- Kod: Zaznacz wszystko
Logfile of HijackThis v1.99.1
Scan saved at 18:35:50, on 2006-05-02
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\UAService7.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Browser Mouse\Browser Mouse\1.0\lwbwheel.exe
C:\WINDOWS\System32\RUNDLL32.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Tlen.pl\tlen.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\AVerTV2K\QuickTV.exe
C:\WINDOWS\wupdmgr.exe
C:\WINDOWS\osaupd.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Winamp\Winamp.exe
G:\BitComet\BitComet.exe
C:\Program Files\PLANET WL-8313\WLANMON.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
E:\Instal\Systemowe\hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.skeech.com/bar.php?bar=2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.skeech.com/index.php?home=2
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.find.fm/?aid=2343
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O1 - Hosts: 64.255.2.119 auto.search.msn.com
O1 - Hosts: 64.255.2.119 auto.search.msn.co.uk
O1 - Hosts: 64.255.2.119 sitefinder.verisign.com
O1 - Hosts: 64.255.2.119 sitefinder-idn.verisign.com
O1 - Hosts: 64.255.2.119 datanotary.com
O1 - Hosts: 64.255.2.119 www.datanotary.com
O1 - Hosts: 64.255.2.119 slawsearch.com
O1 - Hosts: 64.255.2.119 www.slawsearch.com
O1 - Hosts: 64.255.2.119 allhyperlinks.com
O1 - Hosts: 64.255.2.119 www.allhyperlinks.com
O1 - Hosts: 64.255.2.119 luckysearch.net
O1 - Hosts: 64.255.2.119 www.luckysearch.net
O1 - Hosts: 64.255.2.119 xwebsearch.biz
O1 - Hosts: 64.255.2.119 www.xwebsearch.biz
O1 - Hosts: 64.255.2.119 searchdot.net
O1 - Hosts: 64.255.2.119 www.searchdot.net
O1 - Hosts: 64.255.2.119 searchv.com
O1 - Hosts: 64.255.2.119 www.searchv.com
O1 - Hosts: 64.255.2.119 rightfinder.net
O1 - Hosts: 64.255.2.119 www.rightfinder.net
O1 - Hosts: 64.255.2.119 idgsearch.com
O1 - Hosts: 64.255.2.119 www.idgsearch.com
O1 - Hosts: 64.255.2.119 alfa-search.com
O1 - Hosts: 64.255.2.119 www.alfa-search.com
O1 - Hosts: 64.255.2.119 ie-search.com
O1 - Hosts: 64.255.2.119 www.ie-search.com
O1 - Hosts: 64.255.2.119 start-space.com
O1 - Hosts: 64.255.2.119 www.start-space.com
O1 - Hosts: 64.255.2.119 webcoolsearch.com
O1 - Hosts: 64.255.2.119 www.webcoolsearch.com
O1 - Hosts: 64.255.2.119 therealsearch.com
O1 - Hosts: 64.255.2.119 www.therealsearch.com
O1 - Hosts: 64.255.2.119 youfindall.com
O1 - Hosts: 64.255.2.119 www.youfindall.com
O1 - Hosts: 64.255.2.119 madfinder.com
O1 - Hosts: 64.255.2.119 www.madfinder.com
O1 - Hosts: 64.255.2.119 tooncomics.com
O1 - Hosts: 64.255.2.119 www.tooncomics.com
O1 - Hosts: 64.255.2.119 firstbookmark.net
O1 - Hosts: 64.255.2.119 www.firstbookmark.net
O1 - Hosts: 64.255.2.119 zestyfind.com
O1 - Hosts: 64.255.2.119 www.zestyfind.com
O1 - Hosts: 64.255.2.119 i-lookup.com
O1 - Hosts: 64.255.2.119 www.i-lookup.com
O1 - Hosts: 64.255.2.119 huntbar.com
O1 - Hosts: 64.255.2.119 www.huntbar.com
O1 - Hosts: 64.255.2.119 lop.com
O1 - Hosts: 64.255.2.119 www.lop.com
O1 - Hosts: 64.255.2.119 cool-homepage.com
O1 - Hosts: 64.255.2.119 www.cool-homepage.com
O1 - Hosts: 64.255.2.119 supersearch.com
O1 - Hosts: 64.255.2.119 www.supersearch.com
O1 - Hosts: 64.255.2.119 hugesearch.net
O1 - Hosts: 64.255.2.119 www.hugesearch.net
O1 - Hosts: 64.255.2.119 easy-search.net
O1 - Hosts: 64.255.2.119 www.easy-search.net
