wklejto.pl

Dodane przez: ~ryfterek (2008-11-05 08:04) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:12:24, on 2008-11-05
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
 
Running processes:
C:\\WINDOWS\\System32\\smss.exe
C:\\WINDOWS\\system32\\winlogon.exe
C:\\WINDOWS\\system32\\services.exe
C:\\WINDOWS\\system32\\lsass.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\system32\\svchost.exe
D:\\Program Files\\Użytkowe\\Panda\\TPSrv.exe
C:\\Program Files\\Ahead\\InCD\\InCDsrv.exe
C:\\WINDOWS\\system32\\spoolsv.exe
D:\\PROGRAM FILES\\UżYTKOWE\\PANDA\\WebProxy.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\system32\\nvsvc32.exe
D:\\Program Files\\Użytkowe\\Panda\\PsCtrls.exe
D:\\Program Files\\Użytkowe\\Panda\\PavFnSvr.exe
C:\\Program Files\\Common Files\\Panda Security\\PavShld\\pavprsrv.exe
D:\\Program Files\\Użytkowe\\Panda\\PsImSvc.exe
D:\\Program Files\\Użytkowe\\Panda\\PskSvc.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\PROGRA~1\\SPEEDB~1\\VideoAcceleratorService.exe
C:\\WINDOWS\\system32\\SearchIndexer.exe
C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\bin\\nSvcAppFlt.exe
C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\bin\\nSvcIp.exe
D:\\Program Files\\Użytkowe\\Panda\\pavsrv51.exe
D:\\Program Files\\Użytkowe\\Panda\\AVENGINE.EXE
d:\\program files\\użytkowe\\panda\\firewall\\PSHOST.EXE
C:\\WINDOWS\\Explorer.EXE
C:\\PROGRA~1\\SPEEDB~1\\VideoAcceleratorEngine.exe
C:\\Program Files\\SpeedBit Video Accelerator\\VideoAccelerator.exe
D:\\Program Files\\Użytkowe\\WinPatrol 2008 15.9.2008.1\\WinPatrol\\winpatrol.exe
D:\\Program Files\\Użytkowe\\Panda\\APVXDWIN.EXE
D:\\Program Files\\Użytkowe\\System Mechanic 6\\SMSystemAnalyzer.exe
C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe
D:\\Program Files\\Obróbka zdjęć\\Pcassa\\Picasa2\\PicasaMediaDetector.exe
D:\\Program Files\\Użytkowe\\H T C\\wcescomm.exe
C:\\WINDOWS\\system32\\ctfmon.exe
D:\\Program Files\\Użytkowe\\Spybot - Search & Destroy\\TeaTimer.exe
D:\\PROGRA~1\\UYTKOW~1\\HTC~1\\rapimgr.exe
C:\\Program Files\\SEC\\Natural Color Pro\\NCProTray.exe
C:\\Program Files\\GIGABYTE\\Gamer GIGABYTE Gamer HUD\\HUD.exe
D:\\Program Files\\Użytkowe\\Panda\\SRVLOAD.EXE
D:\\Program Files\\Użytkowe\\Panda\\PavBckPT.exe
D:\\Program Files\\Internetowe\\Opera\\Opera.exe
D:\\Program Files\\Użytkowe\\HiJack\\HijackThis.exe
C:\\WINDOWS\\system32\\SearchProtocolHost.exe
 
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://search.speedbit.com/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66017
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66017
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66017
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Local Page = 
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Local Page = 
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\\PROGRA~1\\Crawler\\ctbr.dll
R3 - URLSearchHook: SrchHook Class - {F4F10C1D-87C7-404A-B4B3-000000000000} - D:\\PROGRA~1\\UYTKOW~1\\DAP\\SBSearch.dll
O1 - Hosts: 78.46.45.81 L2authd.lineage2.com
O1 - Hosts: 78.46.45.81 L2testauthd.lineage2.com
O1 - Hosts: 216.107.250.194 nProtect.lineage2.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\\PROGRA~1\\Crawler\\ctbr.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\\Program Files\\Skype\\Toolbars\\Internet Explorer\\SkypeIEPlugin.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - D:\\Program Files\\Użytkowe\\Sidebar\\sbhelp.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\\PROGRA~1\\UYTKOW~1\\SPYBOT~1\\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Java\\jre6\\bin\\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\\Program Files\\Epson Software\\Easy Photo Print\\EPTBL.dll
O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\\PROGRA~1\\MEGAUP~1\\MEGAUP~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\\program files\\google\\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\3.1.807.1746\\swg.dll
O2 - BHO: Aj.Popa - {BC354443-937D-498B-A792-B6E388CDFCE6} - C:\\WINDOWS\\system32\\loifsa.dll
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - D:\\Program Files\\Użytkowe\\MM\\MegaIEMn.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\\Program Files\\MSN\\Toolbar\\3.0.0311.0\\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\\Program Files\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O3 - Toolbar: The Weather Channel Toolbar - {2E5E800E-6AC0-411E-940A-369530A35E43} - C:\\WINDOWS\\system32\\TwcToolbarIe7.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\\Program Files\\Dealio\\kb124\\Dealio.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\\program files\\google\\googletoolbar2.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\\PROGRA~1\\Crawler\\ctbr.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\\Program Files\\MSN\\Toolbar\\3.0.0311.0\\msneshellx.dll
O3 - Toolbar: gxvpsafm - {B1E0C6DC-BBEA-4DE1-BFCA-70362CD86579} - C:\\WINDOWS\\gxvpsafm.dll (file missing)
O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\\PROGRA~1\\MEGAUP~1\\MEGAUP~1.DLL
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\\Program Files\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\\Program Files\\Epson Software\\Easy Photo Print\\EPTBL.dll
O4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup
O4 - HKLM\\..\\Run: [SpeedBitVideoAccelerator] \"C:\\Program Files\\SpeedBit Video Accelerator\\VideoAccelerator.exe\"
O4 - HKLM\\..\\Run: [WinPatrol] D:\\Program Files\\Użytkowe\\WinPatrol 2008 15.9.2008.1\\WinPatrol\\winpatrol.exe -expressboot
O4 - HKLM\\..\\Run: [APVXDWIN] \"D:\\Program Files\\Użytkowe\\Panda\\APVXDWIN.EXE\" /s
O4 - HKLM\\..\\Run: [SCANINICIO] \"D:\\Program Files\\Użytkowe\\Panda\\Inicio.exe\"
O4 - HKLM\\..\\Run: [TrojanScanner] D:\\Program Files\\Użytkowe\\Trojan Remoower\\Trojan Remover\\Trjscan.exe /boot
O4 - HKCU\\..\\Run: [Zegarynka] C:\\DOCUME~1\\Szymek\\USTAWI~1\\Temp\\Katalog tymczasowy 1 dla zegarynka1.2(dobreprogramy.pl).zip\\Zegarynka.exe
O4 - HKCU\\..\\Run: [SMSystemAnalyzer] \"D:\\Program Files\\Użytkowe\\System Mechanic 6\\SMSystemAnalyzer.exe\"
O4 - HKCU\\..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe
O4 - HKCU\\..\\Run: [Picasa Media Detector] D:\\Program Files\\Obróbka zdjęć\\Pcassa\\Picasa2\\PicasaMediaDetector
O4 - HKCU\\..\\Run: [H/PC Connection Agent] \"D:\\Program Files\\Użytkowe\\H T C\\wcescomm.exe\"
O4 - HKCU\\..\\Run: [Draco Organizer] \"D:\\Program Files\\Użytkowe\\Draco Organizer 3.07\\Organizer.exe\" /tray
O4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKCU\\..\\Run: [EPSON SX100 Series] C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATIEDE.EXE /FU \"C:\\DOCUME~1\\Szymek\\USTAWI~1\\Temp\\E_S648.tmp\" /EF \"HKCU\"
O4 - HKCU\\..\\Run: [SpybotSD TeaTimer] D:\\Program Files\\Użytkowe\\Spybot - Search & Destroy\\TeaTimer.exe
O4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'USŁUGA LOKALNA\')
O4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'USŁUGA SIECIOWA\')
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: GIGABYTE Gamer HUD.exe.lnk = ?
O4 - Startup: OpenOffice.org 3.0.lnk = ?
O4 - Global Startup: NCProTray.lnk = ?
O4 - Global Startup: Windows Search.lnk = C:\\Program Files\\Windows Desktop Search\\WindowsSearch.exe
O8 - Extra context menu item: &Download with &DAP - D:\\Program Files\\Użytkowe\\DAP\\dapextie.htm
O8 - Extra context menu item: &Google Search - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Add to AMV Converter... - D:\\Program Files\\Użytkowe\\MP3\\AMVConverter\\grab.html
O8 - Extra context menu item: Backward Links - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Compare Prices with &Dealio - C:\\Documents and Settings\\Szymek\\Dane aplikacji\\Dealio\\kb124\\res\\DealioSearch.html
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Download &all with DAP - D:\\Program Files\\Użytkowe\\DAP\\dapextie2.htm
O8 - Extra context menu item: MediaManager tool grab multimedia file - D:\\Program Files\\Użytkowe\\MP3\\MediaManager\\grab.html
O8 - Extra context menu item: Similar Pages - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\\Program Files\\Google\\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - D:\\Program Files\\Użytkowe\\Sidebar\\sbhelp.dll
O9 - Extra \'Tools\' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - D:\\Program Files\\Użytkowe\\Sidebar\\sbhelp.dll
O9 - Extra button: The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} - (no file)
O9 - Extra \'Tools\' menuitem: The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} - (no file)
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\\PROGRA~1\\UYTKOW~1\\HTC~1\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\\PROGRA~1\\UYTKOW~1\\HTC~1\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\\PROGRA~1\\UYTKOW~1\\HTC~1\\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\\Program Files\\Skype\\Toolbars\\Internet Explorer\\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\\PROGRA~1\\UYTKOW~1\\SPYBOT~1\\SDHelper.dll
O9 - Extra \'Tools\' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\\PROGRA~1\\UYTKOW~1\\SPYBOT~1\\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\\Program Files\\Dealio\\kb124\\Dealio.dll (file missing)
O9 - Extra \'Tools\' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\\Program Files\\Dealio\\kb124\\Dealio.dll (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\\Program Files\\Yahoo!\\Common\\Yinsthelper.dll
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\..\\{012BF3C5-FB08-45B6-AC8A-DFA8D6101334}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\\System\\CS1\\Services\\Tcpip\\..\\{012BF3C5-FB08-45B6-AC8A-DFA8D6101334}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\\PROGRA~1\\Crawler\\ctbr.dll
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\bin\\nSvcAppFlt.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\11\\Intel 32\\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\\Program Files\\Ahead\\InCD\\InCDsrv.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\bin\\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\\WINDOWS\\system32\\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Security, S.L. - D:\\Program Files\\Użytkowe\\Panda\\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Security, S.L. - D:\\Program Files\\Użytkowe\\Panda\\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Security, S.L. - C:\\Program Files\\Common Files\\Panda Security\\PavShld\\pavprsrv.exe
O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - D:\\Program Files\\Użytkowe\\Panda\\pavsrv51.exe
O23 - Service: Panda Host Service (PSHost) - Panda Software International - d:\\program files\\użytkowe\\panda\\firewall\\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - D:\\Program Files\\Użytkowe\\Panda\\PsImSvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - D:\\Program Files\\Użytkowe\\Panda\\PskSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - D:\\Program Files\\Użytkowe\\Panda\\TPSrv.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\\PROGRA~1\\SPEEDB~1\\VideoAcceleratorService.exe
 
--
End of file - 14562 bytes
 
Wygenerowano w 0.102s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!