Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Generic trojan, won't boot in safe mode, Windows 2000

Started by TallBear , Feb 15 2008 10:50 AM

  • Please log in to reply

#1
TallBear
Posted 15 February 2008 - 10:50 AM

TallBear

    New Member

  • Member
  • Pip
  • 1 posts
Machine not connected to internet, can't run Panda scan. Ran AVG in Safe Mode and I thought it said no infections, so I went to Normal Mode to run other recommendations, however, the system was built at wife's workplace; they didn't give us the program disks. When a pop up asked me to insert the disks otherwise unregistered versions will remain (or something to that effect) I hit Yes. I realize now, I should have unplugged, but now it looks like it's permanently infected and won't restart, is that the case? HiJackthis log is below. I'm using USB sticks to collect programs to load onto machine, so it takes a while to transfer between good computer and bad one, so sorry for any delay in responding. I managed to copy files before this happened, so if it's a lost cause, I can deal with it. Also, if a hardware solution is needed, like going to a computer store and getting new stuff, any recommendations would be appreciated. On top of this printer didn't work and Task Manager bar was grayed out.

--------[ EVEREST Home Edition © 2003-2005 Lavalys, Inc. ]------------------------------------------------------------

Version EVEREST v2.20.405
Homepage http://www.lavalys.com/
Report Type Report Wizard
Computer CHRISTA
Generator Administrator
Operating System Microsoft Windows 2000 Professional 5.0.2195 (Win2000 Retail)
Date 2008-02-13
Time 21:21


--------[ Summary ]-----------------------------------------------------------------------------------------------------

Computer:
Operating System Microsoft Windows 2000 Professional
OS Service Pack Service Pack 1
DirectX 4.09.00.0902 (DirectX 9.0b)
Computer Name CHRISTA
User Name Administrator

Motherboard:
CPU Type Intel Pentium IIIE, 866 MHz (6.5 x 133)
Motherboard Name Intel Easton D815EEA (5 PCI, 1 AGP, 3 DIMM, Audio, Video)
Motherboard Chipset Intel Solano i815E
System Memory 128 MB (PC100 SDRAM)
BIOS Type AMI (03/26/01)
Communication Port Communications Port (COM1)
Communication Port Communications Port (COM2)
Communication Port Printer Port (LPT1)

Display:
Video Adapter Intel® 82815 Graphics Controller (4 MB)
3D Accelerator Intel i752
Monitor ViewSonic G70m [17" CRT] (607011180564)

Multimedia:
Audio Adapter Intel 82801BA ICH2 - AC'97 Audio Controller [B-1]

Storage:
IDE Controller Intel® 82801BA Ultra ATA Storage Controller - 244B
Floppy Drive Floppy disk drive
Disk Drive WDC WD200EB-00BHF0 (18 GB, IDE)
Disk Drive SanDisk Cruzer Micro USB Device (243 MB, USB)
Optical Drive TSSTcorp CD/DVDW SH-S182M
SMART Hard Disks Status OK

Partitions:
C: (NTFS) 10001 MB (2350 MB free)
E: (NTFS) 9083 MB (9030 MB free)
Total Size 18.6 GB (11.1 GB free)

Input:
Keyboard Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Mouse Microsoft PS/2 Mouse

Network:
Network Adapter Intel® PRO/100 VE Network Connection
Modem U.S. Robotics 56K Fax PCI

Peripherals:
USB1 Controller Intel 82801BA ICH2 - USB Controller 1 [B-1]
USB1 Controller Intel 82801BA ICH2 - USB Controller 2 [B-1]
USB Device Generic USB Hub
USB Device USB Mass Storage Device


--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

B00 D00 F00: Intel 82815(EP) Chipset - Host-Hub Bridge [A-2]

Offset 00: 86 80 30 11 06 00 90 20 02 00 00 06 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 88 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 50 05 07 2B 00 00 00 00 00 10 11 11 00 00 11 31
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: CC 00 18 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: DE A0 CE 07 00 00 00 00 09 00 04 F1 00 00 00 00
Offset 90: 00 00 C6 FF FC FF 00 00 34 80 34 80 85 84 84 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 90 18 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 08 01 00 00

B00 D02 F00: Intel 82815 Chipset - Integrated i752 Graphics [A-2]

Offset 00: 86 80 32 11 07 00 B0 02 02 00 00 03 00 00 00 00
Offset 10: 08 00 00 F8 00 00 A8 FF 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 0B 01 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 22 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D1E F00: Intel 82801BA I/O Controller Hub 2 (ICH2) [B-1]

Offset 00: 86 80 4E 24 07 01 80 00 02 00 04 06 00 00 01 00
Offset 10: 00 00 00 00 00 00 00 00 00 01 01 20 D0 D0 80 22
Offset 20: 80 FF 80 FF A0 F6 A0 F6 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00
Offset 40: 00 28 20 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 10 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 01 00 02 00 00 00 C0 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B00 D1F F00: Intel 82801BA ICH2 - LPC Bridge [B-1]

Offset 00: 86 80 40 24 0F 01 80 02 02 00 01 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 04 00 00 10 00 00 00 00 00 00 00 00 00 02 00
Offset 50: 00 00 00 00 00 00 00 00 01 05 00 00 10 00 00 00
Offset 60: 8B 09 80 09 D0 00 00 00 09 80 80 09 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: FF FC 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 10 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 02 00 00 00 00
Offset C0: 00 00 00 00 00 00 84 08 00 00 00 00 10 00 00 00
Offset D0: 02 20 00 00 02 0F 00 00 04 00 00 00 00 00 00 00
Offset E0: 10 00 00 C0 00 00 2F 34 33 22 11 00 31 08 67 45
Offset F0: 00 00 40 00 00 00 00 00 47 0F 00 00 00 00 00 04

