kaj od tega lahko zbrišem
Evo tole vse mi je našlo:
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\VdCap03C\StillMnt.exe
C:\Programi\norton 2005\Norton Ghost\Agent\GhostTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NvMixerTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Programi\quick time\iTunesHelper.exe
C:\Programi\Winamp\winampa.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Programi\Vremenko\vremenko.exe
C:\Programi\Spamihilator\spamihilator.exe
C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
C:\Programi\norton 2005\Norton AntiVirus\navapsvc.exe
C:\Programi\norton 2005\Norton Ghost\Agent\PQV2iSvc.exe
C:\Programi\norton 2005\Norton AntiVirus\IWP\NPFMntor.exe
C:\Programi\NORTON~1\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programi\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Programi\eMule\emule.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Programi\winrar\WinRAR.exe
C:\DOCUME~1\JANIKR~1.COM\LOCALS~1\Temp\Rar$EX01.250\HijackThis.exe
R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.siol.net/
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://minisearch.startnow.com
R0 – HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 – HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://minisearch.startnow.com
R0 – HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://minisearch.startnow.com
O2 – BHO: AcroIEHlprObj Class – {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} – C:\Programi\adobe reader\ActiveX\AcroIEHelper.dll
O2 – BHO: (no name) – {1C18E989-78E2-2C0B-4475-464DC27718E4} – (no file)
O2 – BHO: (no name) – {47DB1C2F-E53C-2853-124C-5DAB06A28028} – (no file)
O2 – BHO: (no name) – {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} – (no file)
O2 – BHO: SSVHelper Class – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 – BHO: (no name) – {ACB3E0B7-7D0C-40B7-99B3-3EEACDF86BFB} – (no file)
O2 – BHO: (no name) – {B56A7D7D-6927-48C8-A975-17DF180C71AC} – (no file)
O2 – BHO: NAV Helper – {BDF3E430-B101-42AD-A544-FADC6B084872} – C:\Programi\norton 2005\Norton AntiVirus\NavShExt.dll
O2 – BHO: (no name) – {D12A9F74-5DB8-FB92-566E-DAEC65DDF59D} – (no file)
O3 – Toolbar: (no name) – {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} – (no file)
O3 – Toolbar: Norton AntiVirus – {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} – C:\Programi\norton 2005\Norton AntiVirus\NavShExt.dll
O4 – HKLM\..\Run: [nwiz] nwiz.exe /install
O4 – HKLM\..\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
O4 – HKLM\..\Run: [StillMnt] WCamRmv.exe /StartStillMnt
O4 – HKLM\..\Run: [ccApp] “C:\Program Files\Common Files\Symantec Shared\ccApp.exe”
O4 – HKLM\..\Run: [Norton Ghost 9.0] C:\Programi\norton 2005\Norton Ghost\Agent\GhostTray.exe
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 – HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 – HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 – HKLM\..\Run: [NvMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NvMixerTray.exe
O4 – HKLM\..\Run: [QuickTime Task] “C:\Program Files\QuickTime\qttask.exe” -atboottime
O4 – HKLM\..\Run: [iTunesHelper] “C:\Programi\quick time\iTunesHelper.exe”
O4 – HKLM\..\Run: [WinampAgent] C:\Programi\Winamp\winampa.exe
O4 – HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 – HKCU\..\Run: [msnmsgr] “C:\Program Files\MSN Messenger\msnmsgr.exe” /background
O4 – HKCU\..\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
O4 – HKCU\..\Run: [Vremenko] C:\Programi\Vremenko\vremenko.exe
O4 – HKCU\..\Run: [updateMgr] C:\Programi\adobe reader\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 – HKCU\..\Run: [Spamihilator] “C:\Programi\Spamihilator\spamihilator.exe”
O4 – Global Startup: Adobe Reader Speed Launch.lnk = C:\Programi\adobe reader\Reader\reader_sl.exe
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 – Extra button: (no name) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 – Extra ‘Tools’ menuitem: Sun Java Console – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 – Extra button: Spyware Doctor – {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} – C:\WINDOWS\System32\shdocvw.dll
