API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 20th, 2011
227
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.57 KB | None | 0 0
raw download clone embed print report
  1. Logfile of Trend Micro HijackThis v2.0.4
  2. Scan saved at 12:24:54 AM, on 2011-10-21
  3. Platform: Windows XP SP3 (WinNT 5.01.2600)
  4. MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
  5. Boot mode: Normal
  6.  
  7. Running processes:
  8. C:\WINDOWS\System32\smss.exe
  9. C:\WINDOWS\system32\winlogon.exe
  10. C:\WINDOWS\system32\services.exe
  11. C:\WINDOWS\system32\lsass.exe
  12. C:\WINDOWS\system32\Ati2evxx.exe
  13. C:\WINDOWS\system32\svchost.exe
  14. C:\WINDOWS\System32\svchost.exe
  15. C:\WINDOWS\system32\Ati2evxx.exe
  16. C:\WINDOWS\system32\spoolsv.exe
  17. C:\WINDOWS\system32\EXPLORER.EXE
  18. C:\WINDOWS\Explorer.EXE
  19. C:\WINDOWS\RTHDCPL.EXE
  20. C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
  21. C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
  22. C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  23. C:\WINDOWS\Wincft.exe
  24. C:\Program Files\blueconnect\DataCardMonitor.exe
  25. C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
  26. C:\Program Files\Common Files\Java\Java Update\jusched.exe
  27. C:\Program Files\Livebox\Launcher\Launcher.exe
  28. C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
  29. C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
  30. C:\WINDOWS\system32\ctfmon.exe
  31. C:\Program Files\DAEMON Tools Lite\DTLite.exe
  32. C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
  33. C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
  34. C:\Documents and Settings\Kubus\Application Data\blueconnect\ouc.exe
  35. C:\Program Files\Livebox\systray\systrayapp.exe
  36. C:\Program Files\Livebox\connectivity\connectivitymanager.exe
  37. C:\WINDOWS\system32\svchost.exe
  38. C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  39. C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
  40. C:\Program Files\Java\jre7\bin\jqs.exe
  41. C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
  42. C:\Program Files\Livebox\connectivity\CoreCom\CoreCom.exe
  43. C:\Documents and Settings\Kubus\Application Data\mservice32_t.exe
  44. C:\WINDOWS\system32\svchost.exe
  45. C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
  46. C:\WINDOWS\system32\wscntfy.exe
  47. C:\Program Files\Livebox\connectivity\CoreCom\OraConfigRecover.exe
  48. C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
  49. C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
  50. C:\WINDOWS\System32\svchost.exe
  51. C:\Program Files\WapSter\WapSter AQQ\AQQ.exe
  52. C:\WINDOWS\System32\svchost.exe
  53. C:\Program Files\Opera\opera.exe
  54. C:\WINDOWS\system32\msiexec.exe
  55. C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
  56.  
  57. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://users.iptelecom.net.ua/~codecs/
  58. R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Livebox\SearchURLHook\SearchPageURL.dll
  59. F2 - REG:system.ini: UserInit=userinit.exe,EXPLORER.EXE
  60. O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  61. O2 - BHO: BHO_HelloWorld.BHO - {aa6aa15d-feb4-3c0d-b711-8abb63f3f406} - mscoree.dll (file missing)
  62. O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  63. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
  64. O2 - BHO: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~1\ALLPLA~1\Iplex\IPLEXT~1.DLL
  65. O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
  66. O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
  67. O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
  68. O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  69. O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
  70. O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  71. O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
  72. O4 - HKLM\..\Run: [mumservice] C:\Program Files\Motorola\Software Update\mumservice.exe
  73. O4 - HKLM\..\Run: [WinDefender] C:\WINDOWS\Wincft.exe
  74. O4 - HKLM\..\Run: [DataCardMonitor] C:\Program Files\blueconnect\DataCardMonitor.exe
  75. O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\Livebox\SessionManager\SessionManager.exe"
  76. O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
  77. O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  78. O4 - HKCU\..\Run: [king_mg] C:\WINDOWS\system32\mgking.exe
  79. O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
  80. O4 - HKCU\..\Run: [AQQ] C:\PROGRA~1\WapSter\WAPSTE~1\AQQ.exe
  81. O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kubus\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
  82. O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
  83. O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
  84. O4 - HKCU\..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe /autorun
  85. O4 - HKCU\..\Run: [King_ar] C:\WINDOWS\system32\arking.exe
  86. O4 - HKCU\..\Run: [wsctf.exe] wsctf.exe
  87. O4 - HKCU\..\Run: [EXPLORER.EXE] EXPLORER.EXE
  88. O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"
  89. O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
  90. O4 - HKCU\..\Run: [HW_OPENEYE_OUC_blueconnect] "C:\Program Files\blueconnect\UpdateDog\ouc.exe"
  91. O4 - HKCU\..\RunOnce: [UpdateT] C:\Documents and Settings\Kubus\Application Data\et_update\mservice32_t.exe
  92. O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10o_Plugin.exe -update plugin
  93. O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
  94. O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
  95. O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
  96. O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
  97. O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
  98. O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
  99. O4 - Startup: CCC.lnk = ?
  100. O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
  101. O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  102. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
  103. O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  104. O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  105. O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
  106. O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  107. O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  108. O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  109. O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  110. O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  111. O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
  112. O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
  113. O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
  114. O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
  115. O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
  116. O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
  117. O23 - Service: MotoHelper Service (MotoHelper) - Unknown owner - C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
  118. O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
  119.  
  120. --
  121. End of file - 8777 bytes
  122.  
  123.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!