Jump to content


  • Content Count

  • Joined

  • Last visited

About d-money

  • Rank
  1. i went to power options and under UPS it says it UPS service is turned off. I'm guesing this is for laptops (not me) but on my other pc it doesn't have a model or manufacturer under details and the messed up computer does. It says the manufacturer is American Power Conversion. This is the only difference in power options.
  2. i did the panda scan... Incident Status Location Adware:Adware/Gator No disinfected C:\Documents and Settings\All Users\Start Menu\Programs\Startup\GStartup.lnk Adware:Adware/Gator No disinfected C:\Documents and Settings\Lindsay Pitcher\Local Settings\Temp\fsg_tmp\ginst_001_1234_4201.exe Adware:Adware/Gator No disinfected C:\Program Files\DivX2\DivX Pro Codec\gain_trickler_3202.exe Adware:Adware/BrilliantDigitalNo disinfected C:\Program Files\Kazaa\bdcore.dll Adware:Adware/TopSearch No disinfected C:\Program Files\Kazaa\TopSearch.dll Adware:Adware/Medload No disinfected C:\Program Files\MediaLoads\v1\ML.exe Adware:Adware/Yahoo No disinfected C:\Program Files\Yahoo!\Companion\ycomp5_0_2_7.dll Adware:Adware/P2PNetworking No disinfected C:\WINDOWS\Downloaded Program Files\WebP2PInstaller.dll Adware:Adware/NewDotNet.A No disinfected C:\WINDOWS\NDNuninstall4_50.exe Spyware:Spyware/New.net No disinfected C:\WINDOWS\NDNuninstall4_80.exe Spyware:Spyware/New.net No disinfected C:\WINDOWS\NDNuninstall4_88.exe Virus:Trj/Downloader.DFM Disinfected C:\WINDOWS\system32\msCMTsrvc.exe Adware:Adware/P2PNetworking No disinfected C:\WINDOWS\system32\P2P Networking\MARSHAL.DLL Adware:Adware/P2PNetworking No disinfected C:\WINDOWS\system32\P2P Networking v125.cpl
  3. Ok thanks for the tips. I would have used the recovery CD a long time ago but my sister doesn't value saving important disks so i can't use that option. Ill try a panda scan... i tried before but the pc wouldn't stay on long enough but it has stayed on all tonight which is a record. I tried booting norton before start up but it didn't find any viruses... something didn't work there and other programs won't install i.e. Ewido or Spybot.
  4. well i have never dealt with a virus that shuts off the pc like that and i cant keep it on long enough to fix the virus and things won't download correctly like ewido and spybot. I can't delete it from the running processes either because it says it is a critical windows process that cannot be stopped. I don't know what to do. I thought if the virus was shutting off the pc that it would at least say system shuting down or something but it's just like someone pulled the plug.
  5. So could this virus be responsible for my pc not being able to stay on for 10 minutes without shuting off?
  6. Ok... i did the test. It doesn't seem like any of this would explain the completely random shut down of the pc. http://www.pcpitstop.com/techexpress.asp?id=A0UDNWHQXKQS6HU6
  7. ok thanks... yeah i think my problem will be keeping the pc running... it shuts off everytime i use it. I even opened it out and cleaned it and the fans are running fine and it's not the monitor or keyboard or anything.
  8. will do but run what scan? I use Ewido and Spybot on my pc but this is my sister's and it's so screwed up that it won't update ewido or spybot. It doesnt detect any servers and says socket error #10061 for spybot and will i click update on ewido it says cancel update right after i push the button but the goes back to start update. It's really weird
  9. i ran the whole barage of tests and i have the winlogon virus. The first thing it told me to do was to kill the running winlogon processes in task manager but i got a prompt that says this is a vital system file that cannot be deleted. What do i do?? Any help would be great.
  10. wasnt the keyboard. I noticed that when i turn on the monitor it almost immediately shuts down sometimes and whenever i open the disk drive (s) it also shuts down. I just doesnt seem to manage anything but the minimun usage
  11. i don't see any and it's a pretty new pc but i'll look--- actually i'll just put in a different keyboard.
  12. I have this presario that has had a bunch of problems and it just randomly shuts off which is a pain while trying to fix it. sometimes it does it after 1 minute of being on other times after 10 minutes. The fan works fine the pc is cool and i'm usually just opening 1 program or im on the internet. I start it back up fine everytime but it will just shut off again. Really strange. Please help
  13. now ewido keeps bringing up new viruses namely system32/Bloodhound.W32.EP and system32/WINiNET.dll.
  14. heres the other scan report... the panda didn't show anything but i forgot to save it. --------------------------------------------------------- ewido security suite - Scan report --------------------------------------------------------- + Created on: 9:13:48 PM, 6/21/2005 + Report-Checksum: CA08B4EC + Date of database: 6/21/2005 + Version of scan engine: v3.0 + Duration: 170 min + Scanned Files: 93049 + Speed: 9.07 Files/Second + Infected files: 115 + Removed files: 115 + Files put in quarantine: 115 + Files that could not be opened: 0 + Files that could not be cleaned: 0 + Binder: Yes + Crypter: Yes + Archives: Yes + Scanned items: C:\ D:\ + Scan result: C:\Program Files\COMPAQ\Netscape Custom NA XP\Plugins\npwthost.dll -> Spyware.WildTangent.b -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\390E28F0-831D-44CB-A8C0-1FF1C3\6D643719-5D68-419A-AB8F-92C4E3 -> TrojanDownloader.IstBar -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\3C1E1872-06D9-4AEC-92F9-D350D7\07D00B84-BEFC-4521-BC4F-D17F01 -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\4BA7692D-0419-4526-A805-1C57C5\77C964BB-2ACE-42E4-9546-B80575 -> Spyware.IBISToolbar -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\4BA7692D-0419-4526-A805-1C57C5\F714BC2D-0A3B-4028-9242-B41153 -> Spyware.IBISToolbar -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\4D292AF4-6CA9-478F-A735-213310\C617A1DE-39FC-44D9-A2E9-BE506E -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\4D292AF4-6CA9-478F-A735-213310\F46292D6-70F4-473C-B893-C7172A -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\846B3733-0C61-4CB5-8973-A04262\3E7AE87E-09E3-4522-B316-ED2557 -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\846B3733-0C61-4CB5-8973-A04262\9E5E3ECE-404C-4E45-94C9-D08BBB -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\86B2B565-AA50-48DB-8ADC-602A4C\3A4C1D13-81F7-4FD1-A85C-F8EC90 -> TrojanDownloader.QDown.l -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\8952C247-70A7-4225-A434-971DC0\3BE04348-F9C5-490B-9B6F-8D8A1D -> TrojanDownloader.IstBar.gi -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\A2595B47-DA84-44AB-BF6B-C518C9\5A166552-CB01-496E-B340-F61BC7 -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\B2F5B35D-406A-4E1B-B333-386064\0893526D-9BF2-445A-AFE5-C83A0C -> TrojanDownloader.IstBar.gi -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\BC6F4FE3-8958-4422-8580-1434DC\9422E228-1218-4211-A59F-1CF1ED -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\BC6F4FE3-8958-4422-8580-1434DC\D031069B-EE9A-4662-BC4D-300724 -> TrojanDownloader.IstBar.jm -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\BEDCF97F-A9E9-4EEE-A5B9-1A8E8A\BB3A10A6-27F8-4223-91DC-196167 -> Spyware.Toolbar3 -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\E5807BBE-22D7-4CCE-B3B9-BA2730\CB592B0B-E562-4A00-AAA0-1728B4 -> TrojanDownloader.IstBar -> Cleaned with backup C:\Program Files\GIANT Company Software\GIANT AntiSpyware\Quarantine\E69CBF6E-5AA8-483D-8A46-1B0D1E\7B70C398-7764-4D7B-A86B-BE36A0 -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\Living Beaches.scr -> Spyware.VX2 -> Cleaned with backup C:\WINDOWS\sys013.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys014.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys018.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys020.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys033.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys034.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys035.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys1026.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys1028.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1032.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys1036.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys110.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1114.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1118.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys1122.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys119.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys122.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys127.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1343.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1511.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1519.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1531.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1559.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys161.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys163.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys165.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys1726.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1745.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys1849.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys194.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys30.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3025.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3026.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3027.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys303.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3038.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys304.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3044.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3045.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3046.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys305.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3056.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys306.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3135.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3147.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys322.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3229.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3243.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys325.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys326.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3348.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3417.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys344.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3442.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3541.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3558.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3731.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3739.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3820.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys3853.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys3855.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4013.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys4016.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4046.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys405.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys4050.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4053.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys4057.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys409.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4215.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4243.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4455.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys454.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4540.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys4543.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4545.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4826.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys489.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4929.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys4949.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys60.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys643.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys651.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys67.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys925.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys943.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\sys946.exe -> Trojan.Agent.eo -> Cleaned with backup C:\WINDOWS\sys950.exe -> TrojanDownloader.IstBar -> Cleaned with backup C:\WINDOWS\system32\chktrust.exe -> Spyware.Bargainbuddy -> Cleaned with backup C:\WINDOWS\system32\consys98.exe -> Spyware.Small.an -> Cleaned with backup C:\WINDOWS\system32\consys99.exe -> TrojanDownloader.Small.amr -> Cleaned with backup C:\WINDOWS\system32\ezStubx.exe -> Spyware.EZula.a -> Cleaned with backup C:\WINDOWS\system32\ljgaeems.exe -> TrojanProxy.Agent.l -> Cleaned with backup C:\WINDOWS\system32\NLNP13.dll -> Spyware.IGetNet -> Cleaned with backup C:\WINDOWS\system32\secupd1203.exe -> TrojanDownloader.Esepor.e -> Cleaned with backup C:\WINDOWS\uninstIU.exe -> Trojan.Agent.eo -> Cleaned with backup ::Report End
  15. I still have the bloodhound.W32.EP which won't go away but everything else is better i think. Thanks for the help. Logfile of HijackThis v1.99.1 Scan saved at 12:37:26 AM, on 6/22/2005 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe C:\Program Files\ewido\security suite\ewidoctrl.exe C:\Program Files\ewido\security suite\ewidoguard.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe C:\WINDOWS\system32\pctspk.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\wuauclt.exe C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\GIANT Company Software\GIANT AntiSpyware\gcasServ.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CMPDPSRV.EXE C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\COMMON~1\AOL\110351~1\EE\AOLHOS~1.EXE C:\PROGRA~1\COMMON~1\AOL\110351~1\EE\AOLServiceHost.exe C:\Program Files\GIANT Company Software\GIANT AntiSpyware\gcasDtServ.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\MMDiag.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe C:\Program Files\Messenger\msmsgs.exe C:\HJT\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = N2 - Netscape 6: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\Documents and Settings\new user\Application Data\Mozilla\Profiles\default\v242990j.slt\prefs.js) O2 - BHO: (no name) - {77D457C5-0134-306F-8350-0D79EAE4EF7B} - (no file) O2 - BHO: (no name) - {B81D988D-272A-421C-DC4C-5EE3D3A2A531} - (no file) O2 - BHO: (no name) - {DDF27077-9175-A5E5-D8C8-971171B04D33} - (no file) O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [sSC_UserPrompt] C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1103517107\EE\AOLHostManager.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\GIANT Company Software\GIANT AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [CMPDPSRV] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CMPDPSRV.EXE O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: America Online 8.0 Tray Icon.lnk = C:\Program Files\America Online 8.0\aoltray.exe O4 - Global Startup: AOL Companion.lnk = C:\Program Files\AOL Companion\companion.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ? O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Support - {525B3AD3-5962-4D2E-85FC-A04EC444D353} - C:\Program Files\Internet Explorer\SIGNUP\Presario.htm (HKCU) O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (HKCU) O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O12 - Plugin for .wma: C:\Program Files\Compaq\Netscape Custom NA XP\PLUGINS\npdsplay.dll O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=3c01&lc=0409 O16 - DPF: {01FE8D0A-51AD-459B-B62B-85E135128B32} (DD_v4.DDv4) - http://www.drivershq.com/DD_v4.CAB O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com/pcpitstop/PCPitStop.CAB O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop.com/internet/pcpConnCheck.cab O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.com/computercheckup/qdiagcc.cab O16 - DPF: {4FCE7460-D289-4037-A570-4E4DED74ADC9} (WebTrackOCXX4.WebTrackOCX4) - http://www.mediatechnics.net/np5cd/files/WebTrackOCX4.CAB O16 - DPF: {53406295-12AB-4F49-824A-C5EAD19365DE} (CHSInstaller Class) - http://www.compaq.com/athome/support/PCHInstallTrust01.cab O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/7d90ae0...all/xscan53.cab O16 - DPF: {75D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin.SecureControl) - http://secure2.comned.com/signuptemplates/ActiveSecurity.cab O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - http://www.pcpitstop.com/mhLbl.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/:f...red:/asinst.cab O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {CD17FAAA-17B4-4736-AAEF-436EDC304C8C} (ContentAuditX Control) - http://a840.g.akamai.net/7/840/5805/v1503/...uditControl.cab O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Windows Installer (MSIServer) - Unknown owner - C:\WINDOWS\System32\msiexec.exe (file missing) O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe O23 - Service: zkyethubfgtl (whatnibk6) - Unknown owner - C:\WINDOWS\System32\betdlisg6.exe (file missing)
  • Create New...