mazāku kapitāla

Magazine
Go Back   Computer Sulas > Computer Software > Vīrusu, spiegprogrammatūru un drošība
Reload this Page

Hijackthislog - vienkārši jābūt piesardzīgiem

Reģistrēties Site Spy Member List Ziedot Meklēt Today's Posts Mark Forums Read Foruma Noteikumi

Register


 Default 

Hijackthislog - vienkārši jābūt piesardzīgiem




Reply
 
Thread Tools
  #1  
Old Augusts 4, 2008, 06:55
Loceklis
  
Default Hijackthislog - vienkārši jābūt piesardzīgiem

Hei, man pilnībā ir panisks dīvainis, RAM's ir ēdis daudz atkal pēdējā laikā .... nevaru atrast neko nelabvēlīgs caur manu vīrusu programmas vai spiegprogrammatūra .. uzdevumu pārvaldnieka chucking līdz svchost ar ēšanas traucējumiem, bet vienkārši gribu pārliecināties!

--

Logfile of Trend Micro HijackThis v2.0.2
Scan saglabāts 2:48:21 gada 8/4/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running procesiem:
C: \ Program Files (x86) \ RocketDock \ RocketDock.exe
C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccWarden.exe
C: \ Program Files (x86) \ Google \ Web Accelerator \ googlewebaccclient.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ Sniper.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://d0od.blogspot.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet iestatījumi AutoConfigURL = http://localhost:9100/proxy.pac
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
O1 - Hosts::: 1 localhost
O2 - BHO: Google Update Helper - (25D596E9-BD03-4D4A-8.310-5DF3B31E8D26) - C: \ Program Files (x86) \ Google \ Update \ 1.2.121.17 \ GoopdateBho.dll
O2 - BHO: Google Web Accelerator Helper - (69A87B7D-DE56-4.136-9.655-716BA50C19C7) - C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4.638-B6FA-CE66B5AD205D) - C: \ Program Files (x86) \ Google \ GoogleToolbarNotifier \ 2.1.1119.1736 \ s wg.dll
O3 - Toolbar: Google Web Accelerator - (DB87BFA2-A2E3-451E-8E5A-C89982D87CBF) - C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccToolbar.dll
O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files (x86) \ AMD \ Dual-Core Optimizer \ amd_dc_opt.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows sānjoslas \ sidebar.exe / Autorun
O4 - HKCU \ .. \ Run: [RocketDock] "C: \ Program Files (x86) \ RocketDock \ RocketDock.exe"
O4 - HKCU \ .. \ Run: [uTorrent] "C: \ Program Files (x86) \ uTorrent2 \ uTorrent.exe"
O4 - HKCU \ .. \ Run: [WMPNSCFG] C: \ Program Files (x86) \ Windows Media Player \ WMPNSCFG.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Palaidiet Google Web Accelerator.lnk = C: \ Program Files (x86) \ Google \ Web Accelerator \ GoogleWebAccWarden.exe
Ø8 - ārpus konteksta menu item: & D & ownload & ar BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddLink.htm
Ø8 - ārpus konteksta menu item: & D & ownload visi video ar BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddVideo.htm
Ø8 - ārpus konteksta menu item: & D & ownload visiem BitComet - res: / / C: \ Program Files (x86) \ BitComet \ BitComet.exe / AddAllLink.htm
Ø9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
Ø9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files (x86) \ Java \ jre1.6.0_05 \ bin \ ssv.dll
Ø9 - Extra button: Bonjour - (7F9DB11C-E358-4ca6-A83D-ACC663939424) - C: \ Program Files (x86) \ Bonjour \ ExplorerPlugin.dll
O13 - Gopher Prefix:
Ø16 - DPF: (0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75) (CKAVWebScan Object) -- http://www.kaspersky.com/kos/eng/par...an_unicode.cab
Ø16 - DPF: (30.528.230-99f7-4bb4-88d8-fa1d4f56a2ab) (INSTALLATION SUPPORT) - C: \ Program Files (x86) \ Yahoo! \ Common \ Yinsthelper.dll
Ø16 - DPF: (4A85DBE0-BFB2-4.119-8.401-186A7C6EB653) -- http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
Ø16 - DPF: (4F1E5B1A-2A80-42CA-8.532-2D05CB959537) (MSN Photo Upload Tool) -- http://gfx1.hotmail.com/mail/w2/reso...PUplden-gb.cab
Ø16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220.313.175.592) (MSN Games - Installer) -- http://messenger.zone.msn.com/binary...o.cab56649.cab
Ø16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient klase) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
Ø16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444.553.540.000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...nt/swflash.cab
Ø16 - DPF: (E6187999-9FEC-46A1-A20F-F4CA977D5643) (ZoneChess Object) -- http://messenger.zone.msn.com/binary/Chess.cab57176.cab
Ø16 - DPF: (F6ACF75C-C32C-447B-9BEF-46B766368D29) (Creative Software AutoUpdate Support Package) -- http://www.creative.com/softwareupda...5102/CTPID.cab
Ø16 - DPF: (F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8) (GoPetsWeb Control) -- https: / / secure.gopetslive.com / dev / GoPetsWeb.cab
Ø17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (BF0DBBE6-E088-4.418-8A2D-4B9788FFCACC): NameServer = 192.168.2.1
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9.458-1830C7DD7F5D) - C: \ PROGRA ~ 2 \ Common ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O23 - Service: @% SystemRoot% \ system32 \ Alg.exe, -112 (ALG) - Unknown īpašnieks - C: \ Windows \ System32 \ alg.exe (file missing)
O23 - Service: iPod Service - Apple Inc - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: @ keyiso.dll, -100 (KeyIso) - Unknown īpašnieks - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @ comres.dll, -2.797 (MSDTC) - Unknown īpašnieks - C: \ Windows \ System32 \ msdtc.exe (file missing)
O23 - Service: @% SystemRoot% \ System32 \ netlogon.dll, -102 (Netlogon) - Unknown īpašnieks - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown īpašnieks - C: \ Windows \ system32 \ nvvsvc.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ psbase.dll, -300 (ProtectedStorage) - Unknown īpašnieks - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ Locator.exe, -2 (RpcLocator) - Unknown īpašnieks - C: \ Windows \ system32 \ locator.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ samsrv.dll, -1 (SamSs) - Unknown īpašnieks - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ SLsvc.exe, -101 (slsvc) - Unknown īpašnieks - C: \ Windows \ system32 \ SLsvc.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ snmptrap.exe, -3 (SNMPTRAP) - Unknown īpašnieks - C: \ Windows \ System32 \ snmptrap.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ Spoolsv.exe, -1 (spolētāja) - Unknown īpašnieks - C: \ Windows \ System32 \ Spoolsv.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ ui0detect.exe, -101 (UI0Detect) - Unknown īpašnieks - C: \ Windows \ system32 \ UI0Detect.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ vds.exe, -100 (VDS) - Unknown īpašnieks - C: \ Windows \ System32 \ vds.exe (file missing)
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc - C: \ Windows \ system32 \ vmnetdhcp.exe
O23 - Service: VMware NAT serviss - VMware, Inc - C: \ Windows \ system32 \ vmnat.exe
O23 - Service: @% SystemRoot% \ system32 \ vssvc.exe, -102 (VSS) - Unknown īpašnieks - C: \ Windows \ system32 \ vssvc.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ wbem \ wmiapsrv.exe, -110 (wmiApSrv) - Unknown īpašnieks - C: \ Windows \ system32 \ wbem \ WmiApSrv.exe (file missing)
O23 - Service: @% programfiles% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unknown īpašnieks - C: \ Program Files (x86) \ Windows Media Player \ wmpnetwk.exe (file missing)

--
End of failu - 7.922 bytes
  #2  
Old Augusts 4, 2008, 11:01
Moderator Group
  
Default Hijackthislog - vienkārši jābūt piesardzīgiem

Looks fine.
__________________
Reply

Register

Bookmarks
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright © 2006 - 2009 Computer Sulas.
Kontaktpersona -- Privacy -- Sitemap -- Augša

Powered by vBulletin ® Copyright © 2000 - 2009 Jelsoft Enterprises Ltd SEO līdz 2009 vBSEO ©, Crawlability, Inc