Ir ką dabar daryt?


Ir ką dabar daryt?

nu paspaudžiau ok , bet nežinau ar reikėjo… kas čia toks yra? Ar ir vėl koks spy? Nustebęs

Kazaa išjunk ir tuomet praskanuok iš naujo.

Senas pas tave Ad-Aware.

Išjungi visa programas praskanuoji iš naujo spaudi OK perkrauni kompą po to ad-aware dar pati prieš pilnai užsikraunant windowsams pabaigs darbą. praskanuok vėl jei dar bus brudas - leisk hijacthis (IT patarimuose rasi) ir pastink logą čia

bet aš visiškai nenaudoju IE , net nepasileidau nuo windozių perinstaliavimo , naudojuos tik Mozilla Firefox 0.9.3… Nustebęs

nu tai jau susiinstalinau hijackthis , paspaudžiau scan ir viską ką ten surašė nukopint?

Štai: Logfile of HijackThis v1.98.2 Scan saved at 12:29:02 PM, on 11/21/2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon .exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\ WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\W INDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\RunDll32.exe C:\Pro gram Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\ICQLite\ICQLite.exe C:\Program Files\D-Tools\daemon.exe C:\WINDOWS\system32\ctfmon.exe D:\Downloade d\IDM4 retail\patched\IDMan.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Kazaa Lite K++\KazaaLite.kpp C:\Program Files\totalcmd\TOTALCMD.EXE C:\WINDOWS\system32\exdl.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\exdl1.exe C:\PROGRA~1\2FIN DM~1\Partner\saap.exe C:\Program Files\WeatherCast\Weather.exe C:\PROGRA~1\Save\Save.exe C:\WINDOWS\S ystem32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\totalcmd\TOTALCMD.EXE C:\Program Files\Winamp\winamp.exe C:\Program Files\WinRAR\WinRAR.exe C:\DOCUME~1\Ignaz\LOCALS~1\Temp\Rar$EX00.360\ HijackThis.exe O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Downloaded\IDM4 retail\patched\IDMIECC.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: ADP UrlCatcher Class - {F4E04583-354E-4076-BE7D-ED6A80FD66DA} - C:\WINDOWS\system32\msbe.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM…\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM…\Run: [TkBellExe] “C:\Program Files\K-Lite Codec Pack\real\Update_OB\realsched.exe” -osboot O4 - HKLM…\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe O4 - HKLM…\Run: [ccRegVfy] C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe O4 - HKLM…\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM…\Run: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -minimize O4 - HKLM…\Run: [webHancer Survey Companion] “C:\Program Files\webHancer\Programs\whSurvey.exe” O4 - HKLM…\Run: [Blubster] C:\Program Files\Blubster\Blubster.exe SILENT O4 - HKLM…\Run: [DAEMON Tools-1033] “C:\Program Files\D-Tools\daemon.exe” -lang 1033 O4 - HKLM…\Run: [BullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exe O4 - HKLM…\Run: [saap] c:\progra~1\2findm~1\partner\saap.exe O4 - HKLM…\Run: [WhenUSave] C:\PROGRA~1\Save\Save.exe O4 - HKLM…\RunOnce: [Register C:\WINDOWS\system32\msbe.dll] “C:\WINDOWS\system32\rundll32.exe” “C:\WINDOWS\system32\msbe.dll”,DllRegisterServer O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [IDMan] D:\Downloaded\IDM4 retail\patched\IDMan.exe /onboot O4 - HKCU…\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background O4 - HKCU…\Run: [Skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized O4 - HKCU…\Run: [WeatherCast] C:\Program Files\WeatherCast\Weather.exe /q O4 - HKCU…\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot O4 - HKCU…\RunOnce: [OSSProxy] c:\windows\system32\ossproxy.exe -bootinstall O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Download All Links with IDM - D:\Downloaded\IDM4 retail\patched\IEGetAll.htm O8 - Extra context menu item: Download with IDM - D:\Downloaded\IDM4 retail\patched\IEExt.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: ICQ 4.1 - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra ‘Tools’ menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll

hijack this - nunimki stai sita : O4 - HKCU…\RunOnce: [OSSProxy] c:\windows\system32\ossproxy.exe -bootinstall

as visus brudus trinu lauk… Kietas

per ad-aware skanuok iš safe mode, tada viską leis trint

2-spyware.com/file-weather-exe.htmlliutilities.com/products/wintaskspro/processlibrary/save/iamnotageek.com/a/saap.exe.php

atnaujink ir ad-aware ir mizilla ir gal antivirusine? gal irgi koki NAV 2000 naudoji? Šypsena

WRATH: naudoju nortoną 2003 pro

Gali Spybot search & destroy pamegint wertas demesio dalykas. Instaliavus leidzia siuksles (tokias kaip toji) pakartotinai leidziant kompa istrint. Programa leidziant windozes nieko neleidzia paleist ir skanuoja, jei ka randa istrina, po to win keip wisad wejkia.