Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Mixed Problems


  • This topic is locked This topic is locked

#1
Arascha

Arascha

    New Member

  • Member
  • Pip
  • 2 posts
Hi!

I´m having a bit of a problem of everything it seems. :thumbsup: and hoping
that there is someone that could give me some ;)

It all started after getting the Error Guard into my computer, I have search
through the whole computer and cant find anything left of it so I think its
gone now however I´m having problems going on internet, some times the
windows doesn´t work and sometimes they do.

One of my folder is totally broken.
As soon as I get into the folder the computer just stops.
I cant delete the folder, this is a folder that I have created to put
my saved things in.

And my Outlook express doesn´t work at all, When I try to send a mail the internet connection logs out.

And the computer is unbelivable slow, even though I have about 75% space left.
I have downloaded some fonts that I have put in the windows file, but the total of fonts is round 35.

I have the Spyware doctor to scan my computer for bugs and ect. Had Ad-aware before but it didn´t work correct for me. :tazz:

Here is my Hijack this file and I´m so greatfull if there is anyone that
can help me get this working.

Thank you
// Frida




Logfile of HijackThis v1.97.7
Scan saved at 16:06:51, on 2005-02-27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program\Lexmark X74-X75\lxbbbmgr.exe
C:\Program\Winamp\winampa.exe
C:\program\mcafee.com\vso\mcvsshld.exe
C:\program\mcafee.com\agent\mcagent.exe
c:\program\mcafee.com\vso\mcvsescn.exe
C:\Program\Java\j2re1.4.2_06\bin\jusched.exe
C:\program\mcafee.com\mps\mscifapp.exe
C:\Program\Lexmark X74-X75\lxbbbmon.exe
C:\Program\McAfee\SPAMKI~1\MskAgent.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program\Messenger\msmsgs.exe
C:\Program\Spyware Doctor\swdoctor.exe
C:\Program\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\Program\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\System32\Ati2evxx.exe
c:\program\mcafee.com\vso\mcvsrte.exe
C:\Program\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\Program\McAfee\SPAMKI~1\MSKSrvr.exe
C:\Program\Bluffstopparen\Bluffstopparen.exe
C:\Program\LimeWire\LimeWire 4.2.6 Pro\LimeWire.exe
c:\program\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
c:\program\mcafee.com\vso\mcshield.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\cleanmgr.exe
C:\HIJACKTHIS\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapp...//www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://login1.telia.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell...gen/default.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.searching...search.php?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar
R3 - URLSearchHook: vSUHacHuJwObj Class - {6DD19A84-F436-4d02-8CFC-B9899BD2373B} - C:\WINDOWS\system32\drivers\dbnetlib.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {227B8AA8-DAF2-4892-BD1D-73F568BCB24E} - c:\program\mcafee.com\mps\mcbrhlpr.dll
O2 - BHO: McAfee PopupKiller - {3EC8255F-E043-4cae-8B3B-B191550C2A22} - c:\program\mcafee.com\mps\popupkiller.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\Program\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\Program\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\program\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [Lexmark X74-X75] "C:\Program\Lexmark X74-X75\lxbbbmgr.exe"
O4 - HKLM\..\Run: [ashMaiSv] C:\Program\ALWILS~1\Avast4\ashmaisv.exe
O4 - HKLM\..\Run: [MPFExe] C:\Program\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program\Winamp\winampa.exe
O4 - HKLM\..\Run: [No Spy] "C:\Program\No-Spy\No-Spy.exe" /autorun
O4 - HKLM\..\Run: [VSOCheckTask] "c:\program\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\program\mcafee.com\vso\mcvsshld.exe"
O4 - HKLM\..\Run: [MCAgentExe] c:\program\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\program\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [ErrorGuard] C:\Program\ErrorGuard\ErrorGuard.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [MPSExe] c:\program\mcafee.com\mps\mscifapp.exe /embedding
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\Program\McAfee\SPAMKI~1\MskAgent.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program\McAfee\SPAMKI~1\MskDetct.exe /startup
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\Program\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\Program\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s
O4 - HKCU\..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\Program\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - Global Startup: AdwareFilter Background Protection.lnk = C:\Program\AdwareFilter\AdwareFilter.exe
O4 - Global Startup: Bluffstopparen.lnk = C:\Program\Bluffstopparen\Bluffstopparen.exe
O4 - Global Startup: LimeWire 4.2.6 Pro.lnk = C:\Program\LimeWire\LimeWire 4.2.6 Pro\LimeWire.exe
O9 - Extra 'Tools' menuitem: Sun Java-konsol (HKLM)
O9 - Extra button: Spyware Doctor (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM)
O16 - DPF: {0713E8D2-850A-101B-AFC0-4210102A8DA7} (Microsoft ProgressBar Control, version 5.0 (SP2)) - http://download.mcaf...22/ComCtl32.cab
O16 - DPF: {0EB73E39-8AD4-43E8-8FBA-0165C2CCDB8B} (GameControl Class) - http://www.midasplayer.com/midasa.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macr...director/sw.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.co...up1.0.0.8-2.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.syma...bin/AvSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.syma...n/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installen...gine/isetup.cab
O16 - DPF: {92f02779-6d88-4958-8ad3-83c12d86adc7} - http://www.searching...ID=106292&AID=4
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {A8658086-E6AC-4957-BC8E-8D54A7E8A790} (GDIChk Object) - http://www.microsoft...DI/0/GDIChk.CAB
O16 - DPF: {BDD2F926-8158-4F62-9E0D-B3B75FD1F07F} (McObjectFactory Class) - http://download.mcaf...0,2/mcmysec.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f007.mail.spr...ileUploader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macr...ash/swflash.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredim...p1/imloader.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/p...t/msnchat45.cab
  • 0

Advertisements


#2
Arascha

Arascha

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Oh I forgot to mention there is one more problem, I cant work with my website on Geocities anymore - no problems with the java but the Html editor doesn´t pop up. ( dont have any pop up blocker on that website) there is a smal icon to the left of the website telling me there is a fault on the page. (A lot of pages, that hasen´t having any faults before) and one do I need for my studies but cant get into that either.... :tazz:

//Frida
  • 0

#3
don77

don77

    Malware Expert

  • Retired Staff
  • 18,526 posts
Hi Frida and welcome, Sorry for the late reply
If your still looking to resolve this issue,
Please see the following Topic

Run through all the steps please, You are currently running an outdated version of HJT we need to update that, Remove the older version you currently have after you download the newest version,


If you have fixed this problem please let us know,
Thanks and again sorry fopr the late reply

Don
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP