8element
Nowy
Liczba postów: 1
|
Prośba o sprawdzenie logów z HijackThis
Kod:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13: 08: 24, on 2012-12-13
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C: \Windows\system32\taskhost.exe
C: \Windows\system32\Dwm.exe
C: \Windows\Explorer.EXE
C: \Program Files\AVAST Software\Avast\AvastUI.exe
C: \Program Files\Windows Sidebar\sidebar.exe
C: \Program Files\NVIDIA Corporation\Display\nvtray.exe
C: \Users\Zajac\Desktop\League of Legends\RADS\system\rads_user_kernel.exe
C: \Users\Zajac\Desktop\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.104\deploy\LoLLauncher.exe
C: \Users\Zajac\Desktop\League of Legends\RADS\projects\lol_air_client\releases\0.0.0.226\deploy\LolClient.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
C: \Program Files\Google\Chrome\Application\chrome.exe
D: \Trend Micro\HiJackThis\HiJackThis.exe
C: \Windows\system32\NOTEPAD.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http: //www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=ST9320320AS_5SX4JW51____5SX4JW51&ts=1351141444
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http: //go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http: //search.babylon.com/?affID=110824&tt=4312_7&babsrc=HP_ss&mntrId=f8a2771800000000000000265e7456fa
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http: //www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=ST9320320AS_5SX4JW51____5SX4JW51&ts=1351141444
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http: //go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http: //go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http: //www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=ST9320320AS_5SX4JW51____5SX4JW51&ts=1351141444
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C: \Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C: \Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C: \PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C: \Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C: \Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C: \Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C: \Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C: \Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Facebook Update] "C: \Users\Zajac\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Sidebar] C: \Program Files\Windows Sidebar\sidebar.exe /autoRun
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C: \Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c: \progra~2\browse~1\23796~1.11\{16cdf~1\browse~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C: \Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C: \Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C: \Windows\system32\drivers\CDAC11BA.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C: \Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Usluga Google Update (gupdate) (gupdate) - Google Inc. - C: \Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usluga Google Update (gupdatem) (gupdatem) - Google Inc. - C: \Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C: \Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C: \Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
--
End of file - 4821 bytes
Notatka została dodana 13.12.2012 13:34 . Ostatnia edycja dokonana 13.12.2012 13:34 przez peciaq:
Logi łapiemy w znaczniki CODE.
Wątek przenoszę do odpowiedniego poddziału - Logi.
|
Illidan
Ekspert
Liczba postów: 1.024
|
RE: Prośba o sprawdzenie logów z HijackThis
Problemy aktualne?
|
Post: #1
