Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HELP ME LOL


  • This topic is locked This topic is locked
2 replies to this topic

#1 Divo69

Divo69

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:22 PM

Posted 13 October 2008 - 08:17 PM

comp is running like crap here are my specs intel coretm 2 cpu 4300 2.39 ghz, 2g ram vista 64

here are the logs..mind you i am not very computer savy so please help me as if I were a 5 yo, well a 5 yo may have more comp savy than me.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:52:07 PM, on 10/13/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\EndItAll\enditall.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\userinit.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.1.9.24.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files (x86)\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: (no name) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - (no file)
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files (x86)\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [PhotoExplosionCalCheck] C:\Program Files (x86)\Nova Development\Photo Explosion 3.0 SE\calcheck.exe
O4 - HKLM\..\Run: [iPodVideoConverter_upgrade] "C:\Program Files (x86)\E-Zsoft\iPodVideoConverter\iPodVideoConverter.exe" /upgrade
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MyWebSearch Plugin] rundll32 C:\PROGRA~2\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL,UPF
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DW4] "C:\Program Files (x86)\The Weather Channel FW\Desktop Weather\DesktopWeather.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7414] command /c del "C:\Program Files\SpywareDetector\ExcludeDB.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3261] cmd /c del "C:\Program Files\SpywareDetector\ExcludeDB.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4745] command /c del "C:\Program Files\SpywareDetector\unins000.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8243] cmd /c del "C:\Program Files\SpywareDetector\unins000.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4759] command /c del "C:\Program Files\SpywareDetector\Data\Exclude.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2090] cmd /c del "C:\Program Files\SpywareDetector\Data\Exclude.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2863] command /c del "C:\Program Files\SpywareDetector\Data\SD1.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1585] cmd /c del "C:\Program Files\SpywareDetector\Data\SD1.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3509] command /c del "C:\Program Files\SpywareDetector\Data\SD11.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8435] cmd /c del "C:\Program Files\SpywareDetector\Data\SD11.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3080] command /c del "C:\Program Files\SpywareDetector\Data\SD12.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9275] cmd /c del "C:\Program Files\SpywareDetector\Data\SD12.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4349] command /c del "C:\Program Files\SpywareDetector\Data\SD13.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5579] cmd /c del "C:\Program Files\SpywareDetector\Data\SD13.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7716] command /c del "C:\Program Files\SpywareDetector\Data\SD14.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8137] cmd /c del "C:\Program Files\SpywareDetector\Data\SD14.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3868] command /c del "C:\Program Files\SpywareDetector\Data\SD15.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2000] cmd /c del "C:\Program Files\SpywareDetector\Data\SD15.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1974] command /c del "C:\Program Files\SpywareDetector\Data\SD16.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD519] cmd /c del "C:\Program Files\SpywareDetector\Data\SD16.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5128] command /c del "C:\Program Files\SpywareDetector\Data\SD18.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7183] cmd /c del "C:\Program Files\SpywareDetector\Data\SD18.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2689] command /c del "C:\Program Files\SpywareDetector\Data\SD19.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD655] cmd /c del "C:\Program Files\SpywareDetector\Data\SD19.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB253] command /c del "C:\Program Files\SpywareDetector\Data\SD2.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7446] cmd /c del "C:\Program Files\SpywareDetector\Data\SD2.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5571] command /c del "C:\Program Files\SpywareDetector\Data\SD20.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5959] cmd /c del "C:\Program Files\SpywareDetector\Data\SD20.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9464] command /c del "C:\Program Files\SpywareDetector\Data\SD21.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6029] cmd /c del "C:\Program Files\SpywareDetector\Data\SD21.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2992] command /c del "C:\Program Files\SpywareDetector\Data\SD22.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7790] cmd /c del "C:\Program Files\SpywareDetector\Data\SD22.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5419] command /c del "C:\Program Files\SpywareDetector\Data\SD23.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD783] cmd /c del "C:\Program Files\SpywareDetector\Data\SD23.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8416] command /c del "C:\Program Files\SpywareDetector\Data\SD24.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5527] cmd /c del "C:\Program Files\SpywareDetector\Data\SD24.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7563] command /c del "C:\Program Files\SpywareDetector\Data\SD25.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD442] cmd /c del "C:\Program Files\SpywareDetector\Data\SD25.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2773] command /c del "C:\Program Files\SpywareDetector\Data\SD26.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9167] cmd /c del "C:\Program Files\SpywareDetector\Data\SD26.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2048] command /c del "C:\Program Files\SpywareDetector\Data\SD27.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8444] cmd /c del "C:\Program Files\SpywareDetector\Data\SD27.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2817] command /c del "C:\Program Files\SpywareDetector\Data\SD28.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3718] cmd /c del "C:\Program Files\SpywareDetector\Data\SD28.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2876] command /c del "C:\Program Files\SpywareDetector\Data\SD29.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3102] cmd /c del "C:\Program Files\SpywareDetector\Data\SD29.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1321] command /c del "C:\Program Files\SpywareDetector\Data\SD3.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1854] cmd /c del "C:\Program Files\SpywareDetector\Data\SD3.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4000] command /c del "C:\Program Files\SpywareDetector\Data\SD31.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7164] cmd /c del "C:\Program Files\SpywareDetector\Data\SD31.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB446] command /c del "C:\Program Files\SpywareDetector\Data\SD4.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6250] cmd /c del "C:\Program Files\SpywareDetector\Data\SD4.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB965] command /c del "C:\Program Files\SpywareDetector\Data\SD5.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8883] cmd /c del "C:\Program Files\SpywareDetector\Data\SD5.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2429] command /c del "C:\Program Files\SpywareDetector\Data\SD6.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6359] cmd /c del "C:\Program Files\SpywareDetector\Data\SD6.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1771] command /c del "C:\Program Files\SpywareDetector\Data\SD7.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7553] cmd /c del "C:\Program Files\SpywareDetector\Data\SD7.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5408] command /c del "C:\Program Files\SpywareDetector\Data\SD8.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD828] cmd /c del "C:\Program Files\SpywareDetector\Data\SD8.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8613] command /c del "C:\Program Files\SpywareDetector\Data\SD9.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4768] cmd /c del "C:\Program Files\SpywareDetector\Data\SD9.DB"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3202] command /c del "C:\Program Files\SpywareDetector\Data\sd_d85e.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9729] cmd /c del "C:\Program Files\SpywareDetector\Data\sd_d85e.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1402] command /c del "C:\Program Files\SpywareDetector\Data\SM1.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9353] cmd /c del "C:\Program Files\SpywareDetector\Data\SM1.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4544] command /c del "C:\Program Files\SpywareDetector\Data\SM2.db"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9702] cmd /c del "C:\Program Files\SpywareDetector\Data\SM2.db"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: VPro620.lnk = ?
O8 - Extra context menu item: &Search - ?p=ZKxdm011YYUS
O8 - Extra context menu item: Add to QQ Customized Emoticons - C:\Program Files (x86)\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: Add to QQ Customized Panel - C:\Program Files (x86)\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: Add to QQ Emotions - C:\Program Files (x86)\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: Download with Youtube2iPod - C:\Program Files (x86)\Angoe Solutions\ContextMenu.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send picture by MMS - C:\Program Files (x86)\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: Send Picture with QQ MMS - C:\Program Files (x86)\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: Upload to QQ Network Hard Disk - C:\Program Files (x86)\Tencent\QQ\AddToNetDisk.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.1.9.24.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files (x86)\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Download with Youtube2iPod - {73116ADB-B1AF-4062-A2B3-090B57B2E07D} - C:\Program Files (x86)\Angoe Solutions\Button.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files (x86)\Tencent\QQ\QQ.EXE (file missing)
O9 - Extra 'Tools' menuitem: Tencent QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files (x86)\Tencent\QQ\QQ.EXE (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files (x86)\Bodog Poker\BPGame.exe
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.7.109.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jin...ows-i586-jc.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Br...018/flashax.cab
O20 - Winlogon Notify: avgwlx64 - C:\Windows\
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgemc.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxddCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\x64\3\\lxddserv.exe
O23 - Service: lxdd_device - - C:\Windows\system32\lxddcoms.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files (x86)\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files (x86)\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: SDService - Max Secure Software - C:\Program Files\SpywareDetector\SDService.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 20124 bytes

BC AdBot (Login to Remove)

 


#2 maranatha

maranatha

    Whats That !


  • Malware Response Team
  • 1,229 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle Washington
  • Local time:11:22 AM

Posted 25 October 2008 - 12:40 PM

Hi Divo69
Welcome to BleepingComputer.

I'm maranatha and I will be handling your log. I am a student here at BC so all my posts will be checked by one of our experts, so there may be a slight delay between posts.

Unfortunately the tools we use do not work on 64 bit versions of Windows and it is rare that 64 bit versions will get infected at this time for this same reason.

Please reboot your Computer if you have not done so after running Spybot Search and Destroy and post a new Hijackthis log. I would also like to see a "Uninstall list" from HJT.
Here is how.

To get an Uninstall List from HijackThis:
  • Open HijackThis, click Config, click Misc Tools
  • Click "Open Uninstall Manager"
  • Click "Save List" (generates uninstall_list.txt)
  • Click Save, copy and paste the results in your next post.
Please post the Uninstall list and a new HJT log.

Thanks
maranatha

Windows7 Professional 64 Bit

 

I'm going in the wrong direction to be in a hurry!


unite_mo.jpg


My help is always free, But I do accept donations.
Donate Here


#3 Blender

Blender

    I will eat your Malware


  • Malware Response Team
  • 2,363 posts
  • OFFLINE
  •  
  • Location:Ontario
  • Local time:02:22 PM

Posted 03 November 2008 - 11:08 PM

Hi,

Due to lack of response by the OP this topic is now closed.
If you need further assistance please PM a moderator with a link to your topic.
This applies to origional topic starter only.
All others with similar issues please start yourself a new topic.

Thanks,

Blender
I'll have an order of massive trojan attack please with a side order of rootkit and virus dip.
Pre-course order of fresh spyware salad please with a side order of polymorphic dressing.
And to drink...a nice tall glass of adware!

For dessert; can I have a bowl of the freshest worms you have please?.

Never Give Up!

If you are happy with the service I provided, please consider making a donation to help me continue the fight against Malware Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users