Computer Juice  

Go Back   Computer Juice > Computer Software > Virus, Spyware & Sikkerhed
Hijackthislog - just to be cautious Hijackthislog - for blot at være forsigtig
Registrer FAQ Medlem List Kalender Søgning Dagens Stillinger Mark Forums Read

Reply
 
Thread Tools
  #1  
Old 4. august 2008, 06:55
d0od's Avatar
Medlem Gruppen
  
Tilmeldingsdato: 11 marts 2008
Stillinger: 48
d0od is on a distinguished road
Send a message via MSN to d0od Send a message via Skype™ to d0od
Default Hijackthislog - for blot at være forsigtig
Hey, jeg helt er en panikagtig skør, RAM bliver spist en masse igen seneste .... kan ikke finde noget uheldige via mit virus program eller spyware .. Jobliste's chucking op Svchost med en spise forstyrrelse, men blot ønsker at sikre!

--

Logfile af Trend Micro HijackThis v2.0.2
Scan gemt på 2:48:21 PM, den 8/4/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Kørende processer:
C: \ Program Files (x86) \ RocketDock \ RocketDock.exe
C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccWarden.exe
C: \ Program Files (x86) \ Google \ Web Accelerator \ googlewebaccclient.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ Sniper.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://d0od.blogspot.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Indstillinger, AutoConfigURL = http://localhost:9100/proxy.pac
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
O1 - Hosts::: 1 localhost
O2 - BHO: Google Update Helper - (25D596E9-BD03-4D4A-8310-5DF3B31E8D26) - C: \ Program Files (x86) \ Google \ Update \ 1.2.121.17 \ GoopdateBho.dll
O2 - BHO: Google Web Accelerator Helper - (69A87B7D-DE56-4136-9655-716BA50C19C7) - C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files (x86) \ Google \ GoogleToolbarNotifier \ 2.1.1119.1736 \ s wg.dll
O3 - Toolbar: Google Web Accelerator - (DB87BFA2-A2E3-451E-8E5A-C89982D87CBF) - C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccToolbar.dll
O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files (x86) \ AMD \ Dual-Core Optimizer \ amd_dc_opt.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Programmer \ Windows Sidebar \ sidebar.exe / autorun
O4 - HKCU \ .. \ Run: [RocketDock] "C: \ Program Files (x86) \ RocketDock \ RocketDock.exe"
O4 - HKCU \ .. \ Run: [uTorrent] "C: \ Program Files (x86) \ uTorrent2 \ uTorrent.exe"
O4 - HKCU \ .. \ Run: [WMPNSCFG] C: \ Program Files (x86) \ Windows Media Player \ WMPNSCFG.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Run Google Web Accelerator.lnk = C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccWarden.exe
O8 - Extra sammenhæng menupunktet: & D & ownload & med BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddLink.htm
O8 - Extra sammenhæng menupunktet: & D & ownload all video med BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddVideo.htm
O8 - Extra sammenhæng menupunktet: & D & ownload alle med BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddAllLink.htm
O9 - Extra knappen: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Ekstra knap: Bonjour - (7F9DB11C-E358-4ca6-A83D-ACC663939424) - C: \ Program Files (x86) \ Bonjour \ ExplorerPlugin.dll
O13 - Gopher Prefix:
O16 - DPF: (0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75) (CKAVWebScan Object) -- http://www.kaspersky.com/kos/eng/par...an_unicode.cab
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Installation Support) - C: \ Program Files (x86) \ Yahoo! \ Common \ Yinsthelper.dll
O16 - DPF: (4A85DBE0-BFB2-4119-8401-186A7C6EB653) -- http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://gfx1.hotmail.com/mail/w2/reso...PUplden-gb.cab
O16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220313175592) (MSN Games - Installer) -- http://messenger.zone.msn.com/binary...o.cab56649.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...nt/swflash.cab
O16 - DPF: (E6187999-9FEC-46A1-A20F-F4CA977D5643) (ZoneChess Object) -- http://messenger.zone.msn.com/binary/Chess.cab57176.cab
O16 - DPF: (F6ACF75C-C32C-447B-9BEF-46B766368D29) (Creative Software AutoUpdate Support Package) -- http://www.creative.com/softwareupda...5102/CTPID.cab
O16 - DPF: (F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8) (GoPetsWeb Control) -- https: / / secure.gopetslive.com / dev / GoPetsWeb.cab
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (BF0DBBE6-E088-4418-8A2D-4B9788FFCACC): NameServer = 192.168.2.1
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 2 \ FÆLLES ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O23 - Service: @% SystemRoot% \ system32 \ Alg.exe, -112 (ALG) - Unknown ejer - C: \ Windows \ System32 \ alg.exe (file mangler)
O23 - Service: iPod Service - Apple Inc. - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: @ keyiso.dll, -100 (KeyIso) - Ukendt ejer - C: \ Windows \ system32 \ Lsass.exe (filen mangler)
O23 - Service: @ comres.dll, -2797 (MSDTC) - Unknown ejer - C: \ Windows \ System32 \ msdtc.exe (file mangler)
O23 - Service: @% SystemRoot% \ System32 \ netlogon.dll, -102 (Netlogon) - Unknown ejer - C: \ Windows \ system32 \ Lsass.exe (filen mangler)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Ukendt ejer - C: \ Windows \ system32 \ nvvsvc.exe (filen mangler)
O23 - Service: @% systemroot% \ system32 \ psbase.dll, -300 (ProtectedStorage) - Ukendt ejer - C: \ Windows \ system32 \ Lsass.exe (filen mangler)
O23 - Service: @% systemroot% \ system32 \ Locator.exe, -2 (RpcLocator) - Ukendt ejer - C: \ Windows \ System32 \ Locator.exe (filen mangler)
O23 - Service: @% SystemRoot% \ system32 \ samsrv.dll, -1 (SamSs) - Ukendt ejer - C: \ Windows \ system32 \ Lsass.exe (filen mangler)
O23 - Service: @% SystemRoot% \ system32 \ SLsvc.exe, -101 (slsvc) - Ukendt ejer - C: \ Windows \ system32 \ SLsvc.exe (file mangler)
O23 - Service: @% SystemRoot% \ system32 \ snmptrap.exe, -3 (SNMPTRAP) - Ukendt ejer - C: \ Windows \ System32 \ snmptrap.exe (filen mangler)
O23 - Service: @% systemroot% \ system32 \ Spoolsv.exe, -1 (Spooler) - Unknown ejer - C: \ Windows \ System32 \ Spoolsv.exe (filen mangler)
O23 - Service: @% SystemRoot% \ system32 \ ui0detect.exe, -101 (UI0Detect) - Ukendt ejer - C: \ Windows \ system32 \ UI0Detect.exe (filen mangler)
O23 - Service: @% SystemRoot% \ system32 \ vds.exe, -100 (VDS) - Ukendt ejer - C: \ Windows \ System32 \ vds.exe (filen mangler)
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C: \ Windows \ system32 \ vmnetdhcp.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C: \ Windows \ system32 \ vmnat.exe
O23 - Service: @% systemroot% \ system32 \ vssvc.exe, -102 (vss) - Ukendt ejer - C: \ Windows \ system32 \ vssvc.exe (file mangler)
O23 - Service: @% systemroot% \ system32 \ Wbem \ wmiapsrv.exe, -110 (wmiApSrv) - Ukendt ejer - C: \ Windows \ System32 \ Wbem \ WmiApSrv.exe (filen mangler)
O23 - Service: @% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unknown ejer - C: \ Program Files (x86) \ Windows Media Player \ wmpnetwk.exe (file mangler)

--
End of file - 7922 bytes
Reply With Quote
  #2  
Old 4. august 2008, 11:01
evilfantasy's Avatar
Redaktør Gruppen
  
Join Date: 16. juli 2007
Indlæg: 7.219
evilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond reputeevilfantasy has a reputation beyond repute
Send a message via Yahoo to evilfantasy
Default Hijackthislog - for blot at være forsigtig
Ser fint.
__________________

Reply With Quote
Reply

« Winspywareprotect virus | UPS E-mail Viruse (r) »
Thread Tools

Udstationering Regler
Du kan ikke post nye tråde
Du kan ikke post svar
Du kan ikke post vedhæftede filer
Du kan ikke redigere dine indlæg
BB-kode er
Smilies er
[IMG] koden er
HTML-koden er Slukket
Trackbacks er
Pingbacks er
Refbacks er Slukket

Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian


Alle tidspunkter er GMT -7. Den tid er nu 14:48.

Kontakt os -- Computer Juice -- Sitemap -- Privacy Statement -- Top

Annoncenetværk baseret på bytteøkonomi ® Copyright © 2000 - 2009 Jelsoft Enterprises Ltd
SEO ved vBSEO © 2009, websteds egnethed til webcrawling, Inc.