Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

can anyone help me fix my computer

Started by adlin , Nov 17 2007 08:01 AM

  • Please log in to reply

#1
adlin
Posted 17 November 2007 - 08:01 AM

adlin

    New Member

  • Member
  • Pip
  • 3 posts
hello there, im having problems with my internet explorer, evrytime i open a window, my AVG alert pops up for a virus alert, click healed but it keeps coming back. it also slows down my internet. here's my DSS log for anyone who can help....

Deckard's System Scanner v20071014.68
Run by users-1 on 2007-11-17 20:50:05
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 2 Restore Point(s) --
2: 2007-11-17 12:50:12 UTC - RP2 - Deckard's System Scanner Restore Point
1: 2007-11-17 05:32:01 UTC - RP1 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 256 MiB (512 MiB recommended).
System Drive C: has 4.89 GiB (less than 15%) free.


-- HijackThis (run as users-1.exe) ---------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:00:58 PM, on 11/17/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\HHVcdV5Sys\VC5SecS.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\HHVcdV5Sys\VC5Play.exe
C:\PROGRAM FILES\WINAMP\winampa.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Virtual CD v5\System\VC5Tray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Documents and Settings\users-1\Desktop\Deckard System Scanner.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\users-1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\YAHOO!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\YAHOO!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {5DE5C96A-5171-45AD-A8B9-B7B5F5A349C8} - C:\WINDOWS\system32\MFCANS32w.dll
O2 - BHO: (no name) - {6ED8A431-5FFD-4813-A033-1CB80FAAA0F5} - c:\windows\system32\cjthkm32h.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\YAHOO!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VC5Player] C:\Program Files\HHVcdV5Sys\VC5Play.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WinampAgent] C:\PROGRAM FILES\WINAMP\winampa.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McRegWiz] C:\PROGRA~1\McAfee.com\Agent\mcregwiz.exe /autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\McAgent.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .avi: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O20 - Winlogon Notify: fzsgxcri - cjthkm32h.dll (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Virtual CD v5 Security service (VC5SecS) - H+H Software GmbH - C:\Program Files\HHVcdV5Sys\VC5SecS.exe

--
End of file - 7850 bytes

-- HijackThis Fixed Entries (C:\PROGRA~1\TRENDM~1\HIJACK~1\backups\) -----------

backup-20071117-203853-357 O2 - BHO: (no name) - {5DE5C96A-5171-45AD-A8B9-B7B5F5A349C8} - C:\WINDOWS\system32\MFCANS32w.dll
backup-20071117-203854-188 O2 - BHO: (no name) - {6ED8A431-5FFD-4813-A033-1CB80FAAA0F5} - c:\windows\system32\cjthkm32h.dll (file missing)
backup-20071117-203854-968 O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
backup-20071117-203854-363 O20 - Winlogon Notify: fzsgxcri - cjthkm32h.dll (file missing)
backup-20071117-203855-308 O20 - Winlogon Notify: winjks32 - winjks32.dll (file missing)

-- File Associations -----------------------------------------------------------

.bat - batfile - DefaultIcon - C:\WINDOWS\SYSTEM32\SHELL32.DLL,-153
.com - comfile - DefaultIcon - C:\WINDOWS\SYSTEM32\SHELL32.DLL,2
.hlp - hlpfile - DefaultIcon - C:\WINDOWS\SYSTEM32\SHELL32.DLL,23
.ini - inifile - DefaultIcon - shell32.dll,-151
.reg - regfile - DefaultIcon - C:\WINDOWS\regedit.exe,1
.scr - scrfile - shell\open\command - "%1" /S "%3"
.txt - txtfile - DefaultIcon - shell32.dll,-152


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 ojenahac - c:\windows\system32\drivers\eqbhluay.dat
R0 prohlp02 (StarForce Protection Helper Driver v2) - c:\windows\system32\drivers\prohlp02.sys <Not Verified; Protection Technology; StarForce Protection System>
R0 sfhlp01 (StarForce Protection Helper Driver) - c:\windows\system32\drivers\sfhlp01.sys <Not Verified; Protection Technology; StarForce Protection System>
R1 prodrv06 (StarForce Protection Environment Driver v6) - c:\windows\system32\drivers\prodrv06.sys <Not Verified; Protection Technology; StarForce Protection System>
R1 vbev5mp - c:\windows\system32\drivers\vbev5mp.sys <Not Verified; H+H Software GmbH; Virtual CD>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 VC5SecS (Virtual CD v5 Security service) - "c:\program files\hhvcdv5sys\vc5secs.exe" <Not Verified; H+H Software GmbH; Virtual CD>