O1 - Hosts: 64.255.2.119 fastsearch.cc
O1 - Hosts: 64.255.2.119 www.fastsearch.cc
O1 - Hosts: 64.255.2.119 in.webcounter.cc
O1 - Hosts: 64.255.2.119 scanthenet.com
O1 - Hosts: 64.255.2.119 www.scanthenet.com
O1 - Hosts: 64.255.2.119 global-finder.com
O1 - Hosts: 64.255.2.119 www.global-finder.com
O1 - Hosts: 64.255.2.119 coolsearch.com
O1 - Hosts: 64.255.2.119 www.coolsearch.com
O1 - Hosts: 64.255.2.119 cool-search.ws
O1 - Hosts: 64.255.2.119 www.cool-search.ws
O1 - Hosts: 64.255.2.119 fastwebfinder.com
O1 - Hosts: 64.255.2.119 www.fastwebfinder.com
O1 - Hosts: 64.255.2.119 start-search.com
O1 - Hosts: 64.255.2.119 www.start-search.com
O1 - Hosts: 64.255.2.119 umaxsearch.com
O1 - Hosts: 64.255.2.119 www.umaxsearch.com
O1 - Hosts: 64.255.2.119 7search.com
O1 - Hosts: 64.255.2.119 www.7search.com
O1 - Hosts: 64.255.2.119 777search.com
O1 - Hosts: 64.255.2.119 www.777search.com
O1 - Hosts: 64.255.2.119 Aavc.com
O1 - Hosts: 64.255.2.119 www.Aavc.com
O1 - Hosts: 64.255.2.119 Acjp.com
O1 - Hosts: 64.255.2.119 www.Acjp.com
O1 - Hosts: 64.255.2.119 Allaboutsearching.com
O1 - Hosts: 64.255.2.119 www.Allaboutsearching.com
O1 - Hosts: 64.255.2.119 Amazingautossearch.com
O1 - Hosts: 64.255.2.119 www.Amazingautossearch.com
O1 - Hosts: 64.255.2.119 Contexualsearch.com
O1 - Hosts: 64.255.2.119 www.Contexualsearch.com
O1 - Hosts: 64.255.2.119 Ebch.com
O1 - Hosts: 64.255.2.119 www.Ebch.com
O1 - Hosts: 64.255.2.119 Ebdv.com
O1 - Hosts: 64.255.2.119 www.Ebdv.com
O1 - Hosts: 64.255.2.119 Ebdw.com
O1 - Hosts: 64.255.2.119 www.Ebdw.com
O1 - Hosts: 64.255.2.119 Ebjp.com
O1 - Hosts: 64.255.2.119 www.Ebjp.com
O1 - Hosts: 64.255.2.119 Ebkn.com
O1 - Hosts: 64.255.2.119 www.Ebkn.com
O1 - Hosts: 64.255.2.119 Ebky.com
O1 - Hosts: 64.255.2.119 www.Ebky.com
O1 - Hosts: 64.255.2.119 Eblv.com
O1 - Hosts: 64.255.2.119 www.Eblv.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Genuine Tool - {c815ace8-3dbf-4ffd-8231-ab1d21e8b7ee} - %SystemRoot%\system32\adsldps.dll (file missing)
O2 - BHO: AddressBar Class - {f65b197f-8260-4d52-909a-f70118e646eb} - C:\WINDOWS\system32\iasada.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Browser Mouse\Browser Mouse\1.0\lwbwheel.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [WinService32] C:\Program Files\System32\svchost.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - Startup: BitComet.lnk = G:\BitComet\BitComet.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: QuickTV.lnk = C:\Program Files\AVerTV2K\QuickTV.exe
O4 - Global Startup: WL-8313 Configuration Utility.lnk = ?
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Save Flash by &GetFlash - C:\PROGRA~1\GetFlash\getflash.htm
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - G:\Gierce\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - G:\Gierce\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1145359221545
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} (MediaGatewayX) - http://static.zangocash.com/cab/Seekmo/ie/bridge-c567.cab
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} (SignActivX Control) - https://www.bph.pl/pi/components/SignActivX.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {D7BF3304-138B-4DD5-86EE-491BB6A2286C} - http://www.azebar.com/install/1.cab
O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\System32\UAService7.exe
Jeśli nie, to też usuwasz 
