Jump to content

Friend Ben's hijackthis! log - infected


jnk27
 Share

Recommended Posts

Attached is my friend Ben's hijackthis! log. I haven't been able to access his system for the 16 step program yet.

Thanks in advance.

John

Logfile of HijackThis v1.99.1

Scan saved at 9:16:25 PM, on 2/21/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\WINDOWS\System32\cisvc.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\WINDOWS\System32\HPZipm12.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\wanmpsvc.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe

C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe

C:\Program Files\Microsoft IntelliType Pro\type32.exe

C:\Program Files\Microsoft IntelliPoint\point32.exe

C:\WINDOWS\BCMSMMSG.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\Program Files\Common Files\AOL\1153434470\ee\AOLSoftware.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Documents and Settings\Ben\Application Data\W?nSxS\r?ndll.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\America Online 9.0\aoltray.exe

C:\Program Files\AOL Companion\companion.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe

C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe

c:\program files\common files\aol\1153434470\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1153434470\ee\aolsoftware.exe

C:\Program Files\Grisoft\AVG Free\avgw.exe

C:\Program Files\Grisoft\AVG Free\avgwb.dat

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\Ben\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dellnet.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.thesims.com/

R3 - URLSearchHook: (no name) - {5979954A-5AA5-7077-A19C-07D58427E398} - C:\WINDOWS\System32\qlowys.dll

O1 - Hosts: 157.17.29.6 securityresponse.symantec.com

O1 - Hosts: 41.232.171.147 symantec.com

O1 - Hosts: 224.254.26.138 www.sophos.com

O1 - Hosts: 193.218.17.231 sophos.com

O1 - Hosts: 182.94.206.144 www.mcafee.com

O1 - Hosts: 115.253.3.134 mcafee.com

O1 - Hosts: 108.171.161.86 liveupdate.symantecliveupdate.com

O1 - Hosts: 156.219.228.68 www.viruslist.com

O1 - Hosts: 139.188.181.253 viruslist.com

O1 - Hosts: 72.18.43.81 viruslist.com

O1 - Hosts: 215.75.216.50 f-secure.com

O1 - Hosts: 48.195.151.11 www.f-secure.com

O1 - Hosts: 91.70.135.34 kaspersky.com

O1 - Hosts: 80.76.253.155 kaspersky-labs.com

O1 - Hosts: 11.245.1.202 www.avp.com

O1 - Hosts: 22.84.39.109 www.kaspersky.com

O1 - Hosts: 112.241.230.8 avp.com

O1 - Hosts: 143.44.53.103 www.networkassociates.com

O1 - Hosts: 230.227.115.137 networkassociates.com

O1 - Hosts: 51.118.31.128 www.ca.com

O1 - Hosts: 112.158.55.127 ca.com

O1 - Hosts: 186.165.190.160 mast.mcafee.com

O1 - Hosts: 13.128.111.169 my-etrust.com

O1 - Hosts: 4.200.101.203 www.my-etrust.com

O1 - Hosts: 46.41.102.172 download.mcafee.com

O1 - Hosts: 138.169.11.43 dispatch.mcafee.com

O1 - Hosts: 51.252.104.189 secure.nai.com

O1 - Hosts: 235.52.8.212 nai.com

O1 - Hosts: 121.121.67.24 www.nai.com

O1 - Hosts: 3.184.92.243 update.symantec.com

O1 - Hosts: 118.218.218.72 updates.symantec.com

O1 - Hosts: 136.244.143.52 us.mcafee.com

O1 - Hosts: 235.17.74.194 liveupdate.symantec.com

O1 - Hosts: 76.115.22.131 customer.symantec.com

O1 - Hosts: 35.129.151.202 rads.mcafee.com

O1 - Hosts: 125.178.207.35 trendmicro.com

O1 - Hosts: 189.158.244.48 www.trendmicro.com

O2 - BHO: (no name) - {0004F8FA-6FB6-4AF8-B0F2-78F71186142D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {02B1BA3F-EFFE-48A5-88D5-4A1F80EFF953} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {03C4C11A-95CA-4C37-915E-DB9ECFC8B6E8} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {056493CB-80CE-45AA-B71F-036B421FA312} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {05BAFA30-7201-455E-AE50-39E44F5E7D3E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {090D20D4-A116-4910-8592-6A33F9CBBD18} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {09E30909-B341-418A-885C-7EB65824CF73} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {0CD4F901-D4EE-41A6-A202-1A219ACDB22E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {0CEC1CE8-6EC2-46C2-8EB3-7BE9C21036CB} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {0CFFE5C0-B598-460E-8E0C-BCCE9219C8AB} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {0D630629-E389-4B83-93B4-8626B614DC57} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {0F7D332A-4F17-442E-B8C1-85831C7C48C2} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {11613C9B-2CA8-4E0C-A8AE-6B97BCA81E5B} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {18DFE729-8657-49D2-8351-2068E5C37423} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {22AD9820-47DF-43ED-9806-2CD361A1289D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {256A9641-9BC5-48D8-A113-A969FBFF1C09} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {2A2BCF2D-EDF0-4A87-8B1E-E2ACB57D0D0C} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {2E066DF5-FA63-41CE-8626-65BF0E62EEA7} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {31D26C76-E005-463B-BC57-2A47FA460E4D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {31EC5FB7-11AB-4CF8-9621-DF9169A3F290} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {323541CE-1276-4A71-9B7F-DDCB265C7867} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {325DB35C-BEEA-47B3-9723-4067DFD037E8} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {34AB4FC3-BA2A-4CC3-94C6-C227A080754F} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {37AD2858-B446-4F4D-BE6F-92287DFC2A07} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {37AE25E5-14FC-478B-8DC5-E481CCA79AC5} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {38E55996-5CA1-4A3C-8988-1B9AC518402E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {3B9CFDD7-9D0D-4F9A-9D25-BF3E2E6B6A33} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {3BB07294-B5C2-4618-8408-0930709F0F27} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {3E69EB3C-E296-4BC5-877A-1B30EE78869E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {3EE497FA-53B8-4010-86C9-012C896FDA58} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {480212C2-3058-446C-BC3A-2BD10C5DA2E3} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {4A224E97-AB66-4F52-8BB0-EC1DA5DA85BF} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {4A3C899C-CF04-45AE-B561-4BEBF64243B0} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {4AC342A3-E66B-4B4A-A286-3956A1B41B2E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {4E07AD9E-DC2A-40E9-B35D-DFCFF8533AF7} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {50703D78-97D0-49BB-8090-2C34479F9AB9} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {526FDCA7-1D4C-4744-8E8A-8BEFA01BF042} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {56DACC58-42B8-44E9-A652-8D7B3150BE33} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {57A2E4B7-3DBA-4627-855F-AB3CE98B3919} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {57AE0178-A543-46AB-8821-3FADB5D5376D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {5979954A-5AA5-7077-A19C-07D58427E398} - C:\WINDOWS\System32\qlowys.dll

O2 - BHO: (no name) - {5FD8CF7C-4F9E-4CE4-9D84-9462C66D73C3} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {6098BC50-CB46-449F-BAED-51C24D6BE445} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {6609176A-56B4-4DD8-92F3-E19CAE8F8857} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {6C9513F2-5195-426E-A522-C5D328580029} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {730E629B-0132-4D7A-9A60-4E6A9B17C7F5} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {741973E3-9C50-4875-A643-FA91465C4D2D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {74D0C36C-D503-42FD-BC81-A26EC434A804} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: (no name) - {79E6E184-96FF-4549-A557-2BC28A2DE15C} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {7F351711-8E83-4442-B552-7AD5EA793489} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {80306525-3FBC-4C4E-8062-62B8A064A40E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {862F3E21-F008-494C-ABB3-647BCF9D204D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {8867215B-98F3-429C-B480-6AEAA4CA91D3} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {8A15E663-80F1-4C40-8872-4BDAF85FAD89} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {8B45672E-E01B-4C5C-B9D7-146305A83BEC} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {8F7EF591-1974-4867-8FBE-05BDF0687C7E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {931DD796-ACF3-476E-93D5-9F79417F2034} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {942EE484-8AEE-407B-B660-C859BD489B74} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {987B0C7F-1305-4ADB-8AFB-ED18BDB6ED8F} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {9907FA9A-002E-4AC2-9264-F632EED13B05} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {996861DA-436A-4388-9534-B6653B6C1503} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {9CB41649-B91D-487F-AC49-10A6208EE168} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {A4F4BD0C-FCAF-4885-9D19-AA1B9C865E80} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {AB69AA02-7DC4-4AB6-867F-6A3B23D57D60} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {ACA56771-E6C5-4A13-9299-5238A6F6885D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {B55053C4-8EA4-4EEC-BF10-A3DFD6A2518E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {B6BCA2EB-1DE9-48B2-BC2F-2B283126CB08} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {B7E30879-EE9D-480A-A9D1-10573D322E39} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {B8F34D89-8AF5-4B5B-A141-7BBB16A5B4DF} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {BDC9025D-9889-4B2F-BDB3-29BA327AAF84} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {BE79BB0E-ECFB-4685-9F39-053680DCF2B4} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {C18887E5-82CD-445A-A0AF-D0CA33D93396} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {C7288513-AF98-4C20-8669-320F3E87EEB5} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {C801474B-D3E0-4E46-8F9A-72AF7E1FE0B4} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {CB437F07-42E2-4497-AD91-F712EBB9AE23} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {CC1E4670-DCE4-4419-AD0D-D311B6AA13E6} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {CD308793-1A2F-420A-9643-12E696152F0C} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {CDCB60F3-9A57-4232-AE06-05B044795F80} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {CF4BFBD9-F4FF-4220-B4D0-0E2CE9DCB54B} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {D2BE091B-7E38-4A48-9C8E-FFCD82D0466E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {D4F5BE7B-DF70-49F9-AEFF-2F266D3FBE0E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {DBE88CE0-D7C1-4BD3-8379-01D2774FB99E} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {DDBE14B0-40C3-4A75-B880-AA7B97277613} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {E19CF9B8-9415-4E6A-8E80-49E2A07132A0} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {E2B1132A-1C0F-463E-8F04-CDB7C0ED26CE} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {E8B10CA1-E809-467C-A92A-D51D30372D30} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {E962CDBB-1FFF-4555-9649-636D9545513F} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {E9AFED30-B826-4119-8734-45C1C5BCA2F9} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {EA990E45-3134-455F-ADFC-5FA43ECA42F5} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {EE745989-19EF-4C46-8E13-53A05A192653} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {EFCBAADA-D706-43DA-9F21-66A1816DD54B} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {F2DA832B-A04B-4757-9B60-F5DC12DFCDA4} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {F5AD472A-10BF-4968-B3E7-9785660EBB9C} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {F5D2AA76-55F9-47B4-85A3-0C142D7BF96D} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {FA7F20AA-A2E8-41C2-9DB3-1F138DAEEB11} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {FBBDB4AF-662C-442E-A24E-BEA86151F307} - C:\Program Files\CSBB\CSBB.dll (file missing)

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll

O2 - BHO: (no name) - {FECC77A0-4A0D-4BBD-8C7E-B3749993105A} - C:\Program Files\CSBB\CSBB.dll (file missing)

O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll

O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe

O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe

O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe

O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"

O4 - HKLM\..\Run: [intelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"

O4 - HKLM\..\Run: [bCMSMMSG] BCMSMMSG.exe

O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe

O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1153434470\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [{F4A6B3EF-095F-1033-0917-020614020001}] "C:\Program Files\Common Files\{F4A6B3EF-095F-1033-0917-020614020001}\Update.exe" mc-110-12-0000501

O4 - HKLM\..\Run: [winsock32] winsock32

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\RunServices: [winsock32] winsock32

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [M005RjZme] panemui.exe

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [winsock32] winsock32

O4 - HKCU\..\Run: [ifentwkk] C:\Documents and Settings\Ben\Application Data\W?nSxS\r?ndll.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: AOL Companion.lnk = C:\Program Files\AOL Companion\companion.exe

O4 - Global Startup: Digital Line Detect.lnk = ?

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?

O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll

O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll

O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://www.neededware.com

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1118953288872

O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing)

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe

O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

Link to post
Share on other sites

First download AVG Anti-Spyware from HERE and save that file to your desktop.

This is a 30 day trial of the program

  1. Once you have downloaded AVG Anti-Spyware, locate the icon on the desktop and double-click it to launch the set up program.
  2. Once the setup is complete you will need run AVG Anti-Spyware and update the definition files.
  3. On the main screen select the icon "Update" then select the "Update now" link.
    • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.

[*]Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.

[*]Once in the Settings screen click on "Recommended actions" and then select "Quarantine".

[*]Under "Reports"

  • Select "Automatically generate report after every scan"
  • Un-Select "Only if threats were found"

Close AVG Anti-Spyware, Do Not run a scan just yet, we will shortly.

  1. Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
    IMPORTANT: Do not open any other windows or programs while AVG Anti-Spyware is scanning, it may interfere with the scanning proccess:
  2. Lauch AVG Anti-Spyware by double-clicking the icon on your desktop.
  3. Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
  4. AVG Anti-Spyware will now begin the scanning process, be patient this may take a little time.
    Once the scan is complete do the following:
  5. If you have any infections you will prompted, then select "Apply all actions"
  6. Next select the "Reports" icon at the top.
  7. Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
  8. Close AVG Anti-Spyware and reboot your system back into Normal Mode and post the results of the AVG Anti-Spyware report scan.
Link to post
Share on other sites

To fix that issue...

Download the HostsXpert 3.7 - Hosts File Manager.

  • Unzip HostsXpert 3.7 - Hosts File Manager to a convenient folder such as C:\HostsXpert
  • Click HostsXpert.exe to Run HostsXpert 3.7 - Hosts File Manager from its new home
  • Click "Make Hosts Writable?" in the upper right corner (If available).
  • Click Restore Microsoft's Hosts file and then click OK.
  • Click the X to exit the program.
  • Note: If you were using a custom Hosts file you will need to replace any of those entries yourself.
Link to post
Share on other sites

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.