wklejto.pl

Dodane przez: ~hijack (2009-02-08 16:53) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:50:40, on 2009-02-08
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
 
Running processes:
C:\\windows\\System32\\smss.exe
C:\\windows\\system32\\winlogon.exe
C:\\windows\\system32\\services.exe
C:\\windows\\system32\\lsass.exe
C:\\windows\\system32\\Ati2evxx.exe
C:\\windows\\system32\\svchost.exe
C:\\windows\\System32\\svchost.exe
C:\\windows\\system32\\Ati2evxx.exe
C:\\windows\\system32\\spoolsv.exe
C:\\WINDOWS\\runservice.exe
C:\\windows\\Explorer.EXE
C:\\windows\\system32\\svchost.exe
C:\\Program Files\\Java\\jre1.5.0_03\\bin\\jusched.exe
C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe
C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe
C:\\Program Files\\Winamp\\winampa.exe
C:\\windows\\FixCamera.exe
C:\\windows\\vsnpstd3.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
C:\\windows\\tsnpstd3.exe
C:\\windows\\system32\\ctfmon.exe
C:\\Program Files\\SAGEM\\SAGEM F@st 800-840\\dslmon.exe
C:\\Program Files\\DAEMON Tools\\daemon.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\ccc.exe
C:\\Program Files\\Internet Download Manager\\IEMonitor.exe
C:\\windows\\system32\\wuauclt.exe
C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE
C:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe
 
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.pl/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\\Program Files\\Internet Download Manager\\IDMIECC.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\\Program Files\\BitComet\\tools\\BitCometBHO_1.1.5.19.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2009\\ievkbd.dll
O2 - BHO: Video BHO - {681147C4-D615-461A-960F-655871E315C3} - C:\\WINDOWS\\vidas16.dll (file missing)
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\\PROGRA~1\\TEXTware\\QUICKF~1\\PlugIns\\IEHelp.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\\Program Files\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\\Program Files\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre1.5.0_03\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [ATIPTA] \"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\"
O4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"
O4 - HKLM\\..\\Run: [C:\\windows\\system32\\kdtqt.exe] C:\\windows\\system32\\kdtqt.exe
O4 - HKLM\\..\\Run: [StartCCC] \"C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun
O4 - HKLM\\..\\Run: [WinampAgent] \"C:\\Program Files\\Winamp\\winampa.exe\"
O4 - HKLM\\..\\Run: [FixCamera] C:\\windows\\FixCamera.exe
O4 - HKLM\\..\\Run: [snpstd3] C:\\windows\\vsnpstd3.exe
O4 - HKLM\\..\\Run: [tsnpstd3] C:\\windows\\tsnpstd3.exe
O4 - HKLM\\..\\Run: [AVP] \"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2009\\avp.exe\"
O4 - HKCU\\..\\Run: [I&F Viewer toolbar] \"D:\\KRZYSIEK\\programy\\Photo Toolkit\\ivbar\\phototoolkitmem.exe\" -start
O4 - HKCU\\..\\Run: [ctfmon.exe] C:\\windows\\system32\\ctfmon.exe
O4 - HKCU\\..\\Run: [IDMan] C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot
O4 - HKCU\\..\\Run: [13CFG914-K641-26SF-N31P] C:\\RECYCLER\\S-1-5-21-0243336031-4052116379-881863308-0950\\vsse33.exe
O4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'USŁUGA LOKALNA\')
O4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'USŁUGA SIECIOWA\')
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: dslmon.exe
O4 - Startup: Skrót do daemon.lnk = C:\\Program Files\\DAEMON Tools\\daemon.exe
O4 - Global Startup: DSLMON.lnk = C:\\Program Files\\SAGEM\\SAGEM F@st 800-840\\dslmon.exe
O8 - Extra context menu item: Download all links using BitComet - res://C:\\Program Files\\BitComet\\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\\Program Files\\BitComet\\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\\Program Files\\BitComet\\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\OFFICE11\\EXCEL.EXE/3000
O8 - Extra context menu item: Pobierz z &BitSpirit - C:\\Program Files\\BitSpirit\\bsurl.htm
O8 - Extra context menu item: Ściągnij przez IDM - C:\\Program Files\\Internet Download Manager\\IEExt.htm
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\\Program Files\\Internet Download Manager\\IEGetAll.htm
O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\\Program Files\\Internet Download Manager\\IEGetVL.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_03\\bin\\npjpi150_03.dll
O9 - Extra \'Tools\' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_03\\bin\\npjpi150_03.dll
O9 - Extra button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2009\\SCIEPlgn.dll
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\OFFICE11\\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.pl/resources/virusscanner/kavwebscan_unicode.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\\Program Files\\Yahoo!\\Common\\yinsthelper.dll
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\..\\{D18ECC14-7500-4A56-AC80-FFF958505584}: NameServer = 83.238.255.76 213.241.79.37
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\\PROGRA~1\\KASPER~1\\KASPER~1\\mzvkbd.dll,C:\\PROGRA~1\\KASPER~1\\KASPER~1\\mzvkbd3.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\\windows\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2009\\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\11\\Intel 32\\IDriverT.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\\WINDOWS\\runservice.exe
O24 - Desktop Component 0: (no name) - http://www.acmilan.pl/news/image/costacurta7c.jpg
 
--
End of file - 7731 bytes
 
Wygenerowano w 0.025s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!