Menu
Forum
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Gallery
New media
New comments
Search media
Members
Registered members
Current visitors
Classifieds Member Feedback
SHOP
Shop Head Units
Shop Amplifiers
Shop Speakers
Shop Subwoofers
Shop eBay Car Audio
Log in / Register
Forum
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
Log in / Join
What’s new
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Menu
Reply to thread
Forum
Off-topic Discussion
The Lounge
Trojan issue...
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="pwnt by pat" data-source="post: 2259019" data-attributes="member: 556604"><p>R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll</p><p></p><p>F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\jfwid.exe</p><p></p><p>F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe,C:\WINDOWS\NT\nrcs.exe,taemnbx.exe</p><p></p><p>O3 - Toolbar: &amp;Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx</p><p></p><p>O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll</p><p></p><p>O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k</p><p></p><p>O4 - HKLM\..\Run: [ms032855790155] C:\WINDOWS\ms032855790155.exe</p><p></p><p>O4 - HKLM\..\Run: [ikte8f5f] RUNDLL32.EXE w00af0a8.dll,n 005e8f5a0000000300af0a8</p><p></p><p>O4 - HKLM\..\Run: [{EB-B2-2E-EE-ZN}] c:\windows\system32\oldsregl.exe GEN001</p><p></p><p>O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\System32\twinmpes.exe GEN001</p><p></p><p>O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe</p><p></p><p>O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background</p><p></p><p>O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe</p><p></p><p>O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe</p><p></p><p>O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twinmpes.exe</p><p></p><p>O4 - Global Startup: Adobe Gamma Loader.lnk = ?</p><p></p><p>O4 - Global Startup: kdsfj.exe</p><p></p><p>O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll</p><p></p><p>O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll</p><p></p><p>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL</p><p></p><p>O20 - AppInit_DLLs: dxclib303562752.dll</p><p></p><p>O20 - Winlogon Notify: H323TSP - C:\WINDOWS\system32\shrio800.dll</p><p></p><p>O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe</p><p></p><p>O23 - Service: COM+ System Service (DLLHOST) - Unknown owner - C:\WINDOWS\system\dllhost.exe</p><p></p><p>O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe</p><p></p><p>O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe</p><p></p><p>get rid of all of that</p><p></p><p>remember: <strong>do everything in safe mode</strong></p></blockquote><p></p>
[QUOTE="pwnt by pat, post: 2259019, member: 556604"] R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\jfwid.exe F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe,C:\WINDOWS\NT\nrcs.exe,taemnbx.exe O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [ms032855790155] C:\WINDOWS\ms032855790155.exe O4 - HKLM\..\Run: [ikte8f5f] RUNDLL32.EXE w00af0a8.dll,n 005e8f5a0000000300af0a8 O4 - HKLM\..\Run: [{EB-B2-2E-EE-ZN}] c:\windows\system32\oldsregl.exe GEN001 O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\System32\twinmpes.exe GEN001 O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twinmpes.exe O4 - Global Startup: Adobe Gamma Loader.lnk = ? O4 - Global Startup: kdsfj.exe O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O20 - AppInit_DLLs: dxclib303562752.dll O20 - Winlogon Notify: H323TSP - C:\WINDOWS\system32\shrio800.dll O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\SmltIEppbmdvemlhbg\command.exe O23 - Service: COM+ System Service (DLLHOST) - Unknown owner - C:\WINDOWS\system\dllhost.exe O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe get rid of all of that remember: [B]do everything in safe mode[/B] [/QUOTE]
Insert quotes…
Verification
Post reply
Forum
Off-topic Discussion
The Lounge
Trojan issue...
Top
Menu
What's new
Forum list
