Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijack log


  • This topic is locked This topic is locked
9 replies to this topic

#1 wags

wags

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 12 August 2004 - 05:23 PM

I am in need of some serious help. My wife has her computer full of malware (pop-ups, ALL the BEST, HSW....) and uses it for her small business. The system is also running very slow. Can someone be so kind as to look at the log below>

Thanks!

Logfile of HijackThis v1.98.2
Scan saved at 5:54:15 PM, on 12/08/2004
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\SSDPSRV.EXE
C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\SAGENT2.EXE
C:\WINDOWS\APIAO32.EXE
C:\WINDOWS\CRXD32.EXE
C:\WINDOWS\CRUG32.EXE
C:\WINDOWS\SYSTEM\CRQO.EXE
C:\WINDOWS\SYSTEM\APPUR32.EXE
C:\WINDOWS\SYSTEM\D3MH.EXE
C:\WINDOWS\SYSTEM\MFCXB32.EXE
C:\WINDOWS\CRBP.EXE
C:\WINDOWS\IPFL.EXE
C:\WINDOWS\NETUR.EXE
C:\WINDOWS\AVGMLQ.DAT
C:\WINDOWS\SYSTEM\APPYH.EXE
C:\WINDOWS\D3GD.EXE
C:\WINDOWS\IWABWB.DAT
C:\WINDOWS\SYSTEM\WINPS32.EXE
C:\WINDOWS\SYSTEM\IPXE32.EXE
C:\WINDOWS\IPZG.EXE
C:\WINDOWS\NETZO.EXE
C:\WINDOWS\D3TQ.EXE
C:\WINDOWS\SYSTEM\MSKS.EXE
C:\WINDOWS\ADDNQ32.EXE
C:\WINDOWS\SYSTEM\SYSFM.EXE
C:\WINDOWS\SYSTEM\JAVAOW32.EXE
C:\WINDOWS\D3DU.EXE
C:\WINDOWS\SDKJN.EXE
C:\WINDOWS\MFCVU32.EXE
C:\WINDOWS\APPWC.EXE
C:\WINDOWS\SYSTEM\IEYE32.EXE
C:\WINDOWS\SYSTEM\SYSIM32.EXE
C:\WINDOWS\ATLGV32.EXE
C:\WINDOWS\IPKV.EXE
C:\WINDOWS\SYSTEM\MSSM.EXE
C:\WINDOWS\APPPF.EXE
C:\WINDOWS\SYSTEM\CRDB.EXE
C:\WINDOWS\APPAG.EXE
C:\WINDOWS\SYSTEM\SDKER.EXE
C:\WINDOWS\NETIR.EXE
C:\WINDOWS\SYSTEM\NTCZ.EXE
C:\WINDOWS\D3KW.EXE
C:\WINDOWS\SYSTEM\APPHD32.EXE
C:\WINDOWS\SYSTEM\DEVLDR16.EXE
C:\WINDOWS\SYSTEM\D3BQ.EXE
C:\WINDOWS\SYSTEM\SDKKE32.EXE
C:\WINDOWS\WINSD32.EXE
C:\WINDOWS\IEJG32.EXE
C:\WINDOWS\SDKLO32.EXE
C:\WINDOWS\IPKX32.EXE
C:\WINDOWS\APPIZ32.EXE
C:\WINDOWS\SYSTEM\MFCGP32.EXE
C:\WINDOWS\SYSTEM\CRNL.EXE
C:\WINDOWS\CRUY.EXE
C:\WINDOWS\SYSTEM\IPGV32.EXE
C:\WINDOWS\SYSTEM\IEFU32.EXE
C:\WINDOWS\ADDCP32.EXE
C:\WINDOWS\SYSTEM\SDKSV.EXE
C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\ADAPTEC\DIRECTCD\DIRECTCD.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM FILES\CREATIVE\SBLIVE\AUDIOHQ\AHQTB.EXE
C:\WINDOWS\SYSTEM\PELMICED.EXE
C:\PROGRAM FILES\NORTON ANTIVIRUS\NAVAPW32.EXE
C:\PROGRAM FILES\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
C:\PROGRAM FILES\LOGITECH\ITOUCH\ITOUCH.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\HIDSERV.EXE
C:\PROGRAM FILES\ALCATEL\SPEEDTOUCH USB\DRAGDIAG.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\EVNTSVC.EXE
C:\PROGRAM FILES\CREATIVE\SHAREDLL\CTNOTIFY.EXE
C:\PROGRAM FILES\SPAM INSPECTOR OUTLOOK EXPRESS\SPAM INSPECTOR OUTLOOK EXPRESS EDITION\PIISERVICEOE.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\HP SOFTWARE UPDATE\HPWUSCHD.EXE
C:\WINDOWS\SYSTEM\HPZTSB08.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\BIN\HPOTDD01.EXE
C:\WINDOWS\CRSY.EXE
C:\PROGRAM FILES\ADAPTEC\EASY CD CREATOR 4\CREATECD\CREATECD.EXE
C:\PROGRAM FILES\CREATIVE\SHAREDLL\MEDIADET.EXE
C:\PALM\HOTSYNC.EXE
C:\QUICKENW\QWDLLS.EXE
C:\PROGRAM FILES\INTUIT\QUICKBOOKS PRO\COMPONENTS\QBAGENT\QBDAGENT.EXE
C:\PROGRAM FILES\NIKON\NKVIEW4\NKVWMON.EXE
C:\SIERRA\GPLAN\CALTRAY.EXE
C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\DISTILLR\ACROTRAY.EXE
C:\WINDOWS\SYSTEM\MRTMNGR.EXE
C:\WINDOWS\TEMP\TD_0001.DIR\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ftiar.dll/sp.html#37049
R3 - Default URLSearchHook is missing
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\ACROBAT\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: Class - {13DB0625-002A-F8DF-1FE6-72D763C2FD26} - C:\WINDOWS\NETXA32.DLL (file missing)
O2 - BHO: Class - {6B116755-D849-210C-3AF2-257149A82882} - C:\WINDOWS\NTZJ32.DLL (file missing)
O2 - BHO: Class - {E37428A6-FED1-FEAC-E851-936984A713C1} - C:\WINDOWS\SYSTEM\MFCPY.DLL (file missing)
O2 - BHO: Class - {869A35BA-35D8-B014-00C5-D0FA6D89F1C6} - C:\WINDOWS\IEOO32.DLL (file missing)
O2 - BHO: Class - {42B6D2AA-FC71-B406-F3BA-1E0D9D759441} - C:\WINDOWS\APPHF.DLL (file missing)
O2 - BHO: Class - {357B63E5-BCDD-A431-EB4F-70285370B476} - C:\WINDOWS\SYSTEM\JAVABQ.DLL (file missing)
O2 - BHO: Class - {B3FF7B9C-F1C8-535C-D226-761BB3147CE2} - C:\WINDOWS\NTKX.DLL (file missing)
O2 - BHO: Class - {FF9C25D1-F733-920C-2344-07AB93A3C775} - C:\WINDOWS\SYSTEM\D3VP32.DLL (file missing)
O2 - BHO: Class - {A18BCBCE-8140-1854-2B7C-AE957E632346} - C:\WINDOWS\IPOO32.DLL (file missing)
O2 - BHO: Class - {93960152-A646-B05A-66F9-059371171227} - C:\WINDOWS\SYSTEM\IPUD32.DLL (file missing)
O2 - BHO: Class - {CE9596F4-6291-9D52-7126-1963BA99D795} - C:\WINDOWS\SDKCR.DLL (file missing)
O2 - BHO: Class - {54F824E9-CDEF-6528-681A-313B055884D8} - C:\WINDOWS\NETRY.DLL (file missing)
O2 - BHO: Class - {2E3C684A-E8EE-AA43-316D-74A44A66EFBE} - C:\WINDOWS\SYSTEM\SDKXI32.DLL (file missing)
O2 - BHO: Class - {C8F8C148-CD33-97CE-B53A-C94F9A7417EF} - C:\WINDOWS\SYSTEM\WINAU32.DLL (file missing)
O2 - BHO: Class - {30DFD3B6-52F5-C0D9-6DED-8A9CDA65058E} - C:\WINDOWS\SYSTEM\JAVAZH32.DLL (file missing)
O2 - BHO: Class - {EB56A74D-84CE-7822-6816-C95DF458D0FD} - C:\WINDOWS\MFCSA32.DLL (file missing)
O2 - BHO: Class - {78BE5EC2-1895-35E6-3DCD-42596173A6FB} - C:\WINDOWS\SYSTEM\SDKXC32.DLL (file missing)
O2 - BHO: Class - {E5C2D602-2087-204F-D786-53DF4AD315C1} - C:\WINDOWS\IPYA32.DLL (file missing)
O2 - BHO: Class - {E13C4480-BCC9-AD1D-7FC9-BD1A2CBDA6A4} - C:\WINDOWS\SYSTEM\APIQB.DLL (file missing)
O2 - BHO: Class - {1323FD2C-C2E1-DE0A-5130-CFEAD2AAF490} - C:\WINDOWS\MSQH.DLL (file missing)
O2 - BHO: Class - {67846C87-4D79-A6A9-D79F-5B938F9DA35C} - C:\WINDOWS\SYSTEM\APILQ.DLL (file missing)
O2 - BHO: Class - {595B6F97-0EE2-D3B5-71F3-2C7A5AC2B4E1} - C:\WINDOWS\NTYA.DLL (file missing)
O2 - BHO: Class - {EACAF0D9-E942-E0AA-7DE0-8F8242818257} - C:\WINDOWS\D3XO32.DLL (file missing)
O2 - BHO: Class - {F8013DEE-3728-F550-E3A1-227F0FCDD006} - C:\WINDOWS\MSXW32.DLL (file missing)
O2 - BHO: Class - {B3EA2615-46A1-A0FF-58EB-A6794D5461DD} - C:\WINDOWS\SYSTEM\MFCAN32.DLL (file missing)
O2 - BHO: Class - {A3656B27-94CB-8007-2B4E-CB9A9B2318EA} - C:\WINDOWS\SYSTEM\IPON32.DLL (file missing)
O2 - BHO: Class - {3991E592-61B9-A46D-A8A0-A1A13872D727} - C:\WINDOWS\SYSTEM\D3SX32.DLL (file missing)
O2 - BHO: Class - {9B1CA2E0-81ED-115F-EAEB-BE457124035F} - C:\WINDOWS\NTIN.DLL (file missing)
O2 - BHO: Class - {04FC5C29-73C6-99FE-9568-2D6316E0DB4F} - C:\WINDOWS\NETMW.DLL (file missing)
O2 - BHO: Class - {EFF1A80E-ACA0-791D-FA15-083EBC199CD9} - C:\WINDOWS\SYSTEM\D3JB32.DLL (file missing)
O2 - BHO: Class - {7C109C87-9FED-67A9-72D5-D4123E70924C} - C:\WINDOWS\SYSTEM\APIQM32.DLL (file missing)
O2 - BHO: Class - {2EF004F8-1D27-D21C-911F-4EF1DF536857} - C:\WINDOWS\D3YK.DLL (file missing)
O2 - BHO: Class - {F20ED84C-D847-D6C7-F794-2ED9DCB4B4D1} - C:\WINDOWS\JAVARQ.DLL (file missing)
O2 - BHO: Class - {9A429FA2-C5C1-1B78-A2D4-AF46EC18E7FE} - C:\WINDOWS\SYSTEM\NTOG.DLL (file missing)
O2 - BHO: Class - {3E948DE2-4EA9-DB4D-D6CA-C5AB6D316BD5} - C:\WINDOWS\WINVA.DLL (file missing)
O2 - BHO: Class - {3427F1C9-F259-B31A-97AA-AC97C3A2E177} - C:\WINDOWS\IEQK.DLL (file missing)
O2 - BHO: Class - {A7717956-9A67-0F8E-761C-A65492DB585D} - C:\WINDOWS\MFCMT.DLL (file missing)
O2 - BHO: Class - {EC0E8035-983D-B4B3-280C-52C1B07DC0D7} - C:\WINDOWS\SYSTEM\MFCOX32.DLL (file missing)
O2 - BHO: Class - {EE619616-F3B8-DEE1-4EFE-B2600C21E596} - C:\WINDOWS\SYSTEM\WINLG.DLL (file missing)
O2 - BHO: Class - {19B6C5BA-DF6C-D9DE-B148-3B4AA52F6A5D} - C:\WINDOWS\ATLPD32.DLL (file missing)
O2 - BHO: Class - {DA607F98-7426-F515-81BC-B6FAA2D7AE86} - C:\WINDOWS\MSUZ32.DLL (file missing)
O2 - BHO: Class - {CC3BA8EE-0F8E-BB35-0653-B020878669DC} - C:\WINDOWS\APPLM32.DLL (file missing)
O2 - BHO: Class - {97B6F228-EA88-011B-1F32-75EB8601B853} - C:\WINDOWS\D3OF.DLL (file missing)
O2 - BHO: Class - {BF064477-8D27-74FA-140F-CDE147E66D23} - C:\WINDOWS\SYSTEM\D3CU.DLL (file missing)
O2 - BHO: Class - {0E57D74A-8CED-F6C5-0CB5-739679211458} - C:\WINDOWS\SYSTEM\NETDD.DLL (file missing)
O2 - BHO: Class - {967871F3-038A-F72E-C5FF-CE710FAFDEA8} - C:\WINDOWS\CRWZ32.DLL (file missing)
O2 - BHO: Class - {EE64C95D-CA16-A16C-29CA-648731569905} - C:\WINDOWS\SYSYS32.DLL (file missing)
O2 - BHO: Class - {A676B660-3AAC-86ED-A0B2-6563C0AF3188} - C:\WINDOWS\IEYM.DLL (file missing)
O2 - BHO: Class - {27B5350B-649B-63FF-1B2C-479661DBD6C6} - C:\WINDOWS\SYSTEM\ATLQJ.DLL (file missing)
O2 - BHO: Class - {E368E7FC-CE74-4D23-5DB2-FA9C07C0A707} - C:\WINDOWS\SYSTEM\ADDUS32.DLL (file missing)
O2 - BHO: Class - {4EFF735B-5708-E5F3-C97C-FC658DF6F9AF} - C:\WINDOWS\SYSTEM\CRLS32.DLL (file missing)
O2 - BHO: Class - {CBD49121-A8EF-D345-CCFF-038BD5FDDEA9} - C:\WINDOWS\WINEO.DLL (file missing)
O2 - BHO: Class - {427B0070-6125-1D12-0821-13CFF8EAB8E9} - C:\WINDOWS\SDKPC.DLL (file missing)
O2 - BHO: Class - {3F15E593-6CBB-EDC9-95BB-C121477CDDA9} - C:\WINDOWS\SYSTEM\MSVF.DLL (file missing)
O2 - BHO: Class - {B7F3F1B9-A5C3-79CC-74EF-DC1B14B48E7F} - C:\WINDOWS\NTAH32.DLL (file missing)
O2 - BHO: Class - {1A165079-0559-911A-C7D8-52B70A98D534} - C:\WINDOWS\SYSTEM\SDKQF32.DLL (file missing)
O2 - BHO: Class - {D4060E2C-D57E-1FE9-E0C2-14CDA147BC0E} - C:\WINDOWS\SYSTEM\NTEU.DLL (file missing)
O2 - BHO: Class - {E8FB1E0C-25B6-CDB0-F49F-735F26C5DD86} - C:\WINDOWS\APPFD32.DLL (file missing)
O2 - BHO: Class - {4233B9AB-2CE7-4CAE-2E43-97BACA2EFF77} - C:\WINDOWS\WINHD.DLL (file missing)
O2 - BHO: Class - {2B0E1448-6D34-75B6-E97E-BF9E0592877A} - C:\WINDOWS\SYSTEM\APINP.DLL (file missing)
O2 - BHO: Class - {33EAF5FD-7FC6-F387-E5DB-FBB059A0113A} - C:\WINDOWS\MFCDF.DLL (file missing)
O2 - BHO: Class - {F4A94A9A-0959-3F62-E92E-230CE373622A} - C:\WINDOWS\SYSTEM\MFCZU32.DLL (file missing)
O2 - BHO: Class - {C3EB6A17-B037-38E7-BCA2-8F73699EE41D} - C:\WINDOWS\NTGY32.DLL (file missing)
O2 - BHO: Class - {7F0FD938-6921-7913-8F78-2E42633C1214} - C:\WINDOWS\APPFF.DLL (file missing)
O2 - BHO: Class - {A8DF6951-4B2D-4979-A75E-972D4ABCC2D5} - C:\WINDOWS\NETJH.DLL (file missing)
O2 - BHO: Class - {4855AACF-1F8F-710E-EFAF-19B0F8EE4D1C} - C:\WINDOWS\MSON.DLL (file missing)
O2 - BHO: Class - {ED99CDD8-995A-30B5-F538-6F6BB05E98A5} - C:\WINDOWS\APPEI32.DLL (file missing)
O2 - BHO: Class - {30C15F1B-B902-8769-7E97-07B632351674} - C:\WINDOWS\NETZA.DLL (file missing)
O2 - BHO: Class - {2A66A06D-84AC-2F6A-FCAD-DF80B294F72D} - C:\WINDOWS\ADDEC.DLL (file missing)
O2 - BHO: Class - {58CEE873-EC21-B6EA-BB2A-1C4068611E0C} - C:\WINDOWS\SYSTEM\WINCT32.DLL (file missing)
O2 - BHO: Class - {5DFBC97C-DABD-760C-0037-AD9AADC9957B} - C:\WINDOWS\SYSTEM\CRFL32.DLL (file missing)
O2 - BHO: Class - {D4B4CA4A-085D-53B6-8AFF-B4E427EB99B3} - C:\WINDOWS\SYSTEM\NTKT32.DLL (file missing)
O2 - BHO: Class - {2D571453-FC75-F3F3-6EB7-CDD838736794} - C:\WINDOWS\SYSTEM\ATLMG.DLL (file missing)
O2 - BHO: Class - {C0B57D50-F74C-63D1-A173-C393FE8825A1} - C:\WINDOWS\SYSTEM\APPIV.DLL (file missing)
O2 - BHO: Class - {77C239BA-5AEC-315B-9B35-29C196DF8255} - C:\WINDOWS\SYSTEM\APPUA32.DLL (file missing)
O2 - BHO: Class - {35199E36-3422-845A-E57E-AEC0A5D08B2F} - C:\WINDOWS\NETYC32.DLL (file missing)
O2 - BHO: Class - {8BF06759-2B7F-D633-C13C-BE66B2CD986D} - C:\WINDOWS\SYSTEM\MSDH32.DLL (file missing)
O2 - BHO: Class - {102D7ADF-B1F2-150B-DD47-0D7AE8ECDFE0} - C:\WINDOWS\JAVACG.DLL (file missing)
O2 - BHO: Class - {60315168-4625-9371-95C8-1DF81A38AF24} - C:\WINDOWS\JAVAQN32.DLL (file missing)
O2 - BHO: Class - {0344CEB6-B012-24BE-3F3D-83F27868C75C} - C:\WINDOWS\IEXZ32.DLL (file missing)
O2 - BHO: Class - {42619851-5DBB-DA74-CF4B-5B868D0088D4} - C:\WINDOWS\SYSTEM\SDKAR.DLL (file missing)
O2 - BHO: Class - {8798A763-AA78-FD33-68D1-38F50DE43194} - C:\WINDOWS\ATLNL.DLL (file missing)
O2 - BHO: Class - {4822E4EB-9815-46D6-4820-A8C7F30AEABB} - C:\WINDOWS\SYSTEM\IPIM32.DLL (file missing)
O2 - BHO: Class - {50E42254-BD24-F46E-07C2-4E35AC4EB25A} - C:\WINDOWS\CRIV32.DLL (file missing)
O2 - BHO: Class - {AC803592-EDB5-011E-3174-4E3A7949A713} - C:\WINDOWS\SYSTEM\APINX.DLL (file missing)
O2 - BHO: Class - {6FCAF567-3DE8-8E0A-AE66-85CFEC2FA8D2} - C:\WINDOWS\SDKNO.DLL (file missing)
O2 - BHO: Class - {D8F31A52-4A98-397B-48A7-1CA3B87C457E} - C:\WINDOWS\SDKBV32.DLL (file missing)
O2 - BHO: Class - {9CA88DE9-5C6B-ED9B-7598-74FBCA0C3964} - C:\WINDOWS\SYSTEM\IEUR.DLL (file missing)
O2 - BHO: Class - {C13722B2-BB36-BEE1-26E8-0E8CAE8BB2CD} - C:\WINDOWS\SYSTEM\ATLDM.DLL (file missing)
O2 - BHO: Class - {51A6B4D2-D0E3-4310-535C-BD6BA4535B56} - C:\WINDOWS\IPJP.DLL (file missing)
O2 - BHO: Class - {7C22DAC8-169B-E97C-53C6-5A1CBD80CF1B} - C:\WINDOWS\WINQS.DLL (file missing)
O2 - BHO: Class - {56B31762-88C5-D10F-75A0-84CF49A9315F} - C:\WINDOWS\SYSTEM\SYSGJ.DLL (file missing)
O2 - BHO: Class - {CE62331B-A2CA-DF95-EFF4-350C3CA4877F} - C:\WINDOWS\SYSTEM\JAVARB32.DLL (file missing)
O2 - BHO: Class - {678763B9-C135-6984-3F34-D512FBBC7B4F} - C:\WINDOWS\SYSTEM\IPLB32.DLL (file missing)
O2 - BHO: Class - {920BA966-CC35-30CE-DF7A-D7E993211818} - C:\WINDOWS\SYSTEM\APIAI32.DLL (file missing)
O2 - BHO: Class - {602B7AD3-BB91-8465-0660-B64A39876818} - C:\WINDOWS\SYSTEM\IPVB32.DLL (file missing)
O2 - BHO: Class - {1B056603-6606-516A-4D3F-B2CDA5116B5B} - C:\WINDOWS\MFCQJ.DLL (file missing)
O2 - BHO: Class - {0A89880E-AC76-CE92-49C2-EBA9B61044FE} - C:\WINDOWS\ATLVU.DLL (file missing)
O2 - BHO: Class - {B1E8457D-0E36-B49E-109D-60340CBABC61} - C:\WINDOWS\SYSTEM\APPFQ.DLL (file missing)
O2 - BHO: Class - {CDA457DA-DF5F-3D28-F203-C6CC3C8F7278} - C:\WINDOWS\SYSTEM\D3SS32.DLL (file missing)
O2 - BHO: Class - {FB1F47E7-B99C-4337-DC91-75A8A370C44C} - C:\WINDOWS\SYSTEM\IPYM.DLL (file missing)
O2 - BHO: Class - {624BD64C-7B24-5F1B-09E1-0AE0E69C16B0} - C:\WINDOWS\SYSTEM\JAVAOU32.DLL (file missing)
O2 - BHO: Class - {62B6F789-D587-FF9A-C25C-DC7E2E5B58A3} - C:\WINDOWS\SYSTEM\JAVAMS32.DLL (file missing)
O2 - BHO: Class - {5D067718-18BC-DBD6-97B8-BF6BBECDD63F} - C:\WINDOWS\SYSGX.DLL (file missing)
O2 - BHO: Class - {D8F171E9-477F-B9D5-F4B0-45989B632376} - C:\WINDOWS\SYSTEM\SYSUF.DLL (file missing)
O2 - BHO: Class - {40315233-9EE4-3396-0B93-46009121D04D} - C:\WINDOWS\MSAQ.DLL (file missing)
O2 - BHO: Class - {CAF47898-C983-EDC8-AA16-D3DD2ABB41F8} - C:\WINDOWS\D3UW.DLL (file missing)
O2 - BHO: Class - {BCB99081-0AC4-8206-BF74-BD55E631D60D} - C:\WINDOWS\CRCQ32.DLL (file missing)
O2 - BHO: Class - {01760CDC-D77E-6490-7E10-7131683D9C12} - C:\WINDOWS\WINKD32.DLL (file missing)
O2 - BHO: Class - {94CAE5BF-5AF5-9CF0-41E8-0C3C76C0D550} - C:\WINDOWS\IESY.DLL (file missing)
O2 - BHO: Class - {868F7592-83A2-3147-26F8-B83E4EB27137} - C:\WINDOWS\IEED32.DLL (file missing)
O2 - BHO: Class - {3C40457D-AD33-9573-322C-CB94004FBA80} - C:\WINDOWS\NTEU.DLL (file missing)
O2 - BHO: Class - {46CBB635-BE2E-414C-B36B-6C899CEAC5B7} - C:\WINDOWS\ADDFM32.DLL (file missing)
O2 - BHO: Class - {544AA546-ADBE-242A-7601-DD9E43DBD201} - C:\WINDOWS\NTIA32.DLL (file missing)
O2 - BHO: Class - {EADC9B53-D581-7967-D192-3710E66EF037} - C:\WINDOWS\ATLOC32.DLL (file missing)
O2 - BHO: Class - {785CE58B-FCAA-5058-F789-1EE7CB4B1C95} - C:\WINDOWS\SYSTEM\MSPL32.DLL (file missing)
O2 - BHO: Class - {F72C2F74-8735-611B-5E85-D33CA3E557A9} - C:\WINDOWS\IPCN32.DLL (file missing)
O2 - BHO: Class - {35E75B60-AF25-B5D1-421C-D4D30CDE44B5} - C:\WINDOWS\WINBH.DLL (file missing)
O2 - BHO: Class - {AC73963F-3BB4-1C41-8238-E2D9AD4C967E} - C:\WINDOWS\SYSTEM\SYSVN.DLL (file missing)
O2 - BHO: Class - {32D797E6-4ECC-DCA3-B90A-458EC0B4B4C5} - C:\WINDOWS\SDKOW32.DLL (file missing)
O2 - BHO: Class - {05008511-91DE-02FB-58EF-D81B9CDBE3C8} - C:\WINDOWS\SYSTEM\ADDXA.DLL (file missing)
O2 - BHO: Class - {2E16A4B4-EA17-C153-5E87-ED8E897DB04D} - C:\WINDOWS\SYSTEM\CRWI32.DLL (file missing)
O2 - BHO: Class - {D82EE588-4BCA-D64F-594D-C86A9AAE64BF} - C:\WINDOWS\APIXR.DLL (file missing)
O2 - BHO: Class - {B2499FC4-394E-BB59-F460-5927910CA03B} - C:\WINDOWS\IPTJ.DLL (file missing)
O2 - BHO: Class - {A87399FC-1CC8-224D-1735-9A7339AB0869} - C:\WINDOWS\SYSTEM\MFCKH.DLL (file missing)
O2 - BHO: Class - {E897B7A0-EBE4-3A18-7DD3-77E65116B006} - C:\WINDOWS\ATLQT32.DLL (file missing)
O2 - BHO: Class - {A462B539-73A2-9B84-A149-741DE9FA7340} - C:\WINDOWS\SYSTEM\APIQW.DLL (file missing)
O2 - BHO: Class - {D9DCC50A-EE62-0287-E4FA-5C092B0FC97E} - C:\WINDOWS\NTYI.DLL (file missing)
O2 - BHO: Class - {90A013EF-29FC-F988-6018-F201E961F75E} - C:\WINDOWS\D3BA.DLL (file missing)
O2 - BHO: Class - {9B936827-936D-A301-874F-BB34B7DB33C5} - C:\WINDOWS\CRPP32.DLL (file missing)
O2 - BHO: Class - {CF008A72-7CDE-E07A-FBF9-4FBE34248318} - C:\WINDOWS\WINFC.DLL (file missing)
O2 - BHO: Class - {455F474F-574E-C406-1699-5DC9F701D2B7} - C:\WINDOWS\SYSTEM\SDKGG32.DLL (file missing)
O2 - BHO: Class - {93145802-1A51-B7C4-038A-9D3B9341A24F} - C:\WINDOWS\MSWZ.DLL (file missing)
O2 - BHO: Class - {876F25EA-B784-546C-3433-F251F16788C6} - C:\WINDOWS\SYSTEM\NTAM32.DLL (file missing)
O2 - BHO: Class - {E6F551B3-2ACA-9854-1A51-88F50B546F3E} - C:\WINDOWS\SYSTEM\APPRT.DLL (file missing)
O2 - BHO: Class - {079FC989-AC41-02CB-5596-5A02A41BB70E} - C:\WINDOWS\ADDLZ32.DLL (file missing)
O2 - BHO: Class - {0DC972D2-0C44-8F76-CFC6-7B4D7DD55C44} - C:\WINDOWS\IEYE32.DLL (file missing)
O2 - BHO: Class - {A4571542-A194-3710-8763-F3C447885424} - C:\WINDOWS\NETXZ.DLL (file missing)
O2 - BHO: Class - {86CB9367-12D4-E652-89AB-956913BAE9E0} - C:\WINDOWS\WINWJ.DLL (file missing)
O2 - BHO: Class - {060F0FC9-E206-2037-7FF3-84BF8172FD49} - C:\WINDOWS\SYSTEM\IPEZ.DLL (file missing)
O2 - BHO: Class - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - C:\WINDOWS\WINZW32.DLL (file missing)
O2 - BHO: Class - {07BF4602-E2FB-340F-985F-24FA453D5964} - C:\WINDOWS\MFCSF.DLL (file missing)
O2 - BHO: Class - {70866A23-736C-958C-593F-465714696045} - C:\WINDOWS\SYSTEM\IETW32.DLL (file missing)
O2 - BHO: Class - {CD9B6EC2-881D-8302-911A-0E16A5F4B13F} - C:\WINDOWS\CRES32.DLL (file missing)
O2 - BHO: Class - {291DF735-010B-9787-E9FC-3DD010E09721} - C:\WINDOWS\SYSTEM\JAVAUJ.DLL (file missing)
O2 - BHO: Class - {8F0E4042-38CC-AD8C-9AF5-7B4D537388D4} - C:\WINDOWS\APIIL.DLL (file missing)
O2 - BHO: Class - {755BA34E-BCAF-6042-9822-36A6D47647C0} - C:\WINDOWS\IPGN.DLL (file missing)
O2 - BHO: Class - {A2295EA0-7F11-1B08-EF96-F3C13A0B6BCC} - C:\WINDOWS\SYSTEM\D3QJ32.DLL (file missing)
O2 - BHO: Class - {A374597E-E739-2D19-C3B8-0F03678C70A1} - C:\WINDOWS\SYSTEM\NETRS32.DLL (file missing)
O2 - BHO: Class - {065681BC-006E-9E35-5DC5-EF4FEF1D58C6} - C:\WINDOWS\ATLHH32.DLL (file missing)
O2 - BHO: Class - {7988ECCC-F26F-3829-EBCF-5DBD0CDE874A} - C:\WINDOWS\SYSTEM\IPVF.DLL (file missing)
O2 - BHO: Class - {D08D602D-DA38-A6D5-D196-B56A65DA7FED} - C:\WINDOWS\SYSTEM\APIDA32.DLL (file missing)
O2 - BHO: Class - {95707FA2-EC06-1E4D-18A1-AE9713897F18} - C:\WINDOWS\SYSTEM\SYSCA.DLL (file missing)
O2 - BHO: Class - {4E2FA5FD-4060-D034-70C2-2EB4D7C6A545} - C:\WINDOWS\SDKJS32.DLL (file missing)
O2 - BHO: Class - {9FDF75A3-3C2E-D30D-152E-4EEA1824BCA0} - C:\WINDOWS\NETQI32.DLL (file missing)
O2 - BHO: Class - {9B322A96-9AEA-2632-DFBF-F6E183F28772} - C:\WINDOWS\SYSTEM\IPAE.DLL (file missing)
O2 - BHO: Class - {E5928509-B07D-0B46-BB4A-2FF8F2343E4F} - C:\WINDOWS\SYSTEM\ADDZE32.DLL (file missing)
O2 - BHO: Class - {F9C1BF9B-A9E8-C07A-66C7-B1ACF0351817} - C:\WINDOWS\SYSTEM\IEPT32.DLL (file missing)
O2 - BHO: Class - {52FC6CF6-B6EF-E8BC-7A02-C68DF6D6318D} - C:\WINDOWS\SYSTEM\WINLL32.DLL (file missing)
O2 - BHO: Class - {CEDF9A95-F8C2-F7C7-AF6C-402C203A3A1A} - C:\WINDOWS\MFCLC32.DLL (file missing)
O2 - BHO: Class - {48522E44-2657-63AA-D1A5-88BD8F6F6BCB} - C:\WINDOWS\IEQW.DLL (file missing)
O2 - BHO: Class - {D063FD03-077E-B4D0-938C-2830B005C678} - C:\WINDOWS\SYSTEM\APITA.DLL (file missing)
O2 - BHO: Class - {9E454339-F6F3-DE2D-DBD8-5229FD0589FE} - C:\WINDOWS\IEQZ32.DLL (file missing)
O2 - BHO: Class - {763D02CE-C593-0933-8C2C-8BD4516ED6C9} - C:\WINDOWS\MSYT.DLL (file missing)
O2 - BHO: Class - {F21EB9D5-50A5-AD0F-81BE-3C41DEE67AF6} - C:\WINDOWS\CRXO32.DLL (file missing)
O2 - BHO: Class - {D605A236-5DA7-2543-72D0-76EADF977AC9} - C:\WINDOWS\SYSTEM\NETLI.DLL (file missing)
O2 - BHO: Class - {38D3FF0F-475C-29D2-50B5-6BF8009410E6} - C:\WINDOWS\SYSTEM\MFCEI.DLL (file missing)
O2 - BHO: Class - {E04CC398-6D86-A823-890A-29F8D27B4B0A} - C:\WINDOWS\NETMT32.DLL (file missing)
O2 - BHO: Class - {75DD2786-EE3B-29FC-01F4-59561735175B} - C:\WINDOWS\SYSTEM\WINBS32.DLL (file missing)
O2 - BHO: Class - {241E714A-91E7-8F47-57E5-49D7B7A7FEAC} - C:\WINDOWS\JAVACB.DLL (file missing)
O2 - BHO: Class - {049B4ABC-BCF4-3BBF-510F-AFA9AA0C0B78} - C:\WINDOWS\SYSTEM\APPLF.DLL (file missing)
O2 - BHO: Class - {DEC4AD32-292E-BA9A-4846-68473207CD9D} - C:\WINDOWS\SYSTEM\APPNI32.DLL (file missing)
O2 - BHO: Class - {5F18995A-A117-346D-05AE-801DE15F52C2} - C:\WINDOWS\SYSTEM\APPDH32.DLL (file missing)
O2 - BHO: Class - {7676F3C7-AF22-0FBA-43EC-F6F7A2599104} - C:\WINDOWS\NETFZ.DLL (file missing)
O2 - BHO: Class - {F0E4F674-0FD3-D771-42A6-235DC7A66BB3} - C:\WINDOWS\SYSTEM\WINGI32.DLL (file missing)
O2 - BHO: Class - {B2DA97AF-6D33-3F78-ECDA-38EC1522A932} - C:\WINDOWS\SYSMT.DLL (file missing)
O2 - BHO: Class - {C63AB847-F5FF-3F45-DB28-0A94EB25589A} - C:\WINDOWS\SYSTEM\JAVAKL32.DLL (file missing)
O2 - BHO: Class - {3D1EA173-C393-E882-A139-CDA49D5741BE} - C:\WINDOWS\MFCJE.DLL (file missing)
O2 - BHO: Class - {1388EC0B-5C16-E709-791A-FC681D230D85} - C:\WINDOWS\JAVAVJ.DLL (file missing)
O2 - BHO: Class - {28537B1D-6D92-A196-D234-4D477E5963FF} - C:\WINDOWS\IEXD32.DLL (file missing)
O2 - BHO: Class - {69D8DEB3-07FD-97C0-2B34-3F24005B874C} - C:\WINDOWS\SYSTEM\APPTF32.DLL (file missing)
O2 - BHO: Class - {063AB545-B352-E151-5C3B-49FC5DD6260F} - C:\WINDOWS\SYSTEM\D3VO32.DLL (file missing)
O2 - BHO: Class - {934F52F5-7431-6F8D-CF03-508A60646BCC} - C:\WINDOWS\IEDA.DLL (file missing)
O2 - BHO: Class - {7C0CF1DE-B90B-0721-7070-EF7DE0CC199F} - C:\WINDOWS\SYSTEM\NTEJ32.DLL (file missing)
O2 - BHO: Class - {6F75ABBF-6008-EDA7-8453-2ADF8601ADFA} - C:\WINDOWS\MSOF32.DLL (file missing)
O2 - BHO: Class - {5720BB7F-591F-8E22-1A2F-D817989AD5BD} - C:\WINDOWS\SYSTEM\APPTH32.DLL (file missing)
O2 - BHO: Class - {2B5BCF3D-05AA-96DD-C5B6-41C4197FEFEA} - C:\WINDOWS\SYSTEM\D3YB.DLL (file missing)
O2 - BHO: Class - {47BABDB5-C0CE-2C08-873B-1827DCDEDAD5} - C:\WINDOWS\SYSTEM\ADDDD.DLL (file missing)
O2 - BHO: Class - {28E63F4A-2F98-35C0-D2B3-1C92AE9FD30F} - C:\WINDOWS\SYSTEM\WINBC.DLL (file missing)
O2 - BHO: Class - {E7AA2123-F861-3DBC-2EB3-83E9404719B4} - C:\WINDOWS\APIHF.DLL (file missing)
O2 - BHO: Class - {EB61BCEC-B087-FF9D-2125-EF1B13DEF033} - C:\WINDOWS\NETAA.DLL (file missing)
O2 - BHO: Class - {FD54636D-C0DB-78E0-C3F8-936BCAF5739B} - C:\WINDOWS\SYSTEM\CRJN.DLL (file missing)
O2 - BHO: Class - {6CC45311-CFEB-E078-79D6-2ED797DCF228} - C:\WINDOWS\SYSTEM\NETOI32.DLL (file missing)
O2 - BHO: Class - {516B1C67-B52D-E97F-A80D-D6C5DBCBFE0A} - C:\WINDOWS\SDKCN.DLL (file missing)
O2 - BHO: Class - {7E7CDF8E-5B86-C2CD-515F-066F9CDC9346} - C:\WINDOWS\SYSTEM\IEVK32.DLL (file missing)
O2 - BHO: Class - {8550B543-1A52-C711-5EA1-BE2D4A45337F} - C:\WINDOWS\SYSTEM\WINTM32.DLL (file missing)
O2 - BHO: Class - {AE33961D-B5C6-86A4-3C72-DBA3BBD317B9} - C:\WINDOWS\APPRO32.DLL (file missing)
O2 - BHO: Class - {AA47E26D-58ED-99ED-6041-A166D62616AB} - C:\WINDOWS\MSEI32.DLL (file missing)
O2 - BHO: Class - {FEE15673-013F-49FB-74A3-1BAA5174ED7A} - C:\WINDOWS\SYSTEM\IPXT.DLL (file missing)
O2 - BHO: Class - {47709253-47C4-BC7D-D52E-9D6EB90411EE} - C:\WINDOWS\SYSTEM\APIEO32.DLL (file missing)
O2 - BHO: Class - {CED100A0-4E14-896F-604D-9E36D6D2550E} - C:\WINDOWS\SYSTEM\SYSRD32.DLL (file missing)
O2 - BHO: Class - {B1D05DCA-880F-EDB7-F481-CC7F71316A99} - C:\WINDOWS\SYSTEM\MSXO.DLL (file missing)
O2 - BHO: Class - {D9B86B36-3C0A-C8A5-F992-E2FC429A72C0} - C:\WINDOWS\WINHJ32.DLL (file missing)
O2 - BHO: Class - {FFCD035F-429E-054F-1D01-F49E14490C2E} - C:\WINDOWS\SDKWZ32.DLL (file missing)
O2 - BHO: Class - {B316AE28-BAC6-C5C4-ADF9-1EC3585C1A20} - C:\WINDOWS\SYSTEM\IPCS.DLL (file missing)
O2 - BHO: Class - {5F0FDF6E-D2AC-4D0F-341D-86699A5C3A3F} - C:\WINDOWS\SYSTEM\APPFD32.DLL (file missing)
O2 - BHO: Class - {A9593486-C5F0-338D-36D5-AEC2E367709D} - C:\WINDOWS\NETIL32.DLL (file missing)
O2 - BHO: Class - {4BEC144C-BF69-2AED-70B9-47847DC8F765} - C:\WINDOWS\APITJ.DLL (file missing)
O2 - BHO: Class - {2B4E1834-BFE0-707E-3449-46EC0AEDF9DC} - C:\WINDOWS\NTSQ.DLL (file missing)
O2 - BHO: Class - {202AB9A5-E207-A755-726D-C66D76015501} - C:\WINDOWS\MSAD.DLL (file missing)
O2 - BHO: Class - {927AE5BC-41C7-D01F-8143-D23525B82F67} - C:\WINDOWS\NTDW32.DLL (file missing)
O2 - BHO: Class - {557E63D9-2086-1426-2D83-DBBD31A6BFB0} - C:\WINDOWS\SYSTEM\ATLWM.DLL (file missing)
O2 - BHO: Class - {9038016A-E91F-5E95-0053-598A505661C7} - C:\WINDOWS\SYSTEM\D3JJ.DLL (file missing)
O2 - BHO: Class - {37CF6004-3B79-AF23-6CA0-AB547C1738EB} - C:\WINDOWS\APISN.DLL (file missing)
O2 - BHO: Class - {0ED8226B-008B-EF31-29A8-03538BFB2D9B} - C:\WINDOWS\SYSTEM\NTLW32.DLL (file missing)
O2 - BHO: Class - {714B5AF2-602C-E2B6-5435-F9B5BE040934} - C:\WINDOWS\SYSTEM\ATLOO.DLL (file missing)
O2 - BHO: Class - {D9AA0B45-D4FD-7AED-3EAA-679FA1487A31} - C:\WINDOWS\APPMN.DLL (file missing)
O2 - BHO: Class - {3DD6CBA3-9406-592D-7E4F-738A402F1B9E} - C:\WINDOWS\SYSTEM\MSPY32.DLL (file missing)
O2 - BHO: Class - {66AFDF82-C151-0B35-EF0C-D7B55AF0CEBC} - C:\WINDOWS\SYSTEM\APPXN.DLL (file missing)
O2 - BHO: Class - {9C1B2B2A-8963-C92B-AF30-4849E4570A9A} - C:\WINDOWS\D3YE32.DLL (file missing)
O2 - BHO: Class - {EDA38CC9-B865-78BD-C1A5-843DCC6547D9} - C:\WINDOWS\MFCJJ32.DLL (file missing)
O2 - BHO: Class - {4C71452A-6C8B-7351-0338-0370964A66D2} - C:\WINDOWS\IEWG32.DLL (file missing)
O2 - BHO: Class - {6B1C06E7-D93B-A242-10DC-92D9F007D83D} - C:\WINDOWS\IPHL32.DLL (file missing)
O2 - BHO: Class - {2761CA4B-CAFF-C8EB-93FF-67957060424C} - C:\WINDOWS\SYSTEM\WINCA32.DLL (file missing)
O2 - BHO: Class - {1B10D5D8-0D3A-C6AA-7945-199D629061C9} - C:\WINDOWS\SDKNN.DLL (file missing)
O2 - BHO: Class - {9D9DFEE4-D4FF-4DF2-9A8B-75B98238D291} - C:\WINDOWS\NTZT32.DLL (file missing)
O2 - BHO: Class - {7369A69A-70A0-49E5-9E44-6D51367C46D1} - C:\WINDOWS\SYSTEM\NTXR32.DLL (file missing)
O2 - BHO: Class - {62627DBF-EDEE-7FF3-A979-5704D24B341F} - C:\WINDOWS\IPKA32.DLL (file missing)
O2 - BHO: Class - {AAC38D40-5906-1855-C979-8E7AB07B1CB0} - C:\WINDOWS\SYSTEM\ADDMJ.DLL (file missing)
O2 - BHO: Class - {7B4A1389-49FB-707C-A673-D7AF81767AD4} - C:\WINDOWS\CRPC32.DLL (file missing)
O2 - BHO: Class - {57CC204F-905A-2B4D-BD5E-30AC516741C9} - C:\WINDOWS\ADDBK.DLL (file missing)
O2 - BHO: Class - {627E50E5-1ED2-24FD-2FCA-405711CBCC48} - C:\WINDOWS\JAVAWZ32.DLL (file missing)
O2 - BHO: Class - {3BB095BA-58DE-C7CE-7396-A8C92B4E4594} - C:\WINDOWS\SYSTEM\IEDC32.DLL (file missing)
O2 - BHO: Class - {52402C3D-E91D-7B6F-C07F-A480D80055DE} - C:\WINDOWS\SDKIE.DLL (file missing)
O2 - BHO: Class - {F51732EE-1445-46BB-3740-655F49B0F738} - C:\WINDOWS\APPTS.DLL (file missing)
O2 - BHO: Class - {849E652D-E279-49D1-44C6-6C7123362280} - C:\WINDOWS\D3SR32.DLL (file missing)
O2 - BHO: Class - {3A3C6BF6-B801-B04F-C66A-3D4FD7C462B9} - C:\WINDOWS\SYSTEM\CRII.DLL (file missing)
O2 - BHO: Class - {65736478-AC2E-A9B7-9E15-4F53BB623C0D} - C:\WINDOWS\SYSEO.DLL (file missing)
O2 - BHO: Class - {CF254405-61DC-9A1D-5868-C9B5131AFEB9} - C:\WINDOWS\SYSTEM\ADDIK.DLL (file missing)
O2 - BHO: Class - {69E6831B-F99D-EC36-D55D-B783927C2092} - C:\WINDOWS\SYSTEM\D3WE.DLL (file missing)
O2 - BHO: Class - {52FBCD2B-1A82-B624-6793-F980C1BC63F5} - C:\WINDOWS\NETXO32.DLL (file missing)
O2 - BHO: Class - {29121237-C594-0436-C688-77EFC366D7A9} - C:\WINDOWS\SYSTEM\APIHS.DLL (file missing)
O2 - BHO: Class - {AA44D83C-4573-A0D5-5C38-574F394E460D} - C:\WINDOWS\SYSTEM\SYSKK32.DLL (file missing)
O2 - BHO: Class - {D0407117-8A49-605D-4B0A-48235C41E717} - C:\WINDOWS\IEQV.DLL (file missing)
O2 - BHO: Class - {F3C0B6F7-1973-30BA-058F-4A98172DB30C} - C:\WINDOWS\D3XQ32.DLL (file missing)
O2 - BHO: Class - {830EE2B4-CC5A-7C09-D6EE-9691152F9F01} - C:\WINDOWS\ADDGD32.DLL (file missing)
O2 - BHO: Class - {D92B11D4-74D5-F043-84CE-D7DC94E095D0} - C:\WINDOWS\SYSTEM\ADDET32.DLL (file missing)
O2 - BHO: Class - {13230AC0-4FD3-DF5F-CEEA-5062313C1529} - C:\WINDOWS\MSHY.DLL (file missing)
O2 - BHO: Class - {55B602D6-4282-BE22-DEE6-C95DFCA166A1} - C:\WINDOWS\D3PK32.DLL (file missing)
O2 - BHO: Class - {9253A47C-1BC7-6D52-69D6-B90411EE7090} - C:\WINDOWS\APIKH.DLL (file missing)
O2 - BHO: Class - {213EABCA-F47E-1BF9-B36D-049B7ADFEE6C} - C:\WINDOWS\MFCWM32.DLL (file missing)
O2 - BHO: Class - {594EFE0A-F3BD-D071-2E20-8A2BD25BCD80} - C:\WINDOWS\SYSTEM\NETPD32.DLL (file missing)
O2 - BHO: Class - {67B87596-BA78-CAC5-BBF9-4B06F3C3C81C} - C:\WINDOWS\MFCHU32.DLL (file missing)
O2 - BHO: Class - {9B1A2625-49C3-7881-A453-1C2B2E4282F9} - C:\WINDOWS\NETTR.DLL (file missing)
O2 - BHO: Class - {9B46EFA0-A8CD-6ED9-3D1F-B1FF1A5FC359} - C:\WINDOWS\CRAU.DLL (file missing)
O2 - BHO: Class - {F1A4571F-46C9-C368-C70C-9911C42A8A18} - C:\WINDOWS\ATLGW.DLL (file missing)
O2 - BHO: Class - {1226F699-DABC-9FBF-6B2C-B9F1DF47BAEB} - C:\WINDOWS\SYSTEM\IEKH32.DLL (file missing)
O2 - BHO: Class - {97DCBB56-FF7B-D770-38B4-EAF169E5C483} - C:\WINDOWS\NTPJ.DLL (file missing)
O2 - BHO: Class - {4AEE8C9A-2124-181D-A7FE-F6772D8C6CDC} - C:\WINDOWS\SYSTEM\IPBP32.DLL (file missing)
O2 - BHO: Class - {C2FD0459-1BF7-AA2F-49AA-FC59032E2CAE} - C:\WINDOWS\SYSEY32.DLL (file missing)
O2 - BHO: Class - {3EC51367-FA39-1261-3090-522B4BFA5214} - C:\WINDOWS\MFCML32.DLL (file missing)
O2 - BHO: Class - {39B62ABB-D24C-0396-6EAB-24341A08486A} - C:\WINDOWS\MSXY32.DLL (file missing)
O2 - BHO: Class - {7D784662-D8EA-9B49-A147-28A44BEB5965} - C:\WINDOWS\SYSTEM\CRPP32.DLL (file missing)
O2 - BHO: Class - {F1A15EA1-4EFF-02B2-CC10-A00AC68DD4BD} - C:\WINDOWS\SYSTEM\APPDE.DLL (file missing)
O2 - BHO: Class - {29FC66BD-3EA4-3F16-0ABF-93515F25ED12} - C:\WINDOWS\WINJX32.DLL (file missing)
O2 - BHO: Class - {9AC98B09-E932-6B01-C983-A8AF24A16D40} - C:\WINDOWS\WINZN.DLL (file missing)
O2 - BHO: Class - {874C653A-BB7D-4FBD-25AD-76522C2032E0} - C:\WINDOWS\MFCDP.DLL (file missing)
O2 - BHO: Class - {3429280D-A0EF-6539-FD00-40AF25C5C116} - C:\WINDOWS\SYSTEM\IPRN32.DLL (file missing)
O2 - BHO: Class - {675C38A4-3D9C-D286-74EB-095A4AA69816} - C:\WINDOWS\SYSTEM\ADDVG.DLL (file missing)
O2 - BHO: Class - {B0D478BC-4C98-5956-D01E-F69F33B7AB11} - C:\WINDOWS\SYSTEM\MFCBI32.DLL (file missing)
O2 - BHO: Class - {E2EE63AA-6042-4A78-50B3-4072F042785E} - C:\WINDOWS\MSOE32.DLL (file missing)
O2 - BHO: Class - {8A5210E2-516B-B55D-B537-A3B4A94DABD4} - C:\WINDOWS\SYSTEM\D3ZK.DLL (file missing)
O2 - BHO: Class - {0426289E-C3E9-C13A-ED9A-FA21D3758986} - C:\WINDOWS\IEFM32.DLL (file missing)
O2 - BHO: Class - {08B062B7-0572-9CCE-27F2-A318B78A3677} - C:\WINDOWS\NTXM32.DLL (file missing)
O2 - BHO: Class - {D5184A7F-11EE-1961-8F3B-3DEE124EFEBB} - C:\WINDOWS\APPYV.DLL (file missing)
O2 - BHO: Class - {D7603A0A-83FE-6A34-7598-CA392AC679FB} - C:\WINDOWS\SYSTEM\JAVAHZ.DLL (file missing)
O2 - BHO: Class - {8DD1C737-6D03-E584-1706-1544B11A3AAC} - C:\WINDOWS\SYSTEM\SYSNK.DLL (file missing)
O2 - BHO: Class - {F538B067-5A0F-89FE-6A09-3F46EAC2A99E} - C:\WINDOWS\SYSTEM\MFCGG32.DLL (file missing)
O2 - BHO: Class - {789E72D6-E372-0623-F4B5-C8D782FB1FF5} - C:\WINDOWS\NTWO.DLL (file missing)
O2 - BHO: Class - {E8B063E8-4E5E-1F21-D1BA-D0123986D6F1} - C:\WINDOWS\SYSTEM\NETCZ32.DLL (file missing)
O2 - BHO: Class - {CBF1F509-4631-D544-B318-1452FEE2A371} - C:\WINDOWS\SYSSP32.DLL (file missing)
O2 - BHO: Class - {EA18C985-9D47-72A6-0895-62594F8F22B3} - C:\WINDOWS\SYSNT32.DLL (file missing)
O2 - BHO: Class - {7AF5FF83-455D-2890-94EB-5589ABE5C093} - C:\WINDOWS\SYSTEM\APPZJ.DLL (file missing)
O2 - BHO: Class - {865235B7-0E3A-D50A-986E-C16FB1F9A672} - C:\WINDOWS\SYSTEM\MFCVB.DLL (file missing)
O2 - BHO: Class - {43DE0B3C-F44C-9853-66F9-9655E7FD0275} - C:\WINDOWS\NTBE.DLL (file missing)
O2 - BHO: Class - {7AADF982-4598-7DD2-A20B-630DD168492F} - C:\WINDOWS\SYSQB32.DLL (file missing)
O2 - BHO: Class - {76011BD3-91E9-05A1-EDD4-5FFF0CDEDA75} - C:\WINDOWS\SYSTEM\MFCAY32.DLL (file missing)
O2 - BHO: Class - {82346319-02A9-3198-1E7F-3397C07BAD2C} - C:\WINDOWS\SYSTEM\MSLD32.DLL (file missing)
O2 - BHO: Class - {7C0D8542-7B84-251E-C98B-8A6A47C0B4F6} - C:\WINDOWS\SYSTEM\WINYZ.DLL (file missing)
