Hijackthis ile .LOG Dosyası Hazırlayın

+ Yorum Gönder
Bilgisayar Dünyası ve Spy ve Virüs Haberleri Bölümünden Hijackthis ile .LOG Dosyası Hazırlayın ile ilgili Kısaca Bilgi
  1. 13
    devilman679
    Özel Üye
    Reklam

    --->: Hijackthis ile .LOG Dosyası Hazırlayın

    Reklam



    PHP- Kodu:
    Logfile of HijackThis v1.99.1
    Scan saved at 23
    :02:38on 14.02.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C
    :\Program Files\Eset\nod32krn.exe
    C
    :\WINDOWS\system32\nvsvc32.exe
    C
    :\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\PROGRA~1\A4Tech\Mouse\Amoumain.exe
    C
    :\Program Files\Java\jre1.5.0_04\bin\jusched.exe
    C
    :\WINDOWS\system32\rundll32.exe
    C
    :\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C
    :\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
    C
    :\Program Files\ZyXEL\ADSL USB Modem\CnxDslTb.exe
    C
    :\Program Files\Eset\nod32kui.exe
    C
    :\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C
    :\WINDOWS\VM_STI.EXE
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
    C
    :\Program Files\Internet Download Manager\IDMan.exe
    C
    :\Program Files\VisualTaskTips\VisualTaskTips.exe
    C
    :\Program Files\LifeView\LifeView TVR\ReCtrl.exe
    C
    :\Program Files\HP\hpcoretech\comp\hptskmgr.exe
    C
    :\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
    C
    :\Program Files\MSN Messenger\msnmsgr.exe
    C
    :\Program Files\MSN Messenger\usnsvc.exe
    C
    :\Program Files\Mozilla Firefox\firefox.exe
    C
    :\Program Files\Winamp\winamp.exe
    C
    :\WINDOWS\system32\taskmgr.exe
    E
    :\c yedekler ne varsa\ISO-8859-9''HijackThis\hijackthis544\HijackThis.exe

    R1 
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=69157
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page http://go.microsoft.com/fwlink/?LinkId=54896
    R0 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page http://go.microsoft.com/fwlink/?LinkId=69157
    O2 BHOIDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 
    BHOAcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O4 
    HKLM\..\Run: [NvCplDaemonRUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 
    HKLM\..\Run: [nwiznwiz.exe /install
    O4 
    HKLM\..\Run: [NvMediaCenterRUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 
    HKLM\..\Run: [WheelMouseC:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
    O4 
    HKLM\..\Run: [NeroFilterCheckC:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 
    HKLM\..\Run: [SunJavaUpdateSchedC:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
    O4 
    HKLM\..\Run: [BluetoothAuthenticationAgentrundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 
    HKLM\..\Run: [HP Component Manager"C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 HKLM\..\Run: [OrderReminderC:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
    O4 
    HKLM\..\Run: [CnxDslTaskBar"C:\Program Files\ZyXEL\ADSL USB Modem\CnxDslTb.exe"
    O4 HKLM\..\Run: [nod32kui"C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 
    HKLM\..\Run: [HP Software UpdateC:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 
    HKLM\..\Run: [BigDogPathC:\WINDOWS\VM_STI.EXE A4 Tech USB PC Camera
    O4 
    HKLM\..\RunServices: [LvHidSvcC:\WINDOWS\system32\lvhidsvc.exe
    O4 
    HKCU\..\Run: [CTFMON.EXEC:\WINDOWS\system32\ctfmon.exe
    O4 
    HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
    O4 HKCU\..\Run: [IDManC:\Program Files\Internet Download Manager\IDMan.exe /onboot
    O4 
    HKCU\..\Run: [VisualTaskTipsC:\Program Files\VisualTaskTips\VisualTaskTips.exe
    O4 
    - Global StartupHP Digital Imaging Monitor.lnk C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 
    - Global StartupHP Image Zone Hızlı Başlangıç.lnk C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
    O4 
    - Global StartupRechedule TVR.lnk C:\Program Files\LifeView\LifeView TVR\RecSche.EXE
    O4 
    - Global StartupRemoteCtrl.lnk C:\Program Files\LifeView\LifeView TVR\ReCtrl.exe
    O8 
    Extra context menu itemDownload All Links with IDM C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 
    Extra context menu itemDownload with IDM C:\Program Files\Internet Download Manager\IEExt.htm
    O8 
    Extra context menu itemMicrosoft Excel'e Gö&nder - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O9 - Extra '
    Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O9 - Extra button: Araştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra '
    Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra '
    Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F6AC685D-BA57-432A-91B9-D7EBEBF341AD}: NameServer = 195.175.39.39 195.175.39.40
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 

    ForumAlev --->: Hijackthis ile .LOG Dosyası Hazırlayın

  2. 14
    fero74
    Üye
    PHP- Kodu:
    Logfile of HijackThis v1.99.1
    Scan saved at 21
    :34:22on 19.03.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\WINDOWS\explorer.exe
    C
    :\Program Files\HijackThis\HijackThis.exe

    R0 
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page http://karaman.meb.gov.tr/
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant 
    R0 HKCU\Software\Microsoft\Internet Explorer\Main,Local Page 
    R0 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page 
    R0 HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName Bağlantılar
    O2 
    BHOIDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 
    BHOAcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 
    BHOSSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O2 
    BHOWindows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 
    HKLM\..\Run: [kis"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"
    O4 StartupStardock ObjectDock.lnk C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    O8 
    Extra context menu itemDownload All Links with IDM C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 
    Extra context menu itemDownload with IDM C:\Program Files\Internet Download Manager\IEExt.htm
    O9 
    Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 
    Extra 'Tools' menuitemSun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 
    Extra buttonResearch - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll
    O18 
    ProtocolgrooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 
    Protocollivecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Protocolms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 
    Protocolmsnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Filter hijacktext/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O20 
    AppInit_DLLsC:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
    O20 
    Winlogon Notifyklogon C:\WINDOWS\system32\klogon.dll
    O20 
    Winlogon NotifyWgaLogon C:\WINDOWS\
    O23 ServiceKaspersky Internet Security 6.0 (AVP) - Unknown owner C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe (file missing) 
    usta yükümü azalttım fakat 2-3 dakikalık donmalar yaşıyorum.
    konuyu açtıgın için teşekkürler.kolay gelsin.







  3. 15
    ICEEXOL
    Özel Üye
    Alıntı fero74 Nickli Üyeden Alıntı Mesajı göster
    PHP- Kodu:
    Logfile of HijackThis v1.99.1
    Scan saved at 21
    :34:22on 19.03.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\WINDOWS\explorer.exe
    C
    :\Program Files\HijackThis\HijackThis.exe

    R0 
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page http://karaman.meb.gov.tr/
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant 
    R0 HKCU\Software\Microsoft\Internet Explorer\Main,Local Page 
    R0 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page 
    R0 HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName Bağlantılar
    O2 
    BHOIDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 
    BHOAcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 
    BHOSSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O2 
    BHOWindows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 
    HKLM\..\Run: [kis"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"
    O4 StartupStardock ObjectDock.lnk C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    O8 
    Extra context menu itemDownload All Links with IDM C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 
    Extra context menu itemDownload with IDM C:\Program Files\Internet Download Manager\IEExt.htm
    O9 
    Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 
    Extra 'Tools' menuitemSun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 
    Extra buttonResearch - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll
    O18 
    ProtocolgrooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 
    Protocollivecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Protocolms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 
    Protocolmsnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Filter hijacktext/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O20 
    AppInit_DLLsC:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
    O20 
    Winlogon Notifyklogon C:\WINDOWS\system32\klogon.dll
    O20 
    Winlogon NotifyWgaLogon C:\WINDOWS\
    O23 ServiceKaspersky Internet Security 6.0 (AVP) - Unknown owner C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe (file missing) 
    usta yükümü azalttım fakat 2-3 dakikalık donmalar yaşıyorum.
    konuyu açtıgın için teşekkürler.kolay gelsin.
    Herhangi bir spy, virüs vs gibi bir sorununuz yok...Forumdan Diskeeper ve RegDoctor programlarını indirin.







  4. 16
    suvari
    Emekli
    bazen ınternet sayfasını kapatınca hata verıo


    PHP- Kodu:
    Logfile of HijackThis v1.99.1
    Scan saved at 22
    :44:09on 04.05.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C
    :\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    c
    :\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    c
    :\Program Files\Norton Internet Security\ISSVC.exe
    c
    :\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    c
    :\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    c
    :\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    C
    :\Program Files\Eset\nod32krn.exe
    C
    :\Program Files\No-IP\DUC20.EXE
    C
    :\WINDOWS\system32\nvsvc32.exe
    C
    :\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C
    :\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    C
    :\WINDOWS\system32\wscntfy.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\WINDOWS\ATK0100\HControl.exe
    C
    :\WINDOWS\system32\RUNDLL32.EXE
    C
    :\WINDOWS\sm56hlpr.exe
    C
    :\WINDOWS\RTHDCPL.EXE
    C
    :\Program Files\ASUS\ASUS Live Update\ALU.exe
    C
    :\Program Files\Wireless Console 2\wcourier.exe
    C
    :\Program Files\ASUS\ATK Media\DMEDIA.EXE
    C
    :\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C
    :\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
    C
    :\Program Files\ASUS\Power4 Gear\BatteryLife.exe
    C
    :\Program Files\ASUS\Splendid\ACMON.exe
    C
    :\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    C
    :\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    C
    :\Program Files\Intel\Wireless\Bin\EOUWiz.exe
    C
    :\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    C
    :\Program Files\Winamp\winampa.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\WINDOWS\system32\ACEngSvr.exe
    C
    :\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
    C
    :\Program Files\No-IP\DUC20.EXE
    C
    :\WINDOWS\ATK0100\ATKOSD.exe
    C
    :\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
    C
    :\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
    C
    :\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
    C
    :\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
    C
    :\Program Files\GVZ\GVZ Komut Anlar\SRCommand.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\Program Files\ESET\nod32kui.exe
    c
    :\Program Files\Common Files\Symantec Shared\AdBlocking\NSMdtr.exe
    C
    :\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C
    :\Program Files\MSN Messenger\msnmsgr.exe
    C
    :\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
    C
    :\Program Files\Internet Explorer\IEXPLORE.EXE
    C
    :\Program Files\Internet Explorer\IEXPLORE.EXE
    D
    :\FLVPlayer\hijackthis_sfx.exe
    C
    :\Program Files\HijackThis\HijackThis.exe

    R1 
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL http://www.asus.com
    R0 HKCU\Software\Microsoft\Internet Explorer\Main,Local Page 
    R1 HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
    R0 HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName Bağlantılar
    R3 URLSearchHookYahooToolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 BHOIDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 
    BHOAcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 
    BHOSSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O2 
    BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 BHOWindows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 
    BHOCNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O2 
    BHOCNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 
    ToolbarNorton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O3 
    ToolbarNorton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O4 
    HKLM\..\Run: [HControlC:\WINDOWS\ATK0100\HControl.exe
    O4 
    HKLM\..\Run: [NvCplDaemonRUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 
    HKLM\..\Run: [nwiznwiz.exe /install
    O4 
    HKLM\..\Run: [NvMediaCenterRUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 
    HKLM\..\Run: [SMSERIALC:\WINDOWS\sm56hlpr.exe
    O4 
    HKLM\..\Run: [RTHDCPLRTHDCPL.EXE
    O4 
    HKLM\..\Run: [AlcmtrALCMTR.EXE
    O4 
    HKLM\..\Run: [ASUS Live UpdateC:\Program Files\ASUS\ASUS Live Update\ALU.exe
    O4 
    HKLM\..\Run: [Wireless Console 2C:\Program Files\Wireless Console 2\wcourier.exe
    O4 
    HKLM\..\Run: [ATKMEDIAC:\Program Files\ASUS\ATK Media\DMEDIA.EXE
    O4 
    HKLM\..\Run: [SynTPEnhC:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 
    HKLM\..\Run: [ABLKSRC:\WINDOWS\ABLKSR\ABLKSR.exe
    O4 
    HKLM\..\Run: [RemoteControl"C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"
    O4 HKLM\..\Run: [NeroFilterCheckC:\WINDOWS\system32\NeroCheck.exe
    O4 
    HKLM\..\Run: [ccApp"c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 HKLM\..\Run: [Power_GearC:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
    O4 
    HKLM\..\Run: [ACMONC:\Program Files\ASUS\Splendid\ACMON.exe
    O4 
    HKLM\..\Run: [IntelZeroConfig"C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
    O4 HKLM\..\Run: [IntelWireless"C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
    O4 
    HKLM\..\Run: [EOUApp"C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe"
    O4 HKLM\..\Run: [Symantec NetDriver MonitorC:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
    O4 
    HKLM\..\Run: [SunJavaUpdateSchedC:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    O4 
    HKLM\..\Run: [nod32kui"C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 
    HKLM\..\Run: [WinampAgentC:\Program Files\Winamp\winampa.exe
    O4 
    HKCU\..\Run: [CTFMON.EXEC:\WINDOWS\system32\ctfmon.exe
    O4 
    HKCU\..\Run: [ThePrivacyGuard"C:\PROGRA~1\THEPRI~1\THEPRI~1.EXE" /startup
    O4 
    StartupNo-IP DUC.lnk C:\Program Files\No-IP\DUC20.EXE
    O4 
    - Global StartupAdobe Reader Speed Launch.lnk C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 
    - Global StartupBluetooth Manager.lnk = ?
    O8 Extra context menu itemDownload All Links with IDM C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 
    Extra context menu itemDownload with IDM C:\Program Files\Internet Download Manager\IEExt.htm
    O9 
    Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 
    Extra 'Tools' menuitemSun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 
    Extra buttonMessenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 
    Extra 'Tools' menuitemWindows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O14 
    IERESET.INFSTART_PAGE_URL=http://www.asus.com
    O16 DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 
    DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/TR-TR/a-UNO1/GAME_UNO1.cab
    O16 DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.com/obj/NpFv415.dll
    O16 DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
    O16 DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://www.radyotvonline.com/play/ampx_en_dl.cab
    O18 Protocollivecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Protocolmsnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 
    Protocolskype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O23 
    ServiceAutomatic LiveUpdate Scheduler Symantec Corporation C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 
    ServiceSymantec Event Manager (ccEvtMgr) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 
    ServiceSymantec Network Proxy (ccProxy) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    O23 
    ServiceSymantec Password Validation (ccPwdSvc) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
    O23 
    ServiceSymantec Settings Manager (ccSetMgr) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 
    ServiceIntel(RPROSet/Wireless Event Log (EvtEng) - Intel Corporation C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 
    ServiceISSvc (ISSVC) - Symantec Corporation c:\Program Files\Norton Internet Security\ISSVC.exe
    O23 
    ServiceLiveUpdate Symantec Corporation C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 
    ServiceNorton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    O23 
    ServiceNOD32 Kernel Service (NOD32krn) - Eset  C:\Program Files\Eset\nod32krn.exe
    O23 
    ServiceNoIPDUCService Vitalwerks LLC C:\Program Files\No-IP\DUC20.EXE
    O23 
    ServiceNVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation C:\WINDOWS\system32\nvsvc32.exe
    O23 
    ServiceIntel(RPROSet/Wireless Registry Service (RegSrvc) - Intel Corporation C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 
    ServiceIntel(RPROSet/Wireless Service (S24EventMonitor) - Intel Corporation  C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    O23 
    ServiceSAVScan Symantec Corporation c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    O23 
    ServiceScriptBlocking Service (SBService) - Symantec Corporation C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 
    ServiceSymantec Network Drivers Service (SNDSrvc) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 
    ServiceSymantec SPBBCSvc (SPBBCSvc) - Symantec Corporation c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 
    ServiceTOSHIBA Bluetooth Service TOSHIBA CORPORATION C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe 


  5. 17
    belkibirgun00
    Üye
    PHP- Kodu:
    Logfile of Trend Micro HijackThis v2.0.0 (BETA)
    Scan saved at 00:48:31on 27.07.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    Boot modeNormal

    Running processes
    :
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\SYSTEM32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\Ati2evxx.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C
    :\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C
    :\Program Files\Common Files\Symantec Shared\ccProxy.exe
    C
    :\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    C
    :\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    C
    :\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\Acer\Empowering Technology\ePerformance\MemCheck.exe
    C
    :\Program Files\Common Files\LightScribe\LSSrvc.exe
    C
    :\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe
    C
    :\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe
    C
    :\Program Files\UGS\License Servers\UGNXFLEXlm\uglmd.exe
    C
    :\WINDOWS\system32\wbem\wmiapsrv.exe
    C
    :\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    C
    :\WINDOWS\SYSTEM32\Ati2evxx.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C
    :\WINDOWS\RTHDCPL.EXE
    C
    :\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C
    :\Acer\Empowering Technology\ePower\ePower_DMC.exe
    C
    :\Program Files\Common Files\Symantec Shared\ccApp.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\WINDOWS\system32\wbem\unsecapp.exe
    C
    :\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C
    :\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C
    :\WINDOWS\system32\ntvdm.exe
    C
    :\Program Files\Winamp\winamp.exe
    C
    :\WINDOWS\system32\mspaint.exe
    C
    :\WINDOWS\system32\mspaint.exe
    D
    :\programlar\virüs - spy\HiJackThis_v2\HiJackThis_v2.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C
    :\Program Files\Acer Inc\Acer GridVista\GridVistaU.exe
    C
    :\Program Files\Messenger\msmsgs.exe

    R0 
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page about:blank
    O1 
    Hosts file is located atC:\WINDOWS\System32\drivers\etc\hosts
    O2 
    BHOAcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 
    BHONorton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O2 
    BHONAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 
    ToolbarAcer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
    O3 
    ToolbarNorton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O3 
    ToolbarNorton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O4 
    HKLM\..\Run: [AzMixerSelC:\Program Files\Realtek\InstallShield\AzMixerSel.exe
    O4 
    HKLM\..\Run: [IMJPMIG8.1"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 
    HKLM\..\Run: [MSPY2002C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 
    HKLM\..\Run: [PHIME2002ASyncC:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 
    HKLM\..\Run: [PHIME2002AC:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 
    HKLM\..\Run: [ATICCC"C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 
    HKLM\..\Run: [RTHDCPLRTHDCPL.EXE
    O4 
    HKLM\..\Run: [SkyTelSkyTel.EXE
    O4 
    HKLM\..\Run: [eDataSecurity LoaderC:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 1
    O4 
    HKLM\..\Run: [ePower_DMCC:\Acer\Empowering Technology\ePower\ePower_DMC.exe
    O4 
    HKLM\..\Run: [ccApp"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 HKCU\..\Run: [CTFMON.EXEC:\WINDOWS\system32\ctfmon.exe
    O4 
    HKUS\S-1-5-19\..\Run: [CTFMON.EXEC:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 HKUS\S-1-5-20\..\Run: [CTFMON.EXEC:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 HKUS\S-1-5-18\..\Run: [DWQueuedReporting"C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -(User 'SYSTEM')
    O4 HKUS\.DEFAULT\..\Run: [DWQueuedReporting"C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -(User 'Default user')
    O9 Extra buttonAraştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O16 DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1182799037199
    O22 SharedTaskSchedulerBrowseui önceden yükleyicisi - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 SharedTaskSchedulerBileşen Katergorileri önbellek daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 ServiceMemory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 
    ServiceAdobe LM Service Adobe Systems C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 
    ServiceAti HotKey Poller ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 
    ServiceAutodesk Licensing Service Autodesk C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 
    ServiceSymantec Event Manager (ccEvtMgr) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 
    ServiceSymantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation C:\Program Files\Norton Internet Security\ccPwdSvc.exe
    O23 
    ServiceSymantec Network Proxy (ccProxy) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    O23 
    ServiceSymantec Settings Manager (ccSetMgr) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 
    ServiceCOM Host (comHost) - Symantec Corporation C:\Program Files\Norton Internet Security\comHost.exe
    O23 
    ServiceInstallDriver Table Manager (IDriverT) - Macrovision Corporation C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 
    ServiceLightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 
    ServiceNorton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    O23 
    ServiceNorton Protection Center Service (NSCService) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 
    ServiceMicrosoft Office Diagnostics Service (odserv) - Unknown owner C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (file missing)
    O23 ServiceCyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner C:\Program Files\CyberLink\Shared Files\RichVideo.exe (file missing)
    O23 ServiceSymantec AVScan (SAVScan) - Symantec Corporation C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    O23 
    ServiceSymantec Network Drivers Service (SNDSrvc) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 
    ServiceSymantec SPBBCSvc (SPBBCSvc) - Symantec Corporation C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 
    ServiceSymantec Core LC Symantec Corporation C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 
    ServiceUnigraphics License Server (uglmd) - Macrovision Corporation C:\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe

    --
    End of file 7895 bytes 
    ıce kardeş bi bakarsan sevinirim gerçi internet ile aram ii değilde olsun bende 3d program ve 1.5gb ram var ama bilg. kapanması 50sn buluyor ve acıkken ara sıra 1-2 sn arası geç dosya acıyor...

    bi bilgin varsa paylaşırsan sevinirim....

  6. 18
    Baryular
    Üye
    Alıntı belkibirgun00 Nickli Üyeden Alıntı Mesajı göster
    ıce kardeş bi bakarsan sevinirim gerçi internet ile aram ii değilde olsun bende 3d program ve 1.5gb ram var ama bilg. kapanması 50sn buluyor ve acıkken ara sıra 1-2 sn arası geç dosya acıyor...

    bi bilgin varsa paylaşırsan sevinirim....
    kardeş ice nin yanıt verecegini zannetmiyorum çünkü eskiden donanım stuff dı şimödi usta üye olmuş bide ne zamandan beri girmiyor siteye

  7. 19
    wody
    Emekli
    buda benimki bakarsan sevinirim :) şimdiden teşekkürler

    PHP- Kodu:
    Logfile of HijackThis v1.99.1
    Scan saved at 11
    :49:20on 18.09.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\WINDOWS\system32\HPZipm12.exe
    C
    :\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C
    :\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\progra~1\softwin\bitdefender9\bdnagent.exe
    C
    :\progra~1\softwin\bitdefender9\bdswitch.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    D
    :\programlar\Get-Torrent\wakeservice.exe
    C
    :\WINDOWS\system32\wscntfy.exe
    C
    :\Program Files\Windows Live\Messenger\usnsvc.exe
    C
    :\Program Files\Windows Live\Messenger\msnmsgr.exe
    C
    :\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
    C
    :\Program Files\Windows Live\Messenger\msnmsgr.exe
    C
    :\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
    C
    :\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    C
    :\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    C
    :\Program Files\Softwin\BitDefender9\vsserv.exe
    C
    :\Program Files\CPU Hızlandırıcı\cpu_hizlandirici.exe
    C
    :\Program Files\Mozilla Firefox\firefox.exe
    C
    :\WINDOWS\system32\msiexec.exe
    D
    :\programlar\loggg\HijackThis.exe

    R0 
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page http://runonce.msn.com/?v=msgrv75
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=69157
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page http://go.microsoft.com/fwlink/?LinkId=54896
    R0 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page http://go.microsoft.com/fwlink/?LinkId=69157
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant 
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch 
    R0 HKCU\Software\Microsoft\Internet Explorer\Main,Local Page 
    R0 HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName Bağlantılar
    O2 
    BHOAdobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\programlar\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 
    BHOflashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - D:\programlar\flash get 1.90\jccatch.dll
    O2 
    BHO: (no name) - {3E1500AC-87A5-416b-A211-82E848649DA9} - (no file)
    O2 BHO: (no name) - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - (no file)
    O2 BHOSSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 
    BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 BHOWindows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 
    BHOEditor plugin - {CF571BCD-AD39-402b-BADA-BFC15A21D9A8} - callps.dll (file missing)
    O2 BHOWebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - D:\programlar\Get-Torrent\TorrentManager.dll
    O2 
    BHOFlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - D:\programlar\flash get 1.90\getflash.dll
    O2 
    BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - D:\programlar\Star Downloader\SDIEInt.dll
    O4 
    HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 
    HKLM\..\Run: [BDMConC:\PROGRA~1\Softwin\BitDefender9\bdmcon.exe
    O4 
    HKLM\..\Run: [BDNewsAgent"C:\PROGRA~1\Softwin\BitDefender9\bdnagent.exe"
    O4 HKLM\..\Run: [BDSwitchAgent"C:\PROGRA~1\Softwin\BitDefender9\bdswitch.exe"
    O4 HKLM\..\Run: [WinampAgentD:\programlar\Winamp\winampa.exe
    O4 
    HKLM\..\Run: [QuickTime Task"C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 
    HKCU\..\Run: [msnmsgr"C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 
    HKCU\..\Run: [ctfmon.exeC:\WINDOWS\system32\ctfmon.exe
    O4 
    HKCU\..\Run: [Get-Torrent ServiceD:\programlar\Get-Torrent\wakeservice.exe
    O6 
    HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 
    Extra context menu item: &FlashGet ile indir D:\programlar\flash get 1.90\jc_link.htm
    O8 
    Extra context menu item: &Tümünü FlashGet ile indir D:\programlar\flash get 1.90\jc_all.htm
    O8 
    Extra context menu itemSothink SWF Catcher C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 
    Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 
    Extra 'Tools' menuitemSun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 
    Extra buttonAraştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 
    Extra buttonFlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\programlar\flash get 1.90\FlashGet.exe
    O9 
    Extra 'Tools' menuitemFlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\programlar\flash get 1.90\FlashGet.exe
    O9 
    Extra buttonSothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 
    Extra 'Tools' menuitemSothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 
    Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O11 Options group: [INTERNATIONALInternational*
    O18 Protocollivecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 
    Protocolmsnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O20 
    Winlogon NotifyWB D:\programlar\ThemeManager\fastload.dll
    O20 
    Winlogon NotifyWgaLogon C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 
    SSODLWPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 
    ServiceAdobe LM Service Adobe Systems C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 
    ServiceApache Unknown owner d:\programlar\wolkan\Apache\Apache.exe" --ntservice (file missing)
    O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - D:\programlar\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" 
    -(file missing)
    O23 ServiceBitDefender Scan Server (bdss) - Unknown owner C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" 
    /service (file missing)
    O23 ServicePml Driver HPZ12 HP C:\WINDOWS\system32\HPZipm12.exe
    O23 
    ServiceUlead Burning Helper (UleadBurningHelper) - Ulead SystemsInc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    O23 
    ServiceBitDefender Virus Shield (VSSERV) - Unknown owner C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" 
    /service (file missing


  8. 20
    ICEEXOL
    Özel Üye
    Ezbere log yolluyorsun !.Derdin nedir. Görünürde herhangi bir sorun yok o yüzden sordum.

  9. 21
    wody
    Emekli

    --->: Hijackthis ile .LOG Dosyası Hazırlayın

    Reklam



    pardon ben konun sonunu okumadım bu kısmı ondan dolayı yanlış anlaşılma oldu

    "sizde bir sorun çıktığında bize .LOG dosyanızı yollarsanız beraber çözüm bulabiliriz."

    sorun yoktu bende ama benim bilmediğim virüs yada zararlı bişey varmı diye merak ettim ondan dolayı gönderdim.

  10. 22
    hüs eyin
    Yeni Üye
    PHP- Kodu:
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at Hüseyin 13
    :30on 25.09.2007
    Platform
    Windows Vista  (WinNT 6.00.1904)
    MSIEInternet Explorer v7.00 (7.00.6000.16512)
    Boot modeNormal

    Running processes
    :
    C:\Windows\SYSTEM32\taskeng.exe
    C
    :\Windows\Explorer.EXE
    C
    :\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
    C
    :\Program Files\Windows Defender\MSASCui.exe
    C
    :\Program Files\ESET\nod32kui.exe
    C
    :\Program Files\MSN Messenger\msnmsgr.exe
    C
    :\Program Files\Internet Download Manager\IDMan.exe
    C
    :\Program Files\Windows Media Player\wmpnscfg.exe
    C
    :\Windows\system32\Dwm.exe
    C
    :\Program Files\Internet Download Manager\IEMonitor.exe
    C
    :\Windows\System32\mobsync.exe
    C
    :\Windows\system32\SearchFilterHost.exe
    C
    :\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Page http://go.microsoft.com/fwlink/?LinkId=54896
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=69157
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896
    R1 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page http://go.microsoft.com/fwlink/?LinkId=54896
    R0 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page http://go.microsoft.com/fwlink/?LinkId=69157
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant 
    R0 HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch 
    R0 HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName 
    O1 Hosts: ::1 localhost
    O2 
    BHOIDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 
    BHOAdobe PDF Reader Bağı Yardımı - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 
    BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 BHOWindows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 
    HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 
    HKLM\..\Run: [nod32kui"C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 
    HKCU\..\Run: [MsnMsgr"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 
    HKCU\..\Run: [IDManC:\Program Files\Internet Download Manager\IDMan.exe /onboot
    O4 
    HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenterrundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O8 Extra context menu itemDownload All Links with IDM C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 
    Extra context menu itemDownload with IDM C:\Program Files\Internet Download Manager\IEExt.htm
    O13 
    Gopher Prefix
    O23 ServiceNOD32 Kernel Service (NOD32krn) - Eset  C:\Program Files\Eset\nod32krn.exe
    O23 
    ServiceStardock WindowBlinds (WindowBlinds) - Stardock Corporation C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\VistaSrv.exe

    --
    End of file 3316 bytes 


  11. 23
    imran
    Yeni Üye
    @ICEEXOL

    Simdi sen bunu kendin yorumluyorsundur deme ?

    Yoksa a$$agidaki sitedemi senin ??
    http://hjt.networktechs.com/



    Ugra$mayin beyler ne ole logu koycan cevap alcan yukaridaki siteye girip kodu yapistirin parse tusuna basin bukadar basit !

    ...
    Tekrar görü$mek üzere !

  12. 24
    dinco
    Yeni Üye
    Kardes selam birde buna bakabilirmisin eger bunda bir sorun yoksa bu DeepFreeze programindan kaynaklana bilirmi zira bilgisayarda yaptigim hic birsey kayitli kalmiyor ama deepfreeze yide aktif hale getiremiyorum




    PHP- Kodu:
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 01
    :51ErDaLon 25.11.2007
    Platform
    Windows XP SP2 (WinNT 5.01.2600)
    MSIEInternet Explorer v7.00 (7.00.6000.16544)
    Boot modeNormal

    Running processes
    :
    C:\WINDOWS\System32\smss.exe
    C
    :\WINDOWS\system32\winlogon.exe
    C
    :\WINDOWS\system32\services.exe
    C
    :\WINDOWS\system32\lsass.exe
    C
    :\Programme\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
    C
    :\WINDOWS\system32\svchost.exe
    C
    :\WINDOWS\System32\svchost.exe
    C
    :\WINDOWS\system32\S24EvMon.exe
    C
    :\WINDOWS\system32\spoolsv.exe
    C
    :\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
    C
    :\Programme\avmclient\avmbtservice.exe
    C
    :\Programme\avmclient\AvmObexService.exe
    C
    :\WINDOWS\SYSTEM32\GEARSEC.EXE
    C
    :\Programme\Eset\nod32krn.exe
    C
    :\WINDOWS\system32\oodag.exe
    C
    :\WINDOWS\system32\RegSrvc.exe
    C
    :\WINDOWS\system32\RoamMgr.exe
    C
    :\Programme\Photodex\ProShowGold\ScsiAccess.exe
    C
    :\WINDOWS\System32\PAStiSvc.exe
    C
    :\WINDOWS\system32\fxssvc.exe
    C
    :\WINDOWS\system32\ZCfgSvc.exe
    C
    :\WINDOWS\Explorer.EXE
    C
    :\WINDOWS\system32\1XConfig.exe
    C
    :\Programme\Apoint2K\Apoint.exe
    C
    :\WINDOWS\AGRSMMSG.exe
    C
    :\PROGRA~1\LAUNCH~1\CPLBCL53.EXE
    C
    :\WINDOWS\SOUNDMAN.EXE
    C
    :\Programme\Intel\NCS\PROSet\PRONoMgr.exe
    C
    :\Programme\Apoint2K\Apntex.exe
    C
    :\WINDOWS\system32\igfxtray.exe
    C
    :\WINDOWS\system32\hkcmd.exe
    C
    :\WINDOWS\system32\igfxpers.exe
    C
    :\Programme\Eset\nod32kui.exe
    C
    :\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe
    C
    :\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe
    C
    :\WINDOWS\system32\ctfmon.exe
    C
    :\Programme\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe
    C
    :\Programme\MSN Webcam Recorder\ml20gui.exe
    C
    :\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe
    C
    :\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
    C
    :\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexStoreSvr.exe
    C
    :\Programme\Mozilla Firefox\firefox.exe
    C
    :\Dokumente und Einstellungen\Erdal\Desktop\DeepFreezeSTDEval.exe
    C
    :\Dokumente und Einstellungen\Erdal\Eigene Dateien\DeepFreeze\DF5Wks.exe
    C
    :\Programme\Trend Micro\HijackThis\HijackThis.exe

    R0 
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page http://yahoo.de/
    R0 HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
    R1 
    HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer http=localhost:8080;https=localhost:8080;ftp=localhost:8080
    R1 
    HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride intranet
    O2 
    BHOAdobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 
    BHOGroove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O3 
    ToolbarThe jokwmp - {459C681F-AA94-49B7-A55B-110D924E5FCE} - C:\WINDOWS\jokwmp.dll (file missing)
    O4 HKLM\..\Run: [ApointC:\Programme\Apoint2K\Apoint.exe
    O4 
    HKLM\..\Run: [AGRSMMSGAGRSMMSG.exe
    O4 
    HKLM\..\Run: [LManagerC:\PROGRA~1\LAUNCH~1\CPLBCL53.EXE
    O4 
    HKLM\..\Run: [SoundManSOUNDMAN.EXE
    O4 
    HKLM\..\Run: [PRONoMgr.exeC:\Programme\Intel\NCS\PROSet\PRONoMgr.exe
    O4 
    HKLM\..\Run: [ISUSPM StartupC:\PROGRA~1\GEMEIN~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
    O4 
    HKLM\..\Run: [igfxtrayC:\WINDOWS\system32\igfxtray.exe
    O4 
    HKLM\..\Run: [igfxhkcmdC:\WINDOWS\system32\hkcmd.exe
    O4 
    HKLM\..\Run: [igfxpersC:\WINDOWS\system32\igfxpers.exe
    O4 
    HKLM\..\Run: [nod32kui"C:\Programme\Eset\nod32kui.exe" /WAITSERVICE
    O4 
    HKLM\..\Run: [NodLoginC:\Programme\Eset\nodlogin.exe
    O4 
    HKLM\..\Run: [TrueImageMonitor.exeC:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe
    O4 
    HKLM\..\Run: [Acronis Scheduler2 Service"C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe"
    O4 HKLM\..\Run: [Adobe Reader Speed Launcher"C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 HKLM\..\Run: [FirefoxUltimateOptimizerC:\Dokumente und Einstellungen\Erdal\Eigene Dateien\Firefox Ultimate Optimizer.exe
    O4 
    HKLM\..\Run: [NBKeyScan"C:\Programme\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 HKLM\..\Run: [NeroFilterCheckC:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe
    O4 
    HKCU\..\Run: [CTFMON.EXEC:\WINDOWS\system32\ctfmon.exe
    O4 
    HKCU\..\Run: [Uniblue SpeedUpMyPCC:\Programme\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe -s
    O4 
    HKCU\..\Run: [MSN Webcam Recorder"C:\Programme\MSN Webcam Recorder\ml20gui.exe" -silent
    O4 
    HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe"
    O4 HKCU\..\Run: [XPRepairPro2007C:\Programme\XP Repair Pro 2007\XPRepairPro.exe /r
    O4 
    HKUS\S-1-5-19\..\Run: [CTFMON.EXEC:\WINDOWS\System32\CTFMON.EXE (User 'LOKALER DIENST')
    O4 HKUS\S-1-5-20\..\Run: [CTFMON.EXEC:\WINDOWS\System32\CTFMON.EXE (User 'NETZWERKDIENST')
    O4 HKUS\S-1-5-18\..\Run: [CTFMON.EXEC:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 HKUS\.DEFAULT\..\Run: [CTFMON.EXEC:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O6 HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 
    HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O9 
    Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_06\bin\npjpi142_06.dll
    O9 
    Extra 'Tools' menuitemSun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_06\bin\npjpi142_06.dll
    O9 
    Extra buttonAn OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 
    Extra 'Tools' menuitemAn OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 
    Extra buttonSpyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
    O9 
    Extra buttonResearch - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 
    Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 
    Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 
    Extra buttonMessenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
    O9 
    Extra 'Tools' menuitemWindows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
    O18 
    ProtocolgrooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O20 
    Winlogon NotifyDfLogon C:\WINDOWS\SYSTEM32\LogonDll.dll
    O20 
    Winlogon Notifypmnkhij pmnkhij.dll (file missing)
    O23 ServiceAcronis Scheduler2 Service (AcrSch2Svc) - Acronis C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
    O23 
    ServiceAVM BT Connection Service AVM Berlin C:\Programme\avmclient\avmbtservice.exe
    O23 
    ServiceAVM BT PAN Service AVM Berlin C:\Programme\avmclient\panapp.exe
    O23 
    ServiceAVM BT OBEX Service (AvmObexService) - AVM Berlin C:\Programme\avmclient\AvmObexService.exe
    O23 
    ServiceDF5Serv Faronics Corporation C:\Programme\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
    O23 
    ServiceGEARSecurity GEAR Software C:\WINDOWS\SYSTEM32\GEARSEC.EXE
    O23 
    Serviceklpsrvc Unknown owner C:\Programme\USB LOCK AP\klpsrvc.exe (file missing)
    O23 ServiceIntel NCS NetService (NetSvc) - Intel(RCorporation C:\Programme\Intel\NCS\Sync\NetSvc.exe
    O23 
    ServiceNMIndexingService Nero AG C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
    O23 
    ServiceNOD32 Kernel Service (NOD32krn) - Eset  C:\Programme\Eset\nod32krn.exe
    O23 
    ServiceO&O Defrag O&O Software GmbH C:\WINDOWS\system32\oodag.exe
    O23 
    ServiceRegSrvc Intel Corporation C:\WINDOWS\system32\RegSrvc.exe
    O23 
    ServiceRoamMgr Intel Corporation C:\WINDOWS\system32\RoamMgr.exe
    O23 
    ServiceRemote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies C:\Programme\WinPcap\rpcapd.exe
    O23 
    ServiceSpectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  C:\WINDOWS\system32\S24EvMon.exe
    O23 
    ServiceScsiAccess Unknown owner C:\Programme\Photodex\ProShowGold\ScsiAccess.exe
    O23 
    ServicePC Tools Auxiliary Service (sdAuxService) - PC Tools C:\Programme\Spyware Doctor\svcntaux.exe
    O23 
    ServicePC Tools Security Service (sdCoreService) - PC Tools C:\Programme\Spyware Doctor\swdsvc.exe
    O23 
    ServiceServiceLayer Unknown owner C:\Programme\PC Connectivity Solution\ServiceLayer.exe (file missing)
    O23 ServiceSTI Simulator Unknown owner C:\WINDOWS\System32\PAStiSvc.exe

    --
    End of file 8678 bytes 


+ Yorum Gönder
5 üzerinden 5.00 | Toplam : 1 kişi