API tools faq
paste
Advertisement
Guest User

hijackthis

a guest
Mar 24th, 2012
243
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.77 KB | None | 0 0
raw download clone embed print report
  1. Logfile of Trend Micro HijackThis v2.0.4
  2. Scan saved at 00:08:24, on 25/03/2012
  3. Platform: Windows 7 SP1 (WinNT 6.00.3505)
  4. MSIE: Internet Explorer v9.00 (9.00.8112.16421)
  5. Boot mode: Normal
  6.  
  7. Running processes:
  8. C:\Windows\System32\smss.exe
  9. C:\Windows\system32\csrss.exe
  10. C:\Windows\system32\wininit.exe
  11. C:\Windows\system32\csrss.exe
  12. C:\Windows\system32\services.exe
  13. C:\Windows\system32\lsass.exe
  14. C:\Windows\system32\lsm.exe
  15. C:\Windows\system32\winlogon.exe
  16. C:\Windows\system32\svchost.exe
  17. C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
  18. C:\Program Files\Emsisoft Anti-Malware\a2service.exe
  19. C:\Windows\system32\nvvsvc.exe
  20. C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  21. C:\Windows\system32\svchost.exe
  22. C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
  23. C:\Windows\system32\svchost.exe
  24. C:\Windows\System32\svchost.exe
  25. C:\Windows\System32\svchost.exe
  26. C:\Windows\system32\svchost.exe
  27. C:\Windows\system32\svchost.exe
  28. C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  29. C:\Windows\system32\nvvsvc.exe
  30. C:\Windows\System32\spoolsv.exe
  31. C:\Windows\system32\svchost.exe
  32. C:\Program Files\Comodo\Dragon\dragon_updater.exe
  33. C:\Windows\system32\Dwm.exe
  34. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  35. C:\Windows\Explorer.EXE
  36. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
  37. C:\Windows\system32\svchost.exe
  38. C:\Program Files\KeyScrambler\KeyScrambler.exe
  39. C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
  40. C:\Program Files\Shadow Defender\DefenderDaemon.exe
  41. C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  42. C:\Windows\system32\SearchIndexer.exe
  43. C:\Windows\system32\svchost.exe
  44. C:\Program Files\Z8Games\CrossFire AL\HGWC.exe
  45. C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
  46. C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  47. C:\Program Files\Java\jre7\bin\javaw.exe
  48. C:\Program Files\Mozilla Firefox\firefox.exe
  49. C:\Program Files\Mozilla Firefox\plugin-container.exe
  50. C:\Program Files\Mozilla Firefox\plugin-container.exe
  51. C:\Windows\system32\SearchProtocolHost.exe
  52. C:\Users\AVERTCOM\Desktop\backup-28-02-2012\HiJackThis.exe
  53. C:\Windows\system32\wbem\wmiprvse.exe
  54. C:\Windows\System32\svchost.exe
  55.  
  56. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  57. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  58. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  59. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  60. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  61. O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
  62. O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
  63. O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  64. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
  65. O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
  66. O4 - HKLM\..\Run: [KeyScrambler] C:\Program Files\KeyScrambler\keyscrambler.exe /a
  67. O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
  68. O4 - HKLM\..\Run: [Shadow Defender Daemon] "C:\Program Files\Shadow Defender\DefenderDaemon.exe" /Auto
  69. O4 - HKUS\S-1-5-21-3635735338-2964006992-2461654254-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
  70. O4 - HKUS\S-1-5-21-3635735338-2964006992-2461654254-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
  71. O8 - Extra context menu item: Baixar com Mipony - file://C:\Program Files\MiPony\Browser\IEContext.htm
  72. O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
  73. O8 - Extra context menu item: Fazer o download de todos os links usando o IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
  74. O8 - Extra context menu item: Fazer o download usando o IDM - C:\Program Files\Internet Download Manager\IEExt.htm
  75. O8 - Extra context menu item: Free YouTube Download - C:\Users\AVERTCOM\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
  76. O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
  77. O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
  78. O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
  79. O9 - Extra 'Tools' menuitem: &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
  80. O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
  81. O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
  82. O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
  83. O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  84. O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
  85. O20 - AppInit_DLLs: C:\Windows\System32\guard32.dll C:\Windows\System32\guard32.dll
  86. O23 - Service: Emsisoft Anti-Malware 6.0 - Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe
  87. O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
  88. O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
  89. O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
  90. O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
  91. O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
  92. O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  93. O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  94.  
  95. --
  96. End of file - 6935 bytes
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!