O2 - BHO: Class - {C2CD8E86-6A17-9A7D-F801-D1F9B4A15FA2} - C:\WINDOWS\WINTO.DLL (file missing)
O2 - BHO: Class - {508CEC2F-E4FA-ECDD-E35D-6317744EFBD7} - C:\WINDOWS\ATLKW32.DLL (file missing)
O2 - BHO: Class - {E04B2E72-AF5D-42B4-27C2-1DFBEB4A9650} - C:\WINDOWS\IPAD.DLL (file missing)
O2 - BHO: Class - {CC2DA680-96EA-5AED-42B8-F54D249B35DD} - C:\WINDOWS\IEPS32.DLL (file missing)
O2 - BHO: Class - {47F3D9C2-ECFE-3210-C122-AAC2E5CE619C} - C:\WINDOWS\APPRT32.DLL (file missing)
O2 - BHO: Class - {6C653AB5-E650-E0AB-7B19-3D05955C2EDA} - C:\WINDOWS\SYSTEM\D3SC32.DLL (file missing)
O2 - BHO: Class - {831710E3-7E06-570C-3083-83DF47D1F1A7} - C:\WINDOWS\SYSKL32.DLL (file missing)
O2 - BHO: Class - {85C18F99-A819-E47E-9A0F-6E941AC13B95} - C:\WINDOWS\IPFC.DLL (file missing)
O2 - BHO: Class - {91925427-A5FD-53B9-196E-5741007CC0AC} - C:\WINDOWS\ADDCS32.DLL (file missing)
O2 - BHO: Class - {91C2B0FE-D006-5E8B-44FA-B029114249CF} - C:\WINDOWS\CRDJ.DLL (file missing)
O2 - BHO: Class - {EF499FF4-5D68-4F48-3C5E-65411AF29344} - C:\WINDOWS\SDKLW.DLL (file missing)
O2 - BHO: Class - {B3770AC3-0147-2627-0720-789FE7DA486D} - C:\WINDOWS\NTJP32.DLL (file missing)
O2 - BHO: Class - {C6485EFA-7AAD-7376-28A7-F27B1FB4DF48} - C:\WINDOWS\SYSTEM\CRJY32.DLL (file missing)
O2 - BHO: Class - {4EF173C7-37FB-764C-4EE2-D86CB880FB29} - C:\WINDOWS\SYSMY32.DLL (file missing)
O2 - BHO: Class - {BB7B8A9C-DD4F-5B52-7ADF-FC76786C7394} - C:\WINDOWS\SYSTEM\APPMC32.DLL (file missing)
O2 - BHO: Class - {1E8AF320-F527-4BD5-6198-BD7AF3EF55C5} - C:\WINDOWS\SYSTEM\NETOC32.DLL (file missing)
O2 - BHO: Class - {D31A5CE1-18FA-4CC5-9352-EADFD540630A} - C:\WINDOWS\SYSTEM\SYSZI32.DLL (file missing)
O2 - BHO: Class - {AF1BEE74-B1D1-2FF6-8E8A-9A95AE6518FF} - C:\WINDOWS\SYSXG32.DLL (file missing)
O2 - BHO: Class - {0E6A80F3-5F3F-91C4-0FA4-E204117F97B3} - C:\WINDOWS\SYSTEM\MFCIC32.DLL (file missing)
O2 - BHO: Class - {B62AAF5F-81D0-B02D-AC71-0F194E11C969} - C:\WINDOWS\IPWA.DLL (file missing)
O2 - BHO: Class - {61E930AA-7C50-F2FA-A487-E67B7884861E} - C:\WINDOWS\SYSTEM\SYSYK32.DLL (file missing)
O2 - BHO: Class - {28A5E86A-BEB3-2A6B-44A8-08239C13BA8E} - C:\WINDOWS\NETKQ.DLL (file missing)
O2 - BHO: Class - {6F5238D0-58CA-ADF4-63DE-FD4A5FF51173} - C:\WINDOWS\MFCJI32.DLL (file missing)
O2 - BHO: Class - {FC631A47-C8B3-02D6-1DC8-8D4C0F24DA94} - C:\WINDOWS\SYSTEM\ATLHZ.DLL (file missing)
O2 - BHO: Class - {C69FBFD4-BD49-D7B4-B94F-E7FBE1F1A212} - C:\WINDOWS\IPVF.DLL (file missing)
O2 - BHO: Class - {61A23520-0CDE-88EC-4C30-94D8137D6984} - C:\WINDOWS\APICZ32.DLL (file missing)
O2 - BHO: Class - {1A756325-0B1C-8BC2-42CE-007850CE3410} - C:\WINDOWS\SYSTEM\WINHV.DLL (file missing)
O2 - BHO: Class - {855D9ABD-36CC-FBCB-F69B-5F15C25AE571} - C:\WINDOWS\NETXI32.DLL (file missing)
O2 - BHO: Class - {47935C05-7BB4-F289-792A-378C625D2B94} - C:\WINDOWS\MFCFD.DLL (file missing)
O2 - BHO: Class - {2874F5E4-4E22-02E1-3EB9-95C683EBB89D} - C:\WINDOWS\SYSTEM\SYSYU.DLL (file missing)
O2 - BHO: Class - {84791202-CB60-843F-5DD2-0B474EE4F6D2} - C:\WINDOWS\NTVN.DLL (file missing)
O2 - BHO: Class - {14B347DC-397D-8A0C-EE38-EDC9B92A99F9} - C:\WINDOWS\D3DZ.DLL (file missing)
O2 - BHO: Class - {6BB04980-2884-B033-3D35-75B60FAF257B} - C:\WINDOWS\SYSTEM\MSTF.DLL (file missing)
O2 - BHO: Class - {1B1DA145-B3CE-F574-FA22-F80D9CFEDEF2} - C:\WINDOWS\APILH32.DLL (file missing)
O2 - BHO: Class - {705AE961-E2F5-CF0B-A264-699350E41DFA} - C:\WINDOWS\APPDW32.DLL (file missing)
O2 - BHO: Class - {25C41EF6-E19A-6573-9533-A8C88A2622AD} - C:\WINDOWS\WINXW32.DLL (file missing)
O2 - BHO: Class - {D4793234-BFA2-CB53-14AD-E13E5955ABD7} - C:\WINDOWS\JAVAYN.DLL (file missing)
O2 - BHO: Class - {991E592B-1B9D-46DE-8A0A-1A13872D7275} - C:\WINDOWS\SYSTEM\APPBX32.DLL (file missing)
O2 - BHO: Class - {522758DF-C2C1-BCF2-94D4-D45368447A01} - C:\WINDOWS\SYSTEM\JAVAZT.DLL (file missing)
O2 - BHO: Class - {EE58A1B0-009F-05C4-C549-8D3301177115} - C:\WINDOWS\SYSTEM\SDKLZ32.DLL (file missing)
O2 - BHO: Class - {0FD7B4B2-8EE8-9CEC-16FA-5FD03BD478AF} - C:\WINDOWS\ATLMI.DLL (file missing)
O2 - BHO: Class - {4D85169C-7342-BF83-3BFB-E09EFBCDD6FA} - C:\WINDOWS\SYSTEM\APPST32.DLL (file missing)
O2 - BHO: Class - {A178C8EE-CDB1-EE34-6193-4875937FBC1A} - C:\WINDOWS\SYSTEM\CRFQ32.DLL (file missing)
O2 - BHO: Class - {A8F51229-8EF3-4D90-8BE3-E843327D6F95} - C:\WINDOWS\IERE.DLL (file missing)
O2 - BHO: Class - {001C5F47-E8D6-E618-54EC-43089D824B4B} - C:\WINDOWS\SYSTEM\WINZP.DLL (file missing)
O2 - BHO: Class - {28788014-A45C-118B-A96E-A6516BFCAB86} - C:\WINDOWS\JAVASZ32.DLL (file missing)
O2 - BHO: Class - {6CF51F22-6C7E-77DC-D27C-83C8A20130CD} - C:\WINDOWS\SYSTEM\IEPI32.DLL (file missing)
O2 - BHO: Class - {C4322B27-0B19-D263-F955-4B1DF8B80E2E} - C:\WINDOWS\NTTZ.DLL (file missing)
O2 - BHO: Class - {04194DC1-FE3C-EB9E-862A-625742602CF4} - C:\WINDOWS\MSEV.DLL (file missing)
O2 - BHO: Class - {8144B36B-0CAB-4B25-CC47-F48322B3263D} - C:\WINDOWS\APIAK32.DLL (file missing)
O2 - BHO: Class - {9877CF20-2004-429B-24EF-2F9B313EAD4B} - C:\WINDOWS\IELX32.DLL (file missing)
O2 - BHO: Class - {2793207F-FDD4-8463-C868-B9849FC381CA} - C:\WINDOWS\SYSTEM\ADDVK.DLL (file missing)
O2 - BHO: Class - {7F1B1198-2D48-5C2D-FC37-75B621B75346} - C:\WINDOWS\SYSTEM\MSWF32.DLL (file missing)
O2 - BHO: Class - {4EDAA6C9-E44C-0633-B08A-A3C68F567654} - C:\WINDOWS\SYSTEM\WINGS.DLL (file missing)
O2 - BHO: Class - {D30E1491-53C4-69AA-2593-936A07C522D8} - C:\WINDOWS\SYSTEM\MFCLU.DLL (file missing)
O2 - BHO: Class - {B0D3C395-8E70-F3E6-7FD5-FA824D77E678} - C:\WINDOWS\SYSTEM\JAVAJN32.DLL (file missing)
O2 - BHO: Class - {7C6A3D4B-15DA-90B8-4B04-0C22B5732B1F} - C:\WINDOWS\SYSTEM\NTFO.DLL (file missing)
O2 - BHO: Class - {9CC137D5-2CC6-C4F9-4629-7EAF01FF61F7} - C:\WINDOWS\MSXL32.DLL (file missing)
O2 - BHO: Class - {2816A669-5396-432D-C6A2-978A8E8A9E63} - C:\WINDOWS\MSLA.DLL (file missing)
O2 - BHO: Class - {B536BEF0-D571-57E6-EAE6-33E630A9AC70} - C:\WINDOWS\SYSTEM\CRVA.DLL (file missing)
O2 - BHO: Class - {B10213DD-4D6B-A458-D2AE-3E706F786C0F} - C:\WINDOWS\SYSTEM\SDKKN.DLL (file missing)
O2 - BHO: Class - {C526847B-FEE3-1038-3C38-9D537D50C2E2} - C:\WINDOWS\IECK32.DLL (file missing)
O2 - BHO: Class - {C47BACBB-B1ED-EF19-238D-DBC9037735AD} - C:\WINDOWS\SYSTEM\NETXT.DLL (file missing)
O2 - BHO: Class - {8321C97A-8D55-6B2C-CD27-699292B1BAC9} - C:\WINDOWS\APIJY32.DLL (file missing)
O2 - BHO: Class - {791AD8C2-8309-DD29-AC2E-E41973BCE57F} - C:\WINDOWS\APINL.DLL (file missing)
O2 - BHO: Class - {D1E8711C-CA24-0648-63F6-72B649D9E734} - C:\WINDOWS\NTXY32.DLL (file missing)
O2 - BHO: Class - {263394B0-C7E7-CC16-B1E7-93173A6A15E3} - C:\WINDOWS\CRJV.DLL (file missing)
O2 - BHO: Class - {920B6A4A-446E-7C07-3F02-19E653897E63} - C:\WINDOWS\SYSLV.DLL (file missing)
O2 - BHO: Class - {E6F23682-174F-AF3C-0738-3DEF6F7B9091} - C:\WINDOWS\ATLGO32.DLL (file missing)
O2 - BHO: Class - {D452E69C-80CF-550B-22CD-960E6766B9CF} - C:\WINDOWS\SYSTEM\APIIW32.DLL (file missing)
O2 - BHO: Class - {E92AEB6E-3B11-F0FE-1F22-C652E08B1C50} - C:\WINDOWS\SYSTEM\ATLDG.DLL (file missing)
O2 - BHO: Class - {BFD1B764-7DD8-E992-CE2D-EAEBC173BD67} - C:\WINDOWS\NTOD.DLL (file missing)
O2 - BHO: Class - {D26AF2AB-0F2A-822B-1267-109C8769FEDC} - C:\WINDOWS\MSKM.DLL (file missing)
O2 - BHO: Class - {26BE69D8-6A82-E687-B6D4-C8CBB627878B} - C:\WINDOWS\SYSTEM\APPPH.DLL (file missing)
O2 - BHO: Class - {B819B7AC-EB4A-C91C-C894-75C05801D126} - C:\WINDOWS\ADDME.DLL (file missing)
O2 - BHO: Class - {D3698457-5E93-2115-32A6-711A2255B851} - C:\WINDOWS\SYSTEM\ADDKD32.DLL (file missing)
O2 - BHO: Class - {4C5872DC-452E-B4E4-D79D-4343168E8B05} - C:\WINDOWS\SDKHW32.DLL (file missing)
O2 - BHO: Class - {C729E39B-8682-DB4E-86FB-42249D8DC32C} - C:\WINDOWS\APICO.DLL (file missing)
O2 - BHO: Class - {BA6A7285-A488-F292-5E38-FED53B83902B} - C:\WINDOWS\WINLD.DLL (file missing)
O2 - BHO: Class - {623E5DF9-CC25-2935-D4FF-B90A1C705AE7} - C:\WINDOWS\SYSTEM\NTUH.DLL (file missing)
O2 - BHO: Class - {8BF81EC2-E5A2-6801-E127-35B846A2013E} - C:\WINDOWS\SYSTEM\ATLZB32.DLL (file missing)
O2 - BHO: Class - {EC35B82F-DE5F-4C0D-A8E0-4A646DF69845} - C:\WINDOWS\MSDT.DLL (file missing)
O2 - BHO: Class - {10A98544-4131-B61F-E940-7AA02061B120} - C:\WINDOWS\D3IF32.DLL (file missing)
O2 - BHO: Class - {729CB7F2-58D6-3B6F-AF9E-AF3E680D8538} - C:\WINDOWS\JAVAQA.DLL (file missing)
O2 - BHO: Class - {44D3C2A9-0E95-509A-E7F1-FA19B7FF7935} - C:\WINDOWS\SYSTEM\ADDRL.DLL (file missing)
O2 - BHO: Class - {2E38288E-E37F-52FA-2F73-421C8011C8BB} - C:\WINDOWS\SYSTEM\WINOS.DLL (file missing)
O2 - BHO: Class - {D4A73795-115C-35C2-E903-9D8423062AAF} - C:\WINDOWS\D3LU32.DLL (file missing)
O2 - BHO: Class - {846E0BB2-4B7E-3DCA-BD80-7211A3EE88C4} - C:\WINDOWS\JAVAHE32.DLL (file missing)
O2 - BHO: Class - {ADD4910D-B451-FB10-0153-CFBB4EDD25A1} - C:\WINDOWS\IEJW32.DLL (file missing)
O2 - BHO: Class - {DD3F4634-6B0B-933F-3B7C-A0E117930844} - C:\WINDOWS\SYSTEM\IELI.DLL (file missing)
O2 - BHO: Class - {95BAC7DA-0DDB-6F51-2538-D3418AE96254} - C:\WINDOWS\SYSDP32.DLL (file missing)
O2 - BHO: Class - {61188BBE-9CBA-D65A-C5D7-EE440A0EE5FF} - C:\WINDOWS\SYSTEM\MFCHR32.DLL (file missing)
O2 - BHO: Class - {44B25686-99F8-F195-F825-431202F0463F} - C:\WINDOWS\ATLRN32.DLL (file missing)
O2 - BHO: Class - {41DF6832-7C13-82F9-D3DB-2338C9AC44CA} - C:\WINDOWS\SYSTEM\NTCK32.DLL (file missing)
O2 - BHO: Class - {424F05AC-4537-F0B2-7345-6197152A9E72} - C:\WINDOWS\IPTO.DLL (file missing)
O2 - BHO: Class - {EA8BEFE9-0B89-2CDB-DFC7-BE42880CF0F3} - C:\WINDOWS\SDKRI32.DLL (file missing)
O2 - BHO: Class - {58BE2EE0-27B6-C905-F9B4-65D8FE8B1DC9} - C:\WINDOWS\ADDMZ.DLL (file missing)
O2 - BHO: Class - {8F6A8F90-48A6-A485-735A-3C729E0E9632} - C:\WINDOWS\APIVM.DLL (file missing)
O2 - BHO: Class - {7572E089-B1FF-8266-C5C3-33B8232C7FF7} - C:\WINDOWS\ATLWM32.DLL (file missing)
O2 - BHO: Class - {98CC5AAE-235D-FAA5-55FF-15141C8ADB12} - C:\WINDOWS\MFCAZ.DLL (file missing)
O2 - BHO: Class - {A50865E4-41F3-A6FC-9B1B-A396EC13BEFB} - C:\WINDOWS\SYSKS32.DLL (file missing)
O2 - BHO: Class - {BEB258C5-464B-FF79-067D-A455A193FDF5} - C:\WINDOWS\MSSN.DLL (file missing)
O2 - BHO: Class - {661D27AD-F83F-7A95-B9E0-2A6BF8DF71DD} - C:\WINDOWS\APILM32.DLL (file missing)
O2 - BHO: Class - {205C6908-B58B-58E1-DDB3-F55EC80EF005} - C:\WINDOWS\IEIL32.DLL (file missing)
O2 - BHO: Class - {5E8F75F1-1263-8517-FC42-6202D9FBEA8A} - C:\WINDOWS\SYSTEM\WINED32.DLL (file missing)
O2 - BHO: Class - {1C72FEB7-4D6C-FAF3-195A-D51516EDCC77} - C:\WINDOWS\APIKO32.DLL (file missing)
O2 - BHO: Class - {767BDB1A-E6AB-5412-EE5A-00A263197914} - C:\WINDOWS\SYSTEM\JAVAVL.DLL (file missing)
O2 - BHO: Class - {B94F3C67-1535-1772-4599-ACFEB4B563E3} - C:\WINDOWS\SYSTEM\IETS32.DLL (file missing)
O2 - BHO: Class - {9E8D30B9-0868-64A8-9289-FF52F6770580} - C:\WINDOWS\SYSTEM\D3BN.DLL (file missing)
