Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 91865 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Can you cheak my log


  • This topic is locked This topic is locked
No replies to this topic

#1 Tameilau

Tameilau

    Authentic Member

  • Authentic Member
  • PipPip
  • 23 posts

Posted 17 April 2008 - 10:04 PM

Can you cheak my log please

Logfile of HijackThis v1.99.1
Scan saved at 4:03:39 p.m., on 18/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SQ931STI.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Canon\MultiPASS4\MPDBMgr.exe
C:\DOCUME~1\Nathan\LOCALS~1\Temp\21022.08\1033\wcu\dotnetframework\dotnetfx35setup.exe
c:\e88177b2652f55b164\setup.exe
C:\WINDOWS\system32\msiexec.exe
C:\Documents and Settings\Nathan\Desktop\ZoomIt.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\MsiExec.exe
C:\Program Files\FlashGet\flashget.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\WINDOWS\SQ931STI.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O1 - Hosts: 202.153.105.62 special.hkjc.com
O1 - Hosts: 203.82.8.94 xsell.hkjc.com
O1 - Hosts: 203.82.10.35 txn02.hkjc.com
O1 - Hosts: 208.72.33.133 www.imeem.com
O1 - Hosts: 208.72.33.133 ads.imeem.com
O1 - Hosts: 208.72.33.133 cashvillecountryboy.imeem.com
O1 - Hosts: 64.156.82.107 www.limewire.com
O1 - Hosts: 64.156.82.110 sales.limewire.com
O1 - Hosts: 195.122.131.6 rapidshare.com
O1 - Hosts: 63.245.209.11 www.mozilla.org
O1 - Hosts: 63.245.209.10 en.www.mozilla.com
O1 - Hosts: 63.245.209.58 download.mozilla.org
O1 - Hosts: 63.245.208.152 dm-download02.mozilla.org
O1 - Hosts: 209.34.160.4 www.delphiforfun.org
O1 - Hosts: 65.54.179.203 login.live.com
O1 - Hosts: 65.55.128.48 spaces.live.com
O1 - Hosts: 202.58.48.29 msn.co.nz
O1 - Hosts: 168.143.175.215 acvs.mediaonenetwork.net
O1 - Hosts: 125.7.5.17 www.autotrader.co.nz
O1 - Hosts: 208.75.184.16 www.bebo.com
O1 - Hosts: 63.112.169.139 ads.monster.com
O1 - Hosts: 98.136.8.11 ad.yieldmanager.com
O1 - Hosts: 208.67.219.137 google
O1 - Hosts: 72.14.253.99 www.google.co.nz
O1 - Hosts: 203.167.223.234 www.wwe.com
O1 - Hosts: 64.22.120.175 recommends.kissyoutube.com
O1 - Hosts: 208.109.78.58 www.acrobat-plus.com
O1 - Hosts: 212.241.249.50 www.freedownloadzone.com
O1 - Hosts: 216.239.122.225 www.download.com
O1 - Hosts: 72.52.220.46 www.ccleaner.com
O1 - Hosts: 209.85.167.164 pagead2.googlesyndication.com
O1 - Hosts: 74.53.121.66 www.filehippo.com
O1 - Hosts: 210.50.7.243 ad.nz.doubleclick.net
O1 - Hosts: 216.239.122.220 reviews.cnet.com
O1 - Hosts: 210.50.7.243 ad.au.doubleclick.net
O1 - Hosts: 216.239.116.65 bwp.download.com
O1 - Hosts: 217.115.195.38 www.speedo.com
O1 - Hosts: 203.129.71.150 upload.aastocks.com
O1 - Hosts: 208.53.170.234 bebooxy.com
O1 - Hosts: 207.46.211.124 www.update.microsoft.com
O1 - Hosts: 207.46.16.243 c.microsoft.com
O1 - Hosts: 208.67.219.137 www.update.microsoft.com/microsoftupdate/v6/errorinformation.as
O1 - Hosts: 198.65.220.236 www.screensavers.com
O1 - Hosts: 203.167.223.236 c5.zedo.com
O1 - Hosts: 72.5.124.95 www.java.com
O1 - Hosts: 72.5.124.92 javadl.sun.com
O1 - Hosts: 208.75.184.16 beboframe.com
O1 - Hosts: 208.67.219.137 www.airnewzealand
O1 - Hosts: 162.112.18.136 www.airnewzealand.com
O1 - Hosts: 208.67.219.137 www.itn.net/cgi/get?jet/tools/air/multi_city
O1 - Hosts: 162.112.18.137 www.airnewzealand.com.hk
O1 - Hosts: 151.193.164.1 www.itn.net
O1 - Hosts: 162.112.18.137 www.airnz.hk
O1 - Hosts: 208.67.219.137 www.itn.net/cgi/get?ref
O1 - Hosts: 72.51.27.51 www.telecome.com
O1 - Hosts: 208.73.212.12 searchportal.information.com
O1 - Hosts: 217.150.156.17 www.telecom.com
O1 - Hosts: 203.167.223.242 search.live.com
O1 - Hosts: 146.171.18.242 www.telecom.co.nz
O1 - Hosts: 208.67.219.137 www.trademe
O1 - Hosts: 202.21.128.2 www.trademe.co.nz
O1 - Hosts: 72.51.27.51 www.trademe.com
O1 - Hosts: 203.57.145.4 secure.trademe.co.nz
O1 - Hosts: 208.67.219.137 airnz
O1 - Hosts: 198.145.117.105 www.pheedo.com
O1 - Hosts: 202.55.96.55 www.buzzchannel.co.nz
O1 - Hosts: 202.55.96.55 www.buzzthepeople.co.nz
O1 - Hosts: 203.97.79.130 survey.cbrak.co.nz
O1 - Hosts: 208.67.219.137 trademe
O1 - Hosts: 209.10.222.100 ad2.adecn.com
O1 - Hosts: 74.6.146.119 search.yahoo.com
O1 - Hosts: 64.22.99.76 canepmedia.com
O1 - Hosts: 76.13.208.11 adserving.cpxinteractive.com
O1 - Hosts: 65.55.196.250 account.live.com
O1 - Hosts: 65.55.162.252 help.live.com
O1 - Hosts: 65.54.199.140 get.live.com
O1 - Hosts: 65.55.196.188 signup.live.com
O1 - Hosts: 65.55.159.254 home.live.com
O1 - Hosts: 207.46.30.24 www.live.com
O1 - Hosts: 202.49.173.63 www.therock.net.nz
O1 - Hosts: 202.43.220.99 hk.yahoo.com
O1 - Hosts: 202.43.220.41 hk.finance.yahoo.com
O1 - Hosts: 124.108.104.217 hk.news.yahoo.com
O1 - Hosts: 202.27.187.187 www.ezibuy.co.nz
O1 - Hosts: 208.75.184.16 bebo.com
O1 - Hosts: 203.167.223.234 as.casalemedia.com
O1 - Hosts: 130.94.250.30 leo.tickle.com
O1 - Hosts: 72.14.253.104 www.google.com
O1 - Hosts: 202.191.42.62 www.dunstan.school.nz
O1 - Hosts: 65.55.187.206 runonce.msn.com
O1 - Hosts: 17.251.200.32 www.apple.com
O1 - Hosts: 216.73.87.48 fls.doubleclick.net
O1 - Hosts: 203.167.223.242 appldnld.apple.com.edgesuite.net
O1 - Hosts: 17.254.2.134 swdlp.apple.com
O1 - Hosts: 64.13.133.17 www.paloaltodailynews.com
O1 - Hosts: 208.72.33.133 profile.imeem.com
O1 - Hosts: 208.72.33.133 maka3000.imeem.com
O1 - Hosts: 216.239.113.172 www.gamespot.com
O1 - Hosts: 204.11.109.23 a.tribalfusion.com
O1 - Hosts: 216.239.116.64 bwp.gamespot.com
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: TweakMASTER PRO Component - {7DAAC7DE-9EF0-4FF0-BFA5-AFF3E899054C} - C:\PROGRA~1\TWEAKM~1\TweakBHO.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Flashget] C:\Program Files\FlashGet\FlashGet.exe /min
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\sisUSBrg.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Add to &LinkFox - res://C:\PROGRA~1\TWEAKM~1\TweakBHO.dll/IESCRIPT
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: Money Viewer - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.mi...b?1190957495249
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.mi...b?1190957480639
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zon...er.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopet...v/GoPetsWeb.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WBSrv - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: MgiSvr - Unknown owner - C:\Program Files\ArcSoft\Magic-i 3\uMgiSvr.exe (file missing)
O23 - Service: MpService - Canon Inc. - C:\Program Files\Canon\MultiPASS4\MPSERVIC.EXE
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe

as i was scanning it came up with a few error messages

    Advertisements

Register to Remove

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users