sprawdzenie logow

[DonMichael1234]

Witam czy mógłby ktos fachowym okiem sprawdzić czy nie mam na kompie jakiegos virusa a najbardziej chodzi mi o keylogery z góry dziękuje za odpowiedż

a tu link do skana http://www.speedyshare.com/files/21155846/hijackthis.log

Analyzerdetails

Logfile of Trend Micro HijackThis v2.0.2

Kind

This should be the newest version.

Platform: Unknown Windows (WinNT 6.01.3504)

Kind

Analyzerdetails

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Kind

This should be the newest version.

Visitor's assessment Analyzerdetails

Boot mode: Normal

Kind

Very safe

Very safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

C:\Windows\system32\Dwm.exe

Kind

Very safe

Very safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

C:\Windows\Explorer.EXE

Kind

Very safe

Very safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

C:\Windows\system32\taskhost.exe

Kind

Very safe

Very safe

This is a unknown process.

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe

Kind

Safe

Safe

Safe (4.35 / 5.00)

Visitor's assessment Analyzerdetails

D:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe

Kind

Acrobat Reader

Visitor's assessment Analyzerdetails

C:\Program Files\Nowe Gadu-Gadu\gg.exe

Kind

Very safe

Very safe

GaduGadu communicator

Visitor's assessment Analyzerdetails

C:\Program Files\Skype\Phone\Skype.exe

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

Kind

Safe (4.22 / 5.00)

Visitor's assessment Analyzerdetails

D:\Program Files\Ares\Ares.exe

Kind

P2P Filesharing Client

Visitor's assessment Analyzerdetails

C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

Kind

Safe

Safe

Safe (4.27 / 5.00)

Visitor's assessment Analyzerdetails

C:\Program Files\Skype\Plugin Manager\skypePM.exe

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

C:\Windows\system32\SearchFilterHost.exe

Kind

Safe

Safe

Microsoft Windows Search related process

Visitor's assessment Analyzerdetails

D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

Kind

Safe

Safe

Remember that Hijackthis must be run in an own folder. Only if Hijackthis run in an own folder it will create backups! Tool, mit dem sie dieses Logfile erzeugt haben. Das Programm sollte so angelegt sein ! C:\Programme\HijackThis\HijackThis.exe

Visitor's assessment Analyzerdetails

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.komputronik.pl/office

Kind

This page has been identified as safe.

Visitor's assessment Analyzerdetails

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.komputronik.pl/office

Kind

This page has been identified as safe.

Visitor's assessment Analyzerdetails

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer dostarczony przez Komputronik

Kind

This page has been identified as safe.

Visitor's assessment Analyzerdetails

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

Kind

Safe

Safe

This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

Kind

Safe

Safe

Unknown application. This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

Kind

Very safe

Very safe

Windows Live Toolbar beta Search Enhancement Pack

Visitor's assessment Analyzerdetails

O2 - BHO: Pomocnik rejestracji us?ugi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

Kind

WindowsLiveLogin.dll - Microsoft Windows_Live, http://ideas.live.com/

Visitor's assessment Analyzerdetails

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

Kind

Safe

Safe

Unknown application. This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

Kind

Safe

Safe

Windows Live Toolbar

Visitor's assessment Analyzerdetails

O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r

Kind

Very safe

Very safe

Safe (4.23 / 5.00)

Visitor's assessment Analyzerdetails

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

Kind

Not dangerous, but unnecessary. Speeds up the time it takes to load the Adobe Reader application. Your choice

Visitor's assessment Analyzerdetails

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

Kind

Safe

Safe

Safe (4.14 / 5.00)

Visitor's assessment Analyzerdetails

O4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"

Kind

Safe

Safe

Not dangerous, but unnecessary. This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

Kind

Safe

Safe

Not dangerous, but unnecessary. This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O4 - HKCU\..\Run: [AutoStartNPSAgent] D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

Kind

Safe (4.22 / 5.00)

Visitor's assessment Analyzerdetails

O4 - HKCU\..\Run: [ares] "D:\Program Files\Ares\Ares.exe" -h

Kind

Not dangerous, but unnecessary. Ares is "a Windows program that enables peer-to-peer file-sharing on the Ares P2P network. As a member of the P2P community you can search and download any file shared by other users. You can meet new friends in Ares chatrooms while you download"

Visitor's assessment Analyzerdetails

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'US?UGA LOKALNA')

Kind

Desktop Sidebar

Visitor's assessment Analyzerdetails

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'US?UGA LOKALNA')

Kind

Safe (3.83 / 5.00)

Visitor's assessment Analyzerdetails

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'US?UGA SIECIOWA')

Kind

Desktop Sidebar

Visitor's assessment Analyzerdetails

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'US?UGA SIECIOWA')

Kind

Safe (3.83 / 5.00)

Visitor's assessment Analyzerdetails

O4 - Startup: Registration Heroes of Might & Magic 5.LNK = D:\Program Files\Ubisoft\Heroes of Might and Magic V\registration\RegistrationReminder.exe

Kind

Dark Messiah of Might and Magic

Visitor's assessment Analyzerdetails

O9 - Extra button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

Kind

The entry Wpis w blogu has been identified as safe.

Visitor's assessment Analyzerdetails

O9 - Extra 'Tools' menuitem: &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

Kind

The entry &Wpis w blogu w Windows Live Writer has been identified as safe.

Visitor's assessment Analyzerdetails

O9 - Extra button: Wy?lij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll

Kind

The entry Wy?lij do programu OneNote has been identified as safe.

Visitor's assessment Analyzerdetails

O9 - Extra 'Tools' menuitem: Wy?lij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll

Kind

The entry Wy?lij &do programu OneNote has been identified as safe.

Visitor's assessment Analyzerdetails

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL

Kind

The entry Research has been identified as safe.

Visitor's assessment Analyzerdetails

O13 - Gopher Prefix:

Kind

Safe

Safe

Safe (4.25 / 5.00)

Visitor's assessment Analyzerdetails

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

Kind

This entry has been identified as safe.

Visitor's assessment Analyzerdetails

O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe

Kind

Neutral

Neutral

Safe (3.57 / 5.00)

Visitor's assessment Analyzerdetails

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

Kind

Very safe

Very safe

Unknown service. (nvvsvc.exe) This entry was classified from our visitors as good.

Visitor's assessment Analyzerdetails

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

Kind

Very safe

Very safe

This service (ServiceLayer.exe) was identified as a good one. This entry was classified from our visitors as good.

[Sevard]

Czysto.

[DonMichael1234]

Tutaj skan programem a-squared Free:

a2scan_100227_094708.txt

[Sevard]

Niebezpieczne są jak to zwykle bywa rzeczy nielegalne, czyli boty do Tibii (ElfBot NG) oraz programy, które łamią zabezpieczenia owych botów, czyli Sh4DoVV Armadillo 6.x HWID Changer Pro.exe.

Ostrzeżenie za piractwo, temat zamykam.