Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\boopyyes
*******************
Script file located at: \??\C:\WINDOWS\yxxghuww.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
File C:\WINDOWS\cc2.exe not found!
Deletion of file C:\WINDOWS\cc2.exe failed!
Could not process line:
C:\WINDOWS\cc2.exe
Status: 0xc0000034
File C:\WINDOWS\cc3.exe not found!
Deletion of file C:\WINDOWS\cc3.exe failed!
Could not process line:
C:\WINDOWS\cc3.exe
Status: 0xc0000034
File C:\WINDOWS\hv4e05.dll not found!
Deletion of file C:\WINDOWS\hv4e05.dll failed!
Could not process line:
C:\WINDOWS\hv4e05.dll
Status: 0xc0000034
File C:\WINDOWS\chater.exe not found!
Deletion of file C:\WINDOWS\chater.exe failed!
Could not process line:
C:\WINDOWS\chater.exe
Status: 0xc0000034
File C:\WINDOWS\system32\alerter.exe not found!
Deletion of file C:\WINDOWS\system32\alerter.exe failed!
Could not process line:
C:\WINDOWS\system32\alerter.exe
Status: 0xc0000034
File C:\WINDOWS\system32\atrconf.exe not found!
Deletion of file C:\WINDOWS\system32\atrconf.exe failed!
Could not process line:
C:\WINDOWS\system32\atrconf.exe
Status: 0xc0000034
File C:\WINDOWS\system32\attmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\attmgr32.dll failed!
Could not process line:
C:\WINDOWS\system32\attmgr32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\attstat.dll not found!
Deletion of file C:\WINDOWS\system32\attstat.dll failed!
Could not process line:
C:\WINDOWS\system32\attstat.dll
Status: 0xc0000034
File C:\WINDOWS\system32\brwconf.exe not found!
Deletion of file C:\WINDOWS\system32\brwconf.exe failed!
Could not process line:
C:\WINDOWS\system32\brwconf.exe
Status: 0xc0000034
File C:\WINDOWS\system32\brwmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\brwmgr32.dll failed!
Could not process line:
C:\WINDOWS\system32\brwmgr32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\brwstat.dll not found!
Deletion of file C:\WINDOWS\system32\brwstat.dll failed!
Could not process line:
C:\WINDOWS\system32\brwstat.dll
Status: 0xc0000034
File C:\WINDOWS\system32\cfgmmprm.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmmprm.dll failed!
Could not process line:
C:\WINDOWS\system32\cfgmmprm.dll
Status: 0xc0000034
File C:\WINDOWS\system32\confatt.dll not found!
Deletion of file C:\WINDOWS\system32\confatt.dll failed!
Could not process line:
C:\WINDOWS\system32\confatt.dll
Status: 0xc0000034
File C:\WINDOWS\system32\confbrw.dll not found!
Deletion of file C:\WINDOWS\system32\confbrw.dll failed!
Could not process line:
C:\WINDOWS\system32\confbrw.dll
Status: 0xc0000034
File C:\WINDOWS\system32\confcon.dll not found!
Deletion of file C:\WINDOWS\system32\confcon.dll failed!
Could not process line:
C:\WINDOWS\system32\confcon.dll
Status: 0xc0000034
File C:\WINDOWS\system32\confega.dll not found!
Deletion of file C:\WINDOWS\system32\confega.dll failed!
Could not process line:
C:\WINDOWS\system32\confega.dll
Status: 0xc0000034
File C:\WINDOWS\system32\conmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\conmgr32.dll failed!
Could not process line:
C:\WINDOWS\system32\conmgr32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\conperf.exe not found!
Deletion of file C:\WINDOWS\system32\conperf.exe failed!
Could not process line:
C:\WINDOWS\system32\conperf.exe
Status: 0xc0000034
File C:\WINDOWS\system32\conprf32.dll not found!
Deletion of file C:\WINDOWS\system32\conprf32.dll failed!
Could not process line:
C:\WINDOWS\system32\conprf32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\constat.dll not found!
Deletion of file C:\WINDOWS\system32\constat.dll failed!
Could not process line:
C:\WINDOWS\system32\constat.dll
Status: 0xc0000034
File C:\WINDOWS\system32\dfrgui.dll deleted successfully.
File C:\WINDOWS\system32\dfsshlex.dll deleted successfully.
File C:\WINDOWS\system32\dfssrasc.dll not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.dll failed!
Could not process line:
C:\WINDOWS\system32\dfssrasc.dll
Status: 0xc0000034
File C:\WINDOWS\system32\dfssrasc.exe not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.exe failed!
Could not process line:
C:\WINDOWS\system32\dfssrasc.exe
Status: 0xc0000034
File C:\WINDOWS\system32\dmimmdt2.exe not found!
Deletion of file C:\WINDOWS\system32\dmimmdt2.exe failed!
Could not process line:
C:\WINDOWS\system32\dmimmdt2.exe
Status: 0xc0000034
File C:\WINDOWS\system32\dssconf.exe not found!
Deletion of file C:\WINDOWS\system32\dssconf.exe failed!
Could not process line:
C:\WINDOWS\system32\dssconf.exe
Status: 0xc0000034
File C:\WINDOWS\system32\dxtmsft3.dll deleted successfully.
File C:\WINDOWS\system32\e1.dll not found!
Deletion of file C:\WINDOWS\system32\e1.dll failed!
Could not process line:
C:\WINDOWS\system32\e1.dll
Status: 0xc0000034
File C:\WINDOWS\system32\egaavi.exe not found!
Deletion of file C:\WINDOWS\system32\egaavi.exe failed!
Could not process line:
C:\WINDOWS\system32\egaavi.exe
Status: 0xc0000034
File C:\WINDOWS\system32\egamgr32.dll not found!
Deletion of file C:\WINDOWS\system32\egamgr32.dll failed!
Could not process line:
C:\WINDOWS\system32\egamgr32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\egastat.dll not found!
Deletion of file C:\WINDOWS\system32\egastat.dll failed!
Could not process line:
C:\WINDOWS\system32\egastat.dll
Status: 0xc0000034
File C:\WINDOWS\system32\egperf32.dll not found!
Deletion of file C:\WINDOWS\system32\egperf32.dll failed!
Could not process line:
C:\WINDOWS\system32\egperf32.dll
Status: 0xc0000034
File C:\WINDOWS\system32\evenncob.dll not found!
Deletion of file C:\WINDOWS\system32\evenncob.dll failed!
Could not process line:
C:\WINDOWS\system32\evenncob.dll
Status: 0xc0000034
File C:\WINDOWS\system32\fsxsh4.dll not found!
Deletion of file C:\WINDOWS\system32\fsxsh4.dll failed!
Could not process line:
C:\WINDOWS\system32\fsxsh4.dll
Status: 0xc0000034
File C:\WINDOWS\system32\gtmqf608r7.dll not found!
Deletion of file C:\WINDOWS\system32\gtmqf608r7.dll failed!
Could not process line:
C:\WINDOWS\system32\gtmqf608r7.dll
Status: 0xc0000034
File C:\WINDOWS\system32\hypewmv9.exe not found!
Deletion of file C:\WINDOWS\system32\hypewmv9.exe failed!
Could not process line:
C:\WINDOWS\system32\hypewmv9.exe
Status: 0xc0000034
File C:\WINDOWS\system32\ipsecmon.exe not found!
Deletion of file C:\WINDOWS\system32\ipsecmon.exe failed!
Could not process line:
C:\WINDOWS\system32\ipsecmon.exe
Status: 0xc0000034
File C:\WINDOWS\system32\ipsmwebh.exe not found!
Deletion of file C:\WINDOWS\system32\ipsmwebh.exe failed!
Could not process line:
C:\WINDOWS\system32\ipsmwebh.exe
Status: 0xc0000034
File C:\WINDOWS\system32\ipxpextm.exe not found!
Deletion of file C:\WINDOWS\system32\ipxpextm.exe failed!
Could not process line:
C:\WINDOWS\system32\ipxpextm.exe
Status: 0xc0000034
File C:\WINDOWS\system32\ixsswmas.exe not found!
Deletion of file C:\WINDOWS\system32\ixsswmas.exe failed!
Could not process line:
C:\WINDOWS\system32\ixsswmas.exe
Status: 0xc0000034
File C:\WINDOWS\system32\j2t3crh.dll not found!
Deletion of file C:\WINDOWS\system32\j2t3crh.dll failed!
Could not process line:
C:\WINDOWS\system32\j2t3crh.dll
Status: 0xc0000034
File C:\WINDOWS\system32\lprmneth.dll not found!
Deletion of file C:\WINDOWS\system32\lprmneth.dll failed!
Could not process line:
C:\WINDOWS\system32\lprmneth.dll
Status: 0xc0000034
File C:\WINDOWS\system32\lprmneth.exe not found!
Deletion of file C:\WINDOWS\system32\lprmneth.exe failed!
Could not process line:
C:\WINDOWS\system32\lprmneth.exe
Status: 0xc0000034
File C:\WINDOWS\system32\migpwd.exe deleted successfully.
File C:\WINDOWS\system32\ml7swr.exe not found!
Deletion of file C:\WINDOWS\system32\ml7swr.exe failed!
Could not process line:
C:\WINDOWS\system32\ml7swr.exe
Status: 0xc0000034
File C:\WINDOWS\system32\mp4sglmf.dll not found!
Deletion of file C:\WINDOWS\system32\mp4sglmf.dll failed!
Could not process line:
C:\WINDOWS\system32\mp4sglmf.dll
Status: 0xc0000034
File C:\WINDOWS\system32\msihftpw.dll not found!
Deletion of file C:\WINDOWS\system32\msihftpw.dll failed!
Could not process line:
C:\WINDOWS\system32\msihftpw.dll
Status: 0xc0000034
File C:\WINDOWS\system32\msisnwcf.dll not found!
Deletion of file C:\WINDOWS\system32\msisnwcf.dll failed!
Could not process line:
C:\WINDOWS\system32\msisnwcf.dll
Status: 0xc0000034
File C:\WINDOWS\system32\msrdtscf.exe not found!
Deletion of file C:\WINDOWS\system32\msrdtscf.exe failed!
Could not process line:
C:\WINDOWS\system32\msrdtscf.exe
Status: 0xc0000034
File C:\WINDOWS\system32\mstime.dll deleted successfully.
File C:\WINDOWS\system32\mstsodbc.exe not found!
Deletion of file C:\WINDOWS\system32\mstsodbc.exe failed!
Could not process line:
C:\WINDOWS\system32\mstsodbc.exe
Status: 0xc0000034
File C:\WINDOWS\system32\netfrtm.dll not found!
Deletion of file C:\WINDOWS\system32\netfrtm.dll failed!
Could not process line:
C:\WINDOWS\system32\netfrtm.dll
Status: 0xc0000034
File C:\WINDOWS\system32\odtext32.dll deleted successfully.
File C:\WINDOWS\system32\offfmsre.dll not found!
Deletion of file C:\WINDOWS\system32\offfmsre.dll failed!
Could not process line:
C:\WINDOWS\system32\offfmsre.dll
Status: 0xc0000034
File C:\WINDOWS\system32\proquota.exe deleted successfully.
File C:\WINDOWS\system32\psapdani.dll not found!
Deletion of file C:\WINDOWS\system32\psapdani.dll failed!
Could not process line:
C:\WINDOWS\system32\psapdani.dll
Status: 0xc0000034
File C:\WINDOWS\system32\psbaavic.dll not found!
Deletion of file C:\WINDOWS\system32\psbaavic.dll failed!
Could not process line:
C:\WINDOWS\system32\psbaavic.dll
Status: 0xc0000034
File C:\WINDOWS\system32\samsusrr.dll not found!
Deletion of file C:\WINDOWS\system32\samsusrr.dll failed!
Could not process line:
C:\WINDOWS\system32\samsusrr.dll
Status: 0xc0000034
File C:\WINDOWS\system32\samsusrr.exe not found!
Deletion of file C:\WINDOWS\system32\samsusrr.exe failed!
Could not process line:
C:\WINDOWS\system32\samsusrr.exe
Status: 0xc0000034
File C:\WINDOWS\system32\scrrncs.dll deleted successfully.
File C:\WINDOWS\system32\scsm.exe not found!
Deletion of file C:\WINDOWS\system32\scsm.exe failed!
Could not process line:
C:\WINDOWS\system32\scsm.exe
Status: 0xc0000034
File C:\WINDOWS\system32\shsvmdim.dll not found!
Deletion of file C:\WINDOWS\system32\shsvmdim.dll failed!
Could not process line:
C:\WINDOWS\system32\shsvmdim.dll
Status: 0xc0000034
File C:\WINDOWS\system32\snmpmmcn.dll not found!
Deletion of file C:\WINDOWS\system32\snmpmmcn.dll failed!
Could not process line:
C:\WINDOWS\system32\snmpmmcn.dll
Status: 0xc0000034
File C:\WINDOWS\system32\sysshtic.dll not found!
