HiJack This experts?

[MikeTTF]

I'm leery of doing anything with this. Can some helpful person look this over and recommend what to do?

Thanks!

Logfile of HijackThis v1.99.1

Scan saved at 3:44:42 PM, on 11/14/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:Program FilesWindows DefenderMsMpEng.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe

C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe

C:WINDOWSsystem32cisvc.exe

C:Program FilesCommon FilesEPSONEBAPISAgent2.exe

C:WINDOWSsystem32E_S00RP1.EXE

C:WINDOWSSystem32svchost.exe

C:PROGRA~1INTERB~1Binibguard.exe

C:Program FilesCommon FilesLightScribeLSSrvc.exe

C:WINDOWSSystem32tcpsvcs.exe

C:WINDOWSsystem32nvsvc32.exe

C:Program FilesCyberLinkShared FilesRichVideo.exe

C:WINDOWSSystem32snmp.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesStreamloadMediaMax XLStreamloadService.exe

C:Program FilesWindows DefenderMSASCui.exe

C:WINDOWSwanmpsvc.exe

C:WINDOWSSystem32MsPMSPSv.exe

C:PROGRA~1INTERB~1Binibserver.exe

C:Program FilesThe Cleanercleaner.exe

C:Program FilesThe Cleanertca.exe

C:Program FilesThe Cleanertcm.exe

C:WINDOWSsystem32cidaemon.exe

C:WINDOWSsystem32cidaemon.exe

C:Program FilesAmerica Online 8.0aaol.exe

C:Program FilesAmerica Online 8.0awaol.exe

C:WINDOWSexplorer.exe

C:unzippedhijackthis[1]HijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://red.clientapps.yahoo.com/customize/nero/defaults/sb/*http://www.yahoo.com/search/ie.html

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://red.clientapps.yahoo.com/customize/nero/defaults/sp/*http://www.yahoo.com

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://v4.windowsupdate.microsoft.com/

R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://red.clientapps.yahoo.com/customize/nero/defaults/su/*http://www.yahoo.com

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [Windows Defender] "C:Program FilesWindows DefenderMSASCui.exe" -hide

O4 - HKLM..Run: [tcactive] C:Program FilesThe Cleanertca.exe

O4 - HKLM..Run: [tcmonitor] C:Program FilesThe Cleanertcm.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_09binnpjpi150_09.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_09binnpjpi150_09.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:Program FilesAIM95aim.exe

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O17 - HKLMSystemCCSServicesTcpip..{FC5934BE-C9F8-48BC-9307-33D3729F2EE9}: NameServer = 205.188.146.145

O20 - Winlogon Notify: WgaLogon - C:WINDOWSSYSTEM32WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:WINDOWSsystem32WPDShServiceObj.dll

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe

O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:Program FilesCommon FilesEPSONEBAPISAgent2.exe

O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:WINDOWSsystem32E_S00RP1.EXE

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: InterBase Guardian (InterBaseGuardian) - Inprise Corporation - C:PROGRA~1INTERB~1Binibguard.exe

O23 - Service: InterBase Server (InterBaseServer) - Inprise Corporation - C:PROGRA~1INTERB~1Binibserver.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon FilesLightScribeLSSrvc.exe

O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:PROGRA~1mcafee.comANTIVI~1mcshield.exe

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:WINDOWSSystem32NMSSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:Program FilesCyberLinkShared FilesRichVideo.exe

O23 - Service: Streamload Service (StreamloadService) - Streamload - C:Program FilesStreamloadMediaMax XLStreamloadService.exe

O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:WINDOWSwanmpsvc.exe

[coknuck]

MikeTTF, Run a scan and do a paste here and it will tell you what it means and what to get rid of.

http://www.hijackthis.de/

[MikeTTF]

Thank You! 

MikeTTF, Run a scan and do a paste here and it will tell you what it means and what to get rid of.

http://www.hijackthis.de/

[coknuck]

Your welcome MikeTTF.

[Roco]

Hi coknuck, great link, I have never used Hijack this myself, so I gave it a try    BTW , Hi Mike ttf , your puter came up OK, with just a few minor queries     

Seriously, great link, gone into My favorites

Thanks

[coknuck]

Thank you Roco. Yes it makes it a little easier to understand.