B00 D1F F01: Intel 82801BA ICH2 - ATA-100 IDE Controller [B-1]

Offset 00: 86 80 4B 24 05 00 80 02 02 80 01 01 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: A1 FF 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 07 A3 03 A3 00 00 00 00 01 00 02 00 00 00 00 00
Offset 50: 00 00 00 00 11 04 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B00 D1F F02: Intel 82801BA ICH2 - USB Controller 1 [B-1]

Offset 00: 86 80 42 24 05 00 80 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 41 EF 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 09 04 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 03 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B00 D1F F03: Intel 82801BA ICH2 - SMBus Controller [B-1]

Offset 00: 86 80 43 24 01 00 80 02 02 00 05 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: A1 EF 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 09 02 00 00
Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B00 D1F F04: Intel 82801BA ICH2 - USB Controller 2 [B-1]

Offset 00: 86 80 44 24 05 00 80 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 81 EF 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 09 03 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 03 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B00 D1F F05: Intel 82801BA ICH2 - AC'97 Audio Controller [B-1]

Offset 00: 86 80 45 24 05 00 80 02 02 00 01 04 00 00 00 00
Offset 10: 01 E8 00 00 01 EF 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 86 80 41 45
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 09 02 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 47 0F 00 00 00 00 00 00

B01 D08 F00: Intel PRO/100 VE Network Connection

Offset 00: 86 80 49 24 17 01 90 02 01 00 00 02 08 20 00 00
Offset 10: 00 F0 8F FF 01 DF 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 86 80 13 30
Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 09 01 08 38
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 22 FE
Offset E0: 00 40 00 3A 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B01 D0C F00: US Robotics 56k Fax Modem

Offset 00: B9 12 08 10 00 01 10 02 01 02 00 07 00 00 00 00
Offset 10: F1 DF 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 B9 12 A2 00
Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 09 01 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 02 EC
Offset E0: 03 40 00 A0 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00


--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

C000:0000 U.`.=740000000000000000.H.4n8nIBM VGA Compatible BIOS. .........
C000:0040 ......I.PCIR..2.........`.i"....TMN+ d.&.....&...
C000:0080 ......BMP_VGA_Start d..../.E.M.R.....(.....#........Build Num
C000:00C0 ber: 2269 10/13/2000 09:55:27..Video memory: 1 MB Device Re
C000:0100 vision: 2.0..DECOMPILATION OR DISASSEMBLY PROHIBITED............
C000:0140 ................Copyright © 1999-2000 Intel Corporation. All
C000:0180 Rights Reserved......3..........................................
C000:01C0 ...............#........02468:@BDFHJPRTVXZ...........}..........
C000:0200 .}...}..................b.(.........&..$.......+.........$.@..
C000:0240 WW%.......P."...".. ".3...[email protected]........`."..."..!"$q...
C000:0280 ...&[email protected]'.......p."...". !"......P.......P.......P.......Q....
C000:02C0 ...Q.......Q.......Q.......Q.......`.......`..S....`.......`....
C000:0300 ...`..@@@@.`...................... .......$.....................
C000:0340 ................................................................
C000:0380 ................................................................
C000:03C0 ..........................................For Evaluation Use Onl

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:07:12 PM, on 2/14/2008
Platform: Windows 2000 SP1 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.00 SP1 (5.00.2920.0000)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\Explorer.exe
C:\WINNT\System32\Promon.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
F:\HiJackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [IMONTRAY] C:\Program Files\Intel\Intel® Active Monitor\imontray.exe
O4 - HKLM\..\Run: [Promon.exe] Promon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [SystemSv121] C:\WINNT\System32\n2ewma1xxsv2234.exe
O4 - HKLM\..\Run: [icasServ] C:\WINNT\System32\icasServ.exe
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
O4 - HKUS\S-1-5-21-1417001333-492894223-854245398-500\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe (User '?')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm (file missing)
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm (file missing)
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O21 - SSODL: tRxYBBRQf - {BC3F48AB-1695-E201-41AC-F246A7B5A727} - C:\WINNT\system32\ei.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Application Management (AppMgmt) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - c:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: DHCP Client (Dhcp) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Logical Disk Manager (dmserver) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: DNS Client (Dnscache) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: COM+ Event System (EventSystem) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Intel® Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel® Active Monitor\imonnt.exe
O23 - Service: Server (lanmanserver) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: TCP/IP NetBIOS Helper Service (LmHosts) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: McShield - Network Associates, Inc. - c:\Program Files\Common Files\Network Associates\McShield\Mcshield.exe
O23 - Service: Network Connections (Netman) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Removable Storage (NtmsSvc) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: Remote Access Auto Connection Manager (RasAuto) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Remote Access Connection Manager (RasMan) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) (RpcSs) - Unknown owner - C:\WINNT\system32\svchost.exe (file missing)
O23 - Service: Task Scheduler (Schedule) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: RunAs Service (seclogon) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: System Event Notification (SENS) - Unknown owner - C:\WINNT\system32\svchost.exe (file missing)
O23 - Service: Internet Connection Sharing (SharedAccess) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Analog Devices, Inc. - (no file)
O23 - Service: Telephony (TapiSrv) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Distributed Link Tracking Client (TrkWks) - Unknown owner - C:\WINNT\system32\services.exe (file missing)
O23 - Service: Windows Time (W32Time) - Unknown owner - C:\WINNT\System32\services.exe (file missing)
O23 - Service: Portable Media Serial Number Service (WmdmPmSN) - Unknown owner - C:\WINNT\System32\svchost.exe (file missing)
O23 - Service: Windows Management Instrumentation Driver Extensions (Wmi) - Unknown owner - C:\WINNT\system32\Services.exe (file missing)

--
End of file - 6951 bytes
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP