hIjack this log - need help please!

Welcome Guest ( Log In | Join )

Discover the best free computer help!
Learn more about Geeks to Go by taking the tour. Want to ask a question, reply to a topic, or remove all advertising? It's easy, fast and free. Join today!
Spyware, virus, trojan, fake security or privacy alerts? Please start with our malware cleaning guide.

> Geeks to Go! » Security » Malware Removal - HijackThis� Logs Go Here

hIjack this log - need help please!, hIjack this log - need help please!

Options

korgie View Member Profile	Sep 7 2007, 06:20 AM Post #1
New Member Posts: 1 OS: Windows XP SP3	Logfile of HijackThis v1.99.1 Scan saved at 13:11:30, on 07/09/2007 Platform: Windows XP SP3, v.3180 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 SP3 (7.00.6000.16512) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\Program Files\Comodo\Firewall\cmdagent.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Digidesign\Drivers\MMERefresh.exe C:\Program Files\Dantz\Retrospect\retrorun.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\VTTimer.exe C:\WINDOWS\system32\VTtrayp.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe C:\Program Files\Comodo\Firewall\CPF.exe C:\Program Files\Maxtor\OneTouch\Utils\OneTouch.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\STDSB.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\Last.fm\LastFMHelper.exe C:\Program Files\NETGEAR\WPN111\wpn111.exe C:\Program Files\Vidalia Bundle\Tor\tor.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Grisoft\AVG7\avgcc.exe C:\WINDOWS\System32\msiexec.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Stuart\My Documents\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freeserve.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;<local> O2 - BHO: (no name) - SlimBho2.dll' - (no file) O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files\Digidesign\Drivers\MMERefresh.exe O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background O4 - HKLM\..\Run: [MaxtorOneTouch] C:\Program Files\Maxtor\OneTouch\Utils\OneTouch.exe O4 - HKLM\..\Run: [WL] C:\WINDOWS\System32\WL.exe O4 - HKLM\..\Run: [STDSB] C:\WINDOWS\system32\STDSB.exe O4 - HKLM\..\Run: [WinPatrol PLUS] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\POS\H2O\cledx.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [Vidalia] C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - Startup: Last.fm Helper.lnk = C:\Program Files\Last.fm\LastFMHelper.exe O4 - Startup: NETGEAR WPN111 Smart Wizard.lnk = ? O4 - Startup: Privoxy.lnk = C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O11 - Options group: [INTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Digidesign, A Division of Avid Technology, Inc. - C:\Program Files\Digidesign\Drivers\MMERefresh.exe O23 - Service: digiSPTIService - Digidesign, A Division of Avid Technology, Inc. - C:\Program Files\Digidesign\Pro Tools\digiSPTIService.exe O23 - Service: Retrospect Launcher (RetroLauncher) - Dantz Development Corporation - C:\Program Files\Dantz\Retrospect\retrorun.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe SUPERAntiSpyware Scan Log Generated 09/07/2007 at 12:37 PM Application Version : 3.6.1000 Core Rules Database Version : 3301 Trace Rules Database Version: 1307 Scan type : Quick Scan Total Scan Time : 00:20:36 Memory items scanned : 399 Memory threats detected : 0 Registry items scanned : 716 Registry threats detected : 0 File items scanned : 25096 File threats detected : 1 Trojan.Downloader-Gen C:\WINDOWS\SYSTEM32\STU.DLL Adobe Flash Player ActiveX Adobe Flash Player Plugin Adobe Reader 8.1.0 AmpliTube 1.1 LE Analog Factory SE 1.2 Arturia minimoog V v1.6 Athlon 64 Processor Driver AVG 7.5 AVG Anti-Spyware 7.5 COMODO Firewall Pro Digidesign DigiDelivery Digidesign Mbox 2 Factory 2.0 Digidesign MIDI IO Digidesign Pro Tools LE 7.3.1 Digidesign Shared Plug-Ins 7.3 DivX Codec DivX Content Uploader DivX Web Player Dorling Kindersley Application Database v1.4 EPSON Printer Software Free Bomb Factory Plug-Ins 7.3 HijackThis 1.99.1 hkSFV (remove only) Hotfix for Windows Media Format 11 SDK (KB929399) IEEE 802.11b MP11B2/PC11B2/CB11B2 Software 2.7.5.13 InterLok Driver Kit J2SE Runtime Environment 5.0 Update 6 Last.fm 1.3.1.1 Maxtor OneTouch MediaMonkey 2.5 Melodyne plugin microKONTROL Editor Librarian 2.01 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft User-Mode Driver Framework Feature Pack 1.0 Mindjet MindManager Pro 6 Miroslav Philharmonik Mozilla Firefox (2.0.0.6) MusicBrainz Picard 0.7.2 NETGEAR RangeMax™ Wireless USB 2.0 Adapter WPN111 NewsBin Pro Panda ActiveScan Privoxy 3.0.6 QuickPar 0.9 Reason 3.0 Retrospect 6.0 S3 S3Config3D S3 S3Display S3 S3Gamma2 S3 S3Info2 S3 S3Overlay S3 S3RefreshLock S3 S3TrayPlus SampleTank 2.2.2 Scroll Bar Driver Security Update for Windows Media Player (KB911564) Security Update for Windows Media Player 11 (KB936782) Security Update for Windows Media Player 8 (KB917734) Security Update for Windows XP (KB923789) Smart Link 56K Modem SUPERAntiSpyware Free Edition Synaptics Pointing Device Driver TimeWorks Delay 6022 v1.101 Tor 0.1.2.16 Turbo Lister 2 UniChrome Series Driver and Utilities USB Storage Adapter FX (MXO) VIA Audio Driver Setup Program VIA Rhine-Family Fast Ethernet Adapter Vidalia 0.0.13 VirtualLab Client 5.5.16 Waves SSL Collection v1.2 Windows Internet Explorer 7 Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player 11 Windows XP Service Pack 3 WinPatrol 2007 WinRAR archiver Xpand! XviD Video Codec 1.1.2-01022007

« Next Oldest · Malware Removal - HijackThis� Logs Go Here · Next Newest »

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Topic Title	Replies / Views	Topic Information
Malware Removal - HijackThis� Logs Go Here Hijack this log..I need help Please! [CLOSED]	2 / 143	8th December 2005 - 07:27 PM Vossen55 started - last by Buckeye_Sam
Malware Removal - HijackThis� Logs Go Here Hijack this log - need help!	0 / 108	15th January 2006 - 11:17 AM littledremer started - last by littledremer
Malware Removal - HijackThis� Logs Go Here Hijack this log Need Help PLease!	2 / 216	4th March 2006 - 05:27 PM Shadowfire started - last by ScHwErV
Malware Removal - HijackThis� Logs Go Here Infected novice - upto hijack this log - NEED HELP! [CLOSED]	2 / 134	30th November 2008 - 10:07 AM reggy123 started - last by greyknight17