Mobile/PDA About Us Advertise here
User User name Password  
  Not registered yet? Register here.
Lost your password? Click here. 		 
  Home   News   Guides   Downloads   Glossary   Hardware   Profiles   Forums   v4  
 Advertise at AfterDawn.com     Link to us!     Private messages     Compose a private message     List of all updated threads     Threads without replies     Search messages
Tuesday 4.3.2025 / 13:28
Search AfterDawn Forums:        In English   Suomeksi   På svenska
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > killer spyware "help please"
Show topics
 
Forums
Forums
Killer spyware "Help Please"
  Jump to:
 
Posted Message
jam9964
Newbie
_ 		26. February 2009 @ 20:10 _ Link to this message    Send private message to this user   
I have a killer virus that has slowed everything down and hijacks my browser, it will not let me run Malwarebytes. Ad-Aware and AVG does not find the problem.
Thanks for any help.

Heres my hijackthis file
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:00:09 PM, on 2/26/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\wltrysvc.exe
C:\WINNT\System32\bcmwltry.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINNT\system32\ccmsetup\ccmsetup.exe
C:\Program Files\PIPC\BIN\pilogsrv.exe
C:\Program Files\PIPC\BIN\pinetmgr.exe
C:\Program Files\Reflection\rtsserv.exe
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\PIPC\BIN\pimsgss.exe
C:\WINNT\system32\CCM\CcmExec.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\WINNT\system32\WLTRAY.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINNT\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\palmOne\Hotsync.exe
C:\Program Files\Apoint\Apntex.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13116&gct=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13116&gct=&gc=1&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedir...&gct=&gc=1&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://myip.ipaper.com/
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {56CD20F0-7C09-11D5-A768-0050042307CE} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: (no name) - {F9F1C4F8-F733-45AA-8F44-8DF0638F406F} - C:\WINNT\system32\bthc.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [Dell Wireless Manager UI] C:\WINNT\system32\WLTRAY
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Global Startup: HOTSYNCSHORTCUTNAME.lnk = C:\Program Files\palmOne\Hotsync.exe
O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://pw.bek.com (HKLM)
O15 - Trusted Zone: http://*.bna.com (HKLM)
O15 - Trusted Zone: http://*.cch.com (HKLM)
O15 - Trusted Zone: http://*.cicnet (HKLM)
O15 - Trusted Zone: http://www.covisint.com (HKLM)
O15 - Trusted Zone: http://*.fieont13 (HKLM)
O15 - Trusted Zone: http://ahdreports.ipaper.com (HKLM)
O15 - Trusted Zone: http://ahdts.ipaper.com (HKLM)
O15 - Trusted Zone: http://andro.ipaper.com (HKLM)
O15 - Trusted Zone: http://andront1.ipaper.com (HKLM)
O15 - Trusted Zone: http://andront2.ipaper.com (HKLM)
O15 - Trusted Zone: http://antestream.ipaper.com (HKLM)
O15 - Trusted Zone: http://cpippc.ipaper.com (HKLM)
O15 - Trusted Zone: http://demurrage.ipaper.com (HKLM)
O15 - Trusted Zone: http://eptrn01.ipaper.com (HKLM)
O15 - Trusted Zone: http://iis1.ipaper.com (HKLM)
O15 - Trusted Zone: http://ipbsims.ipaper.com (HKLM)
O15 - Trusted Zone: http://ipiisweb.ipaper.com (HKLM)
O15 - Trusted Zone: http://ipportal.ipaper.com (HKLM)
O15 - Trusted Zone: http://ipportal.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://ipwebdev.ipaper.com (HKLM)
O15 - Trusted Zone: http://ITRS.ipaper.com (HKLM)
O15 - Trusted Zone: http://legaladmin.ipaper.com (HKLM)
O15 - Trusted Zone: http://mycitrix.ipaper.com (HKLM)
O15 - Trusted Zone: http://mycitrix.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://mycitrixtest.ipaper.com (HKLM)
O15 - Trusted Zone: http://myipdev.ipaper.com (HKLM)
O15 - Trusted Zone: http://myipeprd.ipaper.com (HKLM)
O15 - Trusted Zone: http://myipiprd.ipaper.com (HKLM)
O15 - Trusted Zone: http://myipitest.ipaper.com (HKLM)
O15 - Trusted Zone: http://myipxtest.ipaper.com (HKLM)
O15 - Trusted Zone: http://mylearning.ipaper.com (HKLM)
O15 - Trusted Zone: http://nzaxpf0.natchezmill.ipaper.com (HKLM)
O15 - Trusted Zone: http://Oracle11i.ipaper.com (HKLM)
O15 - Trusted Zone: http://pip.ipaper.com (HKLM)
O15 - Trusted Zone: http://pit.ipaper.com (HKLM)
O15 - Trusted Zone: http://project.ipaper.com (HKLM)
O15 - Trusted Zone: http://project1.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://rcts.ipaper.com (HKLM)
O15 - Trusted Zone: http://rcts2005.ipaper.com (HKLM)
O15 - Trusted Zone: http://rrntabbspws1.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aathapp01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02acedev.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod02.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod03.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod04.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod05.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod06.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod07.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod08.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceprod09.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02acesbx.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02acetest.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceunmgd01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aceunmgd02.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aeatest01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aepd01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aepd01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aepdd01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aeppp01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aeppp01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aeppp02.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aeppp02.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aept01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aept01.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02aexdev.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02afip01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02ahelpivsprd.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02ataxp.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02ataxt.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02avmctxportal.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02avmctxportal.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02awesdev01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s02awiseiccp01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s0ddnotesinovar.ipaper.com (HKLM)
O15 - Trusted Zone: http://s0ddprofweb01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s26aapps01.ipaper.com (HKLM)
O15 - Trusted Zone: http://s26aapps02.ipaper.com (HKLM)
O15 - Trusted Zone: http://s26aweb1.ipaper.com (HKLM)
O15 - Trusted Zone: http://s337acq1.ipaper.com (HKLM)
O15 - Trusted Zone: http://s337acq1.na.ipaper.com (HKLM)
O15 - Trusted Zone: http://s38bap14.ipaper.com (HKLM)
O15 - Trusted Zone: http://s769ap08.ipaper.com (HKLM)
O15 - Trusted Zone: http://sapsbx04.ipaper.com (HKLM)
O15 - Trusted Zone: http://saptst09.ipaper.com (HKLM)
O15 - Trusted Zone: http://serverdb.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor01.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor02.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor03.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor04.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor05.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor06.ipaper.com (HKLM)
O15 - Trusted Zone: http://shor07.ipaper.com (HKLM)
O15 - Trusted Zone: http://svweb.ipaper.com (HKLM)
O15 - Trusted Zone: http://swahdts.ipaper.com (HKLM)
O15 - Trusted Zone: http://swcasedev.ipaper.com (HKLM)
O15 - Trusted Zone: http://swcaseprod.ipaper.com (HKLM)
O15 - Trusted Zone: http://swebustest2.ipaper.com (HKLM)
O15 - Trusted Zone: http://swleap.ipaper.com (HKLM)
O15 - Trusted Zone: http://swnapps03.ipaper.com (HKLM)
O15 - Trusted Zone: http://swnepad01.ipaper.com (HKLM)
O15 - Trusted Zone: http://swnepad02.ipaper.com (HKLM)
O15 - Trusted Zone: http://swprojecteval.ipaper.com (HKLM)
O15 - Trusted Zone: http://swtax.ipaper.com (HKLM)
O15 - Trusted Zone: http://swtaxdev.ipaper.com (HKLM)
O15 - Trusted Zone: http://swwid1.ipaper.com (HKLM)
O15 - Trusted Zone: http://techweb.ipaper.com (HKLM)
O15 - Trusted Zone: http://timber.ipaper.com (HKLM)
O15 - Trusted Zone: http://timberdev.ipaper.com (HKLM)
O15 - Trusted Zone: http://twis.ipaper.com (HKLM)
O15 - Trusted Zone: http://usd.ipaper.com (HKLM)
O15 - Trusted Zone: http://usdreports.ipaper.com (HKLM)
O15 - Trusted Zone: http://x769qalabserv.ipaper.com (HKLM)
O15 - Trusted Zone: http://*.ipaper.com (HKLM)
O15 - Trusted Zone: http://legalhrm.ipapr.com (HKLM)
O15 - Trusted Zone: http://*.IPBSIMS (HKLM)
O15 - Trusted Zone: http://*.ipportal (HKLM)
O15 - Trusted Zone: http://*.ITRS (HKLM)
O15 - Trusted Zone: http://www.marketingiq.com (HKLM)
O15 - Trusted Zone: http://*.mycitrix (HKLM)
O15 - Trusted Zone: http://*.mycitrixtest (HKLM)
O15 - Trusted Zone: http://*.myip (HKLM)
O15 - Trusted Zone: http://*.Oracle11i (HKLM)
O15 - Trusted Zone: http://*.peopleclick.com (HKLM)
O15 - Trusted Zone: http://*.s02acedev (HKLM)
O15 - Trusted Zone: http://*.s02aceprod01 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod02 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod03 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod04 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod05 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod06 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod07 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod08 (HKLM)
O15 - Trusted Zone: http://*.s02aceprod09 (HKLM)
O15 - Trusted Zone: http://*.s02acesbx (HKLM)
O15 - Trusted Zone: http://*.s02acetest (HKLM)
O15 - Trusted Zone: http://*.s02aeatest01 (HKLM)
O15 - Trusted Zone: http://*.s02aeppp01 (HKLM)
O15 - Trusted Zone: http://*.s02aeppp02 (HKLM)
O15 - Trusted Zone: http://*.s02aepsb01 (HKLM)
O15 - Trusted Zone: http://*.s02afip01 (HKLM)
O15 - Trusted Zone: http://*.s02ahelpivsprd (HKLM)
O15 - Trusted Zone: http://*.s02avmxpdxrfp (HKLM)
O15 - Trusted Zone: http://*.s02awebxprof (HKLM)
O15 - Trusted Zone: http://*.s02awesdev01 (HKLM)
O15 - Trusted Zone: http://*.s02axprofweb (HKLM)
O15 - Trusted Zone: http://*.s31csnow (HKLM)
O15 - Trusted Zone: http://*.s337acq1 (HKLM)
O15 - Trusted Zone: http://*.s337web02 (HKLM)
O15 - Trusted Zone: http://*.s519ap04 (HKLM)
O15 - Trusted Zone: http://*.s769ap03 (HKLM)
O15 - Trusted Zone: http://*.s769ap08 (HKLM)
O15 - Trusted Zone: http://*.saddlecrk.com (HKLM)
O15 - Trusted Zone: http://*.sartestream02 (HKLM)
O15 - Trusted Zone: http://*.serverdb (HKLM)
O15 - Trusted Zone: http://Oracle11i.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor01.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor02.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor03.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor04.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor05.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor06.shorepak.com (HKLM)
O15 - Trusted Zone: http://shor07.shorepak.com (HKLM)
O15 - Trusted Zone: http://*.smartforce.com (HKLM)
O15 - Trusted Zone: http://ip.softscape.com (HKLM)
O15 - Trusted Zone: http://*.stf.com (HKLM)
O15 - Trusted Zone: http://*.sts.com (HKLM)
O15 - Trusted Zone: http://*.svweb (HKLM)
O15 - Trusted Zone: http://*.swebustest2 (HKLM)
O15 - Trusted Zone: http://*.swweb01 (HKLM)
O15 - Trusted Zone: http://*.swwid1 (HKLM)
O15 - Trusted Zone: http://*.bna.tax.com (HKLM)
O15 - Trusted Zone: http://*.verticalnet.net (HKLM)
O15 - Trusted Zone: http://*.w00c1220 (HKLM)
O15 - Trusted Zone: http://*.windowsupdate.com (HKLM)
O15 - Trusted Zone: http://*.x519qalabserv1 (HKLM)
O15 - Trusted Zone: http://*.x769qalabserv1 (HKLM)
O15 - Trusted Zone: http://b2b.xpedx.com (HKLM)
O15 - Trusted Zone: http://fors.xpedx.com (HKLM)
O15 - Trusted Zone: http://*.xpedx.com (HKLM)
O15 - Trusted IP range: http://63.220.227.151 (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/28.30/uploader2.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = na.ipaper.com
O17 - HKLM\Software\..\Telephony: DomainName = na.ipaper.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = na.ipaper.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = NA.IPAPER.COM,IPAPER.COM,naipaper.com
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = na.ipaper.com
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = NA.IPAPER.COM,IPAPER.COM,naipaper.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = NA.IPAPER.COM,IPAPER.COM,naipaper.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINNT\SYSTEM32\avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINNT\system32\Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: PI-Buffer Server (bufserv) - OSI Software Inc. - C:\Program Files\PIPC\BIN\bufserv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: OracleClientCache80 - Unknown owner - C:\Oracle8\BIN\ONRSD80.EXE
O23 - Service: OracleOraHome81ClientCache - Unknown owner - C:\oracle\ora81\BIN\ONRSD.EXE
O23 - Service: PIPC Log Server (pilogsrv) - OSI Software - C:\Program Files\PIPC\BIN\pilogsrv.exe
O23 - Service: PI Message Subsystem (pimsgss) - OSI Software, Inc. - C:\Program Files\PIPC\BIN\pimsgss.exe
O23 - Service: PI Network Manager (pinetmgr) - OSI Software, Inc. - C:\Program Files\PIPC\BIN\pinetmgr.exe
O23 - Service: Reflection TimeSync - WRQ, Inc. - C:\Program Files\Reflection\rtsserv.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINNT\System32\wltrysvc.exe

--
End of file - 19769 bytes
[ + quote]
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > killer spyware "help please"
 

Digital video: AfterDawn.com | AfterDawn Forums
Music: MP3Lizard.com
Gaming: Blasteroids.com | Blasteroids Forums | Compare game prices
Software: Software downloads
Blogs: User profile pages
RSS feeds: AfterDawn.com News | Software updates | AfterDawn Forums
International: AfterDawn in Finnish | AfterDawn in Swedish | AfterDawn in Norwegian | download.fi
Navigate: Search | Site map
About us: About AfterDawn Ltd | Advertise on our sites | Rules, Restrictions, Legal disclaimer & Privacy policy
Contact us: Send feedback | Contact our media sales team
 
  © 1999-2025 by AfterDawn Ltd.

  IDG TechNetwork