O9 – Extra button: Researcher – {9455301C-CF6B-11D3-A266-00C04F689C50} – C:\Program Files\Common Files\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 – Extra button: Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra ‘Tools’ menuitem: Windows Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O16 – DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) – http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 – DPF: {205FF73B-CA67-11D5-99DD-444553540006} – http://www.errorguard.com/installation/Install.cab
O16 – DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) – http://messenger.zone.msn.com/binary/MineSweeper.cab28578.cab
O16 – DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) – http://www.cult3d.com/download/cult.cab
O16 – DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) – http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 – DPF: {73F0FD85-BD47-4A95-86D1-DE38860462C1} – http://213.254.243.5/data/dialercab/IberoDialerHTML.cab
O16 – DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) – http://campodvin.drsc.si//activex/AMC.cab
O16 – DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) – http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 – DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) – http://messenger.zone.msn.com/binary/MessengerStatsClient.cab28578.cab
O16 – DPF: {8FFB551F-5FA2-41A2-B2A2-56E587675786} (kupidChatx Class) – http://freeweb.siol.net/ytz997/kupidChat.cab
O16 – DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) – http://www.drsc.si/cgi-bin/AxisCamControl.ocx
O16 – DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) – http://messenger.zone.msn.com/binary/SolitaireShowdown.cab28578.cab
O17 – HKLM\System\CCS\Services\Tcpip\..\{4A52383C-3685-4541-B095-9E671C4FDA76}: NameServer = 193.189.160.11 193.189.160.12
O18 – Protocol: msnim – {828030A1-22C1-4009-854F-8E305202313F} – “C:\PROGRA~1\MSNMES~1\msgrapp.dll” (file missing)
O23 – Service: Autodata Limited License Service – Autodata Limited – C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
O23 – Service: Symantec Event Manager (ccEvtMgr) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 – Service: Symantec Password Validation (ccPwdSvc) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 – Service: Symantec Settings Manager (ccSetMgr) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 – Service: iPod Service (iPodService) – Apple Computer, Inc. – C:\Program Files\iPod\bin\iPodService.exe
O23 – Service: Norton AntiVirus Auto-Protect Service (navapsvc) – Symantec Corporation – C:\Programi\norton 2005\Norton AntiVirus\navapsvc.exe
O23 – Service: Norton Ghost – Symantec Corporation – C:\Programi\norton 2005\Norton Ghost\Agent\PQV2iSvc.exe
O23 – Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) – Symantec Corporation – C:\Programi\norton 2005\Norton AntiVirus\IWP\NPFMntor.exe
O23 – Service: Norton Unerase Protection (NProtectService) – Symantec Corporation – C:\Programi\NORTON~1\NORTON~1\NPROTECT.EXE
O23 – Service: NVIDIA Display Driver Service (NVSvc) – NVIDIA Corporation – C:\WINDOWS\system32\nvsvc32.exe
O23 – Service: SAVScan – Symantec Corporation – C:\Programi\norton 2005\Norton AntiVirus\SAVScan.exe
O23 – Service: ScriptBlocking Service (SBService) – Symantec Corporation – C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 – Service: Symantec Network Drivers Service (SNDSrvc) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 – Service: Symantec SPBBCSvc (SPBBCSvc) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 – Service: Speed Disk service – Symantec Corporation – C:\Programi\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 – Service: Symantec Core LC – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 – Service: SymWMI Service (SymWSC) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
Zdaj pa prosim,da tisti ki se spozna na te zadeve,da mi pove,česar resnično ne potrebujem.
Saj vem,da težko veste kaj potrebujem in kaj ne,ampak če povem po pravici,za nekatere zadeve sploh ne vem,kaj so in menim da je samo “nesnaga”
Lp
Tole kar ti bom napisal lahko komot vse ven pomečeš.
Prej pa poglej, če kaj od tega slučajno nujno ne potrebuješ (in veš tudi zakaj), če ne veš pa samo ven vrzi.
