mastering studioaudio filterSSMSFilter.exe
C:ProgrammiGoogleGoogle UpdaterGoogleUpdater.exe
C:ProgrammiPanasonicLUMIXSimpleViewerPhLeAutoRun.exe
C:WINDOWSsystem32svchost.exe
C:ProgrammiSkypePlugin ManagerSkypePM.exe
C:ProgrammiWinRARWinRAR.exe
C:DOCUME~1vaioIMPOST~1TempRar$EX02.823HijackThis.exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.co.uk/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Microsoft Internet Explorer
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammiAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:PROGRA~1SkypePhoneIEPluginSKYPEI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {67982BB7-0F95-44C5-92DC-E3AF3DC19D6D} - C:ProgrammiVideo ActiveX Objectisaddon.dll
O2 - BHO: XBTP01621 - {9EBBE90B-282E-4c39-8A7E-120749169F0F} - C:PROGRA~1BEARSH~2MediaBar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:programmigooglegoogletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar con blocco Pop-Up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:ProgrammiYahoo!CompanionInstallscpnyt.dll
O3 - Toolbar: BearShare MediaBar - {B7D3E479-CC68-42B5-A338-938ECE35F419} - C:ProgrammiBearShare MediaBarMediaBar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:programmigooglegoogletoolbar1.dll
O4 - HKLM..Run: [IgfxTray] C:WINDOWSSystem32igfxtray.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe
O4 - HKLM..Run: [Apoint] C:ProgrammiApointApoint.exe
O4 - HKLM..Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM..Run: [HKSERV.EXE] C:ProgrammiSonyHotKey UtilityHKserv.exe
O4 - HKLM..Run: [VAIO Update 2] "C:Programmisonyvaio update 2VAIOUpdt.exe" /Stationary
O4 - HKLM..Run: [SonyPowerCfg] C:Programmisonyvaio power managementSPMgr.exe
O4 - HKLM..Run: [PDService.exe] C:ProgrammiUtimacoSafeGuard PrivateDiskpdservice.exe
O4 - HKLM..Run: [ccApp] "C:ProgrammiFile comuniSymantec SharedccApp.exe"
O4 - HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe
O4 - HKLM..Run: [DAEMON Tools-1033] "C:ProgrammiD-Toolsdaemon.exe" -lang 1033
O4 - HKLM..Run: [AlfaCleaner] C:ProgrammiAlfaCleanerAlfaCleaner.exe
O4 - HKLM..Run: [Adobe Photo Downloader] "C:ProgrammiAdobePhotoshop Album Starter Edition3.0Appsapdproxy.exe"
O4 - HKLM..Run: [BearFlix] "C:ProgrammiBearFlixBearFlix.exe" /pause
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [dc6_check] C:ProgrammiSystemDoctor 2006 Freedcmon.exe
O4 - HKLM..Run: [USDR6cw] C:ProgrammiSystemDoctor 2006 FreeUSDR6cw.exe -c
O4 - HKLM..Run: [pas_check] C:ProgrammiSystemDoctor 2006 Freepasmon.exe
O4 - HKCU..Run: [MSMSGS] "C:ProgrammiMessengermsmsgs.exe" /background
O4 - HKCU..Run: [swg] C:ProgrammiGoogleGoogleToolbarNotifier1.2.908.5008GoogleToolbarNotifier.exe
O4 - HKCU..Run: [Skype] "C:ProgrammiSkypePhoneSkype.exe" /nosplash /minimized
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - Global Startup: Audio Filter.lnk = C:Programmisonysonicstage mastering studioaudio filterSSMSFilter.exe
O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:ProgrammiAdobeAcrobat 7.0Reader eader_sl.exe
O4 - Global Startup: Google Updater.lnk = C:ProgrammiGoogleGoogle UpdaterGoogleUpdater.exe
O4 - Global Startup: LUMIX Simple Viewer.lnk = ?
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:PROGRA~1MICROS~3OFFICE11EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgrammiJavaj2re1.4.2_05in
pjpi142_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgrammiJavaj2re1.4.2_05in
pjpi142_05.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:PROGRA~1SkypePhoneIEPluginSKYPEI~1.DLL
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~3OFFICE11REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:ProgrammiPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:ProgrammiPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.virgilio.it/plus
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 3251760103
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:PROGRA~1FILECO~1SkypeSKYPE4~1.DLL
O20 - Winlogon Notify: igfxcui - C:WINDOWSSYSTEM32igfxsrvc.dll
O20 - Winlogon Notify: NavLogon - C:WINDOWSsystem32NavLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:WINDOWSsystem32WPDShServiceObj.dll
O21 - SSODL: carbinyl - {8d8c2387-7f80-4022-9be6-43630a969558} - C:WINDOWSsystem32gwquvw.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:ProgrammiAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:ProgrammiAlwil SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:ProgrammiAlwil SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:ProgrammiAlwil SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:ProgrammiSymantec AntiVirusDefWatch.exe
O23 - Service: EvtEng - Intel Corporation - C:ProgrammiIntelWirelessBinEvtEng.exe
O23 - Service: RegSrvc - Intel Corporation - C:ProgrammiIntelWirelessBinRegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:ProgrammiIntelWirelessBinS24EvMon.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:ProgrammiSymantec AntiVirusSavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedSNDSrvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:ProgrammiAnalog DevicesSoundMAXSMAgent.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedSPBBCSPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:ProgrammiSymantec AntiVirusRtvscan.exe
O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:ProgrammiFile comuniSony SharedVAIO EntertainmentVzRsVzRs.exe
O23 - Service: VAIO Entertainment File Import Service - Sony Corporation - C:ProgrammiFile comuniSony SharedVAIO EntertainmentVzCdbVzFw.exe
O23 - Service: VAIO Entertainment Task Scheduler - Sony Corporation - C:Programmisonyvaio entertainmentVzTaskScheduler.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:ProgrammiFile comuniSony SharedVAIO EntertainmentVzCsVzHardwareResourceManagerVzHardwareResourceManager.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter - Sony Corporation - C:ProgrammiFile comuniSony SharedVAIO EntertainmentVCSWVCSW.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:ProgrammisonyVAIO Media Integrated ServerVMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:ProgrammisonyVAIO Media Integrated ServerPlatformSV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARESony CorporationVAIO Media Platform2.0" /RegExt="ApplicationsIntegratedServerHTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:ProgrammisonyVAIO Media Integrated ServerPlatformUPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:ProgrammisonyVAIO Media Integrated ServerPlatformVmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARESony CorporationVAIO Media Platform2.0" /RegExt="AddonsPackagesMobileGateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:ProgrammiSonyVAIO Cooperated InitialisationVCI_SVC.exe

[darkman]

nie rob nic poczekaj na pp3088
ale wedlug mnie to fix:

O2 - BHO: (no name) - {67982BB7-0F95-44C5-92DC-E3AF3DC19D6D} - C:ProgrammiVideo ActiveX Objectisaddon.dll
O2 - BHO: XBTP01621 - {9EBBE90B-282E-4c39-8A7E-120749169F0F} - C:PROGRA~1BEARSH~2MediaBar.dll
O3 - Toolbar: BearShare MediaBar - {B7D3E479-CC68-42B5-A338-938ECE35F419} - C:ProgrammiBearShare MediaBarMediaBar.dll

[czajek]

moj koles zabojad ( francuz ) zalapal - w32.myzor.fk@yf

Tu masz opis jak usunąć, poczytaj:

http://www.enter.net.pl/forum/viewtopic.php?p=252050
http://forum.instalki.pl/viewtopic.php? ... d9db8eed4e

[pp3088]

Zastosuj to narzędzie http://www.searchengines.pl/phpbb203/in ... opic=31936 z opcji 2 w trybie awaryjnym start>>uruchom>>msconfig>>zakładka boot.ini>>zaznacz safeboot>>restart.

Zresztą log jest koszmarny. Po akcji wklej z C:/raporrt.txt