Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Computer #1 of 3 computer network


  • Please log in to reply

#1
PJ87

PJ87

    New Member

  • Member
  • Pip
  • 2 posts
Hi, I have three computers on my network, all of which suddenly pretty much stopped working (programs wouldn't open when double clicked, constant freezing) a few days ago. This is the first of three I was actually able to get onto the internet to fix, hopefully the other two will follow :whistling:

I'll try to post the text files in the order of them being mentioned on the "Read this before posting a hijackthis log" topic:

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 10:53:11 PM 09/05/2007

+ Scan result:



:mozilla.10:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.11:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.9:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.15:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Admonitor : Cleaned.
:mozilla.16:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Admonitor : Cleaned.
:mozilla.17:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Admonitor : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.32:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Centrport : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt -> TrackingCookie.Cliks : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Cliks : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected]cliks[3].txt -> TrackingCookie.Cliks : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Cnn : Cleaned.
:mozilla.127:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Enhance : Cleaned.
:mozilla.52:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Focalink : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.G3x : Cleaned.
:mozilla.63:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.145:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.146:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Liveperson : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Masterstats : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Masterstats : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt -> TrackingCookie.Msn : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Msn : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Msn : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt -> TrackingCookie.Mx-targeting : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Mx-targeting : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Mx-targeting : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt -> TrackingCookie.Netflame : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Netflame : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Netflame : Cleaned.
:mozilla.83:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Paycounter : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Paypal : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Pocitadlo : Cleaned.
:mozilla.28:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Porngraph : Cleaned.
:mozilla.29:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Porngraph : Cleaned.
:mozilla.87:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Pro-market : Cleaned.
:mozilla.88:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Pro-market : Cleaned.
:mozilla.201:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.89:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Real : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Real : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Real : Cleaned.
:mozilla.90:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt -> TrackingCookie.Starware : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Starware : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Starware : Cleaned.
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt -> TrackingCookie.Toplist : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt -> TrackingCookie.Toplist : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Toplist : Cleaned.
:mozilla.109:C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt -> TrackingCookie.Web-stat : Cleaned.
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt -> TrackingCookie.Web-stat : Cleaned.


::Report end





SUPERAntiSpyware Scan Log

Generated 05/10/2007 at 00:53 AM

Application Version : 3.6.1000

Core Rules Database Version : 3235
Trace Rules Database Version: 1246

Scan type : Complete Scan
Total Scan Time : 01:14:27

Memory items scanned : 359
Memory threats detected : 0
Registry items scanned : 5930
Registry threats detected : 0
File items scanned : 97960
File threats detected : 69

Adware.Tracking Cookie
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][4].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][4].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][5].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][6].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][4].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][4].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt

Trojan.Unknown Origin
C:\WINDOWS\SYSTEM32\OT.ICO


Active Scan:


Incident Status Location

Adware:adware/spyfalcon Not disinfected Windows Registry
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\Program Files\Netscape\Users\User00\Mail\Inbox[~0001216.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\Program Files\Netscape\Users\User00\Mail\Inbox[~0001228.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\Program Files\Netscape\Users\User00\Mail\Inbox[~0001230.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\Program Files\Netscape\Users\User00\Mail\Inbox[~0001232.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\Mail\pop6.sympatico.ca\Inbox[~0001216.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\Mail\pop6.sympatico.ca\Inbox[~0001228.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\Mail\pop6.sympatico.ca\Inbox[~0001230.~]
Hacktool:Exploit/iFrame Not disinfected C:\C-Backup\WINDOWS\Application Data\Mozilla\Profiles\Ian 's Sympatico Account\2et0bwqg.slt\Mail\pop6.sympatico.ca\Inbox[~0001232.~]
Spyware:Cookie/888 Not disinfected C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
Spyware:Cookie/Ccbill Not disinfected C:\C-Backup\WINDOWS\Cookies\[email protected][1].txt
Spyware:Cookie/Rn11 Not disinfected C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
Spyware:Cookie/Twain-Tech Not disinfected C:\C-Backup\WINDOWS\Cookies\[email protected][2].txt
Spyware:Cookie/888 Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
Spyware:Cookie/888 Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
Spyware:Cookie/Ccbill Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
Spyware:Cookie/Ccbill Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
Spyware:Cookie/Ccbill Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
Spyware:Cookie/did-it Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
Spyware:Cookie/Go Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
Spyware:Cookie/Go Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
Spyware:Cookie/MediaTickets Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
Spyware:Cookie/Rn11 Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
Spyware:Cookie/Rn11 Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][3].txt
Spyware:Cookie/Twain-Tech Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][1].txt
Spyware:Cookie/Twain-Tech Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][6].txt
Spyware:Cookie/Xmts Not disinfected C:\C-Backup\WINDOWS\Cookies\click [email protected][2].txt
Hacktool:Exploit/iFrame Not disinfected Personal Folders\Deleted Items\A very new website
Virus:W32/Sobig.C Disinfected Personal Folders\Deleted Items\Re: Movie\45443.pif
Virus:Trj/Mitglieder.EV Disinfected Personal Folders\Deleted Items\price2.zip[price.cpl]
Potentially unwanted tool:Application/KillApp.B Not disinfected C:\hp\bin\KillIt.exe



Logfile of HijackThis v1.99.1
Scan saved at 10:19:50 PM, on 10/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HP_Owner\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cnn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.cnn.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - blank (file missing)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - blank (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - blank (file missing)
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add To HP Organize... - C:\PROGRA~1\HEWLET~1\HPORGA~1\bin/module.main/favorites\ie_add_to.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: PacificPoker - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~1\pacificpoker.exe
O9 - Extra button: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1132261157937
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1170350897562
O16 - DPF: {850F23ED-AC36-4E9D-A5BB-B0AAE453FEAE} (Sympatico E-mail Configuration Tool) - http://upgradecentre...s/emcconfig.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://cdn.messenger...pDownloader.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zon...wn.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe


And finally here's the uninstall list from HiJackThis:

Ad-Aware SE Personal
Adobe Reader 7.0.9
Agere Systems PCI Soft Modem
AOL Uninstaller (Choose which Products to Remove)
ArcSoft PhotoImpression 3.0
AVG 7.5
AVG Anti-Spyware 7.5
BlackBerry Desktop Software 4.2
BlackBerry Desktop Software 4.2
CodeBaby Player (Remove Only) 1.0.2.15
Efficient Networks SpeedStream DSL
EPSON Photo Print
EPSON Smart Panel
EPSON TWAIN 5
Google Earth
High Definition Audio Driver Package - KB835221
HijackThis 1.99.1
Hotfix for Windows XP (KB935448)
HP Boot Optimizer
HP Deskjet Printer Preload
HP Image Zone 4.8.6
HP Image Zone Plus 4.8.6
HP Organize
HP Photosmart Cameras 4.5
HP PSC & OfficeJet 4.7
HP Software Update
HPIZplus450
Intel® Graphics Media Accelerator Driver
IntelliMover Data Transfer Demo
InterVideo WinDVD Player
iTunes
J2SE Runtime Environment 5.0
Logitech Desktop Messenger
Logitech SetPoint
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft Office Standard Edition 2003
Microsoft Plus! Dancer LE
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Works
Mozilla Firefox (1.5.0.9)
MSN Messenger 7.5
MSN Toolbar
MSXML 4.0 SP2 (KB927978)
muvee autoProducer 4.0
Pacific Poker
Panda ActiveScan
PF1250-1650 Guide
Photosmart 320,370,7400,8100,8400 Series
QuickTime
RealPlayer
Remote Control Panel
Samsung SCX-4x16 Series
SCX-4x16 Series
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928090)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929969)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931768)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
SmarThru
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Spybot - Search & Destroy 1.4
SUPERAntiSpyware Free Edition
TOD 072006
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Updates from HP
Viewpoint Media Player
Windows Defender
Windows Defender Signatures
Windows Genuine Advantage v1.3.0254.0
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB883667
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888239
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
ZoneAlarm



Thank you very much for looking into this! You guys saved one of my computers a few years ago, hopefully these ones are still repairable!
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP