wouldn't allow me to attach hijackthis file which is a txt file. states "Upload failed. You are not permitted to upload this type of file"
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:14:35 PM, on 3/24/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00
(8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files
\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Spybot - Search &
Destroy\TeaTimer.exe
C:\Utopia\Angel\Angel.exe
C:\Program Files (x86)\Common Files\Java\Java
Update\jusched.exe
C:\Program Files (x86)\Internet Explorer
\iexplore.exe
C:\Program Files (x86)\Internet Explorer
\iexplore.exe
C:\Program Files (x86)\Cricket\Cricket
Broadband 1.0\Cricket Broadband.exe
C:\Program Files (x86)\Internet Explorer
\iexplore.exe
C:\Program Files (x86)\Trend Micro
\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet
Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet
Explorer\Main,Start Page =
http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Search_URL =
http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet
Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet
Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet
Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet
Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet
Explorer\Main,Local Page = C:\Windows
\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet
Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {EF99BD32-
C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-
9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-
4283-A596-FA578C2EBDC3} - C:\Program Files
(x86)\Common Files\Adobe\Acrobat\ActiveX
\AcroIEHelperShim.dll
O2 - BHO: Windows Live Family Safety Browser
Helper Class - {4f3ed5cd-0726-42a9-87f5-
d13f3d2976ac} - C:\Program Files
(x86)\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection -
{53707962-6F74-2D53-2644-206D7942484F} - C:
\Program Files (x86)\Spybot - Search &
Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-
9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-
4bff-A14F-B9E3AAC4465B} - C:\Program Files
(x86)\Microsoft\Search Enhancement Pack
\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper -
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:
\Program Files (x86)\Microsoft Office
\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-
8ECC-5164760863C6} - (no file)
O2 - BHO: Java Plug-In 2 SSV Helper -
{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:
\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-
81EA-DC94EC1ACF10} - (no file)
O3 - Toolbar: (no name) - {21FA44EF-376D-
4D53-9B0F-8A89D3229068} - (no file)
O3 - Toolbar: DAEMON Tools Toolbar -
{32099AAC-C132-4136-9E9A-4E364A424E17} - C:
\Program Files (x86)\DAEMON Tools Toolbar
\DTToolbar.dll
O4 - HKLM\..\Run: [GrooveMonitor] //~c:
\program files (x86)\microsoft office
\office12\groovemonitor.exe
O4 - HKLM\..\Run: [Adobe Reader Speed
Launcher] "C:\Program Files (x86)\Adobe
\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program
Files (x86)\Common Files\Adobe\ARM
\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:
\Program Files (x86)\Common Files\Java\Java
Update\jusched.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program
Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel]
C:\Program Files (x86)\Common Files
\LightScribe\LightScribeControlPanel.exe -
hidden
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:
\Program Files (x86)\DAEMON Tools Lite
\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:
\Program Files (x86)\Spybot - Search &
Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Utopia Angel] "C:\Utopia
\Angel\Angel.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar]
%ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:
\Windows\System32\mctadmin.exe (User 'LOCAL
SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar]
%ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:
\Windows\System32\mctadmin.exe (User 'NETWORK
SERVICE')
O8 - Extra context menu item: E&xport to
Microsoft Excel - res://C:
\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-
8CB2-491a-A3C7-D9FCDDC9D600} - (no file)
O9 - Extra 'Tools' menuitem: &Blog This in
Windows Live Writer - {219C3416-8CB2-491a-
A3C7-D9FCDDC9D600} - (no file)
O9 - Extra button: Send to OneNote -
{2670000A-7350-4f3c-8081-5663EE0C6C49} - C:
\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote
- {2670000A-7350-4f3c-8081-5663EE0C6C49} -
C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-
18CC-41C8-B9BE-3C9C571A8263} - C:
\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-
47F8-48C4-A200-58CAB36FD2A2} - C:\Program
Files (x86)\Spybot - Search & Destroy
\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search
&& Destroy Configuration - {DFB852A3-47F8-
48C4-A200-58CAB36FD2A2} - C:\Program Files
(x86)\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: Web-Based Email Tools -
http://email05.secur...et/Download.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-
444553540000} (Shockwave Flash Object) -
http://fpdownload2.m...com/get/shockwa
ve/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-
AC9BF37916A7} -
http://platformdl.ad...S/getPlusPlus/1
.6/gp.cab
O16 - DPF: {FFB3A759-98B1-446F-BDA9-
909C6EB18CC7} (PCPitstop Exam) -
http://utilities.pcp.../Optimize3/pcpi
tstop2.dll
O17 - HKLM\System\CCS\Services\Tcpip\..
\{8451D16E-AF6F-4568-81D7-DF6EEDC37FC1}:
NameServer = 172.28.221.53 172.28.221.54
O18 - Protocol: grooveLocalGWS - {88FED34C-
F0CA-4636-A375-3CB6248B04CD} - C:\Program
Files (x86)\Microsoft Office
\Office12\GrooveSystemServices.dll
O23 - Service: ActivIdentity Shared Store
Service (ac.sharedstore) - ActivIdentity -
C:\Program Files\Common Files\ActivIdentity
\ac.sharedstore.exe
O23 - Service: @%SystemRoot%
\system32\Alg.exe,-112 (ALG) - Unknown owner
- C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASP.NET State Service
(aspnet_state) - Unknown owner - C:\Windows
\Microsoft.NET\Framework
\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: @%SystemRoot%
\system32\efssvc.dll,-100 (EFS) - Unknown
owner - C:\Windows\System32\lsass.exe (file
missing)
O23 - Service: @%systemroot%
\system32\fxsresm.dll,-118 (Fax) - Unknown
owner - C:\Windows\system32\fxssvc.exe (file
missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) -
Unknown owner - C:\Windows\system32\lsass.exe
(file missing)
O23 - Service: LightScribeService Direct Disc
Labeling Service (LightScribeService) -
Hewlett-Packard Company - C:\Program Files
(x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) -
Unknown owner - C:\Windows\System32\msdtc.exe
(file missing)
O23 - Service: @%SystemRoot%
\System32\netlogon.dll,-102 (Netlogon) -
Unknown owner - C:\Windows\system32\lsass.exe
(file missing)
O23 - Service: @%systemroot%
\system32\psbase.dll,-300 (ProtectedStorage)
- Unknown owner - C:\Windows
\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%
\system32\Locator.exe,-2 (RpcLocator) -
Unknown owner - C:\Windows
\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%
\system32\samsrv.dll,-1 (SamSs) - Unknown
owner - C:\Windows\system32\lsass.exe (file
missing)
O23 - Service: SBSD Security Center Service
(SBSDWSCService) - Safer Networking Ltd. -
C:\Program Files (x86)\Spybot - Search &
Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%
\system32\snmptrap.exe,-3 (SNMPTRAP) -
Unknown owner - C:\Windows
\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%
\system32\spoolsv.exe,-1 (Spooler) - Unknown
owner - C:\Windows\System32\spoolsv.exe (file
missing)
O23 - Service: @%SystemRoot%
\system32\sppsvc.exe,-101 (sppsvc) - Unknown
owner - C:\Windows\system32\sppsvc.exe (file
missing)
O23 - Service: SureThing Labelflash service -
MicroVision Development, Inc. - C:\Program
Files (x86)\Common Files\SureThing Shared
\stllssvr.exe
O23 - Service: @%SystemRoot%
\system32\ui0detect.exe,-101 (UI0Detect) -
Unknown owner - C:\Windows
\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%
\system32\vaultsvc.dll,-1003 (VaultSvc) -
Unknown owner - C:\Windows\system32\lsass.exe
(file missing)
O23 - Service: @%SystemRoot%
\system32\vds.exe,-100 (vds) - Unknown owner
- C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%
\system32\vssvc.exe,-102 (VSS) - Unknown
owner - C:\Windows\system32\vssvc.exe (file
missing)
O23 - Service: @%SystemRoot%\system32\Wat
\WatUX.exe,-601 (WatAdminSvc) - Unknown owner
- C:\Windows\system32\Wat\WatAdminSvc.exe
(file missing)
O23 - Service: @%systemroot%
\system32\wbengine.exe,-104 (wbengine) -
Unknown owner - C:\Windows
\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem
\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner
- C:\Windows\system32\wbem\WmiApSrv.exe (file
missing)
O23 - Service: @%PROGRAMFILES%\Windows Media
Player\wmpnetwk.exe,-101 (WMPNetworkSvc) -
Unknown owner - C:\Program Files
(x86)\Windows Media Player\wmpnetwk.exe (file
missing)
--
End of file - 9767 bytes