Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not quite aas clean as driven snow


  • Please log in to reply
No replies to this topic

#1 eraille

eraille

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:41 AM

Posted 12 September 2010 - 12:11 PM

This morning, AVAST began screaming at me that I had been infected by W32BubnixJ. After a bit of research, I went ahead and allowed it to move the files it said were infected. Afterwards, I ran MalwareBytes, which found a few other bits of nastiness and cleared them out. Followup scan both in safe and normal mode report no remaining infection.

But...

When I boot into normal mode, the machine seems to boot normally, and then my task bar vanishes, or locks (depending on whether it's in view or not at the time); the Windows key does nothing, and Task manager will not start. This condition persists for up to about 5', then everything seemingly returns to normal- basically a mega 'hang'. During this time, though, anything on the desktop can be accessed normally. The most disturbing part is that the system is generating a great deal of web traffic, regardless of whether I have a browser or 'net app open, which implies to me that something is calling home without permission.

Hijack log follows:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:10:00 PM, on 9/12/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\ZoneLabs\vsmon.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\AskBarDis\bar\bin\AskService.exe
D:\WINDOWS\System32\GEARSec.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\RunDll32.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Windows Media Player\WMPNSCFG.exe
D:\Program Files\Pando Networks\Media Booster\PMB.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\CheckPoint\ZAForceField\ForceField.exe
E:\downloads\HijackThis.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Mozilla Firefox\plugin-container.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://hometab.bellsouth.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: ZoneAlarm Toolbar - {66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - D:\Program Files\ZoneAlarm\tbZon1.dll
F2 - REG:system.ini: UserInit=D:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\userinit.exe,
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Toolbar - {66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - D:\Program Files\ZoneAlarm\tbZon1.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - D:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ZoneAlarm Spy Blocker Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ZoneAlarm Toolbar - {66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - D:\Program Files\ZoneAlarm\tbZon1.dll
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - D:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O4 - HKLM\..\Run: [amd_dc_opt] D:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AudCtrl] RunDll32 AudCtrl.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] D:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [CTStartup] D:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run
O4 - HKLM\..\Run: [EPSON Stylus CX5000 Series] D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVA.EXE /FU "C:\WINDOWS\TEMP\E_S8E.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartupDelayer] "D:\Program Files\r2 Studios\Startup Delayer\Startup Launcher GUI.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "D:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISW] "D:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Xdepuke] rundll32.exe "D:\WINDOWS\aheyiruburuyaxu.dll",Startup
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [igndlm.exe] D:\Program Files\Download Manager\dlm.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [WMPNSCFG] D:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Pando Media Booster] D:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - D:\Documents and Settings\Ed\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1245508650500
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O18 - Protocol: bw+0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw+0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw-0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw-0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw00 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw00s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw10 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw10s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw20 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw20s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw30 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw30s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw40 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw40s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw50 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw50s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw60 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw60s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw70 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw70s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw80 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw80s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw90 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bw90s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwa0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwa0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwb0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwb0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwc0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwc0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwd0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwd0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwe0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwe0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwf0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwf0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwg0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwh0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwh0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwi0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwi0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwj0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwj0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwk0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwk0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwl0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwl0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwm0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwm0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwn0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwn0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwo0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwo0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwp0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwp0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwq0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwq0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwr0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwr0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bws0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bws0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwt0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwt0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwu0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwu0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwv0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwv0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bww0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bww0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwx0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwx0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwy0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwy0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwz0 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: bwz0s - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: offline-8876480 - {DDCC0916-F56C-4A47-9D88-428CFF437DA9} - (no file)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: ASKService - Unknown owner - D:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTSVCCDA.EXE (file missing)
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: GameConsoleService - Unknown owner - D:\Program Files\WildGames\Game Console - WildGames\GameConsoleService.exe (file missing)
O23 - Service: GEARSecurity - GEAR Software - D:\WINDOWS\System32\GEARSec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - D:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NetMeeting Remote Desktop Sharing (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - D:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: nTune Service (nTuneService) - Unknown owner - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe (file missing)
O23 - Service: Symantec Core LC - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - D:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WMDM PMSP Service - Unknown owner - C:\WINDOWS\system32\MsPMSPSv.exe (file missing)
O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)

--
End of file - 16244 bytes

Any suggestions greatly appreciated.

Edited by eraille, 12 September 2010 - 12:26 PM.


BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users