My Pastes
Public Pastes
Layout Width
Share Pastebin
Guest
Public paste!

http://www.screwyouemily.com/index.php?c=viral&m=index&id=3271daf3495ed5d4f5a84773783464ee

By: a guest | Mar 14th, 2010 | Syntax: None | Size: 8.12 KB | Hits: 742 | Expires: Never
Download | Raw | Embed | Report abuse
This paste has a previous version, view the difference. Copy text to clipboard
  1. Logfile of Trend Micro HijackThis v2.0.3 (BETA)
  2. Scan saved at 6:31:28 AM, on 28/02/2010
  3. Platform: Windows Vista SP2 (WinNT 6.00.1906)
  4. MSIE: Internet Explorer v8.00 (8.00.6001.18882)
  5. Boot mode: Normal
  6.  
  7. Running processes:
  8. C:\Windows\system32\Dwm.exe
  9. C:\Windows\Explorer.EXE
  10. C:\Program Files\Windows Defender\MSASCui.exe
  11. C:\Program Files\Alwil Software\Avast4\ashDisp.exe
  12. C:\Windows\System32\V0230Mon.exe
  13. C:\Windows\WindowsMobile\wmdSync.exe
  14. C:\Program Files\Common Files\Java\Java Update\jusched.exe
  15. C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
  16. C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
  17. C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
  18. C:\Program Files\Lexmark 5000 Series\lxdmmon.exe
  19. C:\Program Files\Lexmark 5000 Series\lxdmamon.exe
  20. C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
  21. C:\Windows\system32\taskeng.exe
  22. C:\Windows\system32\igfxsrvc.exe
  23. C:\Windows\system32\conime.exe
  24. C:\Windrop3\eggdrop.exe
  25. C:\mIRC\mirc.exe
  26. C:\Program Files\Internet Explorer\iexplore.exe
  27. C:\Program Files\Internet Explorer\iexplore.exe
  28. C:\Windows\system32\SearchFilterHost.exe
  29. C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
  30.  
  31. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  32. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ca.msn.com/
  33. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  34. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  35. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  36. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  37. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
  38. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
  39. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  40. O1 - Hosts: ::1 localhost
  41. O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
  42. O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  43. O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
  44. O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  45. O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
  46. O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
  47. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
  48. O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
  49. O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
  50. O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  51. O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
  52. O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
  53. O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
  54. O4 - HKLM\..\Run: [C:\Windows\system32\V0230Ext.ax] C:\Windows\system32\RegSvr32.exe /s C:\Windows\system32\V0230Ext.ax
  55. O4 - HKLM\..\Run: [V0230Mon.exe] C:\Windows\System32\V0230Mon.exe
  56. O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
  57. O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  58. O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
  59. O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  60. O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
  61. O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
  62. O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  63. O4 - HKLM\..\Run: [lxdmmon.exe] "C:\Program Files\Lexmark 5000 Series\lxdmmon.exe"
  64. O4 - HKLM\..\Run: [lxdmamon] "C:\Program Files\Lexmark 5000 Series\lxdmamon.exe"
  65. O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
  66. O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
  67. O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
  68. O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
  69. O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
  70. O13 - Gopher Prefix:
  71. O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro.cce.hp.com/ChatEntry/downloads/sysinfo.cab
  72. O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUplden-ca.cab
  73. O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
  74. O16 - DPF: {A3256902-51FA-45A0-8A97-FC1143C169D9} (Diagnostics ActiveX WebControl) - http://support.microsoft.com/mats/DiagWebControl.cab
  75. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
  76. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
  77. O17 - HKLM\System\CCS\Services\Tcpip\..\{D17FA6D0-A6FA-43A8-997C-E65802710504}: NameServer = 192.168.0.1
  78. O17 - HKLM\System\CS1\Services\Tcpip\..\{D17FA6D0-A6FA-43A8-997C-E65802710504}: NameServer = 192.168.0.1
  79. O17 - HKLM\System\CS2\Services\Tcpip\..\{D17FA6D0-A6FA-43A8-997C-E65802710504}: NameServer = 192.168.0.1
  80. O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - (no file)
  81. O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
  82. O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  83. O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
  84. O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  85. O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
  86. O23 - Service: Google Update Service (gupdate1c9a2b0cd0bb490) (gupdate1c9a2b0cd0bb490) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  87. O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  88. O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
  89. O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
  90. O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
  91. O23 - Service: lxdmCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdmserv.exe
  92. O23 - Service: lxdm_device -   - C:\Windows\system32\lxdmcoms.exe
  93. O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
  94. O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
  95. O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
  96. O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
  97.  
  98. --
  99. End of file - 8312 bytes
create new paste | create new version of this paste RAW Paste Data