Articles

R3 - URLSearchHook: (no name) - - (no file)

September 20, 2010 at 15:13:41
Specs: Windows Vista, 3Gb

How do I remove?-R3 - URLSearchHook: (no name) - - (no file).
Please help remove Trojan.
-------------------------------------------------------------------------------------------
Czy ktoś może wie jak zlokalizowc tego trojan i usunąc?
Znalazł go Hijack This,ale nie wiem jak go odszukac w kom. i usunac.McAfee go nie wykrywa,SpywereTerminator rownież i jeszcze Malwarebytes,też nic nie widzi.
waldex63

See More: R3 - URLSearchHook: (no name) - - (no file)

Report •


#1
September 20, 2010 at 22:32:42

have you run Hijackthis, i am assuming u did because when u run that it will give a log file with that being atypical line that will normally show up.if not what did u run to find that.

I am here for a reason.
For help or
To help,


Report •

#2
September 20, 2010 at 22:36:14

what program did u run or use to find that virus?

I am here for a reason.
For help or
To help,


Report •

#3
September 21, 2010 at 01:14:49



Kind

This should be the newest version.

Platform: Windows Vista SP2 (WinNT 6.00.1906)

Kind


Analyzerdetails
MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Kind

This should be the newest version.
Visitor's assessment Analyzerdetails
Boot mode: Normal

Kind

Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\system32\Dwm.exe

Kind

Very safe
Very safe
This is a unknown process.
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Dell\DellDock\DellDock.exe

Kind

Very safe
Very safe
Safe (4.67 / 5.00)
Visitor's assessment Analyzerdetails
C:\Windows\Explorer.EXE

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\SYSTEM32\taskeng.exe

Kind

Safe
Safe

Windows Vista Task Engine
Visitor's assessment Analyzerdetails
C:\Program Files\Windows Defender\MSASCui.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\RtHDVCpl.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe

Kind

Neutral
Neutral
Safe (3.67 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Dell Support Center\bin\sprtcmd.exe

Kind

Very safe
Very safe

Possibly nasty! According to our database this process runs normally in c:\programme\belgacom\bin\! Check if you know this process and arrange a viruscheck where required. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

Kind

Safe
Safe

Part of Hewlett-Packard
Visitor's assessment Analyzerdetails
C:\Program Files\Common Files\Java\Java Update\jusched.exe

Kind

Safe
Safe

Possibly nasty! According to our database this process runs normally in c:\programme\java\.*\bin\! Check if you know this process and arrange a viruscheck where required. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe

Kind

Safe (4.03 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe

Kind

Very safe
Very safe

Sierra Wireless Watcher
Visitor's assessment Analyzerdetails
C:\Program Files\McAfee.com\Agent\mcagent.exe

Kind

Very safe
Very safe

Visitor's assessment Analyzerdetails
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

Kind

Very safe
Very safe

Microsoft Office 2007 Groove file monitoring
Visitor's assessment Analyzerdetails
C:\Windows\vVX1000.exe

Kind

Very safe
Very safe
Safe (4.31 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe

Kind

Safe (4.14 / 5.00)
Visitor's assessment Analyzerdetails
C:\Users\Kamil\Desktop\Winamp\winampa.exe

Kind


Possibly nasty! According to our database this process runs normally in c:\programme\winamp\! Check if you know this process and arrange a viruscheck where required.
Visitor's assessment Analyzerdetails
C:\Windows\System32\rundll32.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Windows Sidebar\sidebar.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\ehome\ehtray.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Windows Live\Messenger\msnmsgr.exe

Kind

Very safe
Very safe

Possibly nasty! According to our database this process runs normally in c:\programme\msn messenger\! Check if you know this process and arrange a viruscheck where required. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Windows Media Player\wmpnscfg.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe

Kind

Safe (3.64 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Skype\Phone\Skype.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

Kind

Very safe
Very safe

HP Digital Imaging
Visitor's assessment Analyzerdetails
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

Kind

Safe (4.13 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

Kind

Safe
Safe
This is a unknown process.
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\ehome\ehmsas.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Sierra Wireless Inc\3G Watcher\Watcher.exe

Kind


Sierra Wireless Watcher
Visitor's assessment Analyzerdetails
C:\Program Files\Sierra Wireless Inc\WebUpdater\SwiApiMux.exe

Kind

Safe (4.03 / 5.00)
Visitor's assessment Analyzerdetails
C:\Windows\system32\wbem\unsecapp.exe