Deletion of file C:\WINDOWS\system32\sysshtic.dll failed!
Could not process line:
C:\WINDOWS\system32\sysshtic.dll
Status: 0xc0000034
File C:\WINDOWS\system32\sysshtic.exe not found!
Deletion of file C:\WINDOWS\system32\sysshtic.exe failed!
Could not process line:
C:\WINDOWS\system32\sysshtic.exe
Status: 0xc0000034
File C:\WINDOWS\system32\trkwpipa.exe not found!
Deletion of file C:\WINDOWS\system32\trkwpipa.exe failed!
Could not process line:
C:\WINDOWS\system32\trkwpipa.exe
Status: 0xc0000034
File C:\WINDOWS\system32\tscfvjoy.dll not found!
Deletion of file C:\WINDOWS\system32\tscfvjoy.dll failed!
Could not process line:
C:\WINDOWS\system32\tscfvjoy.dll
Status: 0xc0000034
File C:\WINDOWS\system32\ujn6oqt.dll not found!
Deletion of file C:\WINDOWS\system32\ujn6oqt.dll failed!
Could not process line:
C:\WINDOWS\system32\ujn6oqt.dll
Status: 0xc0000034
File C:\WINDOWS\system32\ulibofff.exe not found!
Deletion of file C:\WINDOWS\system32\ulibofff.exe failed!
Could not process line:
C:\WINDOWS\system32\ulibofff.exe
Status: 0xc0000034
File C:\WINDOWS\system32\uregdeve.dll not found!
Deletion of file C:\WINDOWS\system32\uregdeve.dll failed!
Could not process line:
C:\WINDOWS\system32\uregdeve.dll
Status: 0xc0000034
File C:\WINDOWS\system32\uregdeve.exe not found!
Deletion of file C:\WINDOWS\system32\uregdeve.exe failed!
Could not process line:
C:\WINDOWS\system32\uregdeve.exe
Status: 0xc0000034
File C:\WINDOWS\system32\vbscqdv.exe not found!
Deletion of file C:\WINDOWS\system32\vbscqdv.exe failed!
Could not process line:
C:\WINDOWS\system32\vbscqdv.exe
Status: 0xc0000034
File C:\WINDOWS\system32\vdshlicw.exe not found!
Deletion of file C:\WINDOWS\system32\vdshlicw.exe failed!
Could not process line:
C:\WINDOWS\system32\vdshlicw.exe
Status: 0xc0000034
File C:\WINDOWS\system32\vmhevnet.dll not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.dll failed!
Could not process line:
C:\WINDOWS\system32\vmhevnet.dll
Status: 0xc0000034
File C:\WINDOWS\system32\vmhevnet.exe not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.exe failed!
Could not process line:
C:\WINDOWS\system32\vmhevnet.exe
Status: 0xc0000034
File C:\WINDOWS\system32\winbpowr.exe not found!
Deletion of file C:\WINDOWS\system32\winbpowr.exe failed!
Could not process line:
C:\WINDOWS\system32\winbpowr.exe
Status: 0xc0000034
File C:\WINDOWS\system32\yapconf.exe not found!
Deletion of file C:\WINDOWS\system32\yapconf.exe failed!
Could not process line:
C:\WINDOWS\system32\yapconf.exe
Status: 0xc0000034
Could not get size of registry value HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs
Replacement with dummy of registry value HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\attmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\attmgr failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\brwmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\brwmgr failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\conmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\conmgr failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dfssrasc not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dfssrasc failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssmgr failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\lprmneth not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\lprmneth failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\samsusrr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\samsusrr failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysshtic not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysshtic failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\uregdeve not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\uregdeve failed!
Status: 0xc0000034
Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\vmhevnet not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\vmhevnet failed!
Status: 0xc0000034
Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|brwdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|brwdiag failed!
Status: 0xc0000034
Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|egdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|egdiag failed!
Status: 0xc0000034
Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ulibofff
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ulibofff failed!
Status: 0xc0000034
Completed script processing.
*******************
Finished! Terminate.
