Skip to main content
Start a Conversation

Unsolved

This post is more than 5 years old

bmalonzo

6 Posts

892

September 14th, 2004 14:00

Hijackthis Log Review - Help

Could someone please tell me what to do with log!

Logfile of HijackThis v1.98.2
Scan saved at 10:12:16 AM, on 9/14/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Dell AIO Printer A940\dlbabmgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\BCMSMMSG.exe
C:\WINDOWS\System32\batmeter.exe
C:\Program Files\Dell AIO Printer A940\dlbabmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Web Offer\wo.exe
C:\WINDOWS\System32\dpddr.exe
C:\WINDOWS\System32\xscomf.exe
C:\WINDOWS\System32\tio411n.exe
C:\WINDOWS\System32\gfxcpli.exe
C:\WINDOWS\System32\iavideow.exe
C:\WINDOWS\System32\dvpacka.exe
C:\WINDOWS\System32\sp10u.exe
C:\WINDOWS\System32\Xay5.exe
C:\WINDOWS\System32\GivKs5.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Downloads\AdAwareSE\HijackThis.exe
C:\Downloads\AdAwareSE\hjt\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.bellsouth.net/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://home.bellsouth.net/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.prod.entergy.com:80
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = http://localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - (no file)
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: (no name) - {339BB23F-A864-48C0-A59F-29EA915965EC} - (no file)
O4 - HKLM\..\Run: [Dell AIO Printer A940] "C:\Program Files\Dell AIO Printer A940\dlbabmgr.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [aqadcup] C:\WINDOWS\aqadcup.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [Jawa32] C:\WINDOWS\jawa32.exe
O4 - HKLM\..\Run: [eu] C:\documents and settings\jann lupo\local settings\temp\eu.exe
O4 - HKLM\..\Run: C:\documents and settings\jann lupo\local settings\temp\f.exe
O4 - HKLM\..\Run: [382EY@C4FWTRC5] C:\WINDOWS\System32\Wszv.exe
O4 - HKLM\..\Run: [qVokwBBl] C:\documents and settings\jann lupo\local settings\temp\qVokwBBl.exe
O4 - HKLM\..\Run: [FD] C:\documents and settings\jann lupo\local settings\temp\FD.exe
O4 - HKLM\..\Run: [39e7d80e31e0] C:\WINDOWS\System32\batmeter.exe
O4 - HKLM\..\Run: [se] C:\WINDOWS\System32\se.exe
O4 - HKLM\..\Run: [ldrclnrf] C:\WINDOWS\System32\ldrclnrf.exe
O4 - HKLM\..\Run: [dpddr] C:\WINDOWS\System32\dpddr.exe
O4 - HKLM\..\Run: [xscomf] C:\WINDOWS\System32\xscomf.exe
O4 - HKLM\..\Run: [tio411n] C:\WINDOWS\System32\tio411n.exe
O4 - HKLM\..\Run: [gfxcpli] C:\WINDOWS\System32\gfxcpli.exe
O4 - HKLM\..\Run: [iavideow] C:\WINDOWS\System32\iavideow.exe
O4 - HKLM\..\Run: [sp10u] C:\WINDOWS\System32\sp10u.exe
O4 - HKLM\..\Run: [dvpacka] C:\WINDOWS\System32\dvpacka.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Jawa32] C:\WINDOWS\jawa32.exe
O4 - HKCU\..\Run: [eZWO] C:\PROGRA~1\Web Offer\wo.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZPxdm159
O9 - Extra button: (no name) - {120E090D-9136-4b78-8258-F0B44B4BD2AC} - C:\WINDOWS\System32\ms.exe (file missing)
O9 - Extra 'Tools' menuitem: MaxSpeed - {120E090D-9136-4b78-8258-F0B44B4BD2AC} - C:\WINDOWS\System32\ms.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O12 - Plugin for .MID: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin2.dll
O16 - DPF: {2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} (MiniBugTransporterX Class) - http://download.weatherbug.com/minibug/tricklers/AWS/MiniBugTransporter.cab?
O16 - DPF: {9522B3FB-7A2B-4646-8AF6-36E7F593073C} (cpbrkpie Control) - http://a19.g.akamai.net/7/19/7125/1431/ftp.coupons.com/v3122/cpbrkpie.cab
O16 - DPF: {CA034DCC-A580-4333-B52F-15F98C42E04C} (Downloader Class) - http://www.stopzilla.com/_download/Auto_Installer/dwnldr.cab

Thanks in advance,

Brent

jamez kann

2 Intern

 • 

860 Posts

September 15th, 2004 02:00

Scan your computer on http://security.symantec.com
scan your computer for spyware here http://www.pestscan.com/
Run http://www.safer-networking.org/en/mirrors/index.html spybot


If the above fixes fail you would need to run hijackthis

All hijackthis posts need to be posted on the sites listed below not here

http://www.a-sap.org/

http://amazingtechs.com/index.php?act=idx
Forum Led by: discogail, bistro, njustice

http://www.bleepingcomputer.com/forums/
Forum Led by: Moderators, Global Moderator, groovicus,Grinler,harrywaldron,Papakid,

http://forums.net-integration.net/
Forum Led by: Global Moderator, Administrators, Technical Experts, Technical Assistant, Team

Spybot S&D, Technical Guide
TonyKlein,Eagle1,Galadriel,tashi,Archon_Wing,

http://forums.subratam.org/
Forum Led by: Forum Moderators,subratam,baskar1234,efwis,Metallica,psyne, SpyDie, normmork, Admin

http://www.zerosrealm.com/forums/
Zero,Lopus,


http://forum.gladiator-antivirus.com/
Forum Led by: CalamityJane, LoPhatPhuud, FatsGordon,Hunter,TheSentinel,


http://forums.techguy.org/
$teve ,flrman1,Rollin' Rog ,whz ,Davey7549

http://forums.thatcomputerguy.us/
Forum Led by: Searcher, Matrix420, Forum Moderator


 

Was this post helpful?

View All

0 events found

No Events found!

Top