Menu
Forum
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Gallery
New media
New comments
Search media
Members
Registered members
Current visitors
Classifieds Member Feedback
SHOP
Shop Head Units
Shop Amplifiers
Shop Speakers
Shop Subwoofers
Shop eBay Car Audio
Log in / Register
Forum
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
Log in / Join
What’s new
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Menu
Reply to thread
Forum
Off-topic Discussion
The Lounge
Trojan issue...
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="JimJ" data-source="post: 2258604" data-attributes="member: 555251"><p>Logfile of HijackThis v1.99.1</p><p></p><p>Scan saved at 11:23:30 PM, on 10/16/2006</p><p></p><p>Platform: Windows XP SP1 (WinNT 5.01.2600)</p><p></p><p>MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)</p><p></p><p>Running processes:</p><p></p><p>C:\WINDOWS\System32\smss.exe</p><p></p><p>C:\WINDOWS\system32\winlogon.exe</p><p></p><p>C:\WINDOWS\system32\services.exe</p><p></p><p>C:\WINDOWS\system32\lsass.exe</p><p></p><p>C:\WINDOWS\System32\Ati2evxx.exe</p><p></p><p>C:\WINDOWS\system32\svchost.exe</p><p></p><p>C:\WINDOWS\System32\svchost.exe</p><p></p><p>C:\WINDOWS\system32\spoolsv.exe</p><p></p><p>C:\WINDOWS\system32\rundll32.exe</p><p></p><p>C:\WINDOWS\system32\Ati2evxx.exe</p><p></p><p>C:\WINDOWS\Explorer.EXE</p><p></p><p>C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe</p><p></p><p>C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe</p><p></p><p>C:\WINDOWS\System32\twinmpes.exe</p><p></p><p>c:\windows\system32\oldsregl.exe</p><p></p><p>C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe</p><p></p><p>C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe</p><p></p><p>C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe</p><p></p><p>C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe</p><p></p><p>C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe</p><p></p><p>C:\WINDOWS\system\dllhost.exe</p><p></p><p>C:\Program Files\Network Monitor\netmon.exe</p><p></p><p>C:\WINDOWS\System32\svchost.exe</p><p></p><p>C:\WINDOWS\System32\wltrysvc.exe</p><p></p><p>C:\WINDOWS\System32\bcmwltry.exe</p><p></p><p>C:\Program Files\Internet Explorer\iexplore.exe</p><p></p><p>C:\Program Files\Grisoft\AVG Free\avgwb.dat</p><p></p><p>C:\Program Files\Opera\Opera.exe</p><p></p><p>C:\Documents and Settings\Jim Jingozian\Desktop\hijackthis\HijackThis.exe</p><p></p><p>R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll</p><p></p><p>F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\jfwid.exe</p><p></p><p>F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe,C:\WINDOWS\NT\nrcs.exe,taemnbx.exe</p><p></p><p>O3 - Toolbar: &amp;Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx</p><p></p><p>O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll</p><p></p><p>O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP</p><p></p><p>O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k</p><p></p><p>O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized</p><p></p><p>O4 - HKLM\..\Run: [ms032855790155] C:\WINDOWS\ms032855790155.exe</p><p></p><p>O4 - HKLM\..\Run: [ikte8f5f] RUNDLL32.EXE w00af0a8.dll,n 005e8f5a0000000300af0a8</p><p></p><p>O4 - HKLM\..\Run: [{EB-B2-2E-EE-ZN}] c:\windows\system32\oldsregl.exe GEN001</p><p></p><p>O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\System32\twinmpes.exe GEN001</p><p></p><p>O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe</p><p></p><p>O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background</p><p></p><p>O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe</p><p></p><p>O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe</p><p></p><p>O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twinmpes.exe</p><p></p><p>O4 - Global Startup: Adobe Gamma Loader.lnk = ?</p><p></p><p>O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe</p><p></p><p>O4 - Global Startup: kdsfj.exe</p><p></p><p>O8 - Extra context menu item: &amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm</p><p></p><p>O8 - Extra context menu item: E&amp;xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000</p><p></p><p>O8 - Extra context menu item: Yahoo! &amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm</p><p></p><p>O8 - Extra context menu item: Yahoo! &amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm</p><p></p><p>O8 - Extra context menu item: Yahoo! &amp;SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm</p><p></p><p>O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll</p><p></p><p>O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll</p><p></p><p>O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll</p><p></p><p>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL</p><p></p><p>O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe</p><p></p><p>O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll</p><p></p><p>O20 - AppInit_DLLs: dxclib303562752.dll</p><p></p><p>O20 - Winlogon Notify: H323TSP - C:\WINDOWS\system32\shrio800.dll</p><p></p><p>O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe</p><p></p><p>O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe</p><p></p><p>O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe</p><p></p><p>O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)</p><p></p><p>O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)</p><p></p><p>O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe</p><p></p><p>O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe</p><p></p><p>O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe</p><p></p><p>O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe</p><p></p><p>O23 - Service: COM+ System Service (DLLHOST) - Unknown owner - C:\WINDOWS\system\dllhost.exe</p><p></p><p>O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe</p><p></p><p>O23 - Service: Windows Vista/NT Runtime Compatibility Service (ntrcs) - Unknown owner - C:\WINDOWS\NT\nrcs.exe (file missing)</p><p></p><p>O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\dwmputz.exe</p><p></p><p>O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe</p></blockquote><p></p>
[QUOTE="JimJ, post: 2258604, member: 555251"] Logfile of HijackThis v1.99.1 Scan saved at 11:23:30 PM, on 10/16/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\WINDOWS\System32\twinmpes.exe c:\windows\system32\oldsregl.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe C:\WINDOWS\system\dllhost.exe C:\Program Files\Network Monitor\netmon.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\wltrysvc.exe C:\WINDOWS\System32\bcmwltry.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Grisoft\AVG Free\avgwb.dat C:\Program Files\Opera\Opera.exe C:\Documents and Settings\Jim Jingozian\Desktop\hijackthis\HijackThis.exe R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\jfwid.exe F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe,C:\WINDOWS\NT\nrcs.exe,taemnbx.exe O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [ms032855790155] C:\WINDOWS\ms032855790155.exe O4 - HKLM\..\Run: [ikte8f5f] RUNDLL32.EXE w00af0a8.dll,n 005e8f5a0000000300af0a8 O4 - HKLM\..\Run: [{EB-B2-2E-EE-ZN}] c:\windows\system32\oldsregl.exe GEN001 O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\System32\twinmpes.exe GEN001 O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twinmpes.exe O4 - Global Startup: Adobe Gamma Loader.lnk = ? O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: kdsfj.exe O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O20 - AppInit_DLLs: dxclib303562752.dll O20 - Winlogon Notify: H323TSP - C:\WINDOWS\system32\shrio800.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe O23 - Service: COM+ System Service (DLLHOST) - Unknown owner - C:\WINDOWS\system\dllhost.exe O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe O23 - Service: Windows Vista/NT Runtime Compatibility Service (ntrcs) - Unknown owner - C:\WINDOWS\NT\nrcs.exe (file missing) O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\dwmputz.exe O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe [/QUOTE]
Insert quotes…
Verification
Post reply
Forum
Off-topic Discussion
The Lounge
Trojan issue...
Top
Menu
What's new
Forum list
