PDA

View Full Version : Hijackthis Log


Expire
03-29-2004, 09:03 PM
mty system keeps on shuting down programs and shit? :blink: i dont think its adaware ect but id like to make sure so heres my log, anyone who can see owt dodgi in it will they plz post it to me.

cheers :D


Logfile of HijackThis v1.97.7
Scan saved at 21:02:21, on 29/03/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\windlls.exe
C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
c:\windows\system32\windllc.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\explorer.exe
C:\Program Files\AOL 8.0\waol.exe
C:\Program Files\AOL 8.0\shellmon.exe
C:\Program Files\Lavasoft\Ad-aware 6\Ad-watch.exe
C:\Program Files\burst\burst.exe
C:\Program Files\burst\btdownloadheadless.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\Documents and Settings\PowerTrippa\Local Settings\Temp\Temporary Directory 2 for hijackthis.zip\HijackThis.exe

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [systray] C:\WINDOWS\System32\a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Ad-watch] "C:\Program Files\Lavasoft\Ad-aware 6\Ad-watch.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O9 - Extra button: Real.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{935FE78C-AB80-48ED-8DCF-053CF0ADC758}: NameServer = 205.188.146.146
100%
03-29-2004, 09:06 PM
Ive only seen Hijack this log used at the tweakxp.com forums

never seen people submitting here - sorry
Expire
03-29-2004, 09:17 PM
Originally posted by Zedaxax@29 March 2004 - 21:06
Ive only seen Hijack this log used at the tweakxp.com forums

never seen people submitting here - sorry
oh well i'll, use that forum then :D
Mullyman
03-29-2004, 09:19 PM
Post your log at this site...they have people there that can help you ..i agree with Zedaxax..have never saw one posted here..you have to make sure who evaluates your log..knows what the hell they are doing B)

http://forum.tweakxp.com/forum/
100%
03-29-2004, 09:19 PM
maybe you could be the first to enable Awareness of Hijackthislog here....
dopey
03-29-2004, 09:57 PM
Hi,
first extract and place hijack this into it's own permanent folder.

rescan and check this line:
O4 - HKLM\..\Run: [systray] C:\WINDOWS\System32\a.exe
close all browser windows and hit fix checked.

reboot and delete the C:\WINDOWS\System32\a.exe file.

cheers. :)
Expire
03-29-2004, 10:03 PM
Originally posted by Mullyman@29 March 2004 - 21:19
Post your log at this site...they have people there that can help you ..i agree with Zedaxax..have never saw one posted here..you have to make sure who evaluates your log..knows what the hell they are doing B)

http://forum.tweakxp.com/forum/
point taken, ;) what i was originaly going to do is get a good few people give us there view and then make my decision, but like u say its risky.
supersonic
03-30-2004, 01:28 PM
C:\Program Files\AOL 8.0\waol.exe :lol:
C:\Program Files\AOL 8.0\shellmon.exe :P
the source of all crashes lol, b8t u have t9 use it.
Expire
03-30-2004, 05:45 PM
Originally posted by supersonic@30 March 2004 - 13:28
C:\Program Files\AOL 8.0\waol.exe :lol:
C:\Program Files\AOL 8.0\shellmon.exe :P
the source of all crashes lol, b8t u have t9 use it.
funny, :D im trapped mate <_<
dopey
03-31-2004, 07:25 PM
Originally posted by Expire@29 March 2004 - 15:03
point taken, ;)&nbsp; what i was originaly going to do is get a good few people give us there view and then make my decision, but like u say its risky.

It looks like you are still having problems, but it sounds to me like you don&#39;t really want help? <_<

did you do the fix I prescribed before? If you did, then post a fresh hijack this log and I&#39;ll take another look.
CornerPocket
03-31-2004, 08:17 PM
Originally posted by Mullyman@29 March 2004 - 14:19
Post your log at this site...they have people there that can help you ..i agree with&nbsp; Zedaxax..have never saw one posted here..you have to make sure who evaluates your log..knows what the hell they are doing B)

http://forum.tweakxp.com/forum/
One of my many favorites: Computer Cops (http://www.computercops.biz/forums.html). HiJack Experts in the &#39;Privacy Section&#39; just scroll down to find it.

FYI...
To make sure none of them elude you due to being hidden, make sure to show hidden/system files.