We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
PC not connecting to the internet
Comments
-
Is that a new list? The same things seem to be there as if you haven't uninstalled anything. Try rebooting and replacing the list. That isn't a Hijack This list.
But we can look at those anyway.0 -
Should i reboot then run Hijack this again0
-
Yes, do all of them again, so all new logs.0
-
Have rebooted and checked on Control Panel > add/remove programmes and i think they are gone
Heres the Hijack this file after rebooting
Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 23:35:29, on 23/09/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\msiexec.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://uk.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sp/*http://uk.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} - http://uk.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1037064823640
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 5748 bytes0 -
Tick and fix these:
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://uk.red.clientapps.yahoo.com/c...rch.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} - http://uk.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1037064823640
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/Driver...sysreqlab2.cab
Let's have a look at the new CCleaner logs.0 -
Do you want me to run ccleaner again as before and get 2 lists off that ?0
-
Sorry Donnie you are too quick for me lol
Will do ccleaner now mate !0 -
Donnie i havnt yet ticked and fixed the ones in the Hijack this file in your last postso these are the Cleaner lists before doing that !
Yes HKCU:Run eyeBeam SIP Client
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
No HKCU:Run FlashPlayerUpdate C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -update activex
No HKCU:Run Google Update "C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKLM:Run MSSE "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\qttask.exe" -atboottime
No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
No HKLM:Run BCMSMMSG BCMSMMSG.exe
No HKLM:Run McciTrayApp C:\Program Files\btbb_wcm\McciTrayApp.exe
No HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
No HKLM:Run Mouse32a C:\Program Files\Trust\MI-2500X OPTICAL MOUSE\Mouse32a.exe
No HKLM:Run HP Software Update C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
No HKLM:Run iTunesHelper "C:\Program Files\iTunes\iTunesHelper.exe"
No HKLM:Run BTHelpNotifier C:\PROGRA~1\BTHOME~1\Help\SMARTB~1\BTHelpNotifier.exe
No HKLM:Run NvCpl RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
No HKLM:Run NvMcTray RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
No HKLM:Run nwiz nwiz.exe /install
No HKLM:Run osCheck "C:\PROGRA~1\Symantec\osCheck.exe"
No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
No HKLM:Run ybrwicon C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
No HKLM:Run yop C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
No Startup Common BT Broadband Desktop Help.lnk C:\PROGRA~1\BTHOME~1\Help\bin\matcli.exe -boot
No Startup Common HP Digital Imaging Monitor.lnk C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe
No Startup Common HP Image Zone Fast Start.lnk C:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe -s
No Startup Common PHOTOfunSTUDIO.lnk C:\PROGRA~1\PANASO~1\PHOTOF~1\PHAUTO~1.EXE
Yes HKCU:Run eyeBeam SIP Client
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
No HKCU:Run FlashPlayerUpdate C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -update activex
No HKCU:Run Google Update "C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKLM:Run MSSE "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\qttask.exe" -atboottime
No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
No HKLM:Run BCMSMMSG BCMSMMSG.exe
No HKLM:Run McciTrayApp C:\Program Files\btbb_wcm\McciTrayApp.exe
No HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
No HKLM:Run Mouse32a C:\Program Files\Trust\MI-2500X OPTICAL MOUSE\Mouse32a.exe
No HKLM:Run HP Software Update C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
No HKLM:Run iTunesHelper "C:\Program Files\iTunes\iTunesHelper.exe"
No HKLM:Run BTHelpNotifier C:\PROGRA~1\BTHOME~1\Help\SMARTB~1\BTHelpNotifier.exe
No HKLM:Run NvCpl RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
No HKLM:Run NvMcTray RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
No HKLM:Run nwiz nwiz.exe /install
No HKLM:Run osCheck "C:\PROGRA~1\Symantec\osCheck.exe"
No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
No HKLM:Run ybrwicon C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
No HKLM:Run yop C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
No Startup Common BT Broadband Desktop Help.lnk C:\PROGRA~1\BTHOME~1\Help\bin\matcli.exe -boot
No Startup Common HP Digital Imaging Monitor.lnk C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe
No Startup Common HP Image Zone Fast Start.lnk C:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe -s
No Startup Common PHOTOfunSTUDIO.lnk C:\PROGRA~1\PANASO~1\PHOTOF~1\PHAUTO~1.EXE0 -
You have printed two of the same.....
Disable: Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\qttask.exe" -atboottime0 -
Tick and fix these:
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://uk.red.clientapps.yahoo.com/c...rch.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} - http://uk.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1037064823640
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/Driver...sysreqlab2.cab
Let's have a look at the new CCleaner logs.
Have ticked and fixed all those in the hijack this file0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 353.9K Banking & Borrowing
- 254.3K Reduce Debt & Boost Income
- 455.2K Spending & Discounts
- 247K Work, Benefits & Business
- 603.6K Mortgages, Homes & Bills
- 178.3K Life & Family
- 261.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.7K Read-Only Boards