Jump to content
MikeTTF

HiJack This experts?

Recommended Posts

I'm leery of doing anything with this. Can some helpful person look this over and recommend what to do?

Thanks!

Logfile of HijackThis v1.99.1

Scan saved at 3:44:42 PM, on 11/14/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:Program FilesWindows DefenderMsMpEng.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe

C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe

C:WINDOWSsystem32cisvc.exe

C:Program FilesCommon FilesEPSONEBAPISAgent2.exe

C:WINDOWSsystem32E_S00RP1.EXE

C:WINDOWSSystem32svchost.exe

C:PROGRA~1INTERB~1Binibguard.exe

C:Program FilesCommon FilesLightScribeLSSrvc.exe

C:WINDOWSSystem32tcpsvcs.exe

C:WINDOWSsystem32nvsvc32.exe

C:Program FilesCyberLinkShared FilesRichVideo.exe

C:WINDOWSSystem32snmp.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesStreamloadMediaMax XLStreamloadService.exe

C:Program FilesWindows DefenderMSASCui.exe

C:WINDOWSwanmpsvc.exe

C:WINDOWSSystem32MsPMSPSv.exe

C:PROGRA~1INTERB~1Binibserver.exe

C:Program FilesThe Cleanercleaner.exe

C:Program FilesThe Cleanertca.exe

C:Program FilesThe Cleanertcm.exe

C:WINDOWSsystem32cidaemon.exe

C:WINDOWSsystem32cidaemon.exe

C:Program FilesAmerica Online 8.0aaol.exe

C:Program FilesAmerica Online 8.0awaol.exe

C:WINDOWSexplorer.exe

C:unzippedhijackthis[1]HijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://red.clientapps.yahoo.com/customize/nero/defaults/sb/*http://www.yahoo.com/search/ie.html

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://red.clientapps.yahoo.com/customize/nero/defaults/sp/*http://www.yahoo.com

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://v4.windowsupdate.microsoft.com/

R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://red.clientapps.yahoo.com/customize/nero/defaults/su/*http://www.yahoo.com

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [Windows Defender] "C:Program FilesWindows DefenderMSASCui.exe" -hide

O4 - HKLM..Run: [tcactive] C:Program FilesThe Cleanertca.exe

O4 - HKLM..Run: [tcmonitor] C:Program FilesThe Cleanertcm.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_09binnpjpi150_09.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_09binnpjpi150_09.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:Program FilesAIM95aim.exe

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O17 - HKLMSystemCCSServicesTcpip..{FC5934BE-C9F8-48BC-9307-33D3729F2EE9}: NameServer = 205.188.146.145

O20 - Winlogon Notify: WgaLogon - C:WINDOWSSYSTEM32WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:WINDOWSsystem32WPDShServiceObj.dll

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe

O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:Program FilesCommon FilesEPSONEBAPISAgent2.exe

O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:WINDOWSsystem32E_S00RP1.EXE

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: InterBase Guardian (InterBaseGuardian) - Inprise Corporation - C:PROGRA~1INTERB~1Binibguard.exe

O23 - Service: InterBase Server (InterBaseServer) - Inprise Corporation - C:PROGRA~1INTERB~1Binibserver.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon FilesLightScribeLSSrvc.exe

O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:PROGRA~1mcafee.comANTIVI~1mcshield.exe

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:WINDOWSSystem32NMSSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:Program FilesCyberLinkShared FilesRichVideo.exe

O23 - Service: Streamload Service (StreamloadService) - Streamload - C:Program FilesStreamloadMediaMax XLStreamloadService.exe

O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:WINDOWSwanmpsvc.exe

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...