Your Ad Here

Monday, March 30, 2009

Please Check My HijackThis Log

I think i have adware somewhere in my computer because everytime i open a page i get a pop-up

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:11:55 PM, on 3/29/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32csrss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesO2Micro Flash Memory Card Drivero2flash.exe
C:WINDOWSsystem32PSIService.exe
E:Program FilesSpyware DoctorpctsAuxs.exe
E:Program FilesSpyware DoctorpctsSvc.exe
C:Program FilesMicrosoftSearch Enhancement PackSeaPortSeaPort.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32wltrysvc.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32rundll32.exe
C:WINDOWSSystem32alg.exe
C:Program FilesANIANIWZCS2 ServiceWZCSLDR2.exe
C:WINDOWSSystem32bcmwltry.exe
C:Program FilesD-LinkD-Link Wireless G DWA-110AirGCFG.exe
C:Program FilesJavajre1.5.0_01binjusched.exe
C:Program FilesATI TechnologiesATI Control Panelatiptaxx.exe
C:Program FilesCommon FilesRealUpdate_OBrealsched.exe
C:WINDOWSsystem32carpserv.exe
E:Program FilesSpyware DoctorpctsTray.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesShareaza ApplicationsShareazaShareaza.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Program FilesWindows LiveContactswlcomm.exe
E:Program FilesuTorrentuTorrent.exe
E:Program FilesmIRCmirc.exe
E:Program FilesSpyware DoctorpctsGui.exe
C:Program FilesWindows LiveToolbarwltuser.exe
C:Program FilesTrend MicroHijackThisHijackThis.exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.ggames.com.br
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: (no name) - {C2BA40A2-74F3-42BD-F434-2604812C8954} - (no file)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:Program FilesWindows LiveToolbarwltcore.dll
O4 - HKLM..Run: [ANIWZCS2Service] C:Program FilesANIANIWZCS2 ServiceWZCSLDR2.exe
O4 - HKLM..Run: [D-Link D-Link Wireless G DWA-110] C:Program FilesD-LinkD-Link Wireless G DWA-110AirGCFG.exe
O4 - HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavajre1.5.0_01binjusched.exe
O4 - HKLM..Run: [ATIPTA] C:Program FilesATI TechnologiesATI Control Panelatiptaxx.exe
O4 - HKLM..Run: [TkBellExe] "C:Program FilesCommon FilesRealUpdate_OBrealsched.exe" -osboot
O4 - HKLM..Run: [CARPService] carpserv.exe
O4 - HKLM..Run: [LogonStudio] "C:Program FilesWinCustomizeLogonStudiologonstudio.exe" /RANDOM
O4 - HKLM..Run: [BootSkin Startup Jobs] "C:PROGRA~1StardockWINCUS~1BootSkinBootSkin.exe" /StartupJobs
O4 - HKLM..Run: [ISTray] "E:Program FilesSpyware DoctorpctsTray.exe"
O4 - HKCU..Run: [Uniblue RegistryBooster 2009] E:Program FilesUniblueRegistryBoosterRegistryBooster.exe /S
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [msnmsgr] "C:Program FilesWindows LiveMessengermsnmsgr.exe" /background
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:Program FilesInterVideoCommonBinWinCinemaMgr.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll
O9 - Extra Tools menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.5.0_01binnpjpi150_01.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra Tools menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra Tools menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra Tools menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O20 - AppInit_DLLs: fqxghn.dll nvqwtb.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:Program FilesANIANIWZCS2 ServiceANIWZCSdS.exe
O23 - Service: Background Intelligent Transfer Service (BITS) - Unknown owner - C:WINDOWS
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:Program FilesO2Micro Flash Memory Card Drivero2flash.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:WINDOWSsystem32PSIService.exe
O23 - Service: ReaConverter scheduler service (rcp_service) - ReaSoft - E:Program FilesReaConverter 5.5 Prorcp_scheduler.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - E:Program FilesSpyware DoctorpctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - E:Program FilesSpyware DoctorpctsSvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:WINDOWSSystem32wltrysvc.exe
O23 - Service: Automatic Updates (wuauserv) - Unknown owner - C:WINDOWS

--
End of file - 6162 bytes

Read More...
Your Ad Here

No comments: