Prosessit- wowexec.exe hjt-logi.

Discussion in 'Virukset ja haittaohjelmat - HijackThis -logit' started by Mestaus, Nov 27, 2006.

Thread Status:
Not open for further replies.
  1. Mestaus

    Mestaus Regular member

    Joined:
    Dec 21, 2005
    Messages:
    1,141
    Likes Received:
    0
    Trophy Points:
    46
    Tollasen wowexec.exe on tuolla prosseissa ja se viel muistista 0.En oo koskaan tollasta nähnyt.

    Logfile of HijackThis v1.99.1
    Scan saved at 18:15:06, on 27.11.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    F:\WINDOWS\System32\smss.exe
    F:\WINDOWS\system32\csrss.exe
    F:\WINDOWS\system32\winlogon.exe
    F:\WINDOWS\system32\services.exe
    F:\WINDOWS\system32\lsass.exe
    F:\WINDOWS\system32\svchost.exe
    F:\WINDOWS\system32\svchost.exe
    F:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe
    F:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE
    F:\WINDOWS\System32\svchost.exe
    F:\WINDOWS\system32\svchost.exe
    F:\WINDOWS\system32\svchost.exe
    F:\WINDOWS\system32\spoolsv.exe
    F:\WINDOWS\Explorer.EXE
    F:\Program Files\Winamp\winampa.exe
    F:\Program Files\MessengerPlus! 3\MsgPlus.exe
    F:\WINDOWS\CTHELPER.EXE
    F:\Program Files\Creative\SBAudigy4\DVDAudio\CTDVDDET.EXE
    F:\Program Files\Creative\SBAudigy4\Surround Mixer\CTSysVol.exe
    F:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
    F:\WINDOWS\system32\LVCOMSX.EXE
    F:\Program Files\Logitech\Video\LogiTray.exe
    F:\Program Files\Messenger\msmsgs.exe
    F:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
    F:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    F:\Program Files\Logitech\SetPoint\SetPoint.exe
    F:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    F:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
    F:\Program Files\Logitech\Video\FxSvr2.exe
    F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    F:\WINDOWS\system32\CTsvcCDA.EXE
    F:\WINDOWS\system32\nvsvc32.exe
    F:\Program Files\MSN Messenger\msnmsgr.exe
    F:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
    F:\Program Files\Spyware Doctor\sdhelp.exe
    F:\WINDOWS\system32\svchost.exe
    F:\WINDOWS\system32\wdfmgr.exe
    F:\WINDOWS\System32\alg.exe
    F:\WINDOWS\system32\rsvp.exe
    F:\WINDOWS\system32\drwtsn32.exe
    F:\WINDOWS\system32\drwtsn32.exe
    F:\WINDOWS\system32\ntvdm.exe
    F:\Program Files\Winamp\winamp.exe
    F:\WINDOWS\system32\drwtsn32.exe
    F:\Program Files\Steam\Steam.exe
    F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\HijackThis_v1.99.1\HijackThis_v1.99.1.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - F:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
    O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - F:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
    O4 - HKLM\..\Run: [WinampAgent] F:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [MessengerPlus3] "F:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "F:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE"
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [APVXDWIN] "F:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
    O4 - HKLM\..\Run: [CTDVDDET] "F:\Program Files\Creative\SBAudigy4\DVDAudio\CTDVDDET.EXE"
    O4 - HKLM\..\Run: [CTSysVol] F:\Program Files\Creative\SBAudigy4\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [AudioDrvEmulator] "F:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "F:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
    O4 - HKLM\..\Run: [UpdReg] F:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [NeroFilterCheck] F:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [LVCOMSX] F:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] F:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] F:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\RunOnce: [MorpheusToolbar Uninstall] rundll32 F:\PROGRA~1\UNINST~1.DLL,O -2
    O4 - HKCU\..\Run: [MessengerPlus3] "F:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [MSMSGS] "F:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [Creative Detector] F:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "F:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [msnmsgr] "F:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Logitech SetPoint.lnk = ?
    O8 - Extra context menu item: Download all links using BitComet - res://F:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download link using &BitComet - res://F:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - F:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15026/CTPID.cab
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "F:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: avldr - F:\WINDOWS\SYSTEM32\avldr.dll
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - F:\WINDOWS\system32\CTsvcCDA.EXE
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: NBService - Nero AG - F:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - F:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe
    O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - F:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
    O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - F:\Program Files\Spyware Doctor\sdhelp.exe
     
    Mestaus, Nov 27, 2006
    #1
  2. jyrkiv

    jyrkiv Member

    Joined:
    Jan 13, 2006
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    11
    jyrkiv, Nov 27, 2006
    #2
  3. Mestaus

    Mestaus Regular member

    Joined:
    Dec 21, 2005
    Messages:
    1,141
    Likes Received:
    0
    Trophy Points:
    46
    EDIT: Ei lähtennytkää pandalla sori väärästä tiedosta.
     
    Last edited: Nov 27, 2006
    Mestaus, Nov 27, 2006
    #3
Thread Status:
Not open for further replies.

Share This Page