saintsfanpk3
asked on
any bugs?
Here is my hijak file. I was wondering if there are any bugs here. I ran the hijak site and some things came up possibly nasty but with no other info on them so I am lost.
Logfile of HijackThis v1.99.1
Scan saved at 4:31:18 PM, on 2/24/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.e xe
C:\WINDOWS\system32\winlog on.exe
C:\WINDOWS\system32\servic es.exe
C:\WINDOWS\system32\lsass. exe
C:\WINDOWS\system32\svchos t.exe
C:\WINDOWS\System32\svchos t.exe
C:\WINDOWS\system32\spools v.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Dell\EUSW\Support.ex e
C:\Program Files\Common Files\Real\Update_OB\reals ched.exe
C:\Program Files\Synaptics\SynTP\SynT PLpr.exe
C:\Program Files\Synaptics\SynTP\SynT PEnh.exe
C:\WINDOWS\System32\spool\ drivers\w3 2x86\3\hpz tsb05.exe
C:\WINDOWS\System32\hkcmd. exe
C:\WINDOWS\System32\ctmn.e xe
C:\Program Files\iTunes\iTunesHelper. exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\EarthLink TotalAccess\TaskPanl.exe
C:\Program Files\Dell TrueMobile 1150\Client Manager\CmDEL.exe
C:\Program Files\Symantec_Client_Secu rity\Syman tec AntiVirus\DefWatch.exe
C:\Program Files\Symantec_Client_Secu rity\Syman tec AntiVirus\Rtvscan.exe
C:\WINDOWS\System32\sysmto r.exe
C:\Program Files\iPod\bin\iPodService .exe
C:\Documents and Settings\david\Local Settings\Temp\Temporary Directory 1 for hijackthis_199.zip\HijackT his.exe
C:\Program Files\Internet Explorer\iexplore.exe
R0 - HKCU\Software\Microsoft\In ternet Explorer\Toolbar,LinksFold erName =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-7 84B7D6BE0B 3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEH elper.dll
O2 - BHO: PnIEBrowserHelperObj Class - {4B5F2E08-6F39-479a-B547-B 2026E4C7ED F} - C:\Program Files\EarthLink TotalAccess\PnEL.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-2 06D7942484 F} - C:\PROGRA~1\SPYBOT~1\SDHel per.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-0 0A0C908246 7} - C:\WINDOWS\System32\msdxm. ocx
O3 - Toolbar: Pop-Up Blocker - {D7F30B62-8269-41AF-9539-B 2697FA7D77 E} - C:\Program Files\EarthLink TotalAccess\PnEL.dll
O4 - HKLM\..\Run: [DwlClient] C:\Program Files\Common Files\Dell\EUSW\Support.ex e
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\reals ched.exe" -osboot
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynT PLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynT PEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtr ay.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\ drivers\w3 2x86\3\hpz tsb05.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd. exe
O4 - HKLM\..\Run: [CMSETTINGS] "C:\WINDOWS\System32\ctmn. exe" AutoRun
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper. exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe " -atboottime
O4 - HKCU\..\Run: [E6TaskPanel] "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" -winstart
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: TrueMobile 1150 Client Manager.lnk = C:\Program Files\Dell TrueMobile 1150\Client Manager\CmDEL.exe
O6 - HKCU\Software\Policies\Mic rosoft\Int ernet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2 \Office10\ EXCEL.EXE/ 3000
O9 - Extra button: Instant Messenger (SM) - {AC9E2541-2814-11d5-BC6D-0 0B0D0A1DE4 5} - C:\Program Files\earthlinkim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-0 0C0F0318AF E} - C:\WINDOWS\System32\Shdocv w.dll
O16 - DPF: {41F17733-B041-4099-A042-B 518BB6A408 C} - http://appldnld.m7z.net/content.info.apple.com/iTunes4/WW/win/019-0312.20050111.MmVrT/iTunesSetup.exe
O16 - DPF: {6414512B-B978-451D-A0D8-F CFDF33E833 C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1093308777255
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-2 2031317559 2} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-0 0C04F72DAE B} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsr vc.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLog on.dll
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\Symantec_Client_Secu rity\Syman tec AntiVirus\DefWatch.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService .exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\Symantec_Client_Secu rity\Syman tec AntiVirus\Rtvscan.exe
O23 - Service: sysmtor - BioNet Systems, LLC - C:\WINDOWS\System32\sysmto r.exe
Logfile of HijackThis v1.99.1
Scan saved at 4:31:18 PM, on 2/24/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.e
C:\WINDOWS\system32\winlog
C:\WINDOWS\system32\servic
C:\WINDOWS\system32\lsass.
C:\WINDOWS\system32\svchos
C:\WINDOWS\System32\svchos
C:\WINDOWS\system32\spools
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Dell\EUSW\Support.ex
C:\Program Files\Common Files\Real\Update_OB\reals
C:\Program Files\Synaptics\SynTP\SynT
C:\Program Files\Synaptics\SynTP\SynT
C:\WINDOWS\System32\spool\
C:\WINDOWS\System32\hkcmd.
C:\WINDOWS\System32\ctmn.e
C:\Program Files\iTunes\iTunesHelper.
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\EarthLink TotalAccess\TaskPanl.exe
C:\Program Files\Dell TrueMobile 1150\Client Manager\CmDEL.exe
C:\Program Files\Symantec_Client_Secu
C:\Program Files\Symantec_Client_Secu
C:\WINDOWS\System32\sysmto
C:\Program Files\iPod\bin\iPodService
C:\Documents and Settings\david\Local Settings\Temp\Temporary Directory 1 for hijackthis_199.zip\HijackT
C:\Program Files\Internet Explorer\iexplore.exe
R0 - HKCU\Software\Microsoft\In
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-7
O2 - BHO: PnIEBrowserHelperObj Class - {4B5F2E08-6F39-479a-B547-B
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-2
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-0
O3 - Toolbar: Pop-Up Blocker - {D7F30B62-8269-41AF-9539-B
O4 - HKLM\..\Run: [DwlClient] C:\Program Files\Common Files\Dell\EUSW\Support.ex
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\reals
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynT
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynT
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtr
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.
O4 - HKLM\..\Run: [CMSETTINGS] "C:\WINDOWS\System32\ctmn.
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe
O4 - HKCU\..\Run: [E6TaskPanel] "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" -winstart
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: TrueMobile 1150 Client Manager.lnk = C:\Program Files\Dell TrueMobile 1150\Client Manager\CmDEL.exe
O6 - HKCU\Software\Policies\Mic
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2
O9 - Extra button: Instant Messenger (SM) - {AC9E2541-2814-11d5-BC6D-0
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-0
O16 - DPF: {41F17733-B041-4099-A042-B
O16 - DPF: {6414512B-B978-451D-A0D8-F
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-2
O16 - DPF: {C3DFA998-A486-11D4-AA25-0
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsr
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLog
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\Symantec_Client_Secu
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\Symantec_Client_Secu
O23 - Service: sysmtor - BioNet Systems, LLC - C:\WINDOWS\System32\sysmto
I just did it for you and everything looked good to me with the unknowns I've seen before in new and not so new dells
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
They are more to increase speed than to get rid of bugs!
Didn't I say it looked good to me? I think a points split would have been more appropriate...
ASKER
I did what you suggested but upon restart a window opened up and told me to go to the general tab and undo what I had just done. It seems that the start up wants to have those items on it.
ASKER
leew, you did nopt read the question closely. I already pasted my file on the site and reviewed the answers. My questions was about the unknown proccesses amd possible nasty ones. You gave me no new info. Sorry if you dont aggree with my assignment of the points.
Why did you dismiss my second comment- I specifically addressed the unknowns:
"...everything looked good to me with the unknowns I've seen before in new and not so new dells"
"...everything looked good to me with the unknowns I've seen before in new and not so new dells"
ASKER
"everything looked good to me with the unknowns I've seen BEFORE" I understood your comment to mean that there could be other unknkowns that you may have not seen before and could possibly not be commenting on. I could not know, based on that, that all of the unkowns and possibles I had not seen before were evaluated, understood, and known to be harmless by you. Please undeerstand that I do not know you or your experience level and I have had some people give me answers on the site which were not the best ones possible. I do not mean to offend you, I am simply trying to get my computer right and keep it that way, thus I always attempt to err on the side of caution. That means that your answer was not written in such a way so that I could understand it to be a complete and accurate answer to my question. Clearly my fault for having a great fear of making a mistake that will cost me big bucks to fix.
I encourage everyone to check my profile - my experience level is clear there. In addition, I NEVER encourage anyone to accept my initial comments without fully understanding them. If you're uncertain of something I said, please ask for clarification.
don't worry further about this question - I understand your point of view on this particular question and accept it without further debate.
Best of luck.
don't worry further about this question - I understand your point of view on this particular question and accept it without further debate.
Best of luck.
http://www.hijackthis.de/index.php?langselect=english