HJT Log,computer overrun by popups & EXTREMLY SLOW

Author	All Replies
strat_640 join:2005-03-27	HJT Log,computer overrun by popups & EXTREMLY SLOW Ok, I have run my computer with most of the system checks that are mentioned on your "read first file". I cannont however run any of the onloine check programs as i would have to do it over my phone which would cost a fortune!! Anyway, here is my HJT log. Logfile of HijackThis v1.98.0 Scan saved at 17:57:42, on 30/01/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Norton Internet Security\NISUM.EXE C:\Program Files\Norton Internet Security\ccPxySvc.exe C:\WINDOWS\System32\CTSvcCDA.EXE C:\WINDOWS\System32\hwclock.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\SONY\vaio media music server\SSSvr.exe C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\Common Files\sony shared\vaio media platform\SV_Httpd.exe C:\Program Files\Common Files\sony shared\vaio media platform\UPnPFramework.exe C:\Program Files\Common Files\Sony Shared\vaio media platform\sv_httpd.exe C:\Program Files\Common Files\Sony Shared\vaio media platform\UPnPFramework.exe C:\WINDOWS\System32\setup32.exe C:\WINDOWS\Explorer.exe C:\WINDOWS\System32\carpserv.exe C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\System32\ezSP_Px.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\System32\ICO.EXE C:\Program Files\Sony\HotKey Utility\HKserv.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Apoint\Apntex.exe C:\WINDOWS\System32\scrtkfg.exe C:\Program Files\Sony\HotKey Utility\HKWnd.exe C:\Program Files\SurfAccuracy\SAcc.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Documents and Settings\Rob Jordan\Desktop\Robs Folder\My Folder\Misc\Virus Dector\hjtlog.exe c:\hijackthis\hijackthis.exe F2 - REG:system.ini: Shell=Explorer.exe changeme.exe F2 - REG:system.ini: UserInit=userinit.exe,setup32.exe O1 - Hosts: 64.91.255.87 www.dcsresearch.com O2 - BHO: &EliteBar - {28CAEFF3-0F18-4036-B504-51D73BD81ABC} - C:\WINDOWS\EliteToolBar\EliteToolBar version 60.dll (file missing) O3 - Toolbar: &EliteBar - {825CF5BD-8862-4430-B771-0C15C5CA8DEF} - C:\WINDOWS\EliteToolBar\EliteToolBar version 60.dll (file missing) O4 - HKLM\..\Run: [CARPService] carpserv.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe" O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [hpppta] C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\hpppta.exe /ICON O4 - HKLM\..\Run: [MaxFsSD] C:\WINDOWS\qcliqtva.exe O4 - HKLM\..\Run: [System CSRSS Patch] scrtkfg.exe O4 - HKLM\..\Run: [timessquare] C:\windows\timessquare.exe O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.2\THGuard.exe" O4 - HKLM\..\RunServices: [System CSRSS Patch] scrtkfg.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/ O15 - Trusted Zone: .media-motor.net O15 - Trusted Zone: .popuppers.com O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - »a840.g.akamai.net/7/840/537/2004···an53.cab
strat_640 join:2005-03-27	to forum · permalink · · 2006-01-30 13:11:31 · (locked)
strat_640 join:2005-03-27	Sorry, was ment to post this in the security clean up post!!! My bad!
strat_640 join:2005-03-27	to forum · permalink · · 2006-01-30 13:20:29 · (locked)
Red Dragon Imagine BBR in 20 years join:2005-04-30 Scarsdale, NY	Re: HJT Log,computer overrun by popups & EXTREMLY Ok ill post here first. You need to run Ewido. Then make sure you have run all these steps. »Security Cleanup FAQ »Mandatory Steps Before Requesting Assistance
	to forum · permalink · · 2006-01-30 13:23:55 · (locked)


Friday, 04-Dec 14:30:54	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF