MyTechSupport.ca :: Your Computer Technical Resource Headquarters! MyTechSupport.ca :: Your Computer Technical Resource Headquarters!
HOME FORUMS RESOURCES & TOOLS ARTICLES ONLINE STORE ABOUT US
Computer Support Forums arrow Internet & Network Support arrow Security & Viruses arrow Topic: Hijack This Log
September 20, 2019, 12:13:04 AM
 

Home Forum Rules Help Search Mobile Version Login Register

Welcome, Guest. Please login or register.
Did you miss your activation email?
September 20, 2019, 12:13:04 AM

Login with username, password and session length
 
News
Article Writers We are looking for quality, informational articles to add to our Computer Articles
Please contact us if you are interested in submitting some....
  0 Members and 1 Guest are viewing this topic.
Pages: [1] Go Down Print
Author Topic: Hijack This Log  (Read 1085 times)
speedcreations
Newbie
*

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 3


Bookmark and Share

View Profile
« on: September 10, 2004, 04:57:27 PM »

PLEASE SUPPLY RELEVANT INFORMATION:
Operating System Version:Microsoft Windows 2000 Professional SP4 5.0.2195
Problem Application Name & Version: Internet Explorer Ver. 6.0.2800.1106
Problem Hardware Make & Model:Compaq Prosignia
Error Messages:



Spyware Trouble....http://www.manipulelasuperficiedelhielo.com/go.php?l=0003 is the main one I've been dealing with.

I ran AdAdware 6.0 w/ new .ref file, SpyBot Search & Destroy 1.3, SpyWare Blaster 3.2, and Hijack this....

Here's my log file

Logfile of HijackThis v1.98.2
Scan saved at 11:48:00 AM, on 9/10/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Common Files\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Interactive Intelligence\clientA.exe
C:\WINNT\system32\xSndOptE.exe
C:\PROGRA~1\INTERA~1\I3ACA.exe
C:\PROGRA~1\INTERA~1\DDEHostA.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\Program Files\Common Files\System\MAPI\1033\nt\MAPISP32.EXE
C:\WINNT\system32\ASSCRPTR.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://intra.fcfcu.wan/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://intra.fcfcu.wan
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://intra.fcfcu.wan
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 10.8.1.254:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.wan;10.*;*.neteps.com;<local>
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.1629.0\en-us\msntb.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\ePOAgent\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemCheck.exe
O4 - HKLM\..\Run: [Spyware X-terminator Control Center] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPControl.exe
O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePatrol.exe
O4 - HKLM\..\Run: [mswspl] C:\Program Files\Windows Media Player\wmplayer.exe
O4 - HKLM\..\Run: [xSndOptE] C:\WINNT\system32\xSndOptE.exe
O4 - HKLM\..\Run: [ASSCRPTR] C:\WINNT\system32\ASSCRPTR.exe
O4 - HKCU\..\Run: [msmc] C:\WINNT\system32\msmc.exe
O4 - Global Startup: Interaction Client.lnk = C:\Program Files\Interactive Intelligence\clientA.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O14 - IERESET.INF: START_PAGE_URL=http://intra.fcfcu.wan
O15 - Trusted Zone: www.garageband.com
O15 - Trusted Zone: http://www.honda-tech.com
O15 - Trusted Zone: http://sdc.shockwave.com
O15 - Trusted Zone: www.speedcreations.com
O15 - Trusted Zone: http://www.wallstreetcity.com
O16 - DPF: {94B82441-A413-4E43-8422-D49930E69764} (TLIEFlashObj Class) - https://webchat.dell.com/Media/VisitorChat/TLIEFlash.CAB
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Service Client v.3.4) - http://ccon.madonion.com/global/msc34.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = fcfcu.wan
O17 - HKLM\System\CCS\Services\Tcpip\..\{40763E62-481D-4D8F-8A3C-BE725C2A51F7}: NameServer = 10.8.1.4,10.8.1.7
O17 - HKLM\System\CCS\Services\Tcpip\..\{C667393D-3C5F-419D-BDB8-B35FDAF96934}: NameServer = 10.8.1.7,10.8.1.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = fcfcu.wan
O17 - HKLM\System\CS1\Services\Tcpip\..\{40763E62-481D-4D8F-8A3C-BE725C2A51F7}: NameServer = 10.8.1.4,10.8.1.7
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = fcfcu.wan
O17 - HKLM\System\CS2\Services\Tcpip\..\{40763E62-481D-4D8F-8A3C-BE725C2A51F7}: NameServer = 10.8.1.4,10.8.1.7



Logged

jvic
Visiting Administrator
Hero Member
*****

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 1238


Bookmark and Share

View Profile
« Reply #1 on: September 10, 2004, 05:11:11 PM »

I see a few problems but am just out the door for work>I will check your log after 11 pm when I get home
Logged

John Vickers
speedcreations
Newbie
*

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 3


Bookmark and Share

View Profile
« Reply #2 on: September 10, 2004, 05:13:26 PM »

Thanks..
i know, I noticed some of them are problems..but didn't delete them yet
wanted to see what everyone thought
Logged

speedcreations
Newbie
*

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 3


Bookmark and Share

View Profile
« Reply #3 on: September 12, 2004, 12:05:42 AM »

-
Logged

Pages: [1] Go Up Print 
 
Jump to:  

Powered by MySQL Powered by PHP

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines

Valid XHTML 1.0! Valid CSS!

Disclaimer
This site is NOT responsible for any damage that the information on this site may cause to your system. Everything you try, whether inspired by the response given from this site or not, is entirely at your own risk. All product names and company names used herein are for identification purpose only and may be trademarks or registered trademarks of their respective owners. We are in no way affiliated or representing any of the companies on this site unless specified.
Back to Top
Stop Spam Harvesters, Join Project Honey Pot Fight Back Against Spammers! Get Firefox! Get Thunderbird! View Sylvain Amyots profile on LinkedIn
Back to Top
Google visited last this page April 09, 2017, 04:58:47 AM