Menu
Forum
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Gallery
New media
New comments
Search media
Members
Registered members
Current visitors
Classifieds Member Feedback
SHOP
Shop Head Units
Shop Amplifiers
Shop Speakers
Shop Subwoofers
Shop eBay Car Audio
Log in / Register
Forum
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
Log in / Join
What’s new
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Menu
Reply to thread
Forum
Off-topic Discussion
The Lounge
Trojan issue...
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="pwnt by pat" data-source="post: 2261510" data-attributes="member: 556604"><p>O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll</p><p></p><p>O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll</p><p></p><p>O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll</p><p></p><p>O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll</p><p></p><p>O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll</p><p></p><p>O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll</p><p></p><p>O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)</p><p></p><p>O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)</p><p></p><p>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL</p><p></p><p>O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe</p><p></p><p>O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe</p><p></p><p>O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe</p><p></p><p>O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll</p><p></p><p>O16 - DPF: {16095503-786F-4097-AED6-5D567A26D760} (SiS_OCX Control) - <a href="http://www.sis.com/ocis/SiSAutodetectNT.cab" target="_blank">http://www.sis.com/ocis/SiSAutodetectNT.cab</a></p><p></p><p>O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - <a href="https://cluster2.mcd.com/iNotes.cab" target="_blank">https://cluster2.mcd.com/iNotes.cab</a></p><p></p><p>O16 - DPF: {37DF41B2-61DB-4CAC-A755-CFB3C7EE7F40} (AOL Content Update) - <a href="http://esupport.aol.com/help/acp2/en...ach_core_1.cab" target="_blank">http://esupport.aol.com/help/acp2/en...ach_core_1.cab</a></p><p></p><p>O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - <a href="http://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab" target="_blank">http://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab</a></p><p></p><p>O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - <a href="http://aolcc.aol.com/computercheckup/qdiagcc.cab" target="_blank">http://aolcc.aol.com/computercheckup/qdiagcc.cab</a></p><p></p><p>O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - <a href="http://download.bitdefender.com/reso...an8/oscan8.cab" target="_blank">http://download.bitdefender.com/reso...an8/oscan8.cab</a></p><p></p><p>O16 - DPF: {665585FD-2068-4C5E-A6D3-53AC3270ECD4} (FileSharingCtrl Class) - <a href="http://appdirectory.messenger.msn.co...haringctrl.cab" target="_blank">http://appdirectory.messenger.msn.co...haringctrl.cab</a></p><p></p><p>O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - <a href="http://messenger.zone.msn.com/binary...t.cab31267.cab" target="_blank">http://messenger.zone.msn.com/binary...t.cab31267.cab</a></p><p></p><p>O16 - DPF: {A8683C98-5341-421B-B23C-8514C05354F1} (FujifilmUploader Class) - <a href="http://www.samsphotoclub.com/upload/...loadClient.cab" target="_blank">http://www.samsphotoclub.com/upload/...loadClient.cab</a></p><p></p><p>O16 - DPF: {D1ACD2D8-7312-4D06-BECD-90EB094D2277} - <a href="http://mediaplayer.walmart.com/installer/install.cab" target="_blank">http://mediaplayer.walmart.com/installer/install.cab</a></p><p></p><p>O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - <a href="http://a532.g.akamai.net/f/532/6712/.../installer.exe" target="_blank">http://a532.g.akamai.net/f/532/6712/.../installer.exe</a></p><p></p><p>O16 - DPF: {ED28050F-D713-43BA-A376-DCC5C35407D5} - <a href="https://music.msn.com/client/msnmusax2729.cab" target="_blank">https://music.msn.com/client/msnmusax2729.cab</a></p><p></p><p>O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - <a href="http://messenger.zone.msn.com/binary...n.cab31267.cab" target="_blank">http://messenger.zone.msn.com/binary...n.cab31267.cab</a></p><p></p><p>O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll</p><p></p><p>O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll</p><p></p><p>O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe</p><p></p><p>O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe</p><p></p><p>O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe</p><p></p><p>O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\mcshield.exe</p><p></p><p>O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\vstskmgr.exe</p><p></p><p>O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe</p><p></p><p>O23 - Service: NMSAccess - Unknown owner - C:\Program Files\Cheetah Burner\Cheetah DVD Burner\NMSAccess.exe</p><p></p><p>O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR1\RpcDataSrv.exe</p><p></p><p>O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR1\RpcSandraSrv.exe</p><p></p><p>O23 - Service: US30Service - Unknown owner - C:\Program Files\Universal Shield 4.0\US30Service.exe</p><p></p><p>O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe</p><p></p><p>also, uninstall mcafee. It flat out sucks; it's worse than norton. Also, if you have more than one antivirus, you can get data corruption and other various non-fun problems.