THX
Prosím o kontrolu HiJack logu
Prosím o kontrolu HiJack logu
Jen preventivne, ale cert nikdy nespi
THX
THX
-
Baron Prášil
- Master Level 7
- Příspěvky: 4882
- Registrován: červen 06
- Pohlaví:
- Stav:
Offline
renonc
Logfile of HijackThis v1.99.1
Scan saved at 18:53:53, on 25.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DRIVERS\A4Tech\Mouse\Amoumain.exe
C:\Program Files\SECURITY\Eset\nod32kui.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\kxmixer.exe
C:\Program Files\video\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\OPTIMIZE\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\TOOLS\GPSoftware\Directory Opus\DOpus.exe
C:\Program Files\INTERNET\QIP\qip.exe
C:\Program Files\MSI\Bluetooth Software\BTTray.exe
C:\Program Files\MSI\Bluetooth Software\bin\btwdins.exe
C:\Program Files\SECURITY\Eset\nod32krn.exe
C:\PROGRA~1\MSI\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\security\Kerio\Personal Firewall\persfw.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\cygwin\bin\cygrunsrv.exe
C:\Program Files\cd-rom\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\cygwin\usr\sbin\sshd.exe
C:\Program Files\internet\TightVNC\WinVNC.exe
F:\Install\Program files\INTERNET\Miranda\miranda32.exe
C:\Program Files\INTERNET\Mozilla Firefox\firefox.exe
C:\Program Files\INTERNET\Mozilla Thunderbird\thunderbird.exe
F:\Install\Program files\INTERNET\Rap get\rapget.exe
C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles\r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe
C:\DOCUME~1\Omega\LOCALS~1\Temp\is-TB6RL.tmp\is-09UMD.tmp
F:\Install\Program files\INTERNET\Hijack\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://192.168.2.1/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Omega s.r.o.
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: ClickCatcher MSIE handler - {16664845-0E00-11D2-8059-000000000000} - C:\Program Files\Common Files\ReGet Shared\Catcher.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\OPTIMIZE\SPYBOT~1\SDHelper.dll
O3 - Toolbar: ReGet Bar - {17939A30-18E2-471E-9D3A-56DD725F1215} - C:\Program Files\INTERNET\ReGetDx\iebar.dll
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\DRIVERS\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\SECURITY\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\internet\TightVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [kX Mixer] kxmixer --startup
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\video\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\video\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\OPTIMIZE\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DOpus] C:\Program Files\TOOLS\GPSoftware\Directory Opus\DOpus.exe
O4 - HKCU\..\Run: [QIP2005] C:\Program Files\INTERNET\QIP\qip.exe
O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles\r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles/r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\EDITORS\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Stá&hnout vše programem ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_All.htm
O8 - Extra context menu item: Stáh&nout programem ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_Link.htm
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\EDITORS\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\Bluetooth Software\btsendto_ie.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{EF9122A8-974B-436E-946E-208D137F8611}: NameServer = 213.46.172.36,192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\MSI\Bluetooth Software\bin\btwdins.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\SECURITY\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - C:\Program Files\security\Kerio\Personal Firewall\persfw.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: CYGWIN sshd (sshd) - Unknown owner - C:\cygwin\bin\cygrunsrv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\cd-rom\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\OPTIMIZE\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\internet\TightVNC\WinVNC.exe" -service (file missing)
Scan saved at 18:53:53, on 25.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DRIVERS\A4Tech\Mouse\Amoumain.exe
C:\Program Files\SECURITY\Eset\nod32kui.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\kxmixer.exe
C:\Program Files\video\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\OPTIMIZE\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\TOOLS\GPSoftware\Directory Opus\DOpus.exe
C:\Program Files\INTERNET\QIP\qip.exe
C:\Program Files\MSI\Bluetooth Software\BTTray.exe
C:\Program Files\MSI\Bluetooth Software\bin\btwdins.exe
C:\Program Files\SECURITY\Eset\nod32krn.exe
C:\PROGRA~1\MSI\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\security\Kerio\Personal Firewall\persfw.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\cygwin\bin\cygrunsrv.exe
C:\Program Files\cd-rom\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\cygwin\usr\sbin\sshd.exe
C:\Program Files\internet\TightVNC\WinVNC.exe
F:\Install\Program files\INTERNET\Miranda\miranda32.exe
C:\Program Files\INTERNET\Mozilla Firefox\firefox.exe
C:\Program Files\INTERNET\Mozilla Thunderbird\thunderbird.exe
F:\Install\Program files\INTERNET\Rap get\rapget.exe
C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles\r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe
C:\DOCUME~1\Omega\LOCALS~1\Temp\is-TB6RL.tmp\is-09UMD.tmp
F:\Install\Program files\INTERNET\Hijack\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://192.168.2.1/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Omega s.r.o.
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: ClickCatcher MSIE handler - {16664845-0E00-11D2-8059-000000000000} - C:\Program Files\Common Files\ReGet Shared\Catcher.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\OPTIMIZE\SPYBOT~1\SDHelper.dll
O3 - Toolbar: ReGet Bar - {17939A30-18E2-471E-9D3A-56DD725F1215} - C:\Program Files\INTERNET\ReGetDx\iebar.dll
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\DRIVERS\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\SECURITY\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\internet\TightVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [kX Mixer] kxmixer --startup
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\video\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\video\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\OPTIMIZE\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DOpus] C:\Program Files\TOOLS\GPSoftware\Directory Opus\DOpus.exe
O4 - HKCU\..\Run: [QIP2005] C:\Program Files\INTERNET\QIP\qip.exe
O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles\r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Omega\Data aplikací\Mozilla\Firefox\Profiles/r00r38p5.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\EDITORS\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Stá&hnout vše programem ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_All.htm
O8 - Extra context menu item: Stáh&nout programem ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_Link.htm
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\EDITORS\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\Bluetooth Software\btsendto_ie.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{EF9122A8-974B-436E-946E-208D137F8611}: NameServer = 213.46.172.36,192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\MSI\Bluetooth Software\bin\btwdins.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\SECURITY\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - C:\Program Files\security\Kerio\Personal Firewall\persfw.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: CYGWIN sshd (sshd) - Unknown owner - C:\cygwin\bin\cygrunsrv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\cd-rom\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\OPTIMIZE\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\internet\TightVNC\WinVNC.exe" -service (file missing)
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 110 hostů