Reply

Join Date: Sep 2004
Posts: 2
Reputation: idle is an unknown quantity at this point 
Solved Threads: 0
idle idle is offline Offline
Newbie Poster

please check the log

 
0
  #1
Sep 13th, 2004
I have a sales rep that having a spyware issue that i cannot remove. i know what it is but i cant remove it. adaware finds 4 files. 3 of them are sp.htm in the local temp folder.

Please let me know if there is anything to be removed thanks!

Logfile of HijackThis v1.97.7
Scan saved at 11:18:12 AM, on 9/13/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\Toshiba\Toshiba Applet\TMEPROP.exe
C:\Program Files\NavNT\vptray.exe
C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe
C:\Program Files\Replication Manager\Software\mstran40.exe
C:\Palm\HOTSYNC.EXE
C:\Lotus\Notes\NLNOTES.EXE
C:\Lotus\Notes\nhldaemn.EXE
C:\Documents and Settings\OllierR\Desktop\HiJackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
O2 - BHO: (no name) - {0258A4BA-0F8B-27DC-9D87-18C28F539EF9} - (no file)
O2 - BHO: (no name) - {041E440E-C6E5-4172-93E4-80F1A6A5844A} - (no file)
O2 - BHO: (no name) - {0517E9A6-081F-EB57-424A-3786909357E5} - C:\WINNT\system32\yrwhxywr.dll
O2 - BHO: (no name) - {05487F9A-F2F4-790E-610F-402D9B4C2EB4} - C:\WINNT\system32\iqkbrgkv.dll
O2 - BHO: (no name) - {06790F88-1447-ADC0-A223-0470A2860EAF} - C:\WINNT\system32\pgnfbzsn.dll
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06E61832-A7D2-E96E-82A4-232BAD2E5180} - (no file)
O2 - BHO: (no name) - {076C484E-712D-7D7A-11DB-EDBCE10FF105} - C:\WINNT\system32\swdcamzh.dll
O2 - BHO: (no name) - {07C4A95A-AC31-F912-60A0-C14D66135854} - (no file)
O2 - BHO: (no name) - {07F2A60C-792D-D904-1801-8D379D09C639} - C:\WINNT\system32\qnhhtbgc.dll (file missing)
O2 - BHO: (no name) - {0A0144C8-B688-6515-ABD5-BB8477D4032D} - (no file)
O2 - BHO: (no name) - {0A1062BA-0919-50AF-05DD-7C4E837D385B} - (no file)
O2 - BHO: (no name) - {0B82EE7E-A115-E65F-9526-E94284137A93} - C:\WINNT\system32\movznldz.dll
O2 - BHO: (no name) - {0CAFF552-2929-FD12-3BF4-A63FD8E09118} - C:\WINNT\system32\zasazknl.dll
O2 - BHO: (no name) - {0E35033F-9F82-3F3E-230E-8AF583521729} - C:\WINNT\system32\djefxsvp.dll
O2 - BHO: (no name) - {0E6D2BE6-7C3C-B1C2-CD8B-2FF4FA68D325} - C:\WINNT\system32\wwimmqst.dll
O2 - BHO: (no name) - {1029B3D8-91D5-C2F5-3CAA-B689F8BF01B4} - (no file)
O2 - BHO: (no name) - {102CE3A9-926C-9F1F-F91F-8D7EBCBE6BC5} - C:\WINNT\system32\xtxhjmlz.dll
O2 - BHO: (no name) - {105F342D-56F0-25DC-DF1E-FEF358083169} - C:\WINNT\system32\vrrswabd.dll
O2 - BHO: (no name) - {11141764-40C9-6389-25AA-D70365D4B959} - C:\WINNT\system32\dvfzplgk.dll
O2 - BHO: (no name) - {142E3FD9-1E5F-49C2-BB34-A5F6A1CE5B66} - C:\WINNT\system32\hzudnwxg.dll (file missing)
O2 - BHO: (no name) - {1AB71983-9816-010C-D046-094A5F66BA11} - (no file)
O2 - BHO: (no name) - {1EEEC18E-D356-9BCF-A50A-33E4FAD27279} - C:\WINNT\system32\fuvronsn.dll (file missing)
O2 - BHO: (no name) - {1FE1FADD-F06D-5B22-9DEB-7808A742AA2D} - (no file)
O2 - BHO: (no name) - {1FF60D39-5CCA-C10C-8B6D-74AC6A4D1B2E} - C:\WINNT\system32\vsugzfko.dll
O2 - BHO: (no name) - {224ABBFF-A28B-36BE-1E8E-65B1C5208BE1} - (no file)
O2 - BHO: (no name) - {27F007F0-4CD9-5D70-C624-F26F21475A9F} - (no file)
O2 - BHO: (no name) - {289AFFD2-5CC9-F706-59CF-1FCB23B8CAEC} - (no file)
O2 - BHO: (no name) - {2F45A270-DFAF-1693-3EE5-77FA22BFE887} - (no file)
O2 - BHO: (no name) - {3140348B-E9CC-610F-1438-614D1BF010EA} - C:\WINNT\system32\acbmsivo.dll
O2 - BHO: (no name) - {334B6F7B-F6D3-962E-3140-348BE9CC610F} - C:\WINNT\system32\gksafefw.dll
O2 - BHO: (no name) - {368D71D7-B3EA-4751-AAEB-CE550BC5AEF4} - C:\WINNT\system32\fbidskdr.dll
O2 - BHO: (no name) - {39AEC615-26F0-7EA4-BE0D-C8FDD0BEBF2E} - C:\WINNT\system32\idntigdw.dll
O2 - BHO: (no name) - {39CDEE8D-3067-4C3A-8631-60D2A9FAE038} - (no file)
O2 - BHO: (no name) - {3ACD2377-3108-B593-9496-B6037169CABD} - C:\WINNT\system32\jlqadenm.dll
O2 - BHO: (no name) - {3B53A723-1F8D-C64E-129A-A680F73FDEE2} - C:\WINNT\system32\itzbnucp.dll
O2 - BHO: (no name) - {3C336210-2BB6-6286-A2F1-244F6C58A991} - C:\WINNT\system32\ytynxmxg.dll
O2 - BHO: (no name) - {3CFC76BB-72BE-35F6-67C5-F243F726A9D8} - C:\WINNT\system32\tewgkzff.dll
O2 - BHO: (no name) - {3D335B39-8276-F4D3-C0DF-F793817A812D} - C:\WINNT\system32\msgedogy.dll
O2 - BHO: (no name) - {3DEA84E0-E031-6658-6BDD-9B13790F3F29} - C:\WINNT\system32\fxjtandd.dll
O2 - BHO: (no name) - {3E0ADF43-6B48-1D47-41E7-0B171A3B4A39} - C:\WINNT\system32\fmvavlnt.dll
O2 - BHO: (no name) - {407E0CC7-E659-79BA