O2 - BHO: Class - {30F97DA3-A733-2794-8262-29E0B6F53BA8} - C:\WINDOWS\SYSTEM\CRNS.DLL (file missing)
O2 - BHO: Class - {AC13E960-9091-ED76-3B6F-551A44D726C9} - C:\WINDOWS\SYSTEM\SDKQU.DLL (file missing)
O2 - BHO: Class - {617282ED-954E-7A0F-D30A-D2686C8DD1A3} - C:\WINDOWS\JAVAKG32.DLL (file missing)
O2 - BHO: Class - {4BFD4D78-0677-5A16-56CC-A27F27B49C93} - C:\WINDOWS\SYSTEM\D3SR.DLL (file missing)
O2 - BHO: Class - {7B852FD1-75E7-FC74-B7E9-ADEF49ABB2B2} - C:\WINDOWS\NETTA.DLL (file missing)
O2 - BHO: Class - {36546570-6D49-72A6-1919-2E175930B795} - C:\WINDOWS\SYSTEM\WINUJ32.DLL (file missing)
O2 - BHO: Class - {C89CE2D9-30C1-9B0F-8469-371C2FBEDC8A} - C:\WINDOWS\SYSTEM\APIGJ32.DLL (file missing)
O2 - BHO: Class - {90591DBF-DB35-B261-468A-E07E3681D1C5} - C:\WINDOWS\SYSTEM\JAVALL32.DLL (file missing)
O2 - BHO: Class - {35B54222-E335-F43C-2815-C458BE45A1E0} - C:\WINDOWS\SYSTEM\D3JN32.DLL (file missing)
O2 - BHO: Class - {4098B116-3E9F-6C68-3DD2-D1F9DE132411} - C:\WINDOWS\NETKW.DLL (file missing)
O2 - BHO: Class - {CF11BA65-67B6-4345-B33D-482030C50DBF} - C:\WINDOWS\SDKAE32.DLL (file missing)
O2 - BHO: Class - {FBE4630A-13A1-75C1-D9DC-1A6A8FA9C091} - C:\WINDOWS\SYSTEM\MFCOG.DLL (file missing)
O2 - BHO: Class - {D08C939B-880F-83D3-63AD-4D6CEC3B77F1} - C:\WINDOWS\SYSTEM\SDKYC32.DLL (file missing)
O2 - BHO: Class - {DB4E2CC3-64FC-96F8-223E-929CAE6175B3} - C:\WINDOWS\SYSTEM\ATLXE.DLL (file missing)
O2 - BHO: Class - {45704FCA-088F-4D29-2764-FC45C65E5B49} - C:\WINDOWS\APPLT.DLL (file missing)
O2 - BHO: Class - {07ABE382-E9D6-AC2E-6D7E-AFDF74C8BD55} - C:\WINDOWS\SYSTEM\D3MC32.DLL (file missing)
O2 - BHO: Class - {81431490-504E-199D-B9C8-2786EDA95995} - C:\WINDOWS\JAVADT32.DLL (file missing)
O2 - BHO: Class - {8E615C3C-F769-DC70-D84B-F21ECCE41EE6} - C:\WINDOWS\ATLQQ32.DLL (file missing)
O2 - BHO: Class - {D29FC690-2C1A-13ED-EAD0-602D9E092CB7} - C:\WINDOWS\SYSTEM\NETDM.DLL (file missing)
O2 - BHO: Class - {9B36A721-7322-3397-EEBA-77E4FC7168C3} - C:\WINDOWS\SYSTEM\APPMZ32.DLL (file missing)
O2 - BHO: Class - {50CD8E84-A084-B58F-5E7E-738A3D10E2B3} - C:\WINDOWS\CRXM32.DLL (file missing)
O2 - BHO: Class - {57D6C72A-FC72-79E1-B118-FE7CB6322C1A} - C:\WINDOWS\SYSTEM\NTMB32.DLL (file missing)
O2 - BHO: Class - {E8D49CA9-C5FD-6BCF-DD51-31A53DF80403} - C:\WINDOWS\IPYH32.DLL (file missing)
O2 - BHO: Class - {3DCC3A22-49AB-3E61-BA5F-E5B9AC8B375E} - C:\WINDOWS\APPBS.DLL (file missing)
O2 - BHO: Class - {C8EAA083-CCFE-0DCF-8BA9-0DE459AAB915} - C:\WINDOWS\SYSTEM\D3DJ32.DLL (file missing)
O2 - BHO: Class - {49E13B83-C734-1261-571F-007C0D7C4540} - C:\WINDOWS\NETJP32.DLL (file missing)
O2 - BHO: Class - {F28454FA-6A15-D30C-EA95-84CEB5368537} - C:\WINDOWS\SYSTEM\JAVAYN.DLL (file missing)
O2 - BHO: Class - {EC2F8D1A-6A3A-61BE-88A0-314B30E0317A} - C:\WINDOWS\SYSQJ32.DLL (file missing)
O2 - BHO: Class - {5F4A50C3-388F-CE5C-27A8-060FCBA8C2A8} - C:\WINDOWS\IECO.DLL (file missing)
O2 - BHO: Class - {344AC5DD-6D3A-D034-A6A0-0C3EB4B5AE67} - C:\WINDOWS\D3GY.DLL (file missing)
O2 - BHO: Class - {A5B223E5-0E73-9AC9-758C-41988A18DD24} - C:\WINDOWS\SYSTEM\APIKR.DLL (file missing)
O2 - BHO: Class - {E409353F-4B29-4EB5-9B60-7BDD916E0C23} - C:\WINDOWS\SYSTEM\MFCBN32.DLL (file missing)
O2 - BHO: Class - {762649A9-5928-B1E9-E457-DCA1D5648F18} - C:\WINDOWS\SYSTEM\JAVACH32.DLL (file missing)
O2 - BHO: Class - {A3DEAD28-EE65-AB87-0D4A-5AA324BCB9A7} - C:\WINDOWS\MFCVR.DLL (file missing)
O2 - BHO: Class - {D4C865F2-EF3F-A44E-8D54-A989848F235F} - C:\WINDOWS\ADDKG.DLL (file missing)
O2 - BHO: Class - {2F69A736-12F8-7E36-8E7F-1EABCA25DF51} - C:\WINDOWS\SYSTEM\WINSA32.DLL (file missing)
O2 - BHO: Class - {74EE13F3-4F7F-9428-EAE7-54C71206013B} - C:\WINDOWS\WINQR32.DLL (file missing)
O2 - BHO: Class - {6D31B2A8-16A2-A5FC-3013-852DD5FDF6CF} - C:\WINDOWS\SYSTEM\MFCXC32.DLL (file missing)
O2 - BHO: Class - {3DE4535D-CBA7-C8CA-1A28-B6F809091143} - C:\WINDOWS\CRJI32.DLL (file missing)
O2 - BHO: Class - {6BE5C394-AA25-266E-D794-88256569CD9D} - C:\WINDOWS\D3RO32.DLL (file missing)
O2 - BHO: Class - {2713BBFD-3234-B3E9-407A-544D5430C44C} - C:\WINDOWS\SYSTEM\MFCNB32.DLL (file missing)
O2 - BHO: Class - {8D180685-5C69-10CF-5661-F3D98794CEBA} - C:\WINDOWS\SYSTEM\ATLVV.DLL (file missing)
O2 - BHO: Class - {566007A9-1CA3-9847-3ADE-D4D92CC404F8} - C:\WINDOWS\CRAO32.DLL (file missing)
O2 - BHO: Class - {091EDCF3-7FA1-B901-6BD3-797D77FA2620} - C:\WINDOWS\SYSTEM\WINKK.DLL (file missing)
O2 - BHO: Class - {33EB3E87-FF78-88F4-8F3F-A3BAA6D5714A} - C:\WINDOWS\SYSTEM\MFCMF.DLL (file missing)
O2 - BHO: Class - {DB10C0DD-EAF1-0FBE-C114-18BDB3485E8B} - C:\WINDOWS\MSBD32.DLL (file missing)
O2 - BHO: Class - {74F5E2D8-9FB2-E398-1673-570B5A4AAE4F} - C:\WINDOWS\SYSTEM\APPGF32.DLL (file missing)
O2 - BHO: Class - {4EDCC140-C8D2-D289-0790-01DE1741C462} - C:\WINDOWS\SYSXW32.DLL (file missing)
O2 - BHO: Class - {B7850B28-A394-BB11-DC89-B0592CEE7C17} - C:\WINDOWS\SYSTEM\WINPD32.DLL (file missing)
O2 - BHO: Class - {5DF68014-8E92-E1A6-CEC5-71F4FC741A18} - C:\WINDOWS\APPNF32.DLL (file missing)
O2 - BHO: Class - {C8CB8018-66B0-6853-E2B4-CE7E119AEDCA} - C:\WINDOWS\IPES32.DLL (file missing)
O2 - BHO: Class - {7B85FA17-3401-10CB-828B-B56542CDCC47} - C:\WINDOWS\SYSTEM\WINEW32.DLL (file missing)
O2 - BHO: Class - {BF9B86BB-0A64-B0AD-FD7B-9CCE5B7B4C01} - C:\WINDOWS\D3MP.DLL (file missing)
O2 - BHO: Class - {B550E44A-A371-83DE-2CDF-619537449A87} - C:\WINDOWS\CRTC32.DLL (file missing)
O2 - BHO: Class - {04062330-46C5-BB59-3989-A926BB335F46} - C:\WINDOWS\SYSTEM\ADDKU32.DLL (file missing)
O2 - BHO: Class - {93746255-B5DE-D30D-5090-EA932B2CE594} - C:\WINDOWS\APPDL32.DLL (file missing)
O2 - BHO: Class - {9B261FA6-9B63-5063-797E-458D1EEA0124} - C:\WINDOWS\MSUT32.DLL (file missing)
O2 - BHO: Class - {AA2057A8-B033-5FED-DE09-9933A49F9AED} - C:\WINDOWS\NETHP32.DLL (file missing)
O2 - BHO: Class - {2B3CFBA5-33C2-261E-6C96-21F21A18E640} - C:\WINDOWS\MFCBI.DLL (file missing)
O2 - BHO: Class - {396229FC-B438-AE62-D58F-18B758C89C0C} - C:\WINDOWS\SYSTEM\IECZ32.DLL (file missing)
O2 - BHO: Class - {B4FF9B58-4976-6F52-8D09-8CA3ADF4263D} - C:\WINDOWS\SYSTEM\ATLLM32.DLL (file missing)
O2 - BHO: Class - {FD28144A-BE74-ABB6-5C2B-E60BF82588B7} - C:\WINDOWS\ADDQZ.DLL (file missing)
O2 - BHO: Class - {0CAEDEE2-8F3E-F86F-35DC-CDEAAE346249} - C:\WINDOWS\CRTS.DLL (file missing)
O2 - BHO: Class - {438198B2-E2A8-1292-F9C2-B990785485E4} - C:\WINDOWS\SYSTEM\SDKNS.DLL (file missing)
O2 - BHO: Class - {AB1F2469-424C-0E58-738F-2149079121EF} - C:\WINDOWS\SYSTEM\SDKLI.DLL (file missing)
O2 - BHO: Class - {61BDA99D-BA2E-F992-ADD3-D9A802D84CC2} - C:\WINDOWS\SYSTEM\MFCQK32.DLL (file missing)
O2 - BHO: Class - {D9D4B256-B546-9ABF-966C-40D55211A16D} - C:\WINDOWS\SYSTEM\SYSLD.DLL (file missing)
O2 - BHO: Class - {1793507C-8F6D-13BB-3D03-0C15FBBFCB80} - C:\WINDOWS\SYSTEM\ATLBK32.DLL (file missing)
O2 - BHO: Class - {B872ADF3-31FE-E674-3365-21EDB13DD5A1} - C:\WINDOWS\SYSTEM\D3OJ.DLL (file missing)
O2 - BHO: Class - {8C8960FA-A206-CA3C-2AA1-E1179654EDFA} - C:\WINDOWS\WINSL.DLL (file missing)
O2 - BHO: Class - {F54572C9-9ABD-A3F8-C5D9-5C2ED789C2FD} - C:\WINDOWS\SYSTEM\MFCTU32.DLL (file missing)
O2 - BHO: Class - {F3485428-77FF-E708-DA20-E086B5881F90} - C:\WINDOWS\MSIS.DLL (file missing)
O2 - BHO: Class - {370869A3-BAD3-D84B-1480-C5FD0FA6D89F} - C:\WINDOWS\MFCWH.DLL (file missing)
O2 - BHO: Class - {F253732F-ACBC-610E-6D92-285393235117} - C:\WINDOWS\APPQH32.DLL (file missing)
O2 - BHO: Class - {58737FC5-1A18-683E-BAAF-4B2289A95A0C} - C:\WINDOWS\ADDXB.DLL (file missing)
O2 - BHO: Class - {C4321F79-4119-FC9A-FB04-062C3F916C8D} - C:\WINDOWS\WINRH32.DLL (file missing)
O2 - BHO: Class - {3F8514CE-ED8C-21D0-D765-95DC8D874E11} - C:\WINDOWS\SYSTEM\NETIA32.DLL (file missing)
O2 - BHO: Class - {A5092B60-DF37-DFAA-3150-C3A4CE66E205} - C:\WINDOWS\SYSTEM\IPBR32.DLL (file missing)
O2 - BHO: Class - {0B7880E4-8F22-7DAC-627F-AA37E207B86D} - C:\WINDOWS\WINWG32.DLL (file missing)
O2 - BHO: Class - {2CB91DCB-A5E9-DD47-0B46-E2380FC72EF2} - C:\WINDOWS\MFCRY32.DLL (file missing)
O2 - BHO: Class - {07DD92D4-CC5A-5DAA-B7C4-DEC0B6D55959} - C:\WINDOWS\ATLZT.DLL (file missing)
O2 - BHO: Class - {59F9B4B2-54F7-F6DF-EAA1-C8A5C2E5C112} - C:\WINDOWS\SYSTEM\APPSY32.DLL (file missing)
O2 - BHO: Class - {B7B608A1-3C0D-13E8-78EE-41C5182942D9} - C:\WINDOWS\SYSTEM\MFCCG32.DLL (file missing)
O2 - BHO: Class - {DEE94005-1C44-5C08-22FF-9E5E64B4E3BB} - C:\WINDOWS\IPDX.DLL (file missing)
O2 - BHO: Class - {9B30DCA1-088C-7DEE-E682-0FD875963161} - C:\WINDOWS\D3LK32.DLL (file missing)
O2 - BHO: Class - {5CFD026C-2B7A-DEB8-FF78-6995F60054FC} - C:\WINDOWS\SYSTEM\ADDEG32.DLL (file missing)
O2 - BHO: Class - {D51199C1-FD54-E2A8-E8A1-43B629D479FD} - C:\WINDOWS\SYSTEM\CRVO.DLL (file missing)
O2 - BHO: Class - {4E058A0C-5B54-A7D7-F83C-1205AF30E96F} - C:\WINDOWS\SYSTEM\WINLA.DLL (file missing)
O2 - BHO: Class - {3EB7C486-822C-B49A-76A8-C7CEBAA84985} - C:\WINDOWS\SDKBZ32.DLL (file missing)
O2 - BHO: Class - {6D64A390-DFBD-E0B5-5BCA-1E9FB2E735AC} - C:\WINDOWS\SYSVZ.DLL (file missing)
O2 - BHO: Class - {35A01210-A8E7-5949-8F4B-D83F54410DD6} - C:\WINDOWS\SYSTEM\MFCFV32.DLL (file missing)
O2 - BHO: Class - {FB375D03-ADFB-A764-80E7-7750FF44A796} - C:\WINDOWS\D3OZ32.DLL (file missing)
O2 - BHO: Class - {211B99E0-F1C1-1D55-58EC-0AF23546E627} - C:\WINDOWS\SYSTEM\SYSYM32.DLL (file missing)
O2 - BHO: Class - {AE58960D-C64A-4262-D77B-BE4330D49118} - C:\WINDOWS\SYSTEM\SDKNM.DLL (file missing)
O2 - BHO: Class - {07E2FBBF-C64A-1972-227E-82FA4861EB78} - C:\WINDOWS\APIAS.DLL (file missing)
O2 - BHO: Class - {FF72BF6B-A16B-A24C-41F4-1B094D6F2FA8} - C:\WINDOWS\SYSTEM\APIOH.DLL (file missing)
O2 - BHO: Class - {118D4B1B-2374-E063-2261-8D60E47F4A74} - C:\WINDOWS\APIMZ.DLL (file missing)
O2 - BHO: Class - {9A8B0ADC-69D9-F547-8D32-F0E33590287B} - C:\WINDOWS\SYSTEM\NETIS.DLL (file missing)
O2 - BHO: Class - {D02BF681-DD31-FE09-4765-7D08D4817616} - C:\WINDOWS\JAVAAJ.DLL (file missing)
O2 - BHO: Class - {0FD1DEEA-1A6E-D2A8-546F-C5B4E5E41E0C} - C:\WINDOWS\SDKID32.DLL (file missing)
O2 - BHO: Class - {24CC5BCF-5C68-ECDC-7708-EB852B1A173B} - C:\WINDOWS\SYSTEM\MSOH32.DLL (file missing)
O2 - BHO: Class - {FF15B883-848E-4D79-15D7-7A3FF0D9E588} - C:\WINDOWS\NTBJ.DLL (file missing)
O2 - BHO: Class - {007938B8-8D10-1224-1A13-F33AEB4B4A80} - C:\WINDOWS\SYSTEM\D3ZO32.DLL (file missing)
O2 - BHO: Class - {8DEFD291-4C8D-4CBD-02CD-929041BDB374} - C:\WINDOWS\D3VD32.DLL (file missing)
O2 - BHO: Class - {EAFF0E33-ECC0-B81A-F317-64A41D7A8BCF} - C:\WINDOWS\SYSTEM\CRHJ.DLL (file missing)
O2 - BHO: Class - {3AC2B270-5616-68F4-58BA-C0AC2CB2188C} - C:\WINDOWS\SDKNU32.DLL (file missing)
O2 - BHO: Class - {7E5AE60D-F853-2E2E-E13C-0B6C38249ABD} - C:\WINDOWS\ADDFC.DLL (file missing)
O2 - BHO: Class - {0D521E90-FF76-3FC3-E866-905A28B2CF30} - C:\WINDOWS\APIMF.DLL (file missing)
O2 - BHO: Class - {EAF521EB-5513-475B-B2B3-4D4B11

BC AdBot (Login to Remove)

 


#2 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,640 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:10:32 PM

Posted 13 August 2004 - 08:22 AM

Ok we need to clean this up a bit to make it more manageable.

DO the following:

I want you to fix some of those entries. Please do the following:

Please make sure that you can view all hidden files. Instructions on how to do this can be found here:

How to see hidden files in Windows

Run Hijackthis again, click scan, and Put a checkmark next to each of these. Then click the Fix button:

Any O2 entry that states (file missing) after it.

Then reboot and post a new log.

Also include this with the new log:

The first thing I need you to do is download the file from here:

Getservice.zip

Extract the file to the c:\ drive. Then navigate to the c:\getservices and double-click on the getservices.bat file. A notepad will open up. Please paste the contents of that notepad as a reply to this post.

#3 wags

wags
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 13 August 2004 - 12:08 PM

Thanks for the reply Grinler! And sorry for the delay... I am having a problem. The O2 BHO's (missing file) are gone BUT something is hogging the memory on the PC. I am getting "out of memory error" when I try to run any program. If I go fast enough I can usually get one program to run. Therefore, I am unable to post the most recent log at this time.

Can you look further into the previous log for deletions that might help to remove "out of memory error"?

Wags

#4 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,640 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:10:32 PM

Posted 13 August 2004 - 12:16 PM

Do it from safe mode...its the infection causing the problem. Reboot your computer into safe mode and delete the O2 entries.

#5 wags

wags
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 13 August 2004 - 12:32 PM

done! Here is the new HJT log.


Logfile of HijackThis v1.98.2
Scan saved at 1:24:49 PM, on 13/08/2004
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\PROGRAM FILES\HJT\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R3 - Default URLSearchHook is missing
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\ACROBAT\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: Class - {1446CAF7-D2B9-3F02-EFF6-939AF47CF05D} - C:\WINDOWS\D3BQ32.DLL
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [Adaptec DirectCD] C:\PROGRA~1\ADAPTEC\DIRECTCD\DIRECTCD.EXE
O4 - HKLM\..\Run: [PCHealth] C:\WINDOWS\PCHealth\Support\PCHSchd.exe -s
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [GDRIVE] C:\IBMTOOLS\IBMBOOT\GDRIVE.EXE -N
O4 - HKLM\..\Run: [Speed racer] C:\Program Files\Creative\PlayCenter\CTSRReg.exe
O4 - HKLM\..\Run: [AudioHQ] C:\Program Files\Creative\SBLive\AudioHQ\AHQTB.EXE
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] PELMICED.EXE
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~2\NAVAPW32.EXE
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\LOGITECH\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [QAGENT] C:\QUICKENW\QAGENT.EXE
O4 - HKLM\..\Run: [Hidserv] Hidserv.exe run
O4 - HKLM\..\Run: [QBCD Autorun] G:\autorun.exe restart TIMER_SEQUENCE first
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [QuickTime Task] C:\WINDOWS\SYSTEM\QTTASK.EXE
O4 - HKLM\..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\evntsvc.exe -osboot
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [piiserviceOE] "C:\PROGRAM FILES\SPAM INSPECTOR OUTLOOK EXPRESS\SPAM INSPECTOR OUTLOOK EXPRESS EDITION\piiserviceOE.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\SYSTEM\hpztsb08.exe
O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
O4 - HKLM\..\Run: [CRSY.EXE] C:\WINDOWS\CRSY.EXE
O4 - HKLM\..\Run: [devldr16.exe] C:\WINDOWS\SYSTEM\devldr16.exe
O4 - HKLM\..\Run: [CreateCD] C:\PROGRA~1\ADAPTEC\EASYCD~1\CREATECD\CREATECD.EXE -r
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [SSDPSRV] C:\WINDOWS\SYSTEM\ssdpsrv.exe
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SAgent2ExePath] C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O4 - HKLM\..\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe
O4 - HKLM\..\RunServices: [CRQO.EXE] C:\WINDOWS\SYSTEM\CRQO.EXE
O4 - HKLM\..\RunServices: [D3GD.EXE] C:\WINDOWS\D3GD.EXE
O4 - HKLM\..\RunServices: [CRBP.EXE] C:\WINDOWS\CRBP.EXE
O4 - HKLM\..\RunServices: [NETUR.EXE] C:\WINDOWS\NETUR.EXE
O4 - HKLM\..\RunServices: [IWABWB.DAT] C:\WINDOWS\IWABWB.DAT
O4 - HKLM\..\RunServices: [D3MH.EXE] C:\WINDOWS\SYSTEM\D3MH.EXE
O4 - HKLM\..\RunServices: [IPFL.EXE] C:\WINDOWS\IPFL.EXE
O4 - HKLM\..\RunServices: [AVGMLQ.DAT] C:\WINDOWS\AVGMLQ.DAT
O4 - HKLM\..\RunServices: [APIAO32.EXE] C:\WINDOWS\APIAO32.EXE
O4 - HKLM\..\RunServices: [APPUR32.EXE] C:\WINDOWS\SYSTEM\APPUR32.EXE
O4 - HKLM\..\RunServices: [WINPS32.EXE] C:\WINDOWS\SYSTEM\WINPS32.EXE
O4 - HKLM\..\RunServices: [APPYH.EXE] C:\WINDOWS\SYSTEM\APPYH.EXE
O4 - HKLM\..\RunServices: [IPZG.EXE] C:\WINDOWS\IPZG.EXE
O4 - HKLM\..\RunServices: [NETZO.EXE] C:\WINDOWS\NETZO.EXE
O4 - HKLM\..\RunServices: [CRXD32.EXE] C:\WINDOWS\CRXD32.EXE
O4 - HKLM\..\RunServices: [CRUG32.EXE] C:\WINDOWS\CRUG32.EXE
O4 - HKLM\..\RunServices: [IPXE32.EXE] C:\WINDOWS\SYSTEM\IPXE32.EXE
O4 - HKLM\..\RunServices: [MFCXB32.EXE] C:\WINDOWS\SYSTEM\MFCXB32.EXE
O4 - HKLM\..\RunServices: [MSKS.EXE] C:\WINDOWS\SYSTEM\MSKS.EXE
O4 - HKLM\..\RunServices: [D3TQ.EXE] C:\WINDOWS\D3TQ.EXE
O4 - HKLM\..\RunServices: [SYSFM.EXE] C:\WINDOWS\SYSTEM\SYSFM.EXE
O4 - HKLM\..\RunServices: [ADDNQ32.EXE] C:\WINDOWS\ADDNQ32.EXE
O4 - HKLM\..\RunServices: [JAVAOW32.EXE] C:\WINDOWS\SYSTEM\JAVAOW32.EXE
O4 - HKLM\..\RunServices: [SDKJN.EXE] C:\WINDOWS\SDKJN.EXE
O4 - HKLM\..\RunServices: [APPWC.EXE] C:\WINDOWS\APPWC.EXE
O4 - HKLM\..\RunServices: [D3DU.EXE] C:\WINDOWS\D3DU.EXE
O4 - HKLM\..\RunServices: [MFCVU32.EXE] C:\WINDOWS\MFCVU32.EXE
O4 - HKLM\..\RunServices: [IEYE32.EXE] C:\WINDOWS\SYSTEM\IEYE32.EXE
O4 - HKLM\..\RunServices: [SYSIM32.EXE] C:\WINDOWS\SYSTEM\SYSIM32.EXE
O4 - HKLM\..\RunServices: [IPKV.EXE] C:\WINDOWS\IPKV.EXE
O4 - HKLM\..\RunServices: [APPPF.EXE] C:\WINDOWS\APPPF.EXE
O4 - HKLM\..\RunServices: [MSSM.EXE] C:\WINDOWS\SYSTEM\MSSM.EXE
O4 - HKLM\..\RunServices: [ATLGV32.EXE] C:\WINDOWS\ATLGV32.EXE
O4 - HKLM\..\RunServices: [SDKER.EXE] C:\WINDOWS\SYSTEM\SDKER.EXE
O4 - HKLM\..\RunServices: [CRDB.EXE] C:\WINDOWS\SYSTEM\CRDB.EXE
O4 - HKLM\..\RunServices: [APPAG.EXE] C:\WINDOWS\APPAG.EXE
O4 - HKLM\..\RunServices: [APPHD32.EXE] C:\WINDOWS\SYSTEM\APPHD32.EXE
O4 - HKLM\..\RunServices: [D3KW.EXE] C:\WINDOWS\D3KW.EXE
O4 - HKLM\..\RunServices: [NTCZ.EXE] C:\WINDOWS\SYSTEM\NTCZ.EXE
O4 - HKLM\..\RunServices: [NETIR.EXE] C:\WINDOWS\NETIR.EXE
O4 - HKLM\..\RunServices: [SDKKE32.EXE] C:\WINDOWS\SYSTEM\SDKKE32.EXE
O4 - HKLM\..\RunServices: [D3BQ.EXE] C:\WINDOWS\SYSTEM\D3BQ.EXE
O4 - HKLM\..\RunServices: [SDKLO32.EXE] C:\WINDOWS\SDKLO32.EXE
O4 - HKLM\..\RunServices: [WINSD32.EXE] C:\WINDOWS\WINSD32.EXE
O4 - HKLM\..\RunServices: [IPKX32.EXE] C:\WINDOWS\IPKX32.EXE
O4 - HKLM\..\RunServices: [IEJG32.EXE] C:\WINDOWS\IEJG32.EXE
O4 - HKLM\..\RunServices: [APPIZ32.EXE] C:\WINDOWS\APPIZ32.EXE
O4 - HKLM\..\RunServices: [CRNL.EXE] C:\WINDOWS\SYSTEM\CRNL.EXE
O4 - HKLM\..\RunServices: [CRUY.EXE] C:\WINDOWS\CRUY.EXE
O4 - HKLM\..\RunServices: [MFCGP32.EXE] C:\WINDOWS\SYSTEM\MFCGP32.EXE
O4 - HKLM\..\RunServices: [IEFU32.EXE] C:\WINDOWS\SYSTEM\IEFU32.EXE
O4 - HKLM\..\RunServices: [IPGV32.EXE] C:\WINDOWS\SYSTEM\IPGV32.EXE
O4 - HKLM\..\RunServices: [ATLDD.EXE] C:\WINDOWS\SYSTEM\ATLDD.EXE
O4 - HKLM\..\RunServices: [WINQJ.EXE] C:\WINDOWS\WINQJ.EXE
O4 - HKLM\..\RunServices: [WINTJ.EXE] C:\WINDOWS\WINTJ.EXE
O4 - HKLM\..\RunServices: [ATLXA32.EXE] C:\WINDOWS\SYSTEM\ATLXA32.EXE
O4 - HKLM\..\RunServices: [CRSL32.EXE] C:\WINDOWS\SYSTEM\CRSL32.EXE
O4 - HKLM\..\RunServices: [MFCPC32.EXE] C:\WINDOWS\SYSTEM\MFCPC32.EXE
O4 - HKLM\..\RunServices: [ADDEJ32.EXE] C:\WINDOWS\ADDEJ32.EXE
O4 - HKLM\..\RunServices: [NTRW32.EXE] C:\WINDOWS\SYSTEM\NTRW32.EXE
O4 - HKLM\..\RunServices: [D3FK32.EXE] C:\WINDOWS\SYSTEM\D3FK32.EXE
O4 - HKLM\..\RunServices: [MFCIU.EXE] C:\WINDOWS\MFCIU.EXE
O4 - HKLM\..\RunServices: [APPIO32.EXE] C:\WINDOWS\APPIO32.EXE
O4 - HKLM\..\RunServices: [D3PO.EXE] C:\WINDOWS\D3PO.EXE
O4 - HKLM\..\RunServices: [JAVAOK32.EXE] C:\WINDOWS\JAVAOK32.EXE
O4 - HKLM\..\RunServices: [SDKSV.EXE] C:\WINDOWS\SYSTEM\SDKSV.EXE
O4 - HKLM\..\RunServices: [ADDCP32.EXE] C:\WINDOWS\ADDCP32.EXE
O4 - HKLM\..\RunServices: [SYSAC32.EXE] C:\WINDOWS\SYSTEM\SYSAC32.EXE
O4 - HKLM\..\RunServices: [SDKLY.EXE] C:\WINDOWS\SDKLY.EXE
O4 - HKLM\..\RunServices: [ATLIY32.EXE] C:\WINDOWS\ATLIY32.EXE
O4 - HKLM\..\RunServices: [ADDPA32.EXE] C:\WINDOWS\ADDPA32.EXE
O4 - HKLM\..\RunServices: [MFCCI.EXE] C:\WINDOWS\MFCCI.EXE
O4 - HKLM\..\RunServices: [NTWC32.EXE] C:\WINDOWS\SYSTEM\NTWC32.EXE
O4 - HKLM\..\RunServices: [ADDBB.EXE] C:\WINDOWS\SYSTEM\ADDBB.EXE
O4 - HKLM\..\RunServices: [SDKTZ.EXE] C:\WINDOWS\SYSTEM\SDKTZ.EXE
O4 - HKLM\..\RunServices: [APPEZ32.EXE] C:\WINDOWS\APPEZ32.EXE
O4 - HKLM\..\RunServices: [WINAQ32.EXE] C:\WINDOWS\WINAQ32.EXE
O4 - HKLM\..\RunServices: [D3KL.EXE] C:\WINDOWS\SYSTEM\D3KL.EXE
O4 - HKLM\..\RunServices: [IPPU32.EXE] C:\WINDOWS\SYSTEM\IPPU32.EXE
O4 - HKLM\..\RunServices: [D3KG32.EXE] C:\WINDOWS\SYSTEM\D3KG32.EXE
O4 - HKLM\..\RunServices: [WINFY32.EXE] C:\WINDOWS\SYSTEM\WINFY32.EXE
O4 - HKLM\..\RunServices: [IEVG.EXE] C:\WINDOWS\IEVG.EXE
O4 - HKLM\..\RunServices: [ATLGE32.EXE] C:\WINDOWS\ATLGE32.EXE
O4 - HKLM\..\RunServices: [CROI32.EXE] C:\WINDOWS\SYSTEM\CROI32.EXE
O4 - HKCU\..\Run: [MoneyAgent] "c:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\SYSTEM\E_SRCV02.EXE
O4 - Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Startup: Quicken Startup.lnk = C:\QUICKENW\QWDLLS.EXE
O4 - Startup: Billminder.lnk = C:\QUICKENW\BILLMIND.EXE
O4 - Startup: QuickBooks Delivery Agent.lnk = C:\Program Files\Intuit\QuickBooks Pro\Components\QBAgent\QBDAgent.exe
O4 - Startup: NkVwMon.exe.lnk = C:\Program Files\Nikon\NkView4\NkVwMon.exe
O4 - Startup: Sierra Garden Planner Tray Application.lnk = C:\Sierra\GPlan\CALTRAY.EXE
O4 - Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O8 - Extra context menu item: &Define - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O8 - Extra context menu item: Look Up in &Encyclopedia - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra 'Tools' menuitem: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra 'Tools' menuitem: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O12 - Plugin for .spop: C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll
O12 - Plugin for .pdf: C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll
O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin.dll
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://floridakeysmedia.tv/axiscam/Codebas...sCamControl.ocx

#6 wags

wags
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 13 August 2004 - 01:04 PM

Also Grinler, I am having a problem getting on the net in safe mode with the problem computer: Gives a message that I "risk corrupting the video display and other anomolies" I click yes to run the access manager and a message: "E0041 Failed on create device NTS SPPP3" appears. I can get on the net when NOT in safe mode. I will keep the infected computer in safe mode until told otherwise. So I am running between two computers to download files.

Also, I tried to run PSService .bat file in safe mode and received the following error: "PSService is linked to missing export NETAPI32.dll:NetServerEnum

Thanks again!

Edited by wags, 13 August 2004 - 01:05 PM.


#7 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,640 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:10:32 PM

Posted 13 August 2004 - 01:21 PM

Fix these with hijackthis:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\ltzmj.dll/sp.html#37049
O2 - BHO: Class - {1446CAF7-D2B9-3F02-EFF6-939AF47CF05D} - C:\WINDOWS\D3BQ32.DLL
O4 - HKLM\..\Run: [QBCD Autorun] G:\autorun.exe restart TIMER_SEQUENCE first
O4 - HKLM\..\Run: [CRSY.EXE] C:\WINDOWS\CRSY.EXE
O4 - HKLM\..\RunServices: [CRQO.EXE] C:\WINDOWS\SYSTEM\CRQO.EXE
O4 - HKLM\..\RunServices: [D3GD.EXE] C:\WINDOWS\D3GD.EXE
O4 - HKLM\..\RunServices: [CRBP.EXE] C:\WINDOWS\CRBP.EXE
O4 - HKLM\..\RunServices: [NETUR.EXE] C:\WINDOWS\NETUR.EXE
O4 - HKLM\..\RunServices: [IWABWB.DAT] C:\WINDOWS\IWABWB.DAT
O4 - HKLM\..\RunServices: [D3MH.EXE] C:\WINDOWS\SYSTEM\D3MH.EXE
O4 - HKLM\..\RunServices: [IPFL.EXE] C:\WINDOWS\IPFL.EXE
O4 - HKLM\..\RunServices: [AVGMLQ.DAT] C:\WINDOWS\AVGMLQ.DAT
O4 - HKLM\..\RunServices: [APIAO32.EXE] C:\WINDOWS\APIAO32.EXE
O4 - HKLM\..\RunServices: [APPUR32.EXE] C:\WINDOWS\SYSTEM\APPUR32.EXE
O4 - HKLM\..\RunServices: [WINPS32.EXE] C:\WINDOWS\SYSTEM\WINPS32.EXE
O4 - HKLM\..\RunServices: [APPYH.EXE] C:\WINDOWS\SYSTEM\APPYH.EXE
O4 - HKLM\..\RunServices: [IPZG.EXE] C:\WINDOWS\IPZG.EXE
O4 - HKLM\..\RunServices: [NETZO.EXE] C:\WINDOWS\NETZO.EXE
O4 - HKLM\..\RunServices: [CRXD32.EXE] C:\WINDOWS\CRXD32.EXE
O4 - HKLM\..\RunServices: [CRUG32.EXE] C:\WINDOWS\CRUG32.EXE
O4 - HKLM\..\RunServices: [IPXE32.EXE] C:\WINDOWS\SYSTEM\IPXE32.EXE
O4 - HKLM\..\RunServices: [MFCXB32.EXE] C:\WINDOWS\SYSTEM\MFCXB32.EXE
O4 - HKLM\..\RunServices: [MSKS.EXE] C:\WINDOWS\SYSTEM\MSKS.EXE
O4 - HKLM\..\RunServices: [D3TQ.EXE] C:\WINDOWS\D3TQ.EXE
O4 - HKLM\..\RunServices: [SYSFM.EXE] C:\WINDOWS\SYSTEM\SYSFM.EXE
O4 - HKLM\..\RunServices: [ADDNQ32.EXE] C:\WINDOWS\ADDNQ32.EXE
O4 - HKLM\..\RunServices: [JAVAOW32.EXE] C:\WINDOWS\SYSTEM\JAVAOW32.EXE
O4 - HKLM\..\RunServices: [SDKJN.EXE] C:\WINDOWS\SDKJN.EXE
O4 - HKLM\..\RunServices: [APPWC.EXE] C:\WINDOWS\APPWC.EXE
O4 - HKLM\..\RunServices: [D3DU.EXE] C:\WINDOWS\D3DU.EXE
O4 - HKLM\..\RunServices: [MFCVU32.EXE] C:\WINDOWS\MFCVU32.EXE
O4 - HKLM\..\RunServices: [IEYE32.EXE] C:\WINDOWS\SYSTEM\IEYE32.EXE
O4 - HKLM\..\RunServices: [SYSIM32.EXE] C:\WINDOWS\SYSTEM\SYSIM32.EXE
O4 - HKLM\..\RunServices: [IPKV.EXE] C:\WINDOWS\IPKV.EXE
O4 - HKLM\..\RunServices: [APPPF.EXE] C:\WINDOWS\APPPF.EXE
O4 - HKLM\..\RunServices: [MSSM.EXE] C:\WINDOWS\SYSTEM\MSSM.EXE
O4 - HKLM\..\RunServices: [ATLGV32.EXE] C:\WINDOWS\ATLGV32.EXE
O4 - HKLM\..\RunServices: [SDKER.EXE] C:\WINDOWS\SYSTEM\SDKER.EXE
O4 - HKLM\..\RunServices: [CRDB.EXE] C:\WINDOWS\SYSTEM\CRDB.EXE
O4 - HKLM\..\RunServices: [APPAG.EXE] C:\WINDOWS\APPAG.EXE
O4 - HKLM\..\RunServices: [APPHD32.EXE] C:\WINDOWS\SYSTEM\APPHD32.EXE
O4 - HKLM\..\RunServices: [D3KW.EXE] C:\WINDOWS\D3KW.EXE
O4 - HKLM\..\RunServices: [NTCZ.EXE] C:\WINDOWS\SYSTEM\NTCZ.EXE
O4 - HKLM\..\RunServices: [NETIR.EXE] C:\WINDOWS\NETIR.EXE
O4 - HKLM\..\RunServices: [SDKKE32.EXE] C:\WINDOWS\SYSTEM\SDKKE32.EXE
O4 - HKLM\..\RunServices: [D3BQ.EXE] C:\WINDOWS\SYSTEM\D3BQ.EXE
O4 - HKLM\..\RunServices: [SDKLO32.EXE] C:\WINDOWS\SDKLO32.EXE
O4 - HKLM\..\RunServices: [WINSD32.EXE] C:\WINDOWS\WINSD32.EXE
O4 - HKLM\..\RunServices: [IPKX32.EXE] C:\WINDOWS\IPKX32.EXE
O4 - HKLM\..\RunServices: [IEJG32.EXE] C:\WINDOWS\IEJG32.EXE
O4 - HKLM\..\RunServices: [APPIZ32.EXE] C:\WINDOWS\APPIZ32.EXE
O4 - HKLM\..\RunServices: [CRNL.EXE] C:\WINDOWS\SYSTEM\CRNL.EXE
O4 - HKLM\..\RunServices: [CRUY.EXE] C:\WINDOWS\CRUY.EXE
O4 - HKLM\..\RunServices: [MFCGP32.EXE] C:\WINDOWS\SYSTEM\MFCGP32.EXE
O4 - HKLM\..\RunServices: [IEFU32.EXE] C:\WINDOWS\SYSTEM\IEFU32.EXE
O4 - HKLM\..\RunServices: [IPGV32.EXE] C:\WINDOWS\SYSTEM\IPGV32.EXE
O4 - HKLM\..\RunServices: [ATLDD.EXE] C:\WINDOWS\SYSTEM\ATLDD.EXE
O4 - HKLM\..\RunServices: [WINQJ.EXE] C:\WINDOWS\WINQJ.EXE
O4 - HKLM\..\RunServices: [WINTJ.EXE] C:\WINDOWS\WINTJ.EXE
O4 - HKLM\..\RunServices: [ATLXA32.EXE] C:\WINDOWS\SYSTEM\ATLXA32.EXE
O4 - HKLM\..\RunServices: [CRSL32.EXE] C:\WINDOWS\SYSTEM\CRSL32.EXE
O4 - HKLM\..\RunServices: [MFCPC32.EXE] C:\WINDOWS\SYSTEM\MFCPC32.EXE
O4 - HKLM\..\RunServices: [ADDEJ32.EXE] C:\WINDOWS\ADDEJ32.EXE
O4 - HKLM\..\RunServices: [NTRW32.EXE] C:\WINDOWS\SYSTEM\NTRW32.EXE
O4 - HKLM\..\RunServices: [D3FK32.EXE] C:\WINDOWS\SYSTEM\D3FK32.EXE
O4 - HKLM\..\RunServices: [MFCIU.EXE] C:\WINDOWS\MFCIU.EXE
O4 - HKLM\..\RunServices: [APPIO32.EXE] C:\WINDOWS\APPIO32.EXE
O4 - HKLM\..\RunServices: [D3PO.EXE] C:\WINDOWS\D3PO.EXE
O4 - HKLM\..\RunServices: [JAVAOK32.EXE] C:\WINDOWS\JAVAOK32.EXE
O4 - HKLM\..\RunServices: [SDKSV.EXE] C:\WINDOWS\SYSTEM\SDKSV.EXE
O4 - HKLM\..\RunServices: [ADDCP32.EXE] C:\WINDOWS\ADDCP32.EXE
O4 - HKLM\..\RunServices: [SYSAC32.EXE] C:\WINDOWS\SYSTEM\SYSAC32.EXE
O4 - HKLM\..\RunServices: [SDKLY.EXE] C:\WINDOWS\SDKLY.EXE
O4 - HKLM\..\RunServices: [ATLIY32.EXE] C:\WINDOWS\ATLIY32.EXE
O4 - HKLM\..\RunServices: [ADDPA32.EXE] C:\WINDOWS\ADDPA32.EXE
O4 - HKLM\..\RunServices: [MFCCI.EXE] C:\WINDOWS\MFCCI.EXE
O4 - HKLM\..\RunServices: [NTWC32.EXE] C:\WINDOWS\SYSTEM\NTWC32.EXE
O4 - HKLM\..\RunServices: [ADDBB.EXE] C:\WINDOWS\SYSTEM\ADDBB.EXE
O4 - HKLM\..\RunServices: [SDKTZ.EXE] C:\WINDOWS\SYSTEM\SDKTZ.EXE
O4 - HKLM\..\RunServices: [APPEZ32.EXE] C:\WINDOWS\APPEZ32.EXE
O4 - HKLM\..\RunServices: [WINAQ32.EXE] C:\WINDOWS\WINAQ32.EXE
O4 - HKLM\..\RunServices: [D3KL.EXE] C:\WINDOWS\SYSTEM\D3KL.EXE
O4 - HKLM\..\RunServices: [IPPU32.EXE] C:\WINDOWS\SYSTEM\IPPU32.EXE
O4 - HKLM\..\RunServices: [D3KG32.EXE] C:\WINDOWS\SYSTEM\D3KG32.EXE
O4 - HKLM\..\RunServices: [WINFY32.EXE] C:\WINDOWS\SYSTEM\WINFY32.EXE
O4 - HKLM\..\RunServices: [IEVG.EXE] C:\WINDOWS\IEVG.EXE
O4 - HKLM\..\RunServices: [ATLGE32.EXE] C:\WINDOWS\ATLGE32.EXE
O4 - HKLM\..\RunServices: [CROI32.EXE] C:\WINDOWS\SYSTEM\CROI32.EXE

Then delete all the files listed in the O4 entries.

Then reboot into normal mode and post a new log

#8 wags

wags
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 13 August 2004 - 02:07 PM

Done! And things are running MUCH faster in normal mode! Thank you. Here is the updated log. O16 seems suspicious to me(??)



Logfile of HijackThis v1.98.2
Scan saved at 2:59:49 PM, on 13/08/2004
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\DEVLDR16.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\SSDPSRV.EXE
C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\SAGENT2.EXE
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\ADAPTEC\DIRECTCD\DIRECTCD.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAM FILES\CREATIVE\SBLIVE\AUDIOHQ\AHQTB.EXE
C:\WINDOWS\SYSTEM\PELMICED.EXE
C:\PROGRAM FILES\NORTON ANTIVIRUS\NAVAPW32.EXE
C:\PROGRAM FILES\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
C:\PROGRAM FILES\LOGITECH\ITOUCH\ITOUCH.EXE
C:\PROGRAM FILES\ALCATEL\SPEEDTOUCH USB\DRAGDIAG.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\EVNTSVC.EXE
C:\PROGRAM FILES\CREATIVE\SHAREDLL\CTNOTIFY.EXE
C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE
C:\WINDOWS\SYSTEM\HIDSERV.EXE
C:\PROGRAM FILES\SPAM INSPECTOR OUTLOOK EXPRESS\SPAM INSPECTOR OUTLOOK EXPRESS EDITION\PIISERVICEOE.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\HP SOFTWARE UPDATE\HPWUSCHD.EXE
C:\WINDOWS\SYSTEM\HPZTSB08.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\BIN\HPOTDD01.EXE
C:\PROGRAM FILES\ADAPTEC\EASY CD CREATOR 4\CREATECD\CREATECD.EXE
C:\PROGRAM FILES\CREATIVE\SHAREDLL\MEDIADET.EXE
C:\PALM\HOTSYNC.EXE
C:\QUICKENW\QWDLLS.EXE
C:\PROGRAM FILES\INTUIT\QUICKBOOKS PRO\COMPONENTS\QBAGENT\QBDAGENT.EXE
C:\PROGRAM FILES\NIKON\NKVIEW4\NKVWMON.EXE
C:\SIERRA\GPLAN\CALTRAY.EXE
C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\DISTILLR\ACROTRAY.EXE
C:\WINDOWS\SYSTEM\MRTMNGR.EXE
C:\PROGRAM FILES\HJT\HIJACKTHIS.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE

R3 - Default URLSearchHook is missing
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\ACROBAT\ACTIVEX\ACROIEHELPER.OCX
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [Adaptec DirectCD] C:\PROGRA~1\ADAPTEC\DIRECTCD\DIRECTCD.EXE
O4 - HKLM\..\Run: [PCHealth] C:\WINDOWS\PCHealth\Support\PCHSchd.exe -s
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [GDRIVE] C:\IBMTOOLS\IBMBOOT\GDRIVE.EXE -N
O4 - HKLM\..\Run: [Speed racer] C:\Program Files\Creative\PlayCenter\CTSRReg.exe
O4 - HKLM\..\Run: [AudioHQ] C:\Program Files\Creative\SBLive\AudioHQ\AHQTB.EXE
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] PELMICED.EXE
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~2\NAVAPW32.EXE
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\LOGITECH\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [QAGENT] C:\QUICKENW\QAGENT.EXE
O4 - HKLM\..\Run: [Hidserv] Hidserv.exe run
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [QuickTime Task] C:\WINDOWS\SYSTEM\QTTASK.EXE
O4 - HKLM\..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\evntsvc.exe -osboot
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [piiserviceOE] "C:\PROGRAM FILES\SPAM INSPECTOR OUTLOOK EXPRESS\SPAM INSPECTOR OUTLOOK EXPRESS EDITION\piiserviceOE.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\SYSTEM\hpztsb08.exe
O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
O4 - HKLM\..\Run: [devldr16.exe] C:\WINDOWS\SYSTEM\devldr16.exe
O4 - HKLM\..\Run: [CreateCD] C:\PROGRA~1\ADAPTEC\EASYCD~1\CREATECD\CREATECD.EXE -r
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [SSDPSRV] C:\WINDOWS\SYSTEM\ssdpsrv.exe
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [SAgent2ExePath] C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O4 - HKLM\..\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe
O4 - HKCU\..\Run: [MoneyAgent] "c:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\SYSTEM\E_SRCV02.EXE
O4 - Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Startup: Quicken Startup.lnk = C:\QUICKENW\QWDLLS.EXE
O4 - Startup: Billminder.lnk = C:\QUICKENW\BILLMIND.EXE
O4 - Startup: QuickBooks Delivery Agent.lnk = C:\Program Files\Intuit\QuickBooks Pro\Components\QBAgent\QBDAgent.exe
O4 - Startup: NkVwMon.exe.lnk = C:\Program Files\Nikon\NkView4\NkVwMon.exe
O4 - Startup: Sierra Garden Planner Tray Application.lnk = C:\Sierra\GPlan\CALTRAY.EXE
O4 - Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O8 - Extra context menu item: &Define - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O8 - Extra context menu item: Look Up in &Encyclopedia - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra 'Tools' menuitem: Encarta Encyclopedia - {2FDEF853-0759-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_ENC.HTM
O9 - Extra button: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O9 - Extra 'Tools' menuitem: Define - {5DA9DE80-097A-11D4-A92E-006097DBED37} - c:\Program Files\Common Files\Microsoft Shared\Reference 2001\A\ERS_DEF.HTM
O12 - Plugin for .spop: C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll
O12 - Plugin for .pdf: C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll
O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin.dll
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://floridakeysmedia.tv/axiscam/Codebas...sCamControl.ocx

#9 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,640 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:10:32 PM

Posted 13 August 2004 - 02:53 PM

Not sure what the O16 is but if you wish you can remove that. If you find you do need it at a later time, the site you are visiting will download it for you automatically.

Other than you are clean!! Great job.

Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:
  • Make your Internet Explorer more secure - This can be done by following these simple instructions:
    • From within Internet Explorer click on the Tools menu and then click on Options.
    • Click once on the Security tab
    • Click once on the Internet icon so it becomes highlighted.
    • Click once on the Custom Level button.
      • Change the Download signed ActiveX controls to Prompt
      • Change the Download unsigned ActiveX controls to Disable
      • Change the Initialize and script ActiveX controls not marked as safe to Disable
      • Change the Installation of desktop items to Prompt
      • Change the Launching programs and files in an IFRAME to Prompt
      • Change the Navigate sub-frames across different domains to Prompt
      • When all these settings have been made, click on the OK button.
      • If it prompts you as to whether or not you want to save the settings, press the Yes button.
    • Next press the Apply button and then the OK to exit the Internet Properties page.
  • Use an AntiVirus Software - It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future.

    See this link for a listing of some online & their stand-alone antivirus programs:

    Virus, Spyware, and Malware Protection and Removal Resources

  • Update your AntiVirus Software - It is imperitive that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out.

  • Use a Firewall - I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is succeptible to being hacked and taken over. I am very serious about this and see it happen almost every day with my clients. Simply using a Firewall in its default configuration can lower your risk greatly.

    For a tutorial on Firewalls and a listing of some available ones see the link below:

    Understanding and Using Firewalls

  • Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

  • Install Spybot - Search and Destroy - Install and download Spybot - Search and Destroy with its TeaTimer option. This will provide realtime spyware & hijacker protection on your computer alongside your virus protection. You should also scan your computer with program on a regular basis just as you would an antivirus software.

    A tutorial on installing & using this product can be found here:

    Using Spybot - Search & Destroy to remove Spyware , Malware, and Hijackers

  • Install Ad-Aware - Install and download Ad-Aware. ou should also scan your computer with program on a regular basis just as you would an antivirus software in conjunction with Spybot.

    A tutorial on installing & using this product can be found here:

    Using Ad-aware to remove Spyware, Malware, & Hijackers from Your Computer

  • Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

    A tutorial on installing & using this product can be found here:

    Using SpywareBlaster to protect your computer from Spyware and Malware

  • Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.
Follow this list and your potential for being infected again will reduce dramatically.

Glad I was able to help.

#10 wags

wags
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:32 PM

Posted 13 August 2004 - 03:24 PM

Your a good person Grinler!!!! Thanks so much for your help and patience. I will also follow the advice you have given.

Thanks!!!!
Wags




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users