KONTROLA LOGU Z AVENGERU
-
CrazyManer
- Level 3.5
- Příspěvky: 901
- Registrován: únor 05
- Bydliště: LBC
- Pohlaví:
- Stav:
Offline
- Kontakt:
-
CrazyManer
- Level 3.5
- Příspěvky: 901
- Registrován: únor 05
- Bydliště: LBC
- Pohlaví:
- Stav:
Offline
- Kontakt:
-
mijaja
- Tvůrce článků
-
Level 6.5
- Příspěvky: 4136
- Registrován: září 05
- Bydliště: Zlín
- Pohlaví:
- Stav:
Offline
- Kontakt:
No a teď řekni s čím chceš pomoct. Měl jsi tam toho ICQvira a Avenger jeho soubory úspěšně smazal:
Takže nyní sem nasyp nový log z HJT a uvidíme......
Kód: Vybrat vše
File C:\WINDOWS\system32\dfrgui.dll deleted successfully.
File C:\WINDOWS\system32\dfsshlex.dll deleted successfully.
File C:\WINDOWS\system32\dxtmsft3.dll deleted successfully.
File C:\WINDOWS\system32\migpwd.exe deleted successfully.
File C:\WINDOWS\system32\mstime.dll deleted successfully.
File C:\WINDOWS\system32\odtext32.dll deleted successfully.
File C:\WINDOWS\system32\proquota.exe deleted successfully.
File C:\WINDOWS\system32\scrrncs.dll deleted successfully.
Takže nyní sem nasyp nový log z HJT a uvidíme......
-
CrazyManer
- Level 3.5
- Příspěvky: 901
- Registrován: únor 05
- Bydliště: LBC
- Pohlaví:
- Stav:
Offline
- Kontakt:
díky mijajo 
tady máš můj log z HJT
Logfile of HijackThis v1.99.1
Scan saved at 13:37:57, on 19.10.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
C:\Program Files\UNIO_systems\ADSL_Automat\ADSL.exe
C:\PROGRA~1\MOZILL~1\firefox.exe
C:\Documents and Settings\Pepa\Plocha\vcleaner.exe
C:\Documents and Settings\Pepa\Plocha\PROGRAMY\HijackThis.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
O4 - HKLM\..\Run: [ADSLPLUS] C:\Program Files\UNIO_systems\ADSL_Automat\ADSL.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{743DC1E2-7A77-4296-80B0-D95C7C8EC564}: NameServer = 160.218.43.200 160.218.10.200
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
jen chci říct že mám počítač furt děsně zakousanej, což nebejvalo, internet mi jede asi 50kB/s což je o proti normálnim 360kB/s docela bída, seká se mi všechno, stačí třeba spustit jednu písničku v jetaudiu ... :(
tady máš můj log z HJT
Logfile of HijackThis v1.99.1
Scan saved at 13:37:57, on 19.10.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
C:\Program Files\UNIO_systems\ADSL_Automat\ADSL.exe
C:\PROGRA~1\MOZILL~1\firefox.exe
C:\Documents and Settings\Pepa\Plocha\vcleaner.exe
C:\Documents and Settings\Pepa\Plocha\PROGRAMY\HijackThis.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
O4 - HKLM\..\Run: [ADSLPLUS] C:\Program Files\UNIO_systems\ADSL_Automat\ADSL.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{743DC1E2-7A77-4296-80B0-D95C7C8EC564}: NameServer = 160.218.43.200 160.218.10.200
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
jen chci říct že mám počítač furt děsně zakousanej, což nebejvalo, internet mi jede asi 50kB/s což je o proti normálnim 360kB/s docela bída, seká se mi všechno, stačí třeba spustit jednu písničku v jetaudiu ... :(
-
mijaja
- Tvůrce článků
-
Level 6.5
- Příspěvky: 4136
- Registrován: září 05
- Bydliště: Zlín
- Pohlaví:
- Stav:
Offline
- Kontakt:
No v logu už žádné šmejdy nemáš. Ale říkám si, že bys měl v Taskmanageru zjistit, co ti užírá výkonu. Proč ti jede vcleaner od Grisoftu, upravit si služby, protože je jich u tebe spuštěno poměrně hodně, Alcohol, TuneUp apod. Jaké je nastavení SyncroSoftu a ADSL_Automatu.
Virama to už nebude, takže koumej co s tím.
Virama to už nebude, takže koumej co s tím.
-
CrazyManer
- Level 3.5
- Příspěvky: 901
- Registrován: únor 05
- Bydliště: LBC
- Pohlaví:
- Stav:
Offline
- Kontakt:
Zpět na “Viry, antiviry, firewally…”
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 4 hosti