</p><p></p><p>Finally, give this a run (in safe mode):</p><p></p><p><a href="http://noahdfear.geekstogo.com/click%20counter/click.php?id=1" target="_blank">http://noahdfear.geekstogo.com/click%20counter/click.php?id=1</a></p><p></p><p>download, extract, and run "runthis.bat"</p><p></p><p>Also, remember, it looks like you are removing almost everything, but a lot of that stuff you can keep, just getting rid of it will REALLY speed things up.</p><p></p><p>Finally, make sure you follow my step by step approach all the way through (skip hijack this step), when you get done with the last step, post another hijackthis log here.</p></blockquote><p></p>
[QUOTE="pwnt by pat, post: 2261510, member: 556604"] O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {16095503-786F-4097-AED6-5D567A26D760} (SiS_OCX Control) - [URL="http://www.sis.com/ocis/SiSAutodetectNT.cab"]http://www.sis.com/ocis/SiSAutodetectNT.cab[/URL] O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - [URL="https://cluster2.mcd.com/iNotes.cab"]https://cluster2.mcd.com/iNotes.cab[/URL] O16 - DPF: {37DF41B2-61DB-4CAC-A755-CFB3C7EE7F40} (AOL Content Update) - [URL="http://esupport.aol.com/help/acp2/en...ach_core_1.cab"]http://esupport.aol.com/help/acp2/en...ach_core_1.cab[/URL] O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - [URL="http://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab"]http://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab[/URL] O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - [URL="http://aolcc.aol.com/computercheckup/qdiagcc.cab"]http://aolcc.aol.com/computercheckup/qdiagcc.cab[/URL] O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - [URL="http://download.bitdefender.com/reso...an8/oscan8.cab"]http://download.bitdefender.com/reso...an8/oscan8.cab[/URL] O16 - DPF: {665585FD-2068-4C5E-A6D3-53AC3270ECD4} (FileSharingCtrl Class) - [URL="http://appdirectory.messenger.msn.co...haringctrl.cab"]http://appdirectory.messenger.msn.co...haringctrl.cab[/URL] O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - [URL="http://messenger.zone.msn.com/binary...t.cab31267.cab"]http://messenger.zone.msn.com/binary...t.cab31267.cab[/URL] O16 - DPF: {A8683C98-5341-421B-B23C-8514C05354F1} (FujifilmUploader Class) - [URL="http://www.samsphotoclub.com/upload/...loadClient.cab"]http://www.samsphotoclub.com/upload/...loadClient.cab[/URL] O16 - DPF: {D1ACD2D8-7312-4D06-BECD-90EB094D2277} - [URL="http://mediaplayer.walmart.com/installer/install.cab"]http://mediaplayer.walmart.com/installer/install.cab[/URL] O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - [URL="http://a532.g.akamai.net/f/532/6712/.../installer.exe"]http://a532.g.akamai.net/f/532/6712/.../installer.exe[/URL] O16 - DPF: {ED28050F-D713-43BA-A376-DCC5C35407D5} - [URL="https://music.msn.com/client/msnmusax2729.cab"]https://music.msn.com/client/msnmusax2729.cab[/URL] O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - [URL="http://messenger.zone.msn.com/binary...n.cab31267.cab"]http://messenger.zone.msn.com/binary...n.cab31267.cab[/URL] O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\vstskmgr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMSAccess - Unknown owner - C:\Program Files\Cheetah Burner\Cheetah DVD Burner\NMSAccess.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR1\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR1\RpcSandraSrv.exe O23 - Service: US30Service - Unknown owner - C:\Program Files\Universal Shield 4.0\US30Service.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe also, uninstall mcafee. It flat out sucks; it's worse than norton. Also, if you have more than one antivirus, you can get data corruption and other various non-fun problems. Finally, give this a run (in safe mode): [URL="http://noahdfear.geekstogo.com/click%20counter/click.php?id=1"]http://noahdfear.geekstogo.com/click%20counter/click.php?id=1[/URL] download, extract, and run "runthis.bat" Also, remember, it looks like you are removing almost everything, but a lot of that stuff you can keep, just getting rid of it will REALLY speed things up. Finally, make sure you follow my step by step approach all the way through (skip hijack this step), when you get done with the last step, post another hijackthis log here. [/QUOTE]
Insert quotes…
Verification
Post reply
Forum
Off-topic Discussion
The Lounge
Trojan issue...
Top
Menu
What's new
Forum list
