Don't like ads? PRO users don't see any ads ;-)
Public Pastes
Guest

Untitled

By: a guest on Dec 18th, 2011  |  syntax: None  |  size: 6.88 KB  |  hits: 49  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. Logfile of Trend Micro HijackThis v2.0.4
  2. Scan saved at 15:41:32, on 18.12.2011
  3. Platform: Windows XP SP3 (WinNT 5.01.2600)
  4. MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
  5. Boot mode: Normal
  6.  
  7. Running processes:
  8. C:\WINDOWS\System32\smss.exe
  9. C:\WINDOWS\system32\winlogon.exe
  10. C:\WINDOWS\system32\services.exe
  11. C:\WINDOWS\system32\lsass.exe
  12. C:\WINDOWS\system32\svchost.exe
  13. C:\WINDOWS\System32\svchost.exe
  14. C:\WINDOWS\System32\svchost.exe
  15. C:\WINDOWS\System32\svchost.exe
  16. C:\WINDOWS\Explorer.EXE
  17. C:\WINDOWS\system32\spoolsv.exe
  18. C:\WINDOWS\system32\rundll32.exe
  19. C:\Program Files\Avira\AntiVir Desktop\sched.exe
  20. C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
  21. C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
  22. C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  23. C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
  24. C:\WINDOWS\system32\igfxtray.exe
  25. C:\WINDOWS\system32\hkcmd.exe
  26. C:\WINDOWS\system32\igfxpers.exe
  27. C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
  28. C:\WINDOWS\system32\igfxsrvc.exe
  29. C:\WINDOWS\system32\ctfmon.exe
  30. C:\Program Files\DAEMON Tools Lite\DTLite.exe
  31. C:\Documents and Settings\All Users\COHServer.exe
  32. C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
  33. C:\Program Files\Avira\AntiVir Desktop\avguard.exe
  34. C:\WINDOWS\system32\msapps\comsrvr.exe
  35. C:\Program Files\Java\jre6\bin\jqs.exe
  36. C:\WINDOWS\system32\svchost.exe
  37. C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
  38. C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
  39. C:\WINDOWS\system32\wuauclt.exe
  40. C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
  41. C:\Program Files\Mozilla Firefox\firefox.exe
  42. C:\Program Files\Mozilla Firefox\plugin-container.exe
  43. C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe
  44. C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
  45. C:\Documents and Settings\Ivana\Desktop\HijackThis.exe
  46.  
  47. O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  48. O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  49. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
  50. O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
  51. O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
  52. O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
  53. O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  54. O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
  55. O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
  56. O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
  57. O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
  58. O4 - HKLM\..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
  59. O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  60. O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
  61. O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  62. O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  63. O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
  64. O4 - HKCU\..\Run: [44929] C:\Documents and Settings\All Users\COHServer.exe
  65. O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
  66. O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
  67. O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
  68. O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
  69. O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  70. O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  71. O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  72. O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  73. O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  74. O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  75. O17 - HKLM\System\CCS\Services\Tcpip\..\{1F9CC070-6AF3-4A36-BFAB-08CB8AD670A3}: NameServer = 193.198.184.140 193.198.184.130
  76. O17 - HKLM\System\CS1\Services\Tcpip\..\{1F9CC070-6AF3-4A36-BFAB-08CB8AD670A3}: NameServer = 193.198.184.140 193.198.184.130
  77. O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  78. O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
  79. O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
  80. O23 - Service: 10841 - Unknown owner - C:\Documents and Settings\All Users\COHServer.exe
  81. O23 - Service: 49459 - Unknown owner - C:\Documents and Settings\All Users\COHServer.exe
  82. O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
  83. O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
  84. O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
  85. O23 - Service: COMServer - Unknown owner - C:\WINDOWS\system32\msapps\comsrvr.exe
  86. O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
  87. O23 - Service: Usluga Google ažuriranje (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  88. O23 - Service: Usluga Google ažuriranje (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
  89. O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
  90. O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
  91. O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
  92.  
  93. --
  94. End of file - 7046 bytes
create a new version of this paste RAW Paste Data