User Login

Login
Lost Password?
PC Support Forums
Welcome, Guest
Please Login or Register.    Lost Password?
PC Support Forums Malware Removal Guidance/Help FreeFixer Logs
My FreeFixer Log (1 viewing) (1) Guests
Go to bottom Post Reply Favoured: 0
TOPIC: My FreeFixer Log
#6
Peoples31 (User)
Fresh Boarder
Posts: 1
graphgraph
User Offline Click here to see the profile of this user
My FreeFixer Log 1 Year, 12 Months ago Karma: 0  
Just a few FYIs: I am running VNC, Hamachi, and TivoServer and I have CA-ANTITRUST Antivirus...that may explain some of this stuff.

Thanks for the help!!


FreeFixer v0.25 log
http://www.freefixer.com/
Operating system: Windows XP
Log dated 2007-11-26 00:45


Transport service providers (3 whitelisted)
{E60B1FF5-B52B-4362-82F4-B9DAF25BAD82} - C:\WINDOWS\System32\VetRedir.dll
{AE2578B4-F478-4313-9A3E-1B83F7A643DF} - C:\WINDOWS\System32\VetRedir.dll

Browser Helper _object_s
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}, Adobe PDF Reader _link_ Helper, C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}, SSVHelper Class, C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

Registry Startups (2 whitelisted)
HKLM\..\Run, Cmaudio = RunDll32 cmicnfg.cpl,CMICtrlWnd
HKLM\..\Run, NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
HKLM\..\Run, nwiz = nwiz.exe /install
HKLM\..\Run, NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
HKLM\..\Run, WinVNC = "C:\Program Files\UltraVNC\WinVNC.exe" -servicehelper
HKLM\..\Run, cctray = "C:\Program Files\CA ISS\cctray\cctray.exe"
HKLM\..\Run, CAVRID = "C:\Program Files\CA ISS\CA Anti-Virus\CAVRID.exe"
HKLM\..\Run, Lexmark X1100 Series = "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
HKLM\..\Run, TrueImageMonitor.exe = C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
HKLM\..\Run, AcronisTimounterMonitor = C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
HKLM\..\Run, Acronis Scheduler2 Service = "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
HKLM\..\Run, Adobe Reader Speed Launcher = "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM\..\Run, IntelliPoint = "C:\Program Files\Microsoft IntelliPoint\point32.exe"
HKLM\..\Run, googletalk = C:\Program Files\Google\Google Talk\googletalk.exe /autostart
HKLM\..\Run, QuickTime Task = "C:\Program Files\QuickTime\QTTask.exe" -atboottime
HKLM\..\Run, iTunesHelper = "C:\Program Files\iTunes\iTunesHelper.exe"
HKCU\..\Run, GoodSync = "C:\Program Files\GoodSync\GoodSync.exe" /min
HKCU\..\Run, TivoTransfer = "C:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe" /service /registry /auto:TivoTransfer
HKCU\..\Run, TivoNotify = "C:\Program Files\TiVo\Desktop\TiVoNotify.exe" /service /registry /auto:TivoNotify
HKCU\..\Run, TivoServer = "C:\Program Files\TiVo\Desktop\TiVoServer.exe" /service /registry /auto:TivoServer

Autostart shortcuts
GN-WPKG Utility.lnk, , C:\Program Files\Gigabyte\Gigabyte GN-WPKG Wireless PCI Adapter SoftAP\Installer\WINXP\RaConfig2500.exe
GoodSync V6.lnk, , C:\Program Files\GoodSync\GoodSync.exe
Hamachi.lnk, Hamachi Client, C:\Program Files\Hamachi\hamachi.exe
hamachi.lnk, Hamachi, C:\Program Files\Hamachi\hamachi.exe

Processes (16 whitelisted)
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\BlueSoleil\BTNtService.exe
C:\Program Files\CA ISS\CA Anti-Virus\ISafe.exe
C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\Program Files\CA ISS\CA Anti-Virus\VetMsg.exe
C:\Program Files\UltraVNC\WinVNC.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\CA ISS\cctray\cctray.exe
C:\Program Files\CA ISS\CA Anti-Virus\CAVRID.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\CA ISS\CA Anti-Spyware\CAPPActiveProtection.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\CA ISS\CA Anti-Spyware\PPCtlPriv.exe
C:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe
C:\Program Files\TiVo\Desktop\TiVoNotify.exe
C:\Program Files\TiVo\Desktop\TiVoServer.exe
C:\Program Files\Gigabyte\Gigabyte GN-WPKG Wireless PCI Adapter SoftAP\Installer\WINXP\RaConfig2500.exe
C:\Program Files\CA ISS\ccprovsp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\GoodSync\GoodSync.exe
C:\Program Files\Hamachi\hamachi.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\FreeFixer\freefixer.exe

Services (35 whitelisted)
AcrSch2Svc, Acronis Scheduler2 Service, c:\program files\common files\acronis\schedule2\schedul2.exe
BlueSoleil Hid Service, BlueSoleil Hid Service, c:\program files\bluesoleil\btntservice.exe
CAISafe, CAISafe, c:\program files\ca iss\ca anti-virus\isafe.exe
ITMRTSVC, CA Pest Patrol Realtime Protection Service, c:\program files\ca\sharedcomponents\pprt\bin\itmrtsvc.exe
LexBceS, LexBce Server, c:\windows\system32\lexbces.exe
NVSvc, NVIDIA Display Driver Service, c:\windows\system32\nvsvc32.exe
SbieSvc, Sandboxie Service, c:\program files\sandboxie\sbiesvc.exe
TivoBeacon2, TiVo Beacon, c:\program files\common files\tivo shared\beacon\tivobeacon.exe
UMWdf, Windows User Mode Driver _frame_work, c:\windows\system32\wdfmgr.exe
VETMSGNT, VET Message Service, c:\program files\ca iss\ca anti-virus\vetmsg.exe
winvnc, VNC Server, c:\program files\ultravnc\winvnc.exe
WMDM PMSP Service, WMDM PMSP Service, c:\windows\system32\mspmspsv.exe
Xdrive Service, Xdrive Service, c:\program files\xdrive\xdriveservice.exe (file is missing)

Drivers (31 whitelisted)
AegisP, AEGIS Protocol (IEEE 802.1x) v3.4.1.0, C:\WINDOWS\System32\drivers\aegisp.sys
AVG Anti-Rootkit, AVG Anti-Rootkit, C:\WINDOWS\System32\drivers\avgarkt.sys
AvgArCln, Avg Anti-Rootkit Clean Driver, C:\WINDOWS\System32\drivers\avgarcln.sys
BTHidMgr, Bluetooth HID Manager Service, C:\WINDOWS\System32\drivers\bthidmgr.sys
ElbyCDIO, ElbyCDIO Driver, C:\WINDOWS\System32\drivers\elbycdio.sys
PxHelp20, PxHelp20, C:\WINDOWS\System32\drivers\pxhelp20.sys
SI3112r, Silicon Image SiI 3512 SATARaid Controller, C:\WINDOWS\System32\drivers\si3112r.sys
SiFilter, SATA_link_ driver accelerator, C:\WINDOWS\System32\drivers\siwinacc.sys
snapman, Acronis Snapshots Manager, C:\WINDOWS\System32\drivers\snapman.sys
timounter, Acronis True Image Backup Archive Explorer, C:\WINDOWS\System32\drivers\timntr.sys
vnccom, vnccom, C:\WINDOWS\System32\drivers\vnccom.sys
 
Report to moderator   Logged Logged  
  The administrator has disabled public write access.
#9
raghuveer (Admin)
Admin
Posts: 30
graph
User Offline Click here to see the profile of this user
ICQ#: 179208821 Gender: Male securitywonks SecurityWonks.net raghu_den drvvarma@hotmail.com drvvarma Location: Asia - Pacific
Re:My FreeFixer Log 1 Year, 12 Months ago Karma: 2  
Dear Peoples31

I didnot find any much suspicious thing in your log,

feel free to post in the trouble you are having in, so I can share thoughts in that perspective

thank you
 
Report to moderator   Logged Logged  
  The administrator has disabled public write access.
Go to top Post Reply
Powered by FireBoardget the latest posts directly to your desktop