OP Taze Üye
Teşekkür Sayısı: 0
3 mesaj
Kayıt Tarihi:Kayıt: Ara 2010
Hijack Analiz Raporu
Genel Denetmen
Teşekkür Sayısı: 15
909 mesaj
Kayıt Tarihi:Kayıt: Mar 2007
Actions
Entry
Kind
Visitor's assessment
Information
Logfile of Advanced SystemCare 3 Security Analyzer 
Safe
This entry was classified from our visitors as good.
Platform: Windows XP (WinNT 5.1) 
MSIE: Internet Explorer v7.0 (7.0.5730.13)
This should be the newest version.
Boot mode: Normal 
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\System32\smss.exe
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\winlogon.exe
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\services.exe
Safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\lsass.exe
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\Ati2evxx.exe
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\svchost.exe
Safe
This entry was classified from our visitors as good.
C:\WINDOWS\System32\svchost.exe
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\svchost.exe
Safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\Ati2evxx.exe
Very safe
This entry was classified from our visitors as good.
C:\Program Files\AVG\AVG9\avgchsvx.exe
Very safe
This is a unknown process.
This entry was classified from our visitors as good.
C:\Program Files\AVG\AVG9\avgrsx.exe
Very safe
Safe (4.71 / 5.00)
C:\Program Files\AVG\AVG9\avgcsrvx.exe
Safe
Safe (4.25 / 5.00)
C:\WINDOWS\Explorer.EXE
Very safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\spoolsv.exe
Safe
This entry was classified from our visitors as good.
C:\PROGRA~1\AVG\AVG9\avgtray.exe
Very safe
Safe (4.69 / 5.00)
C:\WINDOWS\RTHDCPL.EXE
Very safe
This entry was classified from our visitors as good.
C:\Program Files\AVG\AVG9\avgwdsvc.exe
Very safe
Safe (4.45 / 5.00)
C:\Program Files\Ad Muncher\AdMunch.exe
Very safe
PopUp Blocker
C:\Program Files\Java\jre6\bin\jqs.exe
Safe
This is a unknown process.
This entry was classified from our visitors as good.
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
Safe
Possibly nasty! According to our database this process runs normally in c:\programme\awc\! Check if you know this process and arrange a viruscheck where required. This entry was classified from our visitors as good.
C:\Program Files\Internet Download Manager\IDMan.exe
Safe
This entry was classified from our visitors as good.
C:\Program Files\DAEMON Tools Lite\DTLite.exe
Very safe
Safe (4.27 / 5.00)
C:\WINDOWS\system32\ctfmon.exe
Very safe
This entry was classified from our visitors as good.
C:\Program Files\Common Files\SRS Labs\SRS HD Audio Lab Service\SRSAudioLabService.exe 
Safe (4.42 / 5.00)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Very safe
Possibly nasty! According to our database this process runs normally in c:\programme\msn messenger\! Check if you know this process and arrange a viruscheck where required. This entry was classified from our visitors as good.
C:\Program Files\SRS Labs\SRS HD Audio Lab\HDAL.exe
Safe (4.02 / 5.00)
C:\Program Files\AVG\AVG9\avgam.exe
Very safe
Safe (4.78 / 5.00)
C:\Program Files\AVG\AVG9\avgnsx.exe
Safe
Safe (4.08 / 5.00)
C:\WINDOWS\system32\svchost.exe
Safe
This entry was classified from our visitors as good.
C:\WINDOWS\system32\wuauclt.exe 
Neutral
Windows Update AutoUpdate Client
C:\Program Files\Windows Live\Contacts\wlcomm.exe
Safe
Safe (4.36 / 5.00)
C:\WINDOWS\System32\svchost.exe
Very safe
This entry was classified from our visitors as good.
C:\Program Files\Internet Download Manager\IEMonitor.exe
Safe
This entry was classified from our visitors as good.
C:\Program Files\AVG\AVG9\avgcsrvx.exe
Safe
Safe (4.25 / 5.00)
C:\Program Files\Mozilla Firefox\firefox.exe
Very safe
This entry was classified from our visitors as good.
C:\Program Files\Mozilla Firefox\plugin-container.exe
Very safe
This is a unknown process.
This entry was classified from our visitors as good.
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
Safe
This entry was classified from our visitors as good.
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Safe
Unknown application. This entry was classified from our visitors as good.
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
Safe
LinkScannerIE.dll - LinkScanner, http://linkscanner.explabs.com/linkscann er/default.asp
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) 
Safe
Unknown application.
Unnecessary (deactivated) entry that can be fixed. This entry was classified from our visitors as good.
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
GrooveShellExtensions.dll Groove Virtual Office
O2 - BHO: Groove GFS Browser Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
WindowsLiveLogin.dll - Microsoft Windows_Live, http://ideas.live.com/
O2 - BHO: Groove GFS Browser Helper - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
Safe (3.86 / 5.00)
O2 - BHO: Groove GFS Browser Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
jp2ssv.dll - Sun_Java, http://java.sun.com/javase/downloads/ind ex.jsp browser plugin
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
Very safe
jqs_plugin.dll - Java Quick Starter, https://jdk6.dev.java.net/testQS.html
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
Very safe
Safe (3.86 / 5.00)
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
Safe
Windows Care related
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
Very safe
Not dangerous, but unnecessary. Internet Download Manager - download files faster, schedule and resume
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
Safe
Unknown application. This entry was classified from our visitors as good.
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
Safe
This entry was classified from our visitors as good.
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Very safe
Microsoft s MSN Messenger 6
O4 - HKCU\..\Run: [SRSHDAudioLab] "C:\Program Files\SRS Labs\SRS HD Audio Lab\HDAL.exe" auto
Safe (4.42 / 5.00)
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
Safe
Safe (4.64 / 5.00)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
Safe
This entry was classified from our visitors as good.
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
Safe
This entry was classified from our visitors as good.
O4 - HKLM\..\Run: [Ad Muncher] "C:\Program Files\Ad Muncher\AdMunch.exe" /bt
Very safe
Ad Muncher removes adverts, pop-ups and general annoyances in your browser, file-sharing and messenger programs. Causes conflicts with Outlook, game sites and web-building applications
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request ... ncher/browserextens ions.pl?exbrowser=ie&exversion=2.0&pass=06294477&id=menu_ie_frame
The entry Block frame with Ad Muncher has been identified as safe.
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request ... ncher/browserextens ions.pl?exbrowser=ie&exversion=2.0&pass=06294477&id=menu_ie_image
The entry Block image with Ad Muncher has been identified as safe.
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request ... ncher/browserextens ions.pl?exbrowser=ie&exversion=2.0&pass=06294477&id=menu_ie_link
The entry Block link with Ad Muncher has been identified as safe.
O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm
Safe (4.27 / 5.00)
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request ... ncher/browserextens ions.pl?exbrowser=ie&exversion=2.0&pass=06294477&id=menu_ie_exclude
The entry Don't filter page with Ad Muncher has been identified as safe.
O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm
Safe (4.37 / 5.00)
O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm
Safe (4.11 / 5.00)
O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
Neutral
The entry Microsoft Excel'e &Ver has been identified as safe.
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request ... ncher/browserextens ions.pl?exbrowser=ie&exversion=2.0&pass=06294477&id=menu_ie_report
The entry Report page to the Ad Muncher developers has been identified as safe.
O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} -
Neutral
The entry OneNote'a Gönder has been identified as safe.
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
Very safe
The entry Research has been identified as safe.
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
The entry @xpsp3res.dll, has been identified as safe.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_22) - http://java.sun.com/update/1.6.0 ... 22-windows-i586.cab
This entry has been identified as safe.
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} (Java Plug-in 1.6.0_22) - http://java.sun.com/update/1.6.0 ... 22-windows-i586.cab 
Neutral (3.5 / 5.00)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_22) - http://java.sun.com/update/1.6.0 ... 22-windows-i586.cab
This entry has been identified as safe.
O23 - Service: (Ati HotKey Poller) - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
Neutral
This service (Ati2evxx.exe) was identified as a good one.
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
Very safe
This service (ati2sgag.exe) was identified as a good one. This entry was classified from our visitors as good.
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
Very safe
Neutral (3.2 / 5.00)
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
Very safe
Safe (4.45 / 5.00)
O23 - Service: FLEXnet Licensing Service - Unknown - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
This service (FNPLicensingService.exe) was identified as a good one.
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
Safe
Unknown service. (jqs.exe) This entry was classified from our visitors as good.
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
Safe
This service (ServiceLayer.exe) was identified as a good one.
O23 - Service: SRS HDAudio Lab Service (SRSHDAudioService) - SRS Labs, Inc. - C:\Program Files\Common Files\SRS Labs\SRS HD Audio Lab Service\SRSAudioLabService.exe
Safe (4.42 / 5.00)
O23 - Service: (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
Unknown service. (SwitchBoard.exe)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
fixlesen yeter
OP Taze Üye
Teşekkür Sayısı: 0
3 mesaj
Kayıt Tarihi:Kayıt: Ara 2010
fixlesen yeter derken tam olarak ne yapmam gerek? sistemimde bu rapora göre tehlike teşkil eden yazılımlar varmı acaba?