Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Need help [CLOSED]


  • This topic is locked This topic is locked

#1
Dissizmi

Dissizmi

    New Member

  • Member
  • Pip
  • 1 posts
I've just scanned my PC for browser hijackers with Hijackthis, and these are the results. Is it safe to remove any of these files?... I thank you in advance.
I look forward to hearing from you.
D
Logfile of HijackThis v1.99.1<br />Scan saved at 15:02:47, on 17-07-2005<br />Platform: Windows XP SP2 (WinNT 5.01.2600)<br />MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)<br /><br />Running processes:<br />C:\WINDOWS\System32\smss.exe<br />C:\WINDOWS\system32\winlogon.exe<br />C:\WINDOWS\system32\services.exe<br />C:\WINDOWS\system32\lsass.exe<br />C:\WINDOWS\system32\svchost.exe<br />C:\WINDOWS\System32\svchost.exe<br />C:\WINDOWS\system32\spoolsv.exe<br />C:\Programas\Ficheiros comuns\Symantec Shared\ccEvtMgr.exe<br />C:\Programas\Norton SystemWorks\Norton AntiVirus\navapsvc.exe<br />C:\Programas\Norton SystemWorks\Norton Utilities\NPROTECT.EXE<br />C:\WINDOWS\System32\nvsvc32.exe<br />C:\Programas\Analog Devices\SoundMAX\SMAgent.exe<br />C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe<br />C:\Programas\Ficheiros comuns\Symantec Shared\Security Center\SymWSC.exe<br />C:\WINDOWS\Explorer.EXE<br />C:\Programas\Analog Devices\SoundMAX\SMax4PNP.exe<br />C:\Programas\Analog Devices\SoundMAX\Smax4.exe<br />C:\Programas\Ficheiros comuns\Symantec Shared\ccApp.exe<br />C:\Programas\Thomson\SpeedTouch USB\Dragdiag.exe<br />C:\Programas\MSN Messenger\Messenger Plus! 3\MsgPlus.exe<br />C:\Programas\Winamp\winampa.exe<br />C:\Programas\Internet Explorer\iexplore.exe<br />C:\Programas\Messenger\msmsgs.exe<br />C:\Programas\MSN Messenger\msnmsgr.exe<br />c:\progra~1\intern~1\iexplore.exe<br />C:\Programas\InterVideo\Common\Bin\WinCinemaMgr.exe<br />C:\Programas\Internet Explorer\iexplore.exe<br />C:\Programas\Internet Explorer\iexplore.exe<br />C:\Documents and Settings\Daniela\Menu Iniciar\Programs\Programas\Skype\Phone\Skype.exe<br />C:\Programas\HijackThis.exe<br /><br />R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bsorjyiwo......bZDl.html<br />R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\System\blank.htm<br />R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\System\blank.htm<br />O2 - BHO: (no name) - {878D4E0F-8E67-B032-EB4A-6A024299C269} - (no file)<br />O3 - Toolbar: (no name) - {34FBD6FE-F37E-0D0B-120F-652F614B7AD3} - (no file)<br />O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programas\Analog Devices\SoundMAX\SMax4PNP.exe<br />O4 - HKLM\..\Run: [SoundMAX] "C:\Programas\Analog Devices\SoundMAX\Smax4.exe" /tray<br />O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup<br />O4 - HKLM\..\Run: [nwiz] nwiz.exe /install<br />O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe<br />O4 - HKLM\..\Run: [ccApp] "C:\Programas\Ficheiros comuns\Symantec Shared\ccApp.exe"<br />O4 - HKLM\..\Run: [ccRegVfy] "C:\Programas\Ficheiros comuns\Symantec Shared\ccRegVfy.exe"<br />O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Programas\Thomson\SpeedTouch USB\Dragdiag.exe" /icon<br />O4 - HKLM\..\Run: [MessengerPlus3] "C:\Programas\MSN Messenger\Messenger Plus! 3\MsgPlus.exe"<br />O4 - HKLM\..\Run: [WinampAgent] C:\Programas\Winamp\winampa.exe<br />O4 - HKLM\..\Run: [joysoapballeggs] C:\Documents and Settings\All Users\Application Data\DrawMailJoySoap\Bend mags.exe<br />O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe<br />O4 - HKLM\..\Run: [MSN MMESSENGER] mssmmsgr.exe<br />O4 - HKLM\..\Run: [fork jugs log bits] C:\Documents and Settings\All Users\Application Data\gluemp3forkjugs\LessFrag.exe<br />O4 - HKLM\..\RunServices: [MSN MMESSENGER] mssmmsgr.exe<br />O4 - HKCU\..\Run: [MSMSGS] "C:\Programas\Messenger\msmsgs.exe" /background<br />O4 - HKCU\..\Run: [Drv Multi] C:\DOCUME~1\Daniela\APPLIC~1\FIVEPL~1\site 32 chic.exe<br />O4 - HKCU\..\Run: [msnmsgr] "C:\Programas\MSN Messenger\msnmsgr.exe" /background<br />O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Programas\InterVideo\Common\Bin\WinCinemaMgr.exe<br />O4 - Global Startup: Microsoft Office.lnk = C:\Programas\Microsoft Office\Office10\OSA.EXE<br />O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programas\Messenger\msmsgs.exe<br />O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programas\Messenger\msmsgs.exe<br />O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...eSweeper.cab<br />O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon......lient.cab<br />O17 - HKLM\System\CCS\Services\Tcpip\..\{E503E743-AD7D-4FB6-A06F-787E95E6114A}: NameServer = 194.65.100.117<br />O20 - AppInit_DLLs: MsgPlusLoader.dll<br />O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programas\Ficheiros comuns\Symantec Shared\ccEvtMgr.exe<br />O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Programas\Ficheiros comuns\Symantec Shared\ccPwdSvc.exe<br />O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Programas\Norton SystemWorks\Norton AntiVirus\navapsvc.exe<br />O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programas\Norton SystemWorks\Norton Utilities\NPROTECT.EXE<br />O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe<br />O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHEI~1\SYMANT~1\SCRIPT~1\SBServ.exe<br />O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programas\Ficheiros comuns\Symantec Shared\SNDSrvc.exe<br />O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programas\Analog Devices\SoundMAX\SMAgent.exe<br />O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe<br />O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Programas\Ficheiros comuns\Symantec Shared\Security Center\SymWSC.exe<br /><br />
  • 0

Advertisements


#2
tampabelle

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Hi,


We are sorry to have missed your log due to heavy traffic.

If you still need help, please post back a fresh Hijack This log.

If the problem has been resolved, please let us know.
  • 0

#3
tampabelle

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP