July 13th, 2010, 12:04 AM
|
|
Registered User
|
|
Join Date: Jul 2010
Posts: 2
Time spent in forums: 1 h 48 m 9 sec
Reputation Power: 0
|
|
|
Virus Problems.... Ahhhhhhh
I have had problems with my google search links being hijacked recently and also the odd window popping up on it's own.
I followed the virus removal guideline that is on this forum and just following up with the logs.
After completing the guidline i tried to post this thread but was unable to. I kept getting the "unable to display page" page when i clicked post. I then tried email the logs from my hotmail to my work email so i could post it from work but when i would click send i would get a pop up saying "you will be directed away from this page and your message will be lost". Is this the work of a virus or just some settings that may have changed whilst trying to clean out my problem?
I eventually copied them all to notepad and stuck it on stick and now here i am at work in search of your help.
Please help!!!
Regards
kreature
MBAM Log:
Quote: Malwarebytes' Anti-Malware 1.46
Database version: 4306
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
7/13/2010 9:00:27 AM
mbam-log-2010-07-13 (09-00-27).txt
Scan type: Quick scan
Objects scanned: 136305
Time elapsed: 5 minute(s), 21 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected) |
SUPERAntiSpyWare Log:
Quote: SUPERAntiSpyware Scan Log
Generated 07/13/2010 at 09:40 AM
Application Version : 4.40.1002
Core Rules Database Version : 5187
Trace Rules Database Version: 2999
Scan type : Complete Scan
Total Scan Time : 00:34:47
Memory items scanned : 744
Memory threats detected : 0
Registry items scanned : 8332
Registry threats detected : 0
File items scanned : 18575
File threats detected : 65
Adware.Flash Tracking Cookie
C:\Documents and Settings\Dave\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\HNKDE9KC\RMD.ATDMT.COM
Adware.Tracking Cookie
rmd.atdmt.com [ C:\Documents and Settings\Dave\Application Data\Macromedia\Flash Player\#SharedObjects\HNKDE9KC ]
.ad.sensismediasmart.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.adbrite.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.advertise.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.bs.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.chitika.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.doubleclick.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.xm.xtendmedia.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
ad.sensismediasmart.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.sensismediasmart.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
media.sensis.com.au [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
.microsoftsto.112.2o7.net [ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
[ C:\Documents and Settings\Dave\Application Data\Mozilla\Firefox\Profiles\qcpqko59.default\cookies.sqlite ]
media.foxsports.com.au [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\D53J3YQ9 ]
media.heavy.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\D53J3YQ9 ]
rmd.atdmt.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\D53J3YQ9 ]
Rogue.Agent/Gen-Nullo[DLL]
C:\WINDOWS\SYSTEM32\OLEJTTD.DLL
C:\WINDOWS\SYSTEM32\SLIBSFH.DLL
C:\WINDOWS\SYSTEM32\SSLHPT.DLL
C:\WINDOWS\SYSTEM32\SSLIBAS.DLL
C:\WINDOWS\SYSTEM32\SSLIBDD.DLL
C:\WINDOWS\SYSTEM32\SSLIBHE.DLL
C:\WINDOWS\SYSTEM32\SSLIBJTD.DLL
C:\WINDOWS\SYSTEM32\SSLIBJTE.DLL
C:\WINDOWS\SYSTEM32\SSLIBJYE.DLL
C:\WINDOWS\SYSTEM32\SSLIBSU.DLL
C:\WINDOWS\SYSTEM32\SSOLEMN.DLL
C:\WINDOWS\SYSTEM32\SSOLETH.DLL |
BitDefender Log:
Quote: BitDefender Online Scanner
Scan report generated at: Tue, Jul 13, 2010 - 11:46:03
Scan path: C:\;D:\;E:\;F:\;
Statistics
Time
01:29:28
Files
305553
Folders
13376
Boot Sectors
0
Archives
3320
Packed Files
10922
Results
Identified Viruses
0
Infected Files
0
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
0
Engines Info
Virus Definitions
6496643
Engine build
AVCORE v2.1 Windows/i386 11.0.0.33 (Jun 10 2010)
Scan plugins
18
Archive plugins
44
Unpack plugins
10
E-mail plugins
6
System plugins
4
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
No virus found.
|
HiJackThis Log:
Quote: Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:49:52 AM, on 7/13/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HijackThis\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ()=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5577
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [GEST] ]
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Mobile Partner] "C:\Program Files\Optus Wireless Broadband\Optus Wireless Broadband.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: (
O15 - Trusted Zone: (
O15 - Trusted Zone: (
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - (
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: Google Update Service (gupdate1ca6ca766e10d66) (gupdate1ca6ca766e10d66) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
--
End of file - 11676 bytes |
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
