Jump to content

khaos

Members
  • Content Count

    71
  • Joined

  • Last visited

About khaos

  • Rank
    Member

Previous Fields

  • System Specifications:
    HP Pavilion mx70
  1. khaos

    HJT Log

    I'll wait for an expert.
  2. Logfile of HijackThis v1.99.1 Scan saved at 1:34:41 AM, on 9/10/2005 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cmd.exe C:\WINDOWS\System32\nfsiod.exe C:\WINDOWS\System32\nfsiod.exe C:\WINDOWS\explorer.exe C:\WINDOWS\wanmpsvc.exe c:\windows\system32\uopegdz.exe C:\WINDOWS\System32\RUNDLL32.exe C:\WINDOWS\System32\rundll32.exe C:\Program Files\DU Meter\DUMeter.exe C:\WINDOWS\System32\??anregw.exe C:\Program Files\apsi\wtta.exe C:\Program Files\America Online 7.0\aoltray.exe C:\WINDOWS\System32\taskmgr.exe C:\WINDOWS\System32\usbhdctl.exe C:\WINDOWS\System32\usbhdctl.exe C:\Program Files\America Online 7.0\waol.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Yahoo!\Messenger\ypager.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Music Vault\New\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us7.hpwis.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us7.hpwis.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us7.hpwis.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://default.home R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://us7.hpwis.com/ R3 - Default URLSearchHook is missing O1 - Hosts: 69.31.81.22 www.google.ae O1 - Hosts: 69.31.81.22 www.google.am O1 - Hosts: 69.31.81.22 www.google.as O1 - Hosts: 69.31.81.22 www.google.at O1 - Hosts: 69.31.81.22 www.google.az O1 - Hosts: 69.31.81.22 www.google.be O1 - Hosts: 69.31.81.22 www.google.bi O1 - Hosts: 69.31.81.22 www.google.ca O1 - Hosts: 69.31.81.22 www.google.cd O1 - Hosts: 69.31.81.22 www.google.cg O1 - Hosts: 69.31.81.22 www.google.ch O1 - Hosts: 69.31.81.22 www.google.ci O1 - Hosts: 69.31.81.22 www.google.cl O1 - Hosts: 69.31.81.22 www.google.co.cr O1 - Hosts: 69.31.81.22 www.google.co.hu O1 - Hosts: 69.31.81.22 www.google.co.il O1 - Hosts: 69.31.81.22 www.google.co.in O1 - Hosts: 69.31.81.22 www.google.co.je O1 - Hosts: 69.31.81.22 www.google.co.jp O1 - Hosts: 69.31.81.22 www.google.co.ke O1 - Hosts: 69.31.81.22 www.google.co.kr O1 - Hosts: 69.31.81.22 www.google.co.ls O1 - Hosts: 69.31.81.22 www.google.co.nz O1 - Hosts: 69.31.81.22 www.google.co.th O1 - Hosts: 69.31.81.22 www.google.co.ug O1 - Hosts: 69.31.81.22 www.google.co.uk O1 - Hosts: 69.31.81.22 www.google.co.ve O1 - Hosts: 69.31.81.22 www.google.com O1 - Hosts: 69.31.81.22 www.google.com.ag O1 - Hosts: 69.31.81.22 www.google.com.ar O1 - Hosts: 69.31.81.22 www.google.com.au O1 - Hosts: 69.31.81.22 www.google.com.br O1 - Hosts: 69.31.81.22 www.google.com.co O1 - Hosts: 69.31.81.22 www.google.com.cu O1 - Hosts: 69.31.81.22 www.google.com.do O1 - Hosts: 69.31.81.22 www.google.com.ec O1 - Hosts: 69.31.81.22 www.google.com.fj O1 - Hosts: 69.31.81.22 www.google.com.gi O1 - Hosts: 69.31.81.22 www.google.com.gr O1 - Hosts: 69.31.81.22 www.google.com.gt O1 - Hosts: 69.31.81.22 www.google.com.hk O1 - Hosts: 69.31.81.22 www.google.com.ly O1 - Hosts: 69.31.81.22 www.google.com.mt O1 - Hosts: 69.31.81.22 www.google.com.mx O1 - Hosts: 69.31.81.22 www.google.com.my O1 - Hosts: 69.31.81.22 www.google.com.na O1 - Hosts: 69.31.81.22 www.google.com.nf O1 - Hosts: 69.31.81.22 www.google.com.ni O1 - Hosts: 69.31.81.22 www.google.com.np O1 - Hosts: 69.31.81.22 www.google.com.pa O1 - Hosts: 69.31.81.22 www.google.com.pe O1 - Hosts: 69.31.81.22 www.google.com.ph O1 - Hosts: 69.31.81.22 www.google.com.pk O1 - Hosts: 69.31.81.22 www.google.com.pr O1 - Hosts: 69.31.81.22 www.google.com.py O1 - Hosts: 69.31.81.22 www.google.com.sa O1 - Hosts: 69.31.81.22 www.google.com.sg O1 - Hosts: 69.31.81.22 www.google.com.sv O1 - Hosts: 69.31.81.22 www.google.com.tr O1 - Hosts: 69.31.81.22 www.google.com.tw O1 - Hosts: 69.31.81.22 www.google.com.ua O1 - Hosts: 69.31.81.22 www.google.com.uy O1 - Hosts: 69.31.81.22 www.google.com.vc O1 - Hosts: 69.31.81.22 www.google.com.vn O1 - Hosts: 69.31.81.22 www.google.de O1 - Hosts: 69.31.81.22 www.google.dj O1 - Hosts: 69.31.81.22 www.google.dk O1 - Hosts: 69.31.81.22 www.google.es O1 - Hosts: 69.31.81.22 www.google.fi O1 - Hosts: 69.31.81.22 www.google.fm O1 - Hosts: 69.31.81.22 www.google.fr O1 - Hosts: 69.31.81.22 www.google.gg O1 - Hosts: 69.31.81.22 www.google.gl O1 - Hosts: 69.31.81.22 www.google.gm O1 - Hosts: 69.31.81.22 www.google.hn O1 - Hosts: 69.31.81.22 www.google.ie O1 - Hosts: 69.31.81.22 www.google.it O1 - Hosts: 69.31.81.22 www.google.kz O1 - Hosts: 69.31.81.22 www.google.li O1 - Hosts: 69.31.81.22 www.google.lt O1 - Hosts: 69.31.81.22 www.google.lu O1 - Hosts: 69.31.81.22 www.google.lv O1 - Hosts: 69.31.81.22 www.google.mn O1 - Hosts: 69.31.81.22 www.google.ms O1 - Hosts: 69.31.81.22 www.google.mu O1 - Hosts: 69.31.81.22 www.google.mw O1 - Hosts: 69.31.81.22 www.google.nl O1 - Hosts: 69.31.81.22 www.google.no O1 - Hosts: 69.31.81.22 www.google.off.ai O1 - Hosts: 69.31.81.22 www.google.pl O1 - Hosts: 69.31.81.22 www.google.pn O1 - Hosts: 69.31.81.22 www.google.pt O1 - Hosts: 69.31.81.22 www.google.ro O1 - Hosts: 69.31.81.22 www.google.ru O1 - Hosts: 69.31.81.22 www.google.rw O1 - Hosts: 69.31.81.22 www.google.se O1 - Hosts: 69.31.81.22 www.google.sh O1 - Hosts: 69.31.81.22 www.google.sk O1 - Hosts: 69.31.81.22 www.google.sm O1 - Hosts: 69.31.81.22 www.google.td O1 - Hosts: 69.31.81.22 www.google.tm O2 - BHO: CExtension Object - {0019C3E2-DD48-4A6D-ABCD-8D32436323D9} - C:\WINDOWS\cfgmgr52.dll O2 - BHO: (no name) - {4FA2B39B-A7DA-983C-68E6-5B095A4118FD} - C:\DOCUME~1\Owner\LOCALS~1\Temp\ejshqjkrcvc.dll O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll O3 - Toolbar: Date Bar - {A833AB67-7368-457E-B8BF-249CCD8DDD14} - C:\DOCUME~1\Owner\LOCALS~1\Temp\dbar.dll (file missing) O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AutoTBar] C:\hp\bin\autotbar.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize O4 - HKLM\..\Run: [AUNPS2] RUNDLL32 AUNPS2.DLL,[email protected] O4 - HKLM\..\Run: [A70F6A1D-0195-42a2-934C-D8AC0F7C08EB] rundll32.exe E6F1873B.DLL,D9EBC318C O4 - HKLM\..\Run: [98D0CE0C16B1] rundll32.exe D0CE0C16B1,D0CE0C16B1 O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\Run: [jiodp] C:\WINDOWS\System32\jiodp.exe O4 - HKLM\..\Run: [cfgmgr52] RunDLL32.EXE C:\WINDOWS\cfgmgr52.dll,DllRun O4 - HKLM\..\Run: [qxkuwkp] c:\windows\system32\uopegdz.exe r O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [CAS Client] "C:\Program Files\Cas\Client\casclient.exe" O4 - HKCU\..\Run: [Jthu] C:\WINDOWS\System32\??anregw.exe O4 - HKCU\..\Run: [Win32res] C:\WINDOWS\win32res.exe O4 - HKCU\..\Run: [Notn] C:\Program Files\apsi\wtta.exe O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet O4 - Global Startup: America Online 7.0 Tray Icon.lnk = C:\Program Files\America Online 7.0\aoltray.exe O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: (no name) - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file) O9 - Extra 'Tools' menuitem: Java - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file) O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM\aim.exe O9 - Extra button: Start spyware remover - {BF69DF00-2734-477F-8257-27CD04F88779} - C:\Program Files\WareOut\WareOut.exe (HKCU) O9 - Extra 'Tools' menuitem: Start spyware remover - {BF69DF00-2734-477F-8257-27CD04F88779} - C:\Program Files\WareOut\WareOut.exe (HKCU) O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O15 - Trusted Zone: http://www.neededware.com O16 - DPF: NDWCab - http://www.neededware.com/ndw4.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {E36C5562-C4E0-4220-BCB2-1C671E3A5916} (Seagate SeaTools English Online) - file://E:\tools\en\bin\npseatools.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{D9C44F2D-867E-48A0-ADDC-2C0499A0D02F}: NameServer = 205.188.146.145 O17 - HKLM\System\CCS\Services\Tcpip\..\{DBA503D1-9408-4A6A-BADD-B6D493FFF824}: NameServer = 69.50.176.198,85.255.112.12 O20 - Winlogon Notify: Explorer - C:\WINDOWS\system32\s0pula791d.dll (file missing) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: SharedDLLs - C:\WINDOWS\system32\guard.tmp (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: System Startup Service (SvcProc) - Unknown owner - C:\WINDOWS\svcproc.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
  3. I had that same problem today, but it continued to install and it worked!
  4. Thats alot! If I would be able to run 75 my pc wouldnt be able to connect to the web. I basically need all the processes that's running now.
  5. I have less than have that amount and my pc running crappy
  6. What's the average amount of processes a pc is running? Mine is 29, when I'm connected to the internet it's like 33. HP Pavilion mx70 WinXP Home Edition 1.5GHz AMD Processor
  7. Khaos=It's all around me. I had this "name" for afew years now.
×
×
  • Create New...