| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 101014 | 2009-06-29 03:23:00 | HiJackThis Log | Driftwood (5551) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 786824 | 2009-06-29 03:23:00 | Been getting laughing sounds when browsing on line. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 2:20:20 p.m., on 29/06/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Users\Keith\Desktop\HiJackThis\HiJackThis.exe C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [ avast! ] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - dl8-cdn-09.sun.com O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - wwwimages.adobe.com O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe -- End of file - 4014 bytes |
Driftwood (5551) | ||
| 786825 | 2009-06-29 03:26:00 | web scanner playing up? could install sp2 |
GameJunkie (72) | ||
| 786826 | 2009-06-29 03:38:00 | O13 - Gopher Prefix: Done the usual malware scans yet? |
Blam (54) | ||
| 786827 | 2009-06-29 03:47:00 | Scanned with Spyware Terminator, Malewarebytes & Spybott. Re the Gopher Prefix, when I try to get rid of it, Spyware Terminator blocks the action for some reason. Could this be a problem? |
Driftwood (5551) | ||
| 786828 | 2009-06-29 03:50:00 | Disable Spyware Terminator-it probably thinks the file is infected and its clashed with HijackThis. | Blam (54) | ||
| 786829 | 2009-06-29 03:51:00 | web scanner playing up? could install sp2 I'm downloading SP2 ATM. What's a web scanner? |
Driftwood (5551) | ||
| 786830 | 2009-06-29 03:57:00 | your AV has a part which scans sites you go to , says something if it thinks the site is has spyware/malware etc | GameJunkie (72) | ||
| 786831 | 2009-06-29 03:59:00 | Disable Spyware Terminator-it probably thinks the file is infected and its clashed with HijackThis. Ok, I've killed the Gopher. |
Driftwood (5551) | ||
| 786832 | 2009-06-29 04:02:00 | your AV has a part which scans sites you go to , says something if it thinks the site is has spyware/malware etc That will be Avast |
Driftwood (5551) | ||
| 786833 | 2009-06-29 09:28:00 | Do you use AIM? | Blam (54) | ||
| 1 2 | |||||