-- Device Manager: Disabled ----------------------------------------------------

Class GUID: {4D36E97B-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ROOT\SCSIADAPTER\0000
Manufacturer:
Name:
PNP Device ID: ROOT\SCSIADAPTER\0000
Service: vbev5mp


-- Scheduled Tasks -------------------------------------------------------------

2007-11-15 11:41:42 438 --a------ C:\WINDOWS\Tasks\At1.job


-- Files created between 2007-10-17 and 2007-11-17 -----------------------------

2007-11-17 12:38:47 0 d-------- C:\Documents and Settings\users-1\Application Data\Uniblue
2007-11-17 12:19:06 139536 --a------ C:\WINDOWS\system32\javaee.dll <Not Verified; Microsoft Corporation; Microsoft® Windows ® Operating System>
2007-11-17 12:18:55 113 --a------ C:\WINDOWS\system32\zonedon.reg
2007-11-17 12:18:54 113 --a------ C:\WINDOWS\system32\zonedoff.reg
2007-11-17 12:18:54 171792 --a------ C:\WINDOWS\system32\wjview.exe <Not Verified; Microsoft Corporation; Microsoft® Windows ® Operating System>
2007-11-17 12:18:53 172304 --a------ C:\WINDOWS\system32\jview.exe <Not Verified; Microsoft Corporation; Microsoft® Windows ® Operating System>
2007-11-17 12:18:50 49424 --a------ C:\WINDOWS\system32\clspack.exe <Not Verified; Microsoft Corporation; Microsoft® Windows ® Operating System>
2007-11-17 06:40:28 0 d-------- C:\WINDOWS\system32\PreInstall
2007-11-17 05:29:44 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-11-15 11:43:06 0 d-------- C:\Documents and Settings\Franz-Shannon\Application Data\Windows Desktop Search
2007-11-15 11:42:48 0 d-------- C:\Documents and Settings\Franz-Shannon\Application Data\AVG7
2007-11-04 17:42:31 0 d-------- C:\Documents and Settings\cathy\Application Data\Windows Desktop Search
2007-11-04 17:42:02 0 d-------- C:\Documents and Settings\cathy\Application Data\AVG7
2007-11-03 00:20:52 0 d-------- C:\Documents and Settings\users-1\Application Data\Windows Desktop Search
2007-11-03 00:19:23 0 d-------- C:\Program Files\Windows Desktop Search
2007-11-02 21:51:30 0 d--h----- C:\WINDOWS\$hf_mig$
2007-11-02 15:37:15 0 d-------- C:\WINDOWS\E80F62FF5D3C4A1984099721F2928206.TMP
2007-11-02 13:42:52 0 d-------- C:\Program Files\Symantec
2007-11-02 13:42:52 0 d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2007-11-02 13:35:34 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-10-29 23:13:38 0 d-------- C:\Program Files\IrfanView
2007-10-28 00:19:35 0 d-------- C:\NVIDIA
2007-10-26 17:46:31 0 d-------- C:\Documents and Settings\All Users\Application Data\PC Drivers Headquarters
2007-10-25 22:20:35 0 d-------- C:\Program Files\VIA
2007-10-25 20:44:05 0 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-25 20:43:52 0 d-------- C:\Documents and Settings\users-1\Application Data\AVG7
2007-10-25 20:40:55 0 d-------- C:\WINDOWS\Prefetch
2007-10-25 20:39:59 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg7
2007-10-25 13:15:47 0 dr-h----- C:\Documents and Settings\users-1\Recent
2007-10-24 23:49:43 119040 --a------ C:\WINDOWS\system32\zojpfzwb.dat
2007-10-24 23:49:43 35072 --a------ C:\WINDOWS\system32\vewpqttw.dat
2007-10-24 23:49:43 41728 --a------ C:\WINDOWS\system32\rvmlhnkh.dat
2007-10-24 23:43:29 18688 --a------ C:\WINDOWS\system32\drivers\eqbhluay.dat
2007-10-24 23:42:50 0 d-------- C:\WINDOWS\system32\AppCert
2007-10-24 23:41:18 118272 --a------ C:\WINDOWS\system32\MFCANS32w.dll
2007-10-22 21:26:25 0 d-------- C:\Program Files\Video Add-on


-- Find3M Report ---------------------------------------------------------------

2007-11-15 11:51:56 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll <Not Verified; Sony DADC Austria AG.; >
2007-10-25 14:44:28 22780 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-10-15 17:56:56 0 d-------- C:\Program Files\Common Files\Alparysoft
2007-10-15 17:56:54 0 d-------- C:\Program Files\Alparysoft
2007-10-11 23:03:10 0 d-------- C:\Documents and Settings\users-1\Application Data\Google
2007-10-11 23:01:28 0 d-------- C:\Program Files\Google
2007-10-10 12:41:20 0 d-------- C:\Documents and Settings\users-1\Application Data\Yahoo!
2007-10-10 12:39:10 0 d-------- C:\Documents and Settings\users-1\Application Data\Macromedia
2007-10-10 11:51:20 0 d-------- C:\Program Files\Yahoo!
2007-10-09 19:10:00 2560 --a------ C:\WINDOWS\_MSRSTRT.EXE
2007-10-09 19:08:24 0 d-------- C:\Program Files\Ontrack
2007-09-17 01:07:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2007-09-17 01:07:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2007-09-17 01:07:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2007-09-17 01:07:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2007-09-17 01:07:00 1478656 --a------ C:\WINDOWS\system32\nview.dll
2007-09-17 01:07:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2007-09-17 01:07:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2007-09-17 01:07:00 425984 --a------ C:\WINDOWS\system32\keystone.exe
2007-08-20 23:00:26 835885 --a------ C:\WINDOWS\system32\Visions_of_War.scr <Not Verified; Grooveware Multimedia; Screenweaver Shocked Edition>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5DE5C96A-5171-45AD-A8B9-B7B5F5A349C8}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6ED8A431-5FFD-4813-A033-1CB80FAAA0F5}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [09/01/2004 04:28 PM C:\WINDOWS\SYSTEM32\VTTimer.exe]
"SoundMan"="SOUNDMAN.EXE" [09/16/2004 08:39 PM C:\WINDOWS\SOUNDMAN.EXE]
"VC5Player"="C:\Program Files\HHVcdV5Sys\VC5Play.exe" [03/11/2003 05:08 PM]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [09/17/2007 01:07 AM]
"nwiz"="nwiz.exe" [09/17/2007 01:07 AM C:\WINDOWS\SYSTEM32\nwiz.exe]
"WinampAgent"="C:\PROGRAM FILES\WINAMP\winampa.exe" [12/21/2004 02:41 AM]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [08/22/2004 05:05 PM]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [09/19/2006 06:20 PM]
"McRegWiz"="C:\PROGRA~1\McAfee.com\Agent\mcregwiz.exe" []
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [04/03/2007 11:14 PM]
"MCUpdateExe"="C:\PROGRA~1\mcafee.com\agent\McUpdate.exe" []
"MCAgentExe"="c:\PROGRA~1\mcafee.com\agent\McAgent.exe" []
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [06/11/2007 05:25 PM]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [06/08/2007 10:59 PM]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [09/17/2007 01:07 AM]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [11/02/2007 06:27 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/14/2004 12:24 AM]
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [08/30/2007 05:43 PM]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [06/08/2007 10:59 PM]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 01:07 AM]
"Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe" []

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\Osa9.exe [2/17/1999 8:05:56 PM]
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [9/23/2005 10:05:26 PM]
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2/5/2007 3:40:46 PM]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [02/05/2007 03:39 PM 294400]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fzsgxcri]
cjthkm32h.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"LoadPowerProfile"=Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
"VTTimer"=VTTimer.exe
"VirtualDrive"=C:\PROGRAM FILES\FARSTONE\VIRTUALDRIVE\vdtask.exe /AutoRestore
"vcdplayx"="C:\WINDOWS\vcdplayx.exe"
"AVG7_CC"=C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP
"AVG7_AMSVR"=C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE
"AudioDeck"=C:\PROGRAM FILES\VIAUDIOI\SBADECK\ADECK.EXE 1
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
smnlitau




-- End of Deckard's System Scanner: finished at 2007-11-17 21:02:07 ------------

thanks a lot in advance...
  • 0

Advertisements

#2
adlin
Posted 18 November 2007 - 06:56 AM

adlin

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
hello there guys, tnx for keeping my post here, m getting help from bullguard.com
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP