Jump to content

Here is a HijackThis log from my PC. Please help!


Recommended Posts

Here is a HijackThis log from my PC. Please help! I have been experiencing something I had never heard of. Now computer won't open Malwarebytes and won't run Malwarebytes' Anti-Malware. It won't even open http://www.malwarebytes.org website.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 8:24:01 AM, on 3/20/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16791)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\WINDOWS\system32\inetsrv\inetinfo.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\msftesql.exe

C:\Program Files\Microsoft SQL Server\MSSQL.4\MSSQL\Binn\msftesql.exe

C:\Program Files\Microsoft SQL Server\MSSQL.5\OLAP\bin\msmdsrv.exe

C:\Program Files\Microsoft SQL Server\MSSQL.4\MSSQL\Binn\sqlservr.exe

C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe

C:\Program Files\Microsoft SQL Server\MSSQL.1\OLAP\bin\msmdsrv.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Microsoft SQL Server\MSSQL.6\Reporting Services\ReportServer\bin\ReportingServicesService.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\SQLAGENT90.EXE

C:\WINDOWS\Explorer.EXE

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe

C:\Program Files\Microsoft Office\Office10\OUTLOOK.EXE

C:\Program Files\Microsoft Office\Office10\WINWORD.EXE

C:\Program Files\Common Files\Microsoft Shared\Speech\sapisvr.exe

C:\Program Files\Internet Explorer\iexplore.exe

E:\Bonita\software\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005

O1 - Hosts: 198.45.27.7 MHC_EPLM_Prod1 # Application/Network Web Server

O1 - Hosts: 198.45.27.7 Prod1

O1 - Hosts: 198.45.27.7 P1

O1 - Hosts: 198.45.27.8 MHC_EPLM_QA1 #

O1 - Hosts: 198.45.27.8 QA1

O1 - Hosts: 198.45.27.9 MHC_EPLM_Prod2 # Web Server

O1 - Hosts: 198.45.27.9 Prod2

O1 - Hosts: 198.45.27.9 P2

O1 - Hosts: 198.45.27.10 MHC_EPLM_SQL2 # ePLM DB Server

O1 - Hosts: 198.45.27.10 SQL2

O1 - Hosts: 198.45.27.10 S2

O1 - Hosts: 198.45.27.11 MHC_EPLM_SQL3 # Network DB Server

O1 - Hosts: 198.45.27.11 SQL3

O1 - Hosts: 198.45.27.11 S3

O1 - Hosts: 198.45.27.35 MHC_EPLM_SQL4 # Network DB Server

O1 - Hosts: 198.45.27.35 SQL4

O1 - Hosts: 198.45.27.35 S4

O1 - Hosts: 192,168.136.150 ING_WEB5 # VIDC Prod Web Server

O1 - Hosts: 192,168.136.150 WEB5

O1 - Hosts: 192,168.136.150 W5

O1 - Hosts: 192,168.136.151 ING_WEB6 # VIDC Prod Web Server

O1 - Hosts: 192,168.136.151 WEB6

O1 - Hosts: 192,168.136.151 W6

O1 - Hosts: 198.45.27.54 MHC_EPLM_SQL3_SC #Secaucus SQL3 server

O1 - Hosts: 198.45.27.54 SQL3_SC

O1 - Hosts: 198.45.27.55 MHC_EPLM_SQL4_SC #Secaucus SQL4 server

O1 - Hosts: 198.45.27.55 SQL4_SC

O1 - Hosts: 198.45.27.75 MHC_EPLM_SQL2_SC #Secaucus SQL2 server

O1 - Hosts: 198.45.27.75 SQL2_SC

O1 - Hosts: 198.45.27.56 MHC_EPLM_PROD5 #Secaucus PROD5 server

O1 - Hosts: 198.45.27.56 PROD5

O1 - Hosts: 198.45.27.57 MHC_EPLM_PROD6 #Secaucus PROD6 server

O1 - Hosts: 198.45.27.57 PROD6

O1 - Hosts: 198.45.27.58 MHC_EPLM_PROD7 #Secaucus PROD7 server

O1 - Hosts: 198.45.27.58 PROD7

O1 - Hosts: 198.45.27.59 MHC_EPLM_PROD8 #Secaucus PROD8 server

O1 - Hosts: 198.45.27.59 PROD8

O1 - Hosts: 207.6.98.79 dowcorning2-qa.cn.construction.com

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1229936942843

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre...ows-i586-jc.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Ingenium-tech.local

O17 - HKLM\Software\..\Telephony: DomainName = Ingenium-tech.local

O17 - HKLM\System\CCS\Services\Tcpip\..\{49CA5C40-70D1-45BC-94C5-DEDAA2C105EE}: NameServer = 192.168.200.71,192.168.200.72

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = Ingenium-tech.local

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.112.120,85.255.112.83

O17 - HKLM\System\CS1\Services\Tcpip\..\{49CA5C40-70D1-45BC-94C5-DEDAA2C105EE}: NameServer = 192.168.200.71,192.168.200.72

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.120,85.255.112.83

O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--

End of file - 7510 bytes

Link to post
Share on other sites

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.