Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

HiJackThis Log (Computer 1)


  • Please log in to reply

#1
Intymax

Intymax

    Member

  • Member
  • PipPip
  • 29 posts
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:26:19 AM, on 3/27/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O24 - Desktop Component 0: (no name) - http://i36.photobuck...pg?t=1205868065

--
End of file - 5458 bytes














---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 9:53:23 PM 3/25/2008

+ Scan result:



HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Error during cleaning.
HKU\S-1-5-21-682003330-854245398-1210158115-1003\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Cleaned with backup (quarantined).
C:\Documents and Settings\New User\Local Settings\Temp\nsf623.tmp\Install.dll -> Not-A-Virus.Adware.180Solutions : Cleaned with backup (quarantined).
:mozilla.30:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.31:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.149:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.203:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.43:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.44:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.45:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.46:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.47:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.48:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.49:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.50:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.51:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.52:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.53:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.54:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.55:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.56:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.339:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Abcsearch : Cleaned.
:mozilla.63:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.267:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.268:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.279:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.280:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.309:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.310:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.311:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.312:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.313:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.314:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.29:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.27:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.18:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.108:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned.
:mozilla.109:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned.
:mozilla.110:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned.
:mozilla.61:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.62:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.156:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Intelli-direct : Cleaned.
:mozilla.300:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.325:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.326:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.327:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.328:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.182:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.57:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.33:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.28:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.32:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\Documents and Settings\New User\Application Data\Mozilla\Firefox\Profiles\68ule0w3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.


::Report end
  • 0

Advertisements


#2
Intymax

Intymax

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
One of the computers in my house have an infection that is not allowing us to access the college's website. I have ran all of the pre-scans and cleaned many infections off of this system. This is my dad's computer and I do not know the habits of web surfing, or downloading.
  • 0

#3
kahdah

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hello Intymax

Welcome to G2Go. :)
=====================
To make this easier for me to follow I am closing the other threads because we can do them all in one.
LEt's start with the first computer.

Do the following:
Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP