| Result |
Good-Bad |
Search |
Hijack This Log File Entry |
|---|
| | |
| Bad | 1 - 11 | SS(8,138) - GS
Comments_(0)
| R0 - HKCU\Software\Microsoft\InternetExplorer\Toolbar,LinksFolderName = |
| Bad | 1 - 2 | SS(5,459) - GS
Comments_(0)
| R0 - HKLM\Software\Microsoft\InternetExplorer\Search,CustomizeSearch = |
| Bad | 0 - 2 | SS(47) - GS
Comments_(1)
| O13 - Gopher Prefix: |
| Bad | 0 - 1 | SS(8,807) - GS
Comments_(1)
| O1 - Hosts: ::1 localhost |
| Bad | 0 - 1 | SS(12,525) - GS
Comments_(0)
| O4 - Global Startup: MRI_DISABLED |
| Unknown | 0 - 0 | SS(38,316) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop |
| Unknown | 0 - 0 | SS(39,391) - GS
Comments_(0)
| R0 - HKLM\Software\Microsoft\InternetExplorer\Main,Start Page =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop |
| Unknown | 0 - 0 | SS(22) - GS
Comments_(0)
| O23 - Service: getPlus(R) Helper - NOSMicrosystems Ltd. - C:\ProgramFiles\NOS\bin\getPlus_HelperSvc.exe |
| Unknown | 0 - 0 | SS(229) - GS
Comments_(0)
| O4 - HKLM\..\Run: [CanonSolutionMenu] "C:\ProgramFiles\Canon\SolutionMenu\CNSLMAIN.exe" /logon |
| Unknown | 0 - 0 | SS(109) - GS
Comments_(0)
| O23 - Service: Webroot Spy Sweeper Engine(WebrootSpySweeperService) - Webroot Software,Inc. (www.webroot.com) - C:\ProgramFiles\Webroot\Spy Sweeper\SpySweeper.exe |
| Unknown | 0 - 0 | SS(65) - GS
Comments_(0)
| O4 - HKLM\..\Run: [NvCplDaemon]"C:\WINDOWS\system32\RUNDLL32.EXE"C:\WINDOWS\system32\NvCpl.dll,NvStartup |
| Unknown | 0 - 0 | SS(13) - GS
Comments_(0)
| O4 - HKLM\..\Run: [HP Health Check Scheduler]"c:\Program Files\Hewlett-Packard\HP HealthCheck\HPHC_Scheduler.exe" |
| Unknown | 0 - 0 | SS(44) - GS
Comments_(0)
| O4 - HKLM\..\Run: [AppleSyncNotifier] "C:\ProgramFiles\Common Files\Apple\Mobile DeviceSupport\bin\AppleSyncNotifier.exe" |
| Unknown | 0 - 0 | SS(67) - GS
Comments_(0)
| O4 - HKCU\..\Run: [ehTray.exe]"C:\Windows\ehome\ehTray.exe" |
| Unknown | 0 - 0 | SS(13) - GS
Comments_(0)
| O23 - Service: Webroot Client Service(WRConsumerService) - Webroot Software, Inc. -C:\Program Files\Webroot\SpySweeper\WRConsumerService.exe |
| Unknown | 0 - 0 | SS(1) - GS
Comments_(0)
| O23 - Service: lxda_device - -C:\Windows\system32\lxdacoms.exe |
| Unknown | 0 - 0 | SS(45) - GS
Comments_(0)
| O4 - HKLM\..\Run: [ATT-SST_McciTrayApp]"C:\Program Files\ATT-SST\McciTrayApp.exe" |
| Unknown | 0 - 0 | SS(34) - GS
Comments_(0)
| O4 - HKLM\..\Run: [ArcSoft Connection Service]"C:\Program Files\Common Files\ArcSoft\ConnectionService\Bin\ACDaemon.exe" |
| Unknown | 0 - 0 | SS(38,316) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop |
| Unknown | 0 - 0 | SS(14) - GS
Comments_(0)
| O16 - DPF: {A3256902-51FA-45A0-8A97-FC1143C169D9}(Diagnostics ActiveX WebControl) -http://support.microsoft.com/mats/DiagWebControl.cab |
| Unknown | 0 - 0 | SS(6,048) - GS
Comments_(0)
| O4 - HKLM\..\Run: [Standby] "c:\ProgramFiles\Common Files\Corel\Standby\Standby.exe"-START |
| Unknown | 0 - 0 | SS(21) - GS
Comments_(0)
| O2 - BHO: Canon Easy-WebPrint EX BHO -{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -C:\Program Files\Canon\Easy-WebPrintEX\ewpexbho.dll |
| Unknown | 0 - 0 | SS(24) - GS
Comments_(0)
| O3 - Toolbar: Canon Easy-WebPrint EX -{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -C:\Program Files\Canon\Easy-WebPrintEX\ewpexhlp.dll |
| Unknown | 0 - 0 | SS(20) - GS
Comments_(0)
| c:\Program Files\Corel\Corel Digital Studio2010\Gadget.exe |
| Unknown | 0 - 0 | SS(3) - GS
Comments_(0)
| O4 - HKLM\..\Run: [CorelGadget]"C:\Windows\system32\Rundll32.exe" "C:\ProgramFiles\Common Files\UleadSystems\Gadget\GadgetEB.dll",LaunchGadget |
| Good | 1 - 0 | SS(95) - GS
Comments_(0)
| C:\Program Files\Windows Media Player\WMPNSCFG.exe |
| Good | 1 - 0 | SS(70) - GS
Comments_(1)
| O20 - Winlogon Notify: !SASWinLogon - C:\ProgramFiles\SUPERAntiSpyware\SASWINLO.dll |
| Good | 1 - 0 | SS(194) - GS
Comments_(0)
| C:\ProgramFiles\SUPERAntiSpyware\SUPERAntiSpyware.exe |
| Good | 3 - 0 | SS(333) - GS
Comments_(0)
| O2 - BHO: Adobe PDF Reader Link Helper -{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -C:\Program Files\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelper.dll |
| Good | 1 - 0 | SS(436) - GS
Comments_(0)
| O9 - Extra button: Research -{92780B25-18CC-41C8-B9BE-3C9C571A8263} -C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL |
| Good | 1 - 0 | SS(412) - GS
Comments_(0)
| C:\Program Files\Windows Sidebar\sidebar.exe |
| Good | 1 - 0 | SS(7) - GS
Comments_(0)
| C:\WINDOWS\system32\wbem\unsecapp.exe |
| Good | 1 - 0 | SS(173) - GS
Comments_(0)
| O4 - Startup: OneNote 2007 Screen Clipper andLauncher.lnk = C:\Program Files\MicrosoftOffice\Office12\ONENOTEM.EXE |
| Good | 1 - 0 | SS(10) - GS
Comments_(0)
| C:\Windows\system32\taskeng.exe |
| Good | 1 - 0 | SS(0) - GS
Comments_(0)
| C:\Windows\system32\Dwm.exe |
| Good | 1 - 0 | SS(30) - GS
Comments_(0)
| O23 - Service: hpqwmiex - Hewlett-PackardDevelopment Company, L.P. - C:\ProgramFiles\Hewlett-Packard\Shared\hpqwmiex.exe |
| Good | 1 - 0 | SS(21) - GS
Comments_(0)
| O23 - Service: RoxMediaDB9 - Sonic Solutions -C:\Program Files\Common Files\RoxioShared\9.0\SharedCOM\RoxMediaDB9.exe |
| Good | 1 - 0 | SS(28) - GS
Comments_(0)
| O23 - Service: stllssvr - MicroVision Development,Inc. - C:\Program Files\Common Files\SureThingShared\stllssvr.exe |
| Good | 1 - 0 | SS(43) - GS
Comments_(0)
| C:\Program Files\Webroot\SpySweeper\SpySweeperUI.exe |
| Good | 1 - 0 | SS(21) - GS
Comments_(0)
| C:\Program Files\Canon\MyPrinter\BJMyPrt.exe |
| Good | 1 - 0 | SS(57) - GS
Comments_(0)
| O4 - HKLM\..\Run: [SpySweeper] "C:\ProgramFiles\Webroot\Spy Sweeper\SpySweeperUI.exe"/startintray |
| Good | 1 - 0 | SS(24) - GS
Comments_(0)
| O4 - HKLM\..\Run: [QPService] "C:\ProgramFiles\HP\QuickPlay\QPService.exe" |
| Good | 1 - 0 | SS(6,055) - GS
Comments_(0)
| O4 - HKLM\..\Run: [QlbCtrl] "C:\ProgramFiles\Hewlett-Packard\HP Quick LaunchButtons\QlbCtrl.exe" /Start |
| Good | 1 - 0 | SS(822) - GS
Comments_(0)
| O8 - Extra context menu item: E&xport to MicrosoftExcel -res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 |
| Good | 2 - 0 | SS(595) - GS
Comments_(0)
| O9 - Extra button: Send to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll |
| Good | 1 - 0 | SS(595) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: S&end to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll |
| Good | 1 - 0 | SS(43,615) - GS
Comments_(0)
| O4 - HKUS\S-1-5-19\..\Run: [Sidebar]%ProgramFiles%\Windows Sidebar\Sidebar.exe/detectMem (User 'LOCAL SERVICE') |
| Good | 1 - 0 | SS(36,328) - GS
Comments_(0)
| O4 - HKUS\S-1-5-20\..\Run: [Sidebar]%ProgramFiles%\Windows Sidebar\Sidebar.exe/detectMem (User 'NETWORK SERVICE') |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| O23 - Service: XAudioService - Conexant Systems,Inc. - C:\Windows\system32\DRIVERS\xaudio.exe |
| Good | 1 - 0 | SS(34,847) - GS
Comments_(0)
| R1 -HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local |
| Good | 1 - 0 | SS(45,759) - GS
Comments_(0)
| O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter]rundll32.exe oobefldr.dll,ShowWelcomeCenter (User'LOCAL SERVICE') |
| Good | 1 - 0 | SS(95) - GS
Comments_(0)
| O4 - HKCU\..\Run: [WMPNSCFG] "C:\ProgramFiles\Windows Media Player\WMPNSCFG.exe" |
| Good | 1 - 0 | SS(892) - GS
Comments_(0)
| O4 - HKCU\..\Run: [Sidebar] "C:\ProgramFiles\Windows Sidebar\sidebar.exe" /autoRun |
| Good | 1 - 0 | SS(25) - GS
Comments_(0)
| C:\Program Files\Hewlett-Packard\HP WirelessAssistant\HPWAMain.exe |
| Good | 1 - 0 | SS(43) - GS
Comments_(0)
| O23 - Service: CyberLink Background CaptureService (CBCS) (CLCapSvc) - Unknown owner -C:\ProgramFiles\HP\QuickPlay\Kernel\TV\CLCapSvc.exe |
| Good | 1 - 0 | SS(43) - GS
Comments_(0)
| O23 - Service: CyberLink Task Scheduler (CTS)(CLSched) - Unknown owner - C:\ProgramFiles\HP\QuickPlay\Kernel\TV\CLSched.exe |
| Good | 1 - 0 | SS(12) - GS
Comments_(0)
| O23 - Service: HP Health Check Service -Hewlett-Packard - C:\ProgramFiles\Hewlett-Packard\HP HealthCheck\hphc_service.exe |
| Good | 3 - 0 | SS(6,171) - GS
Comments_(0)
| C:\Program Files\TrendMicro\HijackThis\HijackThis.exe |
| Good | 1 - 0 | SS(194) - GS
Comments_(0)
| O4 - HKCU\..\Run: [SUPERAntiSpyware] "C:\ProgramFiles\SUPERAntiSpyware\SUPERAntiSpyware.exe" |
| Good | 1 - 0 | SS(9) - GS
Comments_(0)
| C:\Program Files\Hewlett-Packard\HP WirelessAssistant\WiFiMsg.exe |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| C:\ProgramFiles\Hewlett-Packard\Shared\HpqToaster.exe |
| Good | 1 - 0 | SS(39) - GS
Comments_(0)
| C:\Program Files\CommonFiles\LightScribe\LightScribeControlPanel.exe |
| Good | 1 - 0 | SS(24) - GS
Comments_(0)
| O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\ProgramFiles\Trend Micro\Internet Security\UfSeAgnt.exe" |
| Good | 1 - 0 | SS(28) - GS
Comments_(0)
| O23 - Service: Trend Micro Central ControlComponent (SfCtlCom) - Trend Micro Inc. -C:\Program Files\Trend Micro\InternetSecurity\SfCtlCom.exe |
| Good | 1 - 0 | SS(83) - GS
Comments_(0)
| O23 - Service: Trend Micro Proxy Service (tmproxy)- Trend Micro Inc. - C:\Program Files\TrendMicro\Internet Security\TmProxy.exe |
| Good | 1 - 0 | SS(99) - GS
Comments_(0)
| O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC}(HP Download Manager) -https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab |
| Good | 1 - 0 | SS(24) - GS
Comments_(0)
| C:\Program Files\Trend Micro\InternetSecurity\UfSeAgnt.exe |
| Good | 1 - 0 | SS(33) - GS
Comments_(0)
| O23 - Service: Trend Micro Unauthorized ChangePrevention Service (TMBMServer) - Trend Micro Inc.- C:\Program Files\Trend Micro\BM\TMBMSRV.exe |
| Good | 1 - 0 | SS(40) - GS
Comments_(0)
| O23 - Service: GameConsoleService - WildTangent,Inc. - C:\Program Files\HP Games\My HP GameConsole\GameConsoleService.exe |
| Good | 1 - 0 | SS(171) - GS
Comments_(0)
| O23 - Service: Bonjour Service - Apple Inc. -C:\Program Files\Bonjour\mDNSResponder.exe |
| Good | 1 - 0 | SS(1) - GS
Comments_(0)
| C:\Program Files\Trend Micro\InternetSecurity\UfNavi.exe |
| Good | 1 - 0 | SS(25) - GS
Comments_(0)
| O4 - HKLM\..\Run: [hpWirelessAssistant]"C:\Program Files\Hewlett-Packard\HP WirelessAssistant\HPWAMain.exe" |
| Good | 1 - 0 | SS(9) - GS
Comments_(0)
| O4 - HKLM\..\Run: [WAWifiMessage] "C:\ProgramFiles\Hewlett-Packard\HP WirelessAssistant\WiFiMsg.exe" |
| Good | 1 - 0 | SS(26) - GS
Comments_(0)
| O23 - Service: Protexis Licensing V2 (PSI_SVC_2) -Protexis Inc. - c:\program files\commonfiles\protexis\license service\psiservice_2.exe |
| Good | 1 - 0 | SS(237) - GS
Comments_(0)
| O4 - HKLM\..\Run: [CanonMyPrinter] "C:\ProgramFiles\Canon\MyPrinter\BJMyPrt.exe" /logon |
| Good | 2 - 0 | SS(121) - GS
Comments_(0)
| O2 - BHO: Java(tm) Plug-In 2 SSV Helper -{DBC80044-A445-435b-BC74-9C25C1C588A9} -C:\Program Files\Java\jre6\bin\jp2ssv.dll |
| Good | 1 - 0 | SS(60) - GS
Comments_(0)
| O4 - HKCU\..\Run: [LightScribe Control Panel]"C:\Program Files\CommonFiles\LightScribe\LightScribeControlPanel.exe"-hidden |
| Good | 1 - 0 | SS(25) - GS
Comments_(0)
| O23 - Service: ArcSoft Connect Daemon (ACDaemon) -ArcSoft Inc. - C:\Program Files\CommonFiles\ArcSoft\Connection Service\Bin\ACService.exe |
| Good | 1 - 0 | SS(9) - GS
Comments_(0)
| O23 - Service: NVIDIA Display Driver Service(nvsvc) - NVIDIA Corporation -C:\Windows\system32\nvvsvc.exe |
| Good | 1 - 0 | SS(135) - GS
Comments_(0)
| O23 - Service: Apple Mobile Device - Apple Inc. -C:\Program Files\Common Files\Apple\Mobile DeviceSupport\bin\AppleMobileDeviceService.exe |
| | | |
SpywareBlaster