| Result |
Good-Bad |
Search |
Hijack This Log File Entry |
|---|
| | |
| Bad | 1 - 11 | SS(8,138) - GS
Comments_(0)
| R0 - HKCU\Software\Microsoft\InternetExplorer\Toolbar,LinksFolderName = |
| Bad | 1 - 2 | SS(5,459) - GS
Comments_(0)
| R0 - HKLM\Software\Microsoft\InternetExplorer\Search,CustomizeSearch = |
| Bad | 0 - 1 | SS(8,807) - GS
Comments_(1)
| O1 - Hosts: ::1 localhost |
| Unknown | 0 - 0 | SS(1) - GS
Comments_(0)
| O4 - HKCU\..\Run: [Security Antivirus]"C:\ProgramData\931ceeb\SA931c.exe" /s /d |
| Good | 7 - 0 | SS(58) - GS
Comments_(0)
| C:\WINDOWS\System32\hkcmd.exe |
| Good | 7 - 0 | SS(44) - GS
Comments_(0)
| O4 - HKLM\..\Run: [IgfxTray]C:\WINDOWS\System32\igfxtray.exe |
| Good | 7 - 0 | SS(58) - GS
Comments_(0)
| O4 - HKLM\..\Run: [HotKeysCmds]C:\WINDOWS\System32\hkcmd.exe |
| Good | 8 - 0 | SS(822) - GS
Comments_(0)
| O8 - Extra context menu item: E&xport to MicrosoftExcel -res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 |
| Good | 7 - 0 | SS(436) - GS
Comments_(0)
| O9 - Extra button: Research -{92780B25-18CC-41C8-B9BE-3C9C571A8263} -C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL |
| Good | 1 - 0 | SS(54) - GS
Comments_(0)
| C:\Program Files\Eset\nod32kui.exe |
| Good | 1 - 0 | SS(176) - GS
Comments_(0)
| O4 - HKLM\..\Run: [nod32kui] "C:\ProgramFiles\Eset\nod32kui.exe" /WAITSERVICE |
| Good | 1 - 0 | SS(67) - GS
Comments_(0)
| O23 - Service: NOD32 Kernel Service (NOD32krn) -Eset - C:\Program Files\Eset\nod32krn.exe |
| Good | 1 - 0 | SS(39,214) - GS
Comments_(0)
| R0 - HKLM\Software\Microsoft\InternetExplorer\Main,Start Page = http://www.comcast.net/ |
| Good | 1 - 0 | SS(42) - GS
Comments_(1)
| O4 - HKLM\..\Run: [Persistence]C:\WINDOWS\system32\igfxpers.exe |
| Good | 1 - 0 | SS(42) - GS
Comments_(0)
| C:\WINDOWS\system32\igfxpers.exe |
| Good | 2 - 0 | SS(45,449) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Search_URL =http://go.microsoft.com/fwlink/?LinkId=54896 |
| Good | 1 - 0 | SS(47,984) - GS
Comments_(0)
| R0 - HKCU\Software\Microsoft\InternetExplorer\Main,Start Page = http://news.google.com/ |
| Good | 1 - 0 | SS(261) - GS
Comments_(0)
| O20 - AppInit_DLLs:C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL |
| Good | 1 - 0 | SS(43) - GS
Comments_(0)
| C:\Program Files\Intel\Intel Matrix StorageManager\iaanotif.exe |
| Good | 1 - 0 | SS(47) - GS
Comments_(0)
| O23 - Service: Intel(R) Matrix Storage EventMonitor (IAANTMon) - Intel Corporation -C:\Program Files\Intel\Intel Matrix StorageManager\iaantmon.exe |
| Good | 1 - 0 | SS(322) - GS
Comments_(0)
| O2 - BHO: SSVHelper Class -{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -C:\Program Files\Java\jre1.6.0\bin\ssv.dll |
| Good | 1 - 0 | SS(95) - GS
Comments_(0)
| C:\Program Files\Windows Media Player\WMPNSCFG.exe |
| Good | 2 - 0 | SS(45,450) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://go.microsoft.com/fwlink/?LinkId=69157 |
| Good | 3 - 0 | SS(333) - GS
Comments_(0)
| O2 - BHO: Adobe PDF Reader Link Helper -{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -C:\Program Files\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelper.dll |
| Good | 2 - 0 | SS(1,140) - GS
Comments_(0)
| O9 - Extra button: (no name) -{08B0E5C0-4FCB-11CF-AAA5-00401C608501} -C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll |
| Good | 2 - 0 | SS(1,140) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: Sun Java Console -{08B0E5C0-4FCB-11CF-AAA5-00401C608501} -C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll |
| Good | 1 - 0 | SS(412) - GS
Comments_(0)
| C:\Program Files\Windows Sidebar\sidebar.exe |
| Good | 1 - 0 | SS(93) - GS
Comments_(0)
| O23 - Service: Adobe Active File Monitor V4(AdobeActiveFileMonitor4.0) - Unknown owner -C:\Program Files\Adobe\Photoshop Elements4.0\PhotoshopElementsFileAgent.exe |
| Good | 1 - 0 | SS(42) - GS
Comments_(0)
| O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe |
| Good | 1 - 0 | SS(10) - GS
Comments_(0)
| C:\Windows\system32\taskeng.exe |
| Good | 1 - 0 | SS(0) - GS
Comments_(0)
| C:\Windows\system32\Dwm.exe |
| Good | 2 - 0 | SS(95) - GS
Comments_(0)
| O23 - Service: Google Updater Service (gusvc) -Google - C:\Program Files\Google\Common\GoogleUpdater\GoogleUpdaterService.exe |
| Good | 1 - 0 | SS(21) - GS
Comments_(0)
| O23 - Service: RoxMediaDB9 - Sonic Solutions -C:\Program Files\Common Files\RoxioShared\9.0\SharedCOM\RoxMediaDB9.exe |
| Good | 1 - 0 | SS(15) - GS
Comments_(0)
| O23 - Service: Roxio Hard Drive Watcher 9(RoxWatch9) - Sonic Solutions - C:\ProgramFiles\Common Files\RoxioShared\9.0\SharedCOM\RoxWatch9.exe |
| Good | 1 - 0 | SS(28) - GS
Comments_(0)
| O23 - Service: stllssvr - MicroVision Development,Inc. - C:\Program Files\Common Files\SureThingShared\stllssvr.exe |
| Good | 1 - 0 | SS(45,019) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Search Bar =http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html |
| Good | 2 - 0 | SS(1,478) - GS
Comments_(0)
| O22 - SharedTaskScheduler: Component Categoriescache daemon -{8C7461EF-2B13-11d2-BE35-3078302C2030} -C:\WINDOWS\System32\browseui.dll |
| Good | 1 - 0 | SS(43,615) - GS
Comments_(0)
| O4 - HKUS\S-1-5-19\..\Run: [Sidebar]%ProgramFiles%\Windows Sidebar\Sidebar.exe/detectMem (User 'LOCAL SERVICE') |
| Good | 1 - 0 | SS(36,328) - GS
Comments_(0)
| O4 - HKUS\S-1-5-20\..\Run: [Sidebar]%ProgramFiles%\Windows Sidebar\Sidebar.exe/detectMem (User 'NETWORK SERVICE') |
| Good | 1 - 0 | SS(34) - GS
Comments_(0)
| C:\Windows\sttray.exe |
| Good | 1 - 0 | SS(43) - GS
Comments_(0)
| O4 - HKLM\..\Run: [IAAnotif] "C:\ProgramFiles\Intel\Intel Matrix StorageManager\Iaanotif.exe" |
| Good | 1 - 0 | SS(10) - GS
Comments_(0)
| O23 - Service: DSBrokerService - Unknown owner -C:\Program Files\DellSupport\brkrsvc.exe |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| O23 - Service: XAudioService - Conexant Systems,Inc. - C:\Windows\system32\DRIVERS\xaudio.exe |
| Good | 1 - 0 | SS(45,759) - GS
Comments_(0)
| O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter]rundll32.exe oobefldr.dll,ShowWelcomeCenter (User'LOCAL SERVICE') |
| Good | 2 - 0 | SS(208) - GS
Comments_(0)
| O2 - BHO: Spybot-S&D IE Protection -{53707962-6F74-2D53-2644-206D7942484F} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(350) - GS
Comments_(0)
| O9 - Extra button: (no name) -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(350) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: Spybot - Search &Destroy Configuration -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(51,331) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Window Title = Windows InternetExplorer provided by Comcast |
| Good | 1 - 0 | SS(27) - GS
Comments_(0)
| O23 - Service: SBSD Security Center Service(SBSDWSCService) - Safer Networking Ltd. -C:\Program Files\Spybot - Search &Destroy\SDWinSec.exe |
| Good | 2 - 0 | SS(67) - GS
Comments_(0)
| O23 - Service: SupportSoft Sprocket Service(ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft,Inc. - C:\Program Files\Comcast\DesktopDoctor\bin\sprtsvc.exe |
| Good | 1 - 0 | SS(135) - GS
Comments_(0)
| O23 - Service: Nero BackItUp Scheduler 3 - Nero AG- C:\Program Files\Nero\Nero8\NeroBackItUp\NBService.exe |
| Good | 1 - 0 | SS(80) - GS
Comments_(0)
| O23 - Service: NMIndexingService - Nero AG -C:\Program Files\CommonFiles\Nero\Lib\NMIndexingService.exe |
| Good | 1 - 0 | SS(149) - GS
Comments_(0)
| O23 - Service: Google Desktop Manager 5.7.801.1629(GoogleDesktopManager-010108-205858) - Google -C:\Program Files\Google\Google DesktopSearch\GoogleDesktop.exe |
| Good | 1 - 0 | SS(6,171) - GS
Comments_(0)
| C:\ProgramFiles\TrendMicro\HijackThis\HijackThis.exe |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| O23 - Service: Intuit Update Service(IntuitUpdateService) - Intuit Inc. - C:\ProgramFiles\Common Files\Intuit\UpdateService\IntuitUpdateService.exe |
| Good | 1 - 0 | SS(3,264) - GS
Comments_(0)
| O23 - Service: Google Update Service (gupdate)(gupdate) - Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe |
| | | |
SpywareBlaster