Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93084 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

ads.k8l.info pop ups

Started by dutta , Jan 07 2007 12:29 PM

  • Please log in to reply
2 replies to this topic

#1 dutta

dutta

    New Member

  • New Member
  • Pip
  • 2 posts

Posted 07 January 2007 - 12:29 PM

Hi, My pc (Windows XP) has been infected with a pop up called ads.k8l.info and i am unable to stop the recurring problem, I have tried using spybot whic did identify the pop up but even after cleaning it, the same returns to haunt the PC. Please help. Regards, Dutta

    Advertisements

Register to Remove

#2 dutta

dutta

    New Member

  • New Member
  • Pip
  • 2 posts

Posted 08 January 2007 - 08:24 AM

Hi,

My pc (Windows XP) has been infected with a pop up called ads.k8l.info and i am unable to stop the recurring problem, I have tried using spybot whic did identify the pop up but even after cleaning it, the same returns to haunt the PC.

Please help.

Regards,

Dutta

Am also pasting the Runalyzer log fyi. KINDLY help me...

Logfile of RunAlyzer 0.3. Copyright © 2000-2005 Safer Networking Limited. All rights reserved.
Scan saved at 1/8/2007 7:46:04 PM
Platform: Windows XP (Build: 2600) Service Pack 2 (5.1.2600)

Running processes:
[System]
System
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\WINDOWS\system32\alg.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\PROGRA~1\QUICKH~1\emlproxy.exe
D:\PROGRA~1\QUICKH~1\UPSCHD.EXE
D:\Program Files\Java\jre1.5.0\bin\jusched.exe
D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
D:\PROGRA~1\QUICKH~1\scanmsg.exe
D:\WINDOWS\inf\qahefige.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\1-Click Answers\answers.exe
D:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
D:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
D:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\PROGRA~1\QUICKH~1\OnlineNT.EXE
D:\Program Files\Microsoft Office\Office10\msoffice.exe
D:\PROGRA~1\1-CLIC~1\agtserv.exe
D:\PROGRA~1\QUICKH~1\ONLNSVC.EXE
D:\PROGRA~1\QUICKH~1\scanwscs.exe
D:\Program Files\Safer Networking\RunAlyzer\RunAlyzer.exe

F2 - REG:system.ini: UserInit=D:\WINDOWS\system32\userinit.exe,
O4 - Global Startup: Picture Package VCD Maker.lnk = D:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
O4 - Global Startup: Samsung Multimedia Keyboard.lnk = D:\Program Files\SAMSUNG\Samsung Multimedia Keyboard\gpkbd.exe
O4 - Global Startup: 1-Click Answers.lnk = D:\Program Files\1-Click Answers\answers.exe
O4 - Global Startup: Picture Package Menu.lnk = D:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - HKCU\..\Run: [MSMSGS] D:\Program Files\Messenger\msmsgs.exe
O4 - HKLM\..\Run: [On-Line Protection] D:\PROGRA~1\QUICKH~1\CATEYE.EXE
O4 - HKLM\..\Run: [qahefige] D:\WINDOWS\inf\qahefige.exe
O4 - HKLM\..\Run: [Email Protection] D:\PROGRA~1\QUICKH~1\emlproxy.exe
O4 - HKLM\..\Run: [Messenger] D:\PROGRA~1\QUICKH~1\scanmsg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM\..\Run: [Update Scheduler] D:\PROGRA~1\QUICKH~1\UPSCHD.EXE
O4 - HKLM\..\Run: [RemoteControl] D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
O4 - HKLM\..\Run: [Startup Scan] D:\PROGRA~1\QUICKH~1\sensor.exe
O23 - Service: Microsoft ACPI Driver (ACPI) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ACPI.sys
O23 - Service: Microsoft Kernel Acoustic Echo Canceller (aec) - /owner unsupported/ - D:\WINDOWS\system32\drivers\aec.sys
O23 - Service: AFD (AFD) - /owner unsupported/ - D:\WINDOWS\System32\drivers\afd.sys
O23 - Service: Service for Realtek AC97 Audio (WDM) (ALCXWDM) - /owner unsupported/ - D:\WINDOWS\system32\drivers\ALCXWDM.SYS
O23 - Service: Alerter (Alerter) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Application Layer Gateway Service (ALG) - /owner unsupported/ - D:\WINDOWS\System32\alg.exe
O23 - Service: Application Management (AppMgmt) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: RAS Asynchronous Media Driver (AsyncMac) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\asyncmac.sys
O23 - Service: Standard IDE/ESDI Hard Disk Controller (atapi) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\atapi.sys
O23 - Service: ATM ARP Client Protocol (Atmarpc) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\atmarpc.sys
O23 - Service: Windows Audio (AudioSrv) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Audio Stub Driver (audstub) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\audstub.sys
O23 - Service: Background Intelligent Transfer Service (BITS) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Computer Browser (Browser) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: CD-ROM Driver (Cdrom) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\cdrom.sys
O23 - Service: Indexing Service (CiSvc) - /owner unsupported/ - D:\WINDOWS\system32\cisvc.exe
O23 - Service: ClipBook (ClipSrv) - /owner unsupported/ - D:\WINDOWS\system32\clipsrv.exe
O23 - Service: COM+ System Application (COMSysApp) - /owner unsupported/ - D:\WINDOWS\system32\dllhost.exe
O23 - Service: Cryptographic Services (CryptSvc) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: DCOM Server Process Launcher (DcomLaunch) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: DHCP Client (Dhcp) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Disk Driver (Disk) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\disk.sys
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - /owner unsupported/ - D:\WINDOWS\System32\dmadmin.exe
O23 - Service: Logical Disk Manager Driver (dmio) - /owner unsupported/ - D:\WINDOWS\System32\drivers\dmio.sys
O23 - Service: Logical Disk Manager (dmserver) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Microsoft Kernel DLS Syntheiszer (DMusic) - /owner unsupported/ - D:\WINDOWS\system32\drivers\DMusic.sys
O23 - Service: DNS Client (Dnscache) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Microsoft Kernel DRM Audio Descrambler (drmkaud) - /owner unsupported/ - D:\WINDOWS\system32\drivers\drmkaud.sys
O23 - Service: EMLSS (EMLSS) - /owner unsupported/ - D:\WINDOWS\system32\drivers\emltdi.sys
O23 - Service: Error Reporting Service (ERSvc) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Event Log (Eventlog) - /owner unsupported/ - D:\WINDOWS\system32\services.exe
O23 - Service: COM+ Event System (EventSystem) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Fast User Switching Compatibility (FastUserSwitchingCompatibility) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Floppy Disk Controller Driver (Fdc) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\fdc.sys
O23 - Service: Floppy Disk Driver (Flpydisk) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\flpydisk.sys
O23 - Service: FltMgr (FltMgr) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\fltMgr.sys
O23 - Service: Volume Manager Driver (Ftdisk) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ftdisk.sys
O23 - Service: Generic Packet Classifier (Gpc) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\msgpc.sys
O23 - Service: Help and Support (helpsvc) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Human Interface Device Access (HidServ) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Microsoft HID Class Driver (hidusb) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\hidusb.sys
O23 - Service: HTTP (HTTP) - /owner unsupported/ - D:\WINDOWS\System32\Drivers\HTTP.sys
O23 - Service: HTTP SSL (HTTPFilter) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: i8042 Keyboard and PS/2 Mouse Port Driver (i8042prt) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\i8042prt.sys
O23 - Service: CD-Burning Filter Driver (Imapi) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\imapi.sys
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - /owner unsupported/ - D:\WINDOWS\system32\imapi.exe
O23 - Service: Intel Processor Driver (intelppm) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\intelppm.sys
O23 - Service: IPv6 Windows Firewall Driver (Ip6Fw) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
O23 - Service: IP Traffic Filter Driver (IpFilterDriver) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
O23 - Service: IP in IP Tunnel Driver (IpInIp) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ipinip.sys
O23 - Service: IP Network Address Translator (IpNat) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ipnat.sys
O23 - Service: IPSEC driver (IPSec) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ipsec.sys
O23 - Service: IR Enumerator Service (IRENUM) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\irenum.sys
O23 - Service: PnP ISA/EISA Bus Driver (isapnp) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\isapnp.sys
O23 - Service: Keyboard Class Driver (Kbdclass) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\kbdclass.sys
O23 - Service: Microsoft Kernel Wave Audio Mixer (kmixer) - /owner unsupported/ - D:\WINDOWS\system32\drivers\kmixer.sys
O23 - Service: Server (lanmanserver) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Workstation (lanmanworkstation) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: TCP/IP NetBIOS Helper (LmHosts) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Messenger (Messenger) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: NetMeeting Remote Desktop Sharing (mnmsrvc) - /owner unsupported/ - D:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mouse Class Driver (Mouclass) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\mouclass.sys
O23 - Service: Mouse HID Driver (mouhid) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\mouhid.sys
O23 - Service: WebDav Client Redirector (MRxDAV) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\mrxdav.sys
O23 - Service: MRXSMB (MRxSmb) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O23 - Service: Distributed Transaction Coordinator (MSDTC) - /owner unsupported/ - D:\WINDOWS\system32\msdtc.exe
O23 - Service: Windows Installer (MSIServer) - /owner unsupported/ - D:\WINDOWS\system32\msiexec.exe
O23 - Service: Microsoft Streaming Service Proxy (MSKSSRV) - /owner unsupported/ - D:\WINDOWS\system32\drivers\MSKSSRV.sys
O23 - Service: Microsoft Streaming Clock Proxy (MSPCLOCK) - /owner unsupported/ - D:\WINDOWS\system32\drivers\MSPCLOCK.sys
O23 - Service: Microsoft Streaming Quality Manager Proxy (MSPQM) - /owner unsupported/ - D:\WINDOWS\system32\drivers\MSPQM.sys
O23 - Service: Microsoft System Management BIOS Driver (mssmbios) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\mssmbios.sys
O23 - Service: Mup (Mup) - /owner unsupported/ -
O23 - Service: NDIS System Driver (NDIS) - /owner unsupported/ -
O23 - Service: Remote Access NDIS TAPI Driver (NdisTapi) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ndistapi.sys
O23 - Service: NDIS Usermode I/O Protocol (Ndisuio) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ndisuio.sys
O23 - Service: Remote Access NDIS WAN Driver (NdisWan) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ndiswan.sys
O23 - Service: NetBIOS Interface (NetBIOS) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\netbios.sys
O23 - Service: NetBios over Tcpip (NetBT) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\netbt.sys
O23 - Service: Network DDE (NetDDE) - /owner unsupported/ - D:\WINDOWS\system32\netdde.exe
O23 - Service: Network DDE DSDM (NetDDEdsdm) - /owner unsupported/ - D:\WINDOWS\system32\netdde.exe
O23 - Service: Net Logon (Netlogon) - /owner unsupported/ - D:\WINDOWS\system32\lsass.exe
O23 - Service: Network Connections (Netman) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Network Location Awareness (NLA) (Nla) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: NT Online Protection (NT Online Protection) - /owner unsupported/ - D:\PROGRA~1\QUICKH~1\ONLNSVC.EXE
O23 - Service: NT LM Security Support Provider (NtLmSsp) - /owner unsupported/ - D:\WINDOWS\system32\lsass.exe
O23 - Service: Removable Storage (NtmsSvc) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: IPX Traffic Filter Driver (NwlnkFlt) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
O23 - Service: IPX Traffic Forwarder Driver (NwlnkFwd) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
O23 - Service: OnlineNT (OnlineNT) - /owner unsupported/ - D:\PROGRA~1\QUICKH~1\ONLINENT.SYS
O23 - Service: Parallel port driver (Parport) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\parport.sys
O23 - Service: PCI Bus Driver (PCI) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\pci.sys
O23 - Service: Plug and Play (PlugPlay) - /owner unsupported/ - D:\WINDOWS\system32\services.exe
O23 - Service: IPSEC Services (PolicyAgent) - /owner unsupported/ - D:\WINDOWS\system32\lsass.exe
O23 - Service: WAN Miniport (PPTP) (PptpMiniport) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\raspptp.sys
O23 - Service: Protected Storage (ProtectedStorage) - /owner unsupported/ - D:\WINDOWS\system32\lsass.exe
O23 - Service: QoS Packet Scheduler (PSched) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\psched.sys
O23 - Service: Direct Parallel Link Driver (Ptilink) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\ptilink.sys
O23 - Service: Remote Access Auto Connection Driver (RasAcd) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\rasacd.sys
O23 - Service: Remote Access Auto Connection Manager (RasAuto) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: WAN Miniport (L2TP) (Rasl2tp) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
O23 - Service: Remote Access Connection Manager (RasMan) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Remote Access PPPOE Driver (RasPppoe) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\raspppoe.sys
O23 - Service: Direct Parallel (Raspti) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\raspti.sys
O23 - Service: Rdbss (Rdbss) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\rdbss.sys
O23 - Service: Terminal Server Device Redirector Driver (rdpdr) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\rdpdr.sys
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - /owner unsupported/ - D:\WINDOWS\system32\sessmgr.exe
O23 - Service: Digital CD Audio Playback Filter Driver (redbook) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\redbook.sys
O23 - Service: Routing and Remote Access (RemoteAccess) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Remote Registry (RemoteRegistry) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: WAN Miniport (PPP over Ethernet Protocol) (RMSPPPOE) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS
O23 - Service: Remote Procedure Call (RPC) Locator (RpcLocator) - /owner unsupported/ - D:\WINDOWS\system32\locator.exe
O23 - Service: Remote Procedure Call (RPC) (RpcSs) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: QoS RSVP (RSVP) - /owner unsupported/ - D:\WINDOWS\system32\rsvp.exe
O23 - Service: Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver (rtl8139) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\RTL8139.SYS
O23 - Service: Security Accounts Manager (SamSs) - /owner unsupported/ - D:\WINDOWS\system32\lsass.exe
O23 - Service: Quick Heal Helper Service WSC (ScanWscS) - /owner unsupported/ - D:\PROGRA~1\QUICKH~1\scanwscs.exe
O23 - Service: Smart Card (SCardSvr) - /owner unsupported/ - D:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Task Scheduler (Schedule) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: ScreenNT (ScreenNT) - /owner unsupported/ - D:\WINDOWS\system32\drivers\ScreenNT.sys
O23 - Service: Secdrv (Secdrv) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\secdrv.sys
O23 - Service: Secondary Logon (seclogon) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: System Event Notification (SENS) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Serenum Filter Driver (serenum) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\serenum.sys
O23 - Service: Serial port driver (Serial) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\serial.sys
O23 - Service: Windows Firewall/Internet Connection Sharing (ICS) (SharedAccess) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Shell Hardware Detection (ShellHWDetection) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Sony USB Filter Driver (SONYPVU1) (SONYPVU1) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
O23 - Service: Microsoft Kernel Audio Splitter (splitter) - /owner unsupported/ - D:\WINDOWS\system32\drivers\splitter.sys
O23 - Service: Print Spooler (Spooler) - /owner unsupported/ - D:\WINDOWS\system32\spoolsv.exe
O23 - Service: System Restore Filter Driver (sr) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\sr.sys
O23 - Service: System Restore Service (srservice) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Srv (Srv) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\srv.sys
O23 - Service: SSDP Discovery Service (SSDPSRV) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Windows Image Acquisition (WIA) (stisvc) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Software Bus Driver (swenum) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\swenum.sys
O23 - Service: Microsoft Kernel GS Wavetable Synthesizer (swmidi) - /owner unsupported/ - D:\WINDOWS\system32\drivers\swmidi.sys
O23 - Service: MS Software Shadow Copy Provider (SwPrv) - /owner unsupported/ - D:\WINDOWS\system32\dllhost.exe
O23 - Service: Microsoft Kernel System Audio Device (sysaudio) - /owner unsupported/ - D:\WINDOWS\system32\drivers\sysaudio.sys
O23 - Service: Performance Logs and Alerts (SysmonLog) - /owner unsupported/ - D:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Telephony (TapiSrv) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: TCP/IP Protocol Driver (Tcpip) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\tcpip.sys
O23 - Service: Terminal Device Driver (TermDD) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\termdd.sys
O23 - Service: Terminal Services (TermService) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Themes (Themes) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Telnet (TlntSvr) - /owner unsupported/ - D:\WINDOWS\system32\tlntsvr.exe
O23 - Service: Distributed Link Tracking Client (TrkWks) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Microcode Update Driver (Update) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\update.sys
O23 - Service: Universal Plug and Play Device Host (upnphost) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Uninterruptible Power Supply (UPS) - /owner unsupported/ - D:\WINDOWS\System32\ups.exe
O23 - Service: Microsoft USB 2.0 Enhanced Host Controller Miniport Driver (usbehci) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\usbehci.sys
O23 - Service: USB2 Enabled Hub (usbhub) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\usbhub.sys
O23 - Service: USB Mass Storage Driver (USBSTOR) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
O23 - Service: Microsoft USB Universal Host Controller Miniport Driver (usbuhci) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\usbuhci.sys
O23 - Service: Volume Shadow Copy (VSS) - /owner unsupported/ - D:\WINDOWS\System32\vssvc.exe
O23 - Service: Windows Time (W32Time) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Remote Access IP ARP Driver (Wanarp) - /owner unsupported/ - D:\WINDOWS\system32\DRIVERS\wanarp.sys
O23 - Service: Microsoft WINMM WDM Audio Compatibility Driver (wdmaud) - /owner unsupported/ - D:\WINDOWS\system32\drivers\wdmaud.sys
O23 - Service: WebClient (WebClient) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Windows Management Instrumentation (winmgmt) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Portable Media Serial Number Service (WmdmPmSN) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Windows Management Instrumentation Driver Extensions (Wmi) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: WMI Performance Adapter (WmiApSrv) - /owner unsupported/ - D:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Security Center (wscsvc) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Automatic Updates (wuauserv) - /owner unsupported/ - D:\WINDOWS\system32\svchost.exe
O23 - Service: Wireless Zero Configuration (WZCSVC) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O23 - Service: Network Provisioning Service (xmlprov) - /owner unsupported/ - D:\WINDOWS\System32\svchost.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - D:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: 0 - {91A08293-87A6-4C89-98A1-C4C164552637} - D:\Program Files\ComPlus Applications\lawu.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} () - D:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3B0EA9E6-7003-4B38-B398-9B1B6DF439C5} () - http://download1.ans...nswersSetup.cab
O16 - DPF: {4AD73894-A895-4FC2-B233-299867E08753} () - http://apps.deskwizz.../ax/adwerkz.cab
O16 - DPF: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA} (Java Runtime Environment 1.4.2) - http://java.sun.com/...indows-i586.cab

#3 little eagle

little eagle

    spyware hawk

  • Visiting Fellow
  • PipPipPipPipPipPip
  • 8,968 posts
  • Interests:spyware

Posted 04 February 2007 - 08:48 AM

Sorry for the delay :oops:
If you still need help and haven't posted at another forum.

Download and install AVG Anti-Spyware (ewido). Then scan and save the log from the scan.
Instructions and download link can be found here.

Then run this online scan. Save the report.

Rescan with HJT and post a new log with the results from AVG .
Also please describe how your computer behaves at the moment.
Posted Image
My Website
ATF Cleaner for removing temporary files
HijackThis download
Donations to this site

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·