Kind

Safe
Safe

Microsoft Windows Management Instrumentation
Visitor's assessment Analyzerdetails
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

Kind

Very safe
Very safe
Safe (4.13 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

Kind

Very safe
Very safe

Hewlett-Packard Digital Imaging
Visitor's assessment Analyzerdetails
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe

Kind

Safe
Safe
Safe (4.13 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Skype\Plugin Manager\skypePM.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\PROGRA~1\COMMON~1\McAfee\MSC\McUICnt.exe

Kind

This is a unknown process.
Visitor's assessment Analyzerdetails
C:\Windows\SYSTEM32\taskeng.exe

Kind

Safe
Safe

Windows Vista Task Engine
Visitor's assessment Analyzerdetails
C:\Program Files\Mozilla Firefox\firefox.exe

Kind

Very safe
Very safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe

Kind

Safe
Safe
Neutral (3.31 / 5.00)
Visitor's assessment Analyzerdetails
C:\Program Files\Mozilla Firefox\plugin-container.exe

Kind

Very safe
Very safe
This is a unknown process.
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

Kind

Safe
Safe
Remember that Hijackthis must be run in an own folder. Only if Hijackthis run in an own folder it will create backups! This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Windows\system32\SearchFilterHost.exe

Kind

Safe
Safe

This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/10

Kind

This page has been identified as safe.
Visitor's assessment Analyzerdetails
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/10

Kind

This page has been identified as safe.
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin...

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?Lin...

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=m...

Kind

Safe
Safe
Safe (3.67 / 5.00)
Visitor's assessment Analyzerdetails
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell

Kind

This page has been identified as safe.
Visitor's assessment Analyzerdetails
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R3 - URLSearchHook: (no name) - - (no file)

Kind

Neutral
Neutral
Nasty (2.76 / 5.00)
Visitor's assessment Analyzerdetails
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

Kind

Very safe
Very safe
Safe (4.55 / 5.00)
Visitor's assessment Analyzerdetails
O1 - Hosts: ::1 localhost

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

Kind

Safe
Safe
Safe (4.1 / 5.00)
Visitor's assessment Analyzerdetails
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll

Kind

winamptb.dll - Winamp Toolbar, http://beta.aol.com/projects.php?pr... =winamp&loc=10
Visitor's assessment Analyzerdetails
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll

Kind

Unknown application.
Visitor's assessment Analyzerdetails
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll

Kind

Safe
Safe
jccatch.dll - FlashGet, http://www.trendmicro.com/vinfo/vir... yclo/default5.asp?VName=ADW_FLASHGET.A
Visitor's assessment Analyzerdetails
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

Kind

Safe
Safe
Unknown application.
Unnecessary (deactivated) entry that can be fixed. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

Kind

Very safe
Very safe
Windows Live Toolbar beta Search Enhancement Pack
Visitor's assessment Analyzerdetails
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

Kind

Very safe
Very safe
GrooveShellExtensions.dll Groove Virtual Office
Visitor's assessment Analyzerdetails
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100917160551.dll

Kind

scriptproxy.dll, scriptsn.dll - McAfee, http://us.mcafee.com/ ScriptScan
Visitor's assessment Analyzerdetails
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

Kind

Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

Kind

Very safe
Very safe
googletoolbar.dll, googletoolbar*.dll (* = number), googletoolbar_en_*.**-big.dll, Googletoolbar_en_*.*.**-deleon.dll. - Google toolbar, http://toolbar.google.com/
Visitor's assessment Analyzerdetails
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

Kind

swg.dll - Google Toolbar Notifier, http://googlesystem.blogspot.com/20... /google-is-your-default-search.html
Visitor's assessment Analyzerdetails
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

Kind

Safe (4.71 / 5.00)
Visitor's assessment Analyzerdetails
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

Kind

Very safe
Very safe
jp2ssv.dll - Sun_Java, http://java.sun.com/javase/download... ex.jsp browser plugin
Visitor's assessment Analyzerdetails
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

Kind

Safe
Safe
Unknown application. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll

Kind

Very safe
Very safe
getflash.dll - FlashGet, http://www.flashget.com
Visitor's assessment Analyzerdetails
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll

Kind

Very safe
Very safe
winamptb.dll - Winamp Toolbar, http://beta.aol.com/projects.php?pr... =winamp&loc=10
Visitor's assessment Analyzerdetails
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

Kind

Safe
Safe
Windows Live Toolbar
Visitor's assessment Analyzerdetails
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

Kind

Very safe
Very safe
Safe (4.55 / 5.00)
Visitor's assessment Analyzerdetails
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

Kind

Very safe
Very safe
googletoolbar.dll, googletoolbar*.dll (* = digit), googlenav.dll, googlenav*.dll, googletoolbar_en_*.**-big.dll, googletoolbar_en_*.*.**-deleon.dll - Google Toolbar
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

Kind

Very safe
Very safe
Windows Defender
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

Kind

Very safe
Very safe
Realtek Audio driver for Vista
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

Kind

Very safe
Very safe
ATI Core Component
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe" /m

Kind

Safe
Safe
Safe (3.67 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [dellsupportcenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter

Kind

Neutral
Neutral
Safe (3.96 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Module Loader] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun

Kind

Safe
Safe
Safe (4.22 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe" /r

Kind

Creative Sound Card
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

Kind

Very safe
Very safe
Not dangerous, but unnecessary. HP software updates. If a shortcut doesn't exist
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Kind

Very safe
Very safe
Java von Sun
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [TRUUpdater] "C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe" /bkground

Kind

Safe (4.03 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [WatcherHelper] "C:\Program Files\Sierra Wireless Inc\3G Watcher\WaHelper.exe"

Kind

Very safe
Very safe
Safe (4.23 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

Kind

Safe
Safe
Not dangerous, but unnecessary. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

Kind

Safe
Safe
Safe (4 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

Kind

Safe (4.41 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

Kind

Very safe
Very safe
Office 2007 Groove Monitor
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

Kind

Very safe
Very safe
Microsoft LifeCam
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [VX1000] C:\Windows\vVX1000.exe

Kind

Safe
Safe
Microsoft Webcam Software
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe

Kind

Safe (4.14 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

Kind

Very safe
Very safe
Not dangerous, but unnecessary. System Tray access to Apple's "Quick Time" viewer from version 5 onwards
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [WinampAgent] C:\Users\Kamil\Desktop\Winamp\winampa.exe

Kind

Loads the System Tray icon for the WinAmp media player. Can be used to mantain file associations so programs like QuickTime and RealPlayer don t take over as default player for various media types. Available via Start -> Programs
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Creative SB Monitoring Utility] RunDll32 sbavmon.dll,SBAVMonitor

Kind

Safe
Safe
Unknown application.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [CheckPoint Cleanup] C:\Users\Kamil\AppData\Local\Temp\cpes_clean_launcher.exe C:\Users\Kamil\AppData\Local\Temp\cpes_clean.exe

Kind

Unknown application.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

Kind

Very safe
Very safe
eHome Media Center PC related - Needed for Media Center Remote Functions
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

Kind

Safe
Safe
Safe (3.56 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

Kind

Very safe
Very safe
Microsoft s MSN Messenger 6
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe"

Kind

DVB-Software
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Google Update] "C:\Users\Kamil\AppData\Local\Google\Update\GoogleUpdate.exe" /c

Kind

Safe (3.64 / 5.00)
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"

Kind

Safe
Safe
Not dangerous, but unnecessary. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

Kind

Safe
Safe
Not dangerous, but unnecessary. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

Kind

Neutral
Neutral
Desktop Sidebar
Visitor's assessment Analyzerdetails
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

Kind

Safe
Safe
Unknown application. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

Kind

Safe
Safe
Desktop Sidebar
Visitor's assessment Analyzerdetails
O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe

Kind

Safe
Safe
Safe (4.67 / 5.00)
Visitor's assessment Analyzerdetails
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

Kind

Safe
Safe
System Tray access to HP Director. Required if you prefer to use the all-in-one buttons to manually scan documents or transfer photos froma camera
Visitor's assessment Analyzerdetails
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?

Kind

Unknown application.
The entry is unnecessary and can be fixed.
Visitor's assessment Analyzerdetails
O8 - Extra context menu item: &Download All with FlashGet - C:\PROGRA~1\FlashGet\jc_all.htm

Kind

The entry &Download All with FlashGet has been identified as safe.
Visitor's assessment Analyzerdetails
O8 - Extra context menu item: &Download with FlashGet - C:\PROGRA~1\FlashGet\jc_link.htm

Kind

The entry &Download with FlashGet has been identified as safe.
Visitor's assessment Analyzerdetails
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

Kind

The entry E&xport to Microsoft Excel has been identified as safe.
Visitor's assessment Analyzerdetails
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.ht ml

Kind

The entry Google Sidewiki... has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

Kind

Very safe
Very safe
The entry Blog This has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

Kind

Very safe
Very safe
The entry &Blog This in Windows Live Writer has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

Kind

The entry Send to OneNote has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

Kind

The entry S&end to OneNote has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

Kind

Very safe
Very safe
The entry Research has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe

Kind

Very safe
Very safe
The entry FlashGet has been identified as safe.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe

Kind

Safe
Safe
The entry FlashGet has been identified as safe.
Visitor's assessment Analyzerdetails
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

Kind


Visitor's assessment Analyzerdetails
O13 - Gopher Prefix:

Kind

Safe
Safe
Safe (4.25 / 5.00)
Visitor's assessment Analyzerdetails
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/get...

Kind

Very safe
Very safe
Check if you know this site and fix it if you do not. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B00FC38-6948-40ED-8CEF-2F826AFB2370}: NameServer = 62.40.32.33,62.40.32.34

Kind

Do you know the IP or Domain '62.40.32.33,62.40.32.34'? If not, fix this entry.
Visitor's assessment Analyzerdetails
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

Kind

Safe (4.55 / 5.00)
Visitor's assessment Analyzerdetails
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

Kind

Very safe
Very safe
This entry has been identified as safe.
Visitor's assessment Analyzerdetails
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

Kind

Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

Kind

This entry has been identified as safe.
Visitor's assessment Analyzerdetails
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll

Kind

Very safe
Very safe
Safe (4.19 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Windows\system32\AERTSrv.exe

Kind

Safe
Safe
Unknown service. (AERTSrv.exe) This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

Kind

Very safe
Very safe
This service (Ati2evxx.exe) was identified as a good one.
Visitor's assessment Analyzerdetails
O23 - Service: Creative ALchemy AL1 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL1Licensing.exe

Kind

Neutral
Neutral
Safe (3.93 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Creative Media Toolbox 6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\MT6Licensing.exe

Kind

Safe (3.93 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe

Kind

Safe
Safe
Safe (4.24 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe

Kind

Very safe
Very safe
Safe (4.67 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe

Kind

Very safe
Very safe
Safe (3.92 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

Kind

Safe
Safe
Safe (3.82 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

Kind

Safe
Safe
This service (GoogleUpdaterService.exe) was identified as a good one. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

Kind

Safe
Safe
This service (IDriverT.exe) was identified as a good one. This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

Kind

Safe (4.44 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe

Kind

Neutral
Neutral
Unknown service. (McCHSvc.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe

Kind

This service (mcods.exe) was identified as a good one.
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McShield - McAfee, Inc. - C:Program FilesCommon FilesMcAfeeSystemCore\mcshield.exe

Kind

This service (mcshield.exe) was identified as a good one.
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:Program FilesCommon FilesMcAfeeSystemCore\mfefire.exe

Kind

Unknown service. (mfefire.exe)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

Kind

Safe (3.71 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe

Kind

Unknown service. (McSvHost.exe)
Visitor's assessment Analyzerdetails
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - PC Tools - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe

Kind

Neutral
Neutral
Safe (4.14 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe

Kind

Neutral
Neutral
Safe (3.96 / 5.00)
Visitor's assessment Analyzerdetails
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

Best Regards

Waldex63


Report •

Related Solutions

#4
September 21, 2010 at 01:34:01

I use to find that virus-Trojan Hunter5,and Malwerbytes,and Spyware Terminator.I have McAfee Internet security system

Kind Regards


Report •

#5
September 21, 2010 at 09:10:34

I use to find that virus-Trojan Hunter5,and Malwerbytes,and Spyware Terminator.I have run McAfee Internet security system.

Regards


Report •

#6
September 21, 2010 at 09:49:38

Visitor's assessment Analyzerdetails
R3 - URLSearchHook: (no name) - - (no file)

Kind

Neutral
Neutral
Nasty (2.76 / 5.00)

Report •

#7
September 23, 2010 at 01:51:46

have u solved all or your issues, i think u have a rootkit problem which is not good at all run hijackthis and post log file upon next post

I am here for a reason.
For help or
To help,


Report •


Ask Question