1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: Please Help: I can't get rid

Discussion in 'Virus & Other Malware Removal' started by samiamk, Jul 16, 2007.

Thread Status:
Not open for further replies.
Advertisement
  1. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    of this spyware that has taken over my computer. Can someone please help?
     
  2. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    * Click here to download HJTsetup.exe.
    Save HJTsetup.exe to your desktop.

    Double click on the HJTsetup.exe icon on your desktop.
    By default it will install to C:\Program Files\Hijack This.
    Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
    Put a check by Create a desktop icon then click Next again.
    Continue to follow the rest of the prompts from there.
    At the final dialogue box click Finish and it will launch Hijack This.
    Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
    Click Save to save the log file and then the log will open in notepad.
    Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    Come back here to this thread and Paste the log in your next reply.
    DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
     
  3. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Logfile of HijackThis v1.99.1
    Scan saved at 11:42:18 PM, on 7/16/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\McAfee\MSK\MskAgent.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    C:\Program Files\Photo Viewer\album.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\WINDOWS\avp.exe
    C:\WINDOWS\mgrs.exe
    C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\AIM6\aim6.exe
    C:\Program Files\Windows Plus\Dancer\Dancer.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\AIM6\aolsoftware.exe
    C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\program files\common files\mcafee\mna\mcnasvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\PROGRA~1\McAfee\MPS\mps.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\McAfee\MPS\mpsevh.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\HP\hpcoretech\comp\hpdarc.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: MSVPS System - {C87D64B5-DF92-4703-90CB-B465B6982941} - C:\WINDOWS\qnxplugin.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    O4 - HKLM\..\Run: [PhotoViewer] C:\Program Files\Photo Viewer\album.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [avp] C:\WINDOWS\avp.exe
    O4 - HKLM\..\Run: [smgr] mgrs.exe
    O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
    O4 - HKCU\..\Run: [Dancer] "C:\Program Files\Windows Plus\Dancer\Dancer.exe"
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by129fd.bay129.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1171978764781
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1170596272312
    O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - http://www.vzwpix.com/activex/VerizonWirelessUploadControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab55579.cab
    O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O21 - SSODL: msddx - {AD704916-377E-499F-A261-DD3D9D768E84} - C:\WINDOWS\msddx.dll
    O21 - SSODL: msqnx - {504470B5-4A8E-4FD0-9C63-962E00D42782} - C:\WINDOWS\msqnx.dll
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
    O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
     
  4. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    Download the Trial version of Superantispyware Pro (SAS):
    http://www.superantispyware.com/superantispyware.html?rid=3132


    Install it and double-click the icon on your desktop to run it.
    · It will ask if you want to update the program definitions, click Yes.
    · Under Configuration and Preferences, click the Preferences button.
    · Click the Scanning Control tab.
    · Under Scanner Options make sure the following are checked:
    o Close browsers before scanning
    o Scan for tracking cookies
    o Terminate memory threats before quarantining.
    o Please leave the others unchecked.
    o Click the Close button to leave the control center screen.
    · On the main screen, under Scan for Harmful Software click Scan your computer.
    · On the left check C:\Fixed Drive.
    · On the right, under Complete Scan, choose Perform Complete Scan.
    · Click Next to start the scan. Please be patient while it scans your computer.
    · After the scan is complete a summary box will appear. Click OK.
    · Make sure everything in the white box has a check next to it, then click Next.
    · It will quarantine what it found and if it asks if you want to reboot, click Yes.
    · To retrieve the removal information for me please do the following:
    o After reboot, double-click the SUPERAntispyware icon on your desktop.
    o Click Preferences. Click the Statistics/Logs tab.
    o Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    o It will open in your default text editor (such as Notepad/Wordpad).
    o Please highlight everything in the notepad, then right-click and choose copy.
    · Click close and close again to exit the program.
    · Please paste that information here for me with a new Hijack This log.
     
  5. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 07/17/2007 at 01:08 AM

    Application Version : 3.9.1008

    Core Rules Database Version : 3270
    Trace Rules Database Version: 1281

    Scan type : Complete Scan
    Total Scan Time : 01:15:23

    Memory items scanned : 574
    Memory threats detected : 3
    Registry items scanned : 7634
    Registry threats detected : 31
    File items scanned : 48704
    File threats detected : 187

    Trojan.Downloader-Gen/AVP
    C:\WINDOWS\AVP.EXE
    C:\WINDOWS\AVP.EXE
    [avp] C:\WINDOWS\AVP.EXE
    C:\DOCUMENTS AND SETTINGS\SAMANTHA SIMS\LOCAL SETTINGS\TEMP\BIT1BC.TMP
    C:\WINDOWS\Prefetch\AVP.EXE-023E55A4.pf

    Trojan.Downloader-MGRS
    C:\WINDOWS\MGRS.EXE
    C:\WINDOWS\MGRS.EXE
    [smgr] C:\WINDOWS\MGRS.EXE
    C:\WINDOWS\Prefetch\MGRS.EXE-2F0B7DD9.pf

    Desktop Hijacker.AboutYourPrivacy
    C:\WINDOWS\MSQNX.DLL
    C:\WINDOWS\MSQNX.DLL
    C:\WINDOWS\privacy_danger\images\capt.gif
    C:\WINDOWS\privacy_danger\images\danger.jpg
    C:\WINDOWS\privacy_danger\images\down.gif
    C:\WINDOWS\privacy_danger\images\spacer.gif
    C:\WINDOWS\privacy_danger\images
    C:\WINDOWS\privacy_danger\index.htm
    C:\WINDOWS\privacy_danger
    C:\Documents and Settings\Samantha Sims\Desktop\Error Cleaner.url
    C:\Documents and Settings\Samantha Sims\Desktop\Privacy Protector.url
    C:\Documents and Settings\Samantha Sims\Desktop\Spyware&Malware Protection.url
    C:\Documents and Settings\Samantha Sims\Favorites\Error Cleaner.url
    C:\Documents and Settings\Samantha Sims\Favorites\Privacy Protector.url
    C:\Documents and Settings\Samantha Sims\Favorites\Spyware&Malware Protection.url

    Trojan.Net-MSV/VPS
    HKLM\Software\Classes\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\InprocServer32
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\InprocServer32#ThreadingModel
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\ProgID
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\Programmable
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\TypeLib
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\VersionIndependentProgID
    C:\WINDOWS\QNXPLUGIN.DLL
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\MSVPS.MSVPSApp
    HKCR\MSVPS.MSVPSApp\CLSID
    HKCR\MSVPS.MSVPSApp\CurVer

    Adware.Tracking Cookie
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][6].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected]kmedia[2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][10].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][5].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][6].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][5].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][11].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][7].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][8].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][9].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt

    Trojan.VideoCach/Gen
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\0
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\0\win32
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\FLAGS
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\HELPDIR
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\ProxyStubClsid
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\ProxyStubClsid32
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\TypeLib
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\TypeLib#Version
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\ProxyStubClsid
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\ProxyStubClsid32
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\TypeLib
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\TypeLib#Version

    Malware.Ultimate Defender
    C:\DOCUMENTS AND SETTINGS\SAMANTHA SIMS\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\M1NPHD6M\UDEFENDER_SETUP[2].EXE
     
  6. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Logfile of HijackThis v1.99.1
    Scan saved at 1:17:00 AM, on 7/17/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\McAfee\MSK\MskAgent.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    C:\Program Files\Photo Viewer\album.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\AIM6\aim6.exe
    C:\Program Files\Windows Plus\Dancer\Dancer.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\AIM6\aolsoftware.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\program files\common files\mcafee\mna\mcnasvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\PROGRA~1\McAfee\MPS\mps.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\McAfee\MPS\mpsevh.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    C:\Program Files\HP\hpcoretech\comp\hpdarc.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    O4 - HKLM\..\Run: [PhotoViewer] C:\Program Files\Photo Viewer\album.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
    O4 - HKCU\..\Run: [Dancer] "C:\Program Files\Windows Plus\Dancer\Dancer.exe"
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by129fd.bay129.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1171978764781
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1170596272312
    O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - http://www.vzwpix.com/activex/VerizonWirelessUploadControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab55579.cab
    O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O21 - SSODL: msddx - {AD704916-377E-499F-A261-DD3D9D768E84} - C:\WINDOWS\msddx.dll
    O21 - SSODL: msqnx - {504470B5-4A8E-4FD0-9C63-962E00D42782} - C:\WINDOWS\msqnx.dll (file missing)
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
    O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
     
  7. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    I ran another one before bed last night.\\



    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 07/17/2007 at 01:08 AM

    Application Version : 3.9.1008

    Core Rules Database Version : 3270
    Trace Rules Database Version: 1281

    Scan type : Complete Scan
    Total Scan Time : 01:15:23

    Memory items scanned : 574
    Memory threats detected : 3
    Registry items scanned : 7634
    Registry threats detected : 31
    File items scanned : 48704
    File threats detected : 187

    Trojan.Downloader-Gen/AVP
    C:\WINDOWS\AVP.EXE
    C:\WINDOWS\AVP.EXE
    [avp] C:\WINDOWS\AVP.EXE
    C:\DOCUMENTS AND SETTINGS\SAMANTHA SIMS\LOCAL SETTINGS\TEMP\BIT1BC.TMP
    C:\WINDOWS\Prefetch\AVP.EXE-023E55A4.pf

    Trojan.Downloader-MGRS
    C:\WINDOWS\MGRS.EXE
    C:\WINDOWS\MGRS.EXE
    [smgr] C:\WINDOWS\MGRS.EXE
    C:\WINDOWS\Prefetch\MGRS.EXE-2F0B7DD9.pf

    Desktop Hijacker.AboutYourPrivacy
    C:\WINDOWS\MSQNX.DLL
    C:\WINDOWS\MSQNX.DLL
    C:\WINDOWS\privacy_danger\images\capt.gif
    C:\WINDOWS\privacy_danger\images\danger.jpg
    C:\WINDOWS\privacy_danger\images\down.gif
    C:\WINDOWS\privacy_danger\images\spacer.gif
    C:\WINDOWS\privacy_danger\images
    C:\WINDOWS\privacy_danger\index.htm
    C:\WINDOWS\privacy_danger
    C:\Documents and Settings\Samantha Sims\Desktop\Error Cleaner.url
    C:\Documents and Settings\Samantha Sims\Desktop\Privacy Protector.url
    C:\Documents and Settings\Samantha Sims\Desktop\Spyware&Malware Protection.url
    C:\Documents and Settings\Samantha Sims\Favorites\Error Cleaner.url
    C:\Documents and Settings\Samantha Sims\Favorites\Privacy Protector.url
    C:\Documents and Settings\Samantha Sims\Favorites\Spyware&Malware Protection.url

    Trojan.Net-MSV/VPS
    HKLM\Software\Classes\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\InprocServer32
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\InprocServer32#ThreadingModel
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\ProgID
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\Programmable
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\TypeLib
    HKCR\CLSID\{C87D64B5-DF92-4703-90CB-B465B6982941}\VersionIndependentProgID
    C:\WINDOWS\QNXPLUGIN.DLL
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C87D64B5-DF92-4703-90CB-B465B6982941}
    HKCR\MSVPS.MSVPSApp
    HKCR\MSVPS.MSVPSApp\CLSID
    HKCR\MSVPS.MSVPSApp\CurVer

    Adware.Tracking Cookie
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected].cnn[2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][6].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected]etone[1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][10].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][5].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][6].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][5].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][11].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][7].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][8].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][9].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][4].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\samantha [email protected]
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][3].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][2].txt
    C:\Documents and Settings\Samantha Sims\Cookies\[email protected][1].txt

    Trojan.VideoCach/Gen
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\0
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\0\win32
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\FLAGS
    HKCR\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226}\1.0\HELPDIR
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\ProxyStubClsid
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\ProxyStubClsid32
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\TypeLib
    HKCR\Interface\{967A494A-6AEC-4555-9CAF-FA6EB00ACF91}\TypeLib#Version
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\ProxyStubClsid
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\ProxyStubClsid32
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\TypeLib
    HKCR\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}\TypeLib#Version

    Malware.Ultimate Defender
    C:\DOCUMENTS AND SETTINGS\SAMANTHA SIMS\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\M1NPHD6M\UDEFENDER_SETUP[2].EXE
     
  8. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Logfile of HijackThis v1.99.1
    Scan saved at 8:51:23 AM, on 7/17/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\McAfee\MSK\MskAgent.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    C:\Program Files\Photo Viewer\album.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\AIM6\aim6.exe
    C:\Program Files\Windows Plus\Dancer\Dancer.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\AIM6\aolsoftware.exe
    C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\program files\common files\mcafee\mna\mcnasvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\PROGRA~1\McAfee\MPS\mps.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\McAfee\MPS\mpsevh.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\dumprep.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    O4 - HKLM\..\Run: [PhotoViewer] C:\Program Files\Photo Viewer\album.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
    O4 - HKCU\..\Run: [Dancer] "C:\Program Files\Windows Plus\Dancer\Dancer.exe"
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by129fd.bay129.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1171978764781
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1170596272312
    O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - http://www.vzwpix.com/activex/VerizonWirelessUploadControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab55579.cab
    O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O21 - SSODL: msddx - {AD704916-377E-499F-A261-DD3D9D768E84} - C:\WINDOWS\msddx.dll
    O21 - SSODL: msqnx - {504470B5-4A8E-4FD0-9C63-962E00D42782} - C:\WINDOWS\msqnx.dll (file missing)
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
    O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
     
  9. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Can someone please let me know what to do now?

    Thanks!!
     
  10. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Nowe when I turn on my computer it runs really slow. Can someone please help me to resolve this?

    thank you so much for your help!
     
  11. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    1. Please download The Avenger by Swandog46 to your Desktop.
    • Click on Avenger.zip to open the file
    • Extract avenger.exe to your desktop

    2. Copy all the text contained in the code box below to your Clipboard by highlighting it and pressing (Ctrl+C):


    Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.


    3. Now, start The Avenger program by clicking on its icon on your desktop.
    • Under "Script file to execute" choose "Input Script Manually".
    • Now click on the Magnifying Glass icon which will open a new window titled "View/edit script"
    • Paste the text copied to clipboard into this window by pressing (Ctrl+V).
    • Click Done
    • Now click on the Green Light to begin execution of the script
    • Answer "Yes" twice when prompted.
    4. The Avenger will automatically do the following:
    • It will Restart your computer. ( In cases where the code to execute contains "Drivers to Unload", The Avenger will actually restart your system twice.)
    • On reboot, it will briefly open a black command window on your desktop, this is normal.
    • After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
    • The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.
    5. Please copy/paste the content of c:\avenger.txt into your reply.

    Rescan with Hijack This, close all browser windows except Hijack This, put a checkmark beside these entries and click fix checked.

    O21 - SSODL: msddx - {AD704916-377E-499F-A261-DD3D9D768E84} - C:\WINDOWS\msddx.dll

    O21 - SSODL: msqnx - {504470B5-4A8E-4FD0-9C63-962E00D42782} - C:\WINDOWS\msqnx.dll (file missing)


    Reboot and post another Hijack This log please.
     
  12. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Avenger log

    Logfile of The Avenger version 1, by Swandog46
    Running from registry key:
    \Registry\Machine\System\CurrentControlSet\Services\ssuqplvu

    *******************

    Script file located at: \??\C:\Program Files\jbkilnom.txt
    Script file opened successfully.

    Script file read successfully

    Backups directory opened successfully at C:\Avenger

    *******************

    Beginning to process script file:

    File C:\WINDOWS\msddx.dll deleted successfully.

    Completed script processing.

    *******************

    Finished! Terminate.
     
  13. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Logfile of HijackThis v1.99.1
    Scan saved at 6:11:07 PM, on 7/17/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\McAfee\MSK\MskAgent.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    C:\Program Files\Photo Viewer\album.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\AIM6\aim6.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\AIM6\aolsoftware.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\program files\common files\mcafee\mna\mcnasvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\PROGRA~1\McAfee\MPS\mps.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\McAfee\MPS\mpsevh.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    C:\Program Files\HP\hpcoretech\comp\hpdarc.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
    R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    O4 - HKLM\..\Run: [PhotoViewer] C:\Program Files\Photo Viewer\album.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
    O4 - HKCU\..\Run: [Dancer] "C:\Program Files\Windows Plus\Dancer\Dancer.exe"
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by129fd.bay129.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1171978764781
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1170596272312
    O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - http://www.vzwpix.com/activex/VerizonWirelessUploadControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab55579.cab
    O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03DFA33C-E972-4299-AD50-716DD85E64B0}: NameServer = 71.250.0.12 68.237.161.12
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
    O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
    O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
     
  14. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Also, when I reboot, I get this message:

    cannot find file:///c:/windows/privacy_danger/index.htm

    make sure the path or internet address is correct.
     
  15. samiamk

    samiamk Thread Starter

    Joined:
    Jan 13, 2006
    Messages:
    44
    Is there something else I need to do? My computer is still running kind of slow.
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/596728

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice