23.08.2007, 11:13
Cytat: Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:00:53, on 2007-08-23
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:AcerEmpowering TechnologyePowerePower_DMC.exe
Crogram FilesJavajre1.6.0_02binjusched.exe
CROGRA~1WapsterAQQAQQ.exe
C:WINDOWSsystem32ctfmon.exe
C:progra~1crawlernotescnotes.exe
Crogram FilesLaunch ManagerLManager.exe
C:WINDOWSsystem32igfxext.exe
C:WINDOWSsystem32igfxsrvc.exe
Crogram FilesLavasoftAd-Aware 2007aawservice.exe
C:AcerEmpowering TechnologyadmServ.exe
Crogram FilesAcerAcer ArcadeKernelTVCLCapSvc.exe
Crogram FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLServer.exe
Crogram FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLService.exe
Crogram FilesCommon FilesLightScribeLSSrvc.exe
Crogram FilesMicrosoft SQL ServerMSSQL$AUTODESKVAULTBinnsqlservr.exe
Crogram FilesCyberLinkShared FilesRichVideo.exe
C:WINDOWSsystem32svchost.exe
Crogram FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe
Crogram FilesAcerAcer ArcadeKernelTVCLSched.exe
C:WINDOWSsystem32wbemunsecapp.exe
C:WINDOWSSystem32svchost.exe
Crogram FilesInternet ExplorerIEXPLORE.EXE
Crogram FilesWinRARWinRAR.exe
Crogram FilesTrend MicroHijackThisHijackThis.exe
C:WINDOWSsystem32dumprep.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =[Aby zobaczyć linki, zarejestruj się tutaj]
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =[Aby zobaczyć linki, zarejestruj się tutaj]
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =[Aby zobaczyć linki, zarejestruj się tutaj]
R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) =[Aby zobaczyć linki, zarejestruj się tutaj]
R1 - HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext =[Aby zobaczyć linki, zarejestruj się tutaj]
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ĺącza
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - Crogram FilesIE7ProIE7Pro.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - Crogram FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - CROGRA~1MEGAUP~1MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - Crogram FilesSpybot - Search & DestroySDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - Crogram FilesJavajre1.6.0_02binssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:WINDOWSsystem32eDStoolbar.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - CROGRA~1MEGAUP~1MEGAUP~1.DLL
O4 - HKLM..Run: [ePower_DMC]C:AcerEmpowering TechnologyePowerePower_DMC.exe
O4 - HKLM..Run: [NeroFilterCheck]C:WINDOWSsystem32NeroCheck.exe
O4 - HKLM..Run: [SunJavaUpdateSched]"Crogram FilesJavajre1.6.0_02binjusched.exe"
O4 - HKLM..Run: [Adobe Reader Speed Launcher]"Crogram FilesAdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [RavAV]C:WINDOWSRavMonE.exe
O4 - HKLM..RunServices: [Intel Driver]csrs.exe
O4 - HKCU..Run: [AQQ]CROGRA~1WapsterAQQAQQ.exe
O4 - HKCU..Run: [ctfmon.exe]C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [CrawlerNotes]c:progra~1crawlernotescnotes.exe /notesshow
O4 - HKCU..Run: [AutoConnect]Crogram FilesAutoConnectAutoConnect.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE]C:WINDOWSsystem32CTFMON.EXE (User ''USĹUGA LOKALNA'')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE]C:WINDOWSsystem32CTFMON.EXE (User ''USĹUGA SIECIOWA'')
O4 - HKUSS-1-5-18..Run: [CTFMON.EXE]C:WINDOWSsystem32CTFMON.EXE (User ''SYSTEM'')
O4 - HKUS.DEFAULT..Run: [CTFMON.EXE]C:WINDOWSsystem32CTFMON.EXE (User ''Default user'')
O4 - Startup: Skrót do LManager.lnk = Crogram FilesLaunch ManagerLManager.exe
O8 - Extra context menu item: E&ksport do programu Microsoft Excel -[Aby zobaczyć linki, zarejestruj się tutaj]
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - Crogram FilesIE7ProIE7Pro.dll
O9 - Extra ''Tools'' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - Crogram FilesIE7ProIE7Pro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Crogram FilesJavajre1.6.0_02binssv.dll
O9 - Extra ''Tools'' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Crogram FilesJavajre1.6.0_02binssv.dll
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) -[Aby zobaczyć linki, zarejestruj się tutaj]
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -[Aby zobaczyć linki, zarejestruj się tutaj]
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) -[Aby zobaczyć linki, zarejestruj się tutaj]
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) -[Aby zobaczyć linki, zarejestruj się tutaj]
O17 - HKLMSystemCCSServicesTcpip..{2D167C70-4369-4CCB-975F-9F195016B5DA}: NameServer = 85.255.116.18,85.255.112.185
O17 - HKLMSystemCCSServicesTcpip..{A129A8F1-B658-4F26-9BFB-03144735B66E}: NameServer = 85.255.116.18,85.255.112.185
O17 - HKLMSystemCCSServicesTcpip..{BB06B819-DAF8-4D12-B2D0-84DD4D871E64}: NameServer = 85.255.116.18,85.255.112.185
O17 - HKLMSystemCCSServicesTcpip..{CFDD7D83-8F32-4E84-809E-95C2A12565F3}: NameServer = 85.255.116.18,85.255.112.185
O17 - HKLMSystemCS1ServicesTcpipParameters: NameServer = 85.255.116.18 85.255.112.185
O17 - HKLMSystemCCSServicesTcpipParameters: NameServer = 85.255.116.18 85.255.112.185
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - Crogram FilesLavasoftAd-Aware 2007aawservice.exe
O23 - Service: Autodesk Licensing Service - Autodesk - Crogram FilesCommon FilesAutodesk SharedServiceAdskScSrv.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:AcerEmpowering TechnologyadmServ.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - Crogram FilesAcerAcer ArcadeKernelTVCLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - Crogram FilesAcerAcer ArcadeKernelTVCLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - Crogram FilesAcerAcer ArcadeKernelCLML_NTServiceCLMLServer.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - Crogram FilesCommon FilesLightScribeLSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - Crogram FilesCyberLinkShared FilesRichVideo.exe
O23 - Service: ServiceLayer - Nokia. - Crogram FilesPC Connectivity SolutionServiceLayer.exe
O23 - Service: Symantec Core LC - Symantec Corporation - Crogram FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe
--
End of file - 7617 bytes