O2 – BHO: (no name) – {1C18E989-78E2-2C0B-4475-464DC27718E4} – (no file)
O2 – BHO: (no name) – {47DB1C2F-E53C-2853-124C-5DAB06A28028} – (no file)
O2 – BHO: (no name) – {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} – (no file)
O2 – BHO: SSVHelper Class – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 – BHO: (no name) – {ACB3E0B7-7D0C-40B7-99B3-3EEACDF86BFB} – (no file)
O2 – BHO: (no name) – {B56A7D7D-6927-48C8-A975-17DF180C71AC} – (no file)
O2 – BHO: (no name) – {D12A9F74-5DB8-FB92-566E-DAEC65DDF59D} – (no file)
O3 – Toolbar: (no name) – {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} – (no file)
O4 – HKLM\..\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
O4 – HKLM\..\Run: [StillMnt] WCamRmv.exe /StartStillMnt
O4 – HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 – HKLM\..\Run: [QuickTime Task] “C:\Program Files\QuickTime\qttask.exe” -atboottime
O4 – HKLM\..\Run: [iTunesHelper] “C:\Programi\quick time\iTunesHelper.exe”
O4 – HKLM\..\Run: [WinampAgent] C:\Programi\Winamp\winampa.exe
O4 – HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 – HKCU\..\Run: [msnmsgr] “C:\Program Files\MSN Messenger\msnmsgr.exe” /background
O4 – HKCU\..\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
O4 – HKCU\..\Run: [updateMgr] C:\Programi\adobe reader\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 – Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O23 – Service: Autodata Limited License Service – Autodata Limited – C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
O23 – Service: iPod Service (iPodService) – Apple Computer, Inc. – C:\Program Files\iPod\bin\iPodService.exe
Lahko zmečeš ven tudi vse pod O16, vendar se ti bo počasi naselilo nazaj. Ni pa to kak risk niti ne papa rama, tako da je načeloma skoraj vseeno kaj narediš.
Najlepša hvala za pomoč.
Zanima me pa še nekaj,kajti treh stvari nisem upal zbrisati. Torej če zbrišel tole:
O4 – HKCU\..\Run: [msnmsgr] “C:\Program Files\MSN Messenger\msnmsgr.exe” /background
O4 – HKCU\..\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
Ali mi bo še vedno deloval msn messenger (program za dopisovanje) in bo delala posodobitev ko bo nova verzija?
O23 – Service: Autodata Limited License Service – Autodata Limited – C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
To imam pa nek program,kjer so kao navodila od avtomobilov…torej če zbrišem to,se program podere al kak? Aja pa ta program se ne posodablja preko neta
lisko napisal:
> Najlepša hvala za pomoč.
>
> Zanima me pa še nekaj,kajti treh stvari nisem upal zbrisati.
> Torej če zbrišel tole:
>
> O4 – HKCU\..\Run: [msnmsgr] “C:\Program Files\MSN
> Messenger\msnmsgr.exe” /background
> O4 – HKCU\..\Run: [MSMSGS] “C:\Program
> Files\Messenger\msmsgs.exe” /background
>
> Ali mi bo še vedno deloval msn messenger (program za
> dopisovanje) in bo delala posodobitev ko bo nova verzija?
Ja, mesenger bo še vedno deloval, samo ne bo se ti nasračkal tam spodaj v tray ob zagonu windowsov. Če msgerja veliko uporabljaš in ti je bolj udobno, da čiča v trayu in papca resorse, potem ga pusti, če ga uporabljaš občasno, pa ga vrzi ven in si na namizje daj shortcut in ga zaženi od tam, ko ga boš pač potreboval.
>
>
>
> O23 – Service: Autodata Limited License Service – Autodata
> Limited – C:\Program Files\Common Files\Autodata Limited
> Shared\Service\ADCDLicSvc.exe
>
> To imam pa nek program,kjer so kao navodila od
> avtomobilov…torej če zbrišem to,se program podere al kak? Aja
> pa ta program se ne posodablja preko neta
Če si prepričan da je to to, potem tole pusti, namreč pod tem imenom se lahko skriva tudi trojanec.
Šele zdaj sem opazil da mi nečesa sploh noče zbrisati. Prilagam fotko,pa povejte kaj moram na njen kliknt da zbriše? Jst sem kliknil fix checked.
Aja,na sliki se ne vidi,ampak ne izbriše mu tudi tegale O23 – Service: iPod Service (iPodService) – Apple Computer, Inc. – C:\Program Files\iPod\bin\iPodService.exe
Torej na kakšen način se to briše? Moram mogoče v varni zagon,ali pa program tega brisanja ne omogoče,sam čudi me,da je nekatere stvari zbrisu,ostalih pa ni.
Tko da prosim,če kdo napiše postopek po korakih,kako izbrisati še to.
Forum je zaprt za komentiranje.