Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Pokepoke76.exe


  • Please log in to reply

#1
SuperTAZ

SuperTAZ

    New Member

  • Member
  • Pip
  • 1 posts
hope someone can help me with this.. Pokepoke76.exe
Logfile of HijackThis v1.99.1
Scan saved at 11:36:29 AM, on 10/25/2005
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Symantec\pcAnywhere\awhost32.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Adaptec\Adaptec ATA RAID Management Software\RaidMan.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\OfficeScan NT\tmlisten.exe
C:\OfficeScan NT\ntrtscan.exe
C:\OfficeScan NT\OfcPfwSvc.exe
C:\WINNT\TEMP\OI74A2.EXE
C:\OfficeScan NT\PCCNTMON.EXE
C:\AltiServ\EXE\AltiAdmin.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\WINNT\etb\pokapoka76.exe
C:\Program Files\Internet Explorer\Connection Wizard\ICWCONN1.EXE
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\OfficeScan NT\pccnt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.searchwebzone.com/sp2.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.searchwebzone.com/sp2.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.searchwebzone.com/sp2.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://yahoo.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [raidman] "C:\Program Files\Adaptec\Adaptec ATA RAID Management Software\RaidMan.exe" /tray
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\OfficeScan NT\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [System service76] C:\WINNT\\\etb\\pokapoka76.exe
O4 - HKLM\..\RunOnce: [MicrosoftAntiSpywareCleaner] C:\Program Files\Microsoft AntiSpyware\gcASCleaner.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1124486608424
O20 - Winlogon Notify: PCANotify - C:\WINNT\SYSTEM32\PCANotify.dll
O23 - Service: AltiGen BackUp / Restore Service (AltiBack) - AltiGen Communications, Inc. - C:\AltiServ\EXE\AltiBack.exe
O23 - Service: AltiGen Exchange Integration Service COM Server (AltiExchIntg) - AltiGen Communications, Inc. - C:\AltiServ\EXE\ExchIntg.exe
O23 - Service: AltiGen Internal Logger Service - AltiGen Communications, Inc. - C:\AltiServ\EXE\logservice.exe
O23 - Service: AltiGen Keep Up Service (AltiKeep) - AltiGen Communications, Inc. - C:\AltiServ\EXE\AltiKeep.exe
O23 - Service: AltiGen Messaging Service COM Server (AltiMA) - AltiGen Communications, Inc. - C:\AltiServ\EXE\maentry.exe
O23 - Service: AltiGen IP Phone Server (AltiPhoneServ) - AltiGen - C:\AltiServ\EXE\SPServ.exe
O23 - Service: AltiGen POP3 Service COM Server (AltiPop3) - AltiGen Communications, Inc. - C:\AltiServ\EXE\altipop3.exe
O23 - Service: AltiGen Switching Service COM Server (AltiServ) - AltiGen Communications, Inc. - C:\AltiServ\EXE\altiserv.exe
O23 - Service: AltiGen SMTP Service COM Server (AltiSmtp) - AltiGen Communications, Inc. - C:\AltiServ\EXE\smtpserver.exe
O23 - Service: AltiView VM Service (AltiVMServ) - AltiGen Communications, Inc. - C:\AltiServ\EXE\CmServ.exe
O23 - Service: AltiGen AutoUpgrade Service (AUService) - Altigen - C:\AltiServ\EXE\AUService.exe
O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Program Files\Symantec\pcAnywhere\awhost32.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: AltiGen MultiMedia message queue service (MMQS Service) - Unknown owner - C:\AltiServ\EXE\MMQSSrv.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\OfficeScan NT\ntrtscan.exe
O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\OfficeScan NT\OfcPfwSvc.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\OfficeScan NT\tmlisten.exe
  • 0

Advertisements


#2
gerryf

gerryf

    Retired Staff

  • Retired Staff
  • 11,365 posts
Please go to the malware forum and follow the instructions at the top....Especially the CLICK HERE .

That will give you several steps that will help you clean up 70 percent of all problems by yourself. If at the end of the process you are still having difficulty--and you may not be-- then post a hijackthis log in THAT forum.

If you are still having problems after getting a clean bill of health from the malware expert, please return to this thread.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP