Results 1 to 2 of 2
  1. #1
    New Lounger
    Join Date
    Mar 2002
    Location
    Ontario, Canada
    Posts
    22
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Logfile of HijackThis

    Dear Experts,

    I've weeded out many processess and entries I am familiar with. Please take a quick look below can anyone identify any potential culprits if any.

    Thanks!



    Logfile of HijackThis v1.97.7
    Scan saved at 6:42:47 AM, on 10/5/2004
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:

    C:WINDOWSsystem32LEXBCES.EXE
    C:WINDOWSsystem32LEXPPS.EXE
    C:WINDOWSsystem32spoolsv.exe
    C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
    C:WINDOWSSystem32CTsvcCDA.exe
    C:Program FilesCommon FilesMicrosoft SharedVS7Debugmdm.exe
    C:WINDOWSExplorer.EXE
    C:Program FilesCreativeShareDLLCtNotify.exe
    C:WINDOWSsystem32CTHELPER.EXE
    C:WINDOWSsystem32devldr32.exe
    C:WINDOWSSystem32LXSUPMON.EXE
    C:Program FilesCommon FilesMicrosoft SharedWorks SharedWkUFind.exe
    C:Program FilesCommon FilesSymantec SharedccApp.exe
    C:WINDOWSsystem32ctfmon.exe
    C:Program FilesCreativeShareDLLMediadet.exe



    O4 - HKLM..Run: [Disc Detector] C:Program FilesCreativeShareDLLCtNotify.exe
    O4 - HKLM..Run: [WINDVDPatch] CTHELPER.EXE
    O4 - HKLM..Run: [UpdReg] C:WINDOWSUpdReg.EXE
    O4 - HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" -atboottime
    O4 - HKLM..Run: [LXSUPMON] C:WINDOWSSystem32LXSUPMON.EXE RUN
    O4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background
    O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
    O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
    O4 - Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOffice10OSA.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
    O9 - Extra button: Messenger (HKLM)
    O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM)
    O15 - Trusted Zone: http://Download.Windowsupdate.com
    O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab
    O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} -
    O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - http://v4.windowsupdate.microsoft.com/CAB/...7577.2714236111
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwa...ash/swflash.cab

  2. #2
    Platinum Lounger
    Join Date
    Nov 2001
    Location
    Melbourne, Victoria, Australia
    Posts
    5,016
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Logfile of HijackThis

    Hi Jay

    I think you might get better mileage on one of the dedicated HijackThis support forums, such as TomCoyote's Forum, where the participants specialize in analyzing these logs.

    Alan

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •