| Result |
Good-Bad |
Search |
Hijack This Log File Entry |
|---|
| | |
| Unknown | 0 - 0 | SS(56,081) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Search_URL =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q405&bd=presario&pf=desktop&parm1=seconduser |
| Unknown | 0 - 0 | SS(58,406) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Search Bar =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q405&bd=presario&pf=desktop&parm1=seconduser |
| Unknown | 0 - 0 | SS(9,272) - GS
Comments_(0)
| O8 - Extra context menu item: &Winamp Search -C:\Documents and Settings\All Users\ApplicationData\WinampToolbar\ieToolbar\resources\en-US\local\search.html |
| Unknown | 0 - 0 | SS(5) - GS
Comments_(0)
| C:\Program Files\Logitech\GamePanelSoftware\LgDevAgt.exe |
| Unknown | 0 - 0 | SS(12) - GS
Comments_(0)
| R3 - URLSearchHook: AIM Toolbar Search Class -{03402f96-3dc7-4285-bc50-9e81fefafe43} -C:\Program Files\AIM Toolbar\aimtb.dll |
| Unknown | 0 - 0 | SS(14) - GS
Comments_(0)
| O2 - BHO: AIM Toolbar Loader -{b0cda128-b425-4eef-a174-61a11ac5dbf8} -C:\Program Files\AIM Toolbar\aimtb.dll |
| Unknown | 0 - 0 | SS(10) - GS
Comments_(0)
| O3 - Toolbar: AIM Toolbar -{61539ecd-cc67-4437-a03c-9aaccbd14326} -C:\Program Files\AIM Toolbar\aimtb.dll |
| Unknown | 0 - 0 | SS(9,272) - GS
Comments_(0)
| O8 - Extra context menu item: &AIM Toolbar Search- C:\Documents and Settings\All Users\ApplicationData\AIMToolbar\ieToolbar\resources\en-US\local\search.html |
| Unknown | 0 - 0 | SS(10) - GS
Comments_(0)
| O9 - Extra button: AIM Toolbar -{0b83c99c-1efa-4259-858f-bcb33e007a5b} -C:\Program Files\AIM Toolbar\aimtb.dll |
| Unknown | 0 - 0 | SS(3,264) - GS
Comments_(0)
| O4 - HKCU\..\Run: [Google Update] "C:\Documentsand Settings\Compaq_Administrator\LocalSettings\ApplicationData\Google\Update\GoogleUpdate.exe" /c |
| Unknown | 0 - 0 | SS(5) - GS
Comments_(0)
| O4 - HKLM\..\Run: [Launch LgDeviceAgent]"C:\Program Files\Logitech\GamePanelSoftware\LgDevAgt.exe" |
| Unknown | 0 - 0 | SS(104) - GS
Comments_(0)
| O23 - Service: avast! Antivirus - ALWIL Software -C:\Program Files\AlwilSoftware\Avast5\AvastSvc.exe |
| Unknown | 0 - 0 | SS(104) - GS
Comments_(0)
| O23 - Service: avast! Mail Scanner - ALWILSoftware - C:\Program Files\AlwilSoftware\Avast5\AvastSvc.exe |
| Unknown | 0 - 0 | SS(104) - GS
Comments_(0)
| O23 - Service: avast! Web Scanner - ALWIL Software- C:\Program Files\AlwilSoftware\Avast5\AvastSvc.exe |
| Unknown | 0 - 0 | SS(168) - GS
Comments_(0)
| O16 - DPF: {A3E21079-7F41-4125-9EBB-FD44CFCC0AC1}(WLCTSCControl Class) -https://www.mesh.com/0.9.4014.7/TSWeb.cab |
| Unknown | 0 - 0 | SS(70) - GS
Comments_(0)
| O4 - HKLM\..\Run: [avast5]C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui |
| Unknown | 0 - 0 | SS(6,171) - GS
Comments_(0)
| C:\ProgramFiles\HiJackThis\TrendMicro\HiJackThis\HiJackThis.exe |
| Unknown | 0 - 0 | SS(104) - GS
Comments_(0)
| C:\Program Files\AlwilSoftware\Avast5\AvastSvc.exe |
| Unknown | 0 - 0 | SS(38,153) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://www.ninemsn.com.au |
| Unknown | 0 - 0 | SS(41) - GS
Comments_(0)
| C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe |
| Unknown | 0 - 0 | SS(270) - GS
Comments_(0)
| C:\ProgramFiles\Google\Update\1.2.183.17\GoogleCrashHandler.exe |
| Unknown | 0 - 0 | SS(270) - GS
Comments_(0)
| C:\Documents andSettings\Compaq_Administrator\LocalSettings\ApplicationData\Google\Update\1.2.183.17\GoogleCrashHandler.exe |
| Unknown | 0 - 0 | SS(5) - GS
Comments_(0)
| O2 - BHO: eSnipBHO -{B530A9A4-1722-4D16-AAD6-AA85E3AD2ADE} -C:\ProgramFiles\Logia\eSnipsDownloader\eSnipsBHO.dll |
| Unknown | 0 - 0 | SS(3,264) - GS
Comments_(0)
| O23 - Service: Google Update Service(gupdate1c92b2b7f3021fe) (gupdate1c92b2b7f3021fe)- Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe |
| Good | 1 - 0 | SS(34) - GS
Comments_(0)
| C:\WINDOWS\System32\dllhost.exe |
| Good | 1 - 0 | SS(436) - GS
Comments_(0)
| O9 - Extra button: Research -{92780B25-18CC-41C8-B9BE-3C9C571A8263} -C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL |
| Good | 1 - 0 | SS(15) - GS
Comments_(0)
| C:\WINDOWS\eHome\ehRecvr.exe |
| Good | 1 - 0 | SS(822) - GS
Comments_(0)
| O8 - Extra context menu item: E&xport to MicrosoftExcel -res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 |
| Good | 1 - 0 | SS(64) - GS
Comments_(0)
| O9 - Extra button: Connection Help -{E2D4D26B-0180-43a4-B05F-462D6D54C789} -C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm |
| Good | 1 - 0 | SS(64) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: Connection Help -{E2D4D26B-0180-43a4-B05F-462D6D54C789} -C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm |
| Good | 1 - 0 | SS(52) - GS
Comments_(0)
| C:\Program Files\Windows Defender\MsMpEng.exe |
| Good | 2 - 0 | SS(45,450) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Search_URL =http://go.microsoft.com/fwlink/?LinkId=54896 |
| Good | 2 - 0 | SS(47,951) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Search Page =http://go.microsoft.com/fwlink/?LinkId=54896 |
| Good | 1 - 0 | SS(85) - GS
Comments_(0)
| O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09}(Get_ActiveX Control) -https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx |
| Good | 1 - 0 | SS(69) - GS
Comments_(0)
| O23 - Service: LightScribeService Direct DiscLabeling Service (LightScribeService) -Hewlett-Packard Company - c:\Program Files\CommonFiles\LightScribe\LSSrvc.exe |
| Good | 2 - 0 | SS(46,777) - GS
Comments_(0)
| R0 - HKLM\Software\Microsoft\InternetExplorer\Main,Start Page =http://go.microsoft.com/fwlink/?LinkId=69157 |
| Good | 2 - 0 | SS(45,451) - GS
Comments_(0)
| R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://go.microsoft.com/fwlink/?LinkId=69157 |
| Good | 2 - 0 | SS(1,255) - GS
Comments_(0)
| O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}(Shockwave Flash Object) -http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab |
| Good | 1 - 0 | SS(40,916) - GS
Comments_(0)
| O15 - Trusted Zone: http://*.mcafee.com |
| Good | 3 - 0 | SS(333) - GS
Comments_(0)
| O2 - BHO: Adobe PDF Reader Link Helper -{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -C:\Program Files\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelper.dll |
| Good | 1 - 0 | SS(550) - GS
Comments_(0)
| O4 - HKLM\..\Run: [Kernel and Hardware AbstractionLayer] KHALMNPR.EXE |
| Good | 1 - 0 | SS(209) - GS
Comments_(0)
| O23 - Service: iPod Service - Apple Inc. -C:\Program Files\iPod\bin\iPodService.exe |
| Good | 1 - 0 | SS(37) - GS
Comments_(0)
| O9 - Extra button: IE Developer Toolbar -{48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} -C:\Program Files\Microsoft\Internet ExplorerDeveloper Toolbar\IEDevToolbar.dll |
| Good | 1 - 0 | SS(24) - GS
Comments_(0)
| O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072}(MessengerStatsClient Class) -http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab |
| Good | 2 - 0 | SS(525) - GS
Comments_(0)
| O22 - SharedTaskScheduler: Browseui preloader -{438755C2-A8BA-11D1-B96B-00A0C90312E1} -C:\WINDOWS\System32\browseui.dll |
| Good | 2 - 0 | SS(1,478) - GS
Comments_(0)
| O22 - SharedTaskScheduler: Component Categoriescache daemon -{8C7461EF-2B13-11d2-BE35-3078302C2030} -C:\WINDOWS\System32\browseui.dll |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| C:\WINDOWS\system32\E_S00RP1.EXE |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| O23 - Service: EPSON V3 Service2(03)(EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION -C:\WINDOWS\system32\E_S00RP1.EXE |
| Good | 1 - 0 | SS(22,308) - GS
Comments_(0)
| O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting]"C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t(User 'SYSTEM') |
| Good | 1 - 0 | SS(179) - GS
Comments_(0)
| O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592}(MSN Games - Installer) -http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab |
| Good | 2 - 0 | SS(19) - GS
Comments_(0)
| O10 - Unknown file in Winsock LSP:c:\windows\system32\nwprovau.dll |
| Good | 1 - 0 | SS(58) - GS
Comments_(0)
| O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B}(CDownloadCtrl Object) -http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab |
| Good | 1 - 0 | SS(34) - GS
Comments_(0)
| C:\WINDOWS\system32\PSIService.exe |
| Good | 1 - 0 | SS(34) - GS
Comments_(0)
| O23 - Service: ProtexisLicensing - Unknown owner -C:\WINDOWS\system32\PSIService.exe |
| Good | 1 - 0 | SS(50) - GS
Comments_(0)
| C:\WINDOWS\system32\PnkBstrA.exe |
| Good | 1 - 0 | SS(50) - GS
Comments_(0)
| O23 - Service: PnkBstrA - Unknown owner -C:\WINDOWS\system32\PnkBstrA.exe |
| Good | 1 - 0 | SS(8,282) - GS
Comments_(0)
| O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting]"C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t(User 'Default user') |
| Good | 1 - 0 | SS(17) - GS
Comments_(0)
| C:\Program Files\TortoiseSVN\bin\TSVNCache.exe |
| Good | 1 - 0 | SS(62,817) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\Internet ConnectionWizard,ShellNext =http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q405&bd=presario&pf=desktop&parm1=seconduser |
| Good | 3 - 0 | SS(106) - GS
Comments_(0)
| O9 - Extra button: (no name) -{e2e2dd38-d088-4134-82b7-f2ba38496583} -C:\windows\Network Diagnostic\xpnetdiag.exe |
| Good | 3 - 0 | SS(106) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001- {e2e2dd38-d088-4134-82b7-f2ba38496583} -C:\windows\Network Diagnostic\xpnetdiag.exe |
| Good | 1 - 0 | SS(11) - GS
Comments_(0)
| O16 - DPF: {DA758BB1-5F89-4465-975F-8D7179A4BCF3}(WheelofFortune Object) -http://messenger.zone.msn.com/binary/WoF.cab57176.cab |
| Good | 1 - 0 | SS(58) - GS
Comments_(0)
| O23 - Service: Sandboxie Service (SbieSvc) - tzuk- C:\Program Files\Sandboxie\SbieSvc.exe |
| Good | 1 - 0 | SS(34,847) - GS
Comments_(0)
| R1 -HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local |
| Good | 1 - 0 | SS(135) - GS
Comments_(0)
| C:\Program Files\Common Files\Apple\Mobile DeviceSupport\bin\AppleMobileDeviceService.exe |
| Good | 2 - 0 | SS(208) - GS
Comments_(0)
| O2 - BHO: Spybot-S&D IE Protection -{53707962-6F74-2D53-2644-206D7942484F} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(350) - GS
Comments_(0)
| O9 - Extra button: (no name) -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(350) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: Spybot - Search &Destroy Configuration -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll |
| Good | 1 - 0 | SS(24) - GS
Comments_(0)
| O3 - Toolbar: Winamp Toolbar -{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} -C:\Program Files\Winamp Toolbar\winamptb.dll |
| Good | 1 - 0 | SS(14) - GS
Comments_(0)
| O2 - BHO: IE Developer Toolbar BHO -{CC7E636D-39AA-49b6-B511-65413DA137A1} -C:\Program Files\Microsoft\Internet ExplorerDeveloper Toolbar\IEDevToolbar.dll |
| Good | 1 - 0 | SS(74) - GS
Comments_(0)
| C:\Program Files\CommonFiles\Logishrd\KHAL2\KHALMNPR.EXE |
| Good | 1 - 0 | SS(27) - GS
Comments_(0)
| C:\Program Files\Logitech\GamePanelSoftware\G-series Software\LGDCore.exe |
| Good | 1 - 0 | SS(5) - GS
Comments_(0)
| C:\Program Files\Logitech\SetPointII\SetpointII.exe |
| Good | 1 - 0 | SS(27) - GS
Comments_(0)
| O4 - HKLM\..\Run: [Launch LGDCore] "C:\ProgramFiles\Logitech\GamePanel Software\G-seriesSoftware\LGDCore.exe" /SHOWHIDE |
| Good | 1 - 0 | SS(12,526) - GS
Comments_(0)
| O4 - Global Startup: SetPointII.lnk = ? |
| Good | 1 - 0 | SS(171) - GS
Comments_(0)
| O23 - Service: Bonjour Service - Apple Inc. -C:\Program Files\Bonjour\mDNSResponder.exe |
| Good | 1 - 0 | SS(8) - GS
Comments_(0)
| O23 - Service: TabletServicePen - WacomTechnology, Corp. -C:\WINDOWS\system32\Pen_Tablet.exe |
| Good | 2 - 0 | SS(121) - GS
Comments_(0)
| O2 - BHO: Java(tm) Plug-In 2 SSV Helper -{DBC80044-A445-435b-BC74-9C25C1C588A9} -C:\Program Files\Java\jre6\bin\jp2ssv.dll |
| Good | 1 - 0 | SS(25) - GS
Comments_(0)
| O2 - BHO: Winamp Toolbar Loader -{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} -C:\Program Files\Winamp Toolbar\winamptb.dll |
| Good | 2 - 0 | SS(109) - GS
Comments_(0)
| O2 - BHO: JQSIEStartDetectorImpl -{E7E6F031-17CE-4C07-BC86-EABFE594F69C} -C:\ProgramFiles\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll |
| Good | 1 - 0 | SS(44) - GS
Comments_(0)
| O4 - HKLM\..\Run: [AppleSyncNotifier] C:\ProgramFiles\Common Files\Apple\Mobile DeviceSupport\bin\AppleSyncNotifier.exe |
| Good | 1 - 0 | SS(135) - GS
Comments_(0)
| O23 - Service: Apple Mobile Device - Apple Inc. -C:\Program Files\Common Files\Apple\Mobile DeviceSupport\bin\AppleMobileDeviceService.exe |
| Good | 1 - 0 | SS(227) - GS
Comments_(0)
| O2 - BHO: Google Toolbar Notifier BHO -{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -C:\ProgramFiles\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll |
| Good | 1 - 0 | SS(74) - GS
Comments_(0)
| O23 - Service: FLEXnet Licensing Service - AcressoSoftware Inc. - C:\Program Files\CommonFiles\Macrovision Shared\FLEXnetPublisher\FNPLicensingService.exe |
| Good | 1 - 0 | SS(28) - GS
Comments_(0)
| O4 - HKLM\..\Run: [AdobeCS4ServiceManager]"C:\Program Files\CommonFiles\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin |
| Good | 1 - 0 | SS(43,397) - GS
Comments_(0)
| R1 - HKCU\Software\Microsoft\InternetExplorer\SearchURL,(Default) =http://search.yahoo.com/search?fr=mcafee&p=%s |
| Good | 1 - 0 | SS(61) - GS
Comments_(0)
| O23 - Service: LogMeIn Hamachi 2.0 TunnelingEngine (Hamachi2Svc) - LogMeIn Inc. - C:\ProgramFiles\LogMeIn Hamachi\hamachi-2.exe |
| Good | 1 - 0 | SS(61) - GS
Comments_(0)
| C:\Program Files\LogMeIn Hamachi\hamachi-2.exe |
| Good | 1 - 0 | SS(40) - GS
Comments_(0)
| O2 - BHO: Google Gears Helper -{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} -C:\Program Files\Google\Google Gears\InternetExplorer\0.5.36.0\gears.dll |
| Good | 1 - 0 | SS(97) - GS
Comments_(0)
| O9 - Extra button: (no name) -{09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} -C:\Program Files\Google\Google Gears\InternetExplorer\0.5.36.0\gears.dll |
| Good | 1 - 0 | SS(97) - GS
Comments_(0)
| O9 - Extra 'Tools' menuitem: &Gears Settings -{09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} -C:\Program Files\Google\Google Gears\InternetExplorer\0.5.36.0\gears.dll |
| Good | 1 - 0 | SS(1,376) - GS
Comments_(0)
| O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D}(KX-HCM10 Control) -http://cam15001.miemasu.net/kxhcm10.ocx |
| Good | 1 - 0 | SS(212) - GS
Comments_(0)
| O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6}(McFreeScan Class) -http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5037/mcfscan.cab |
| | | |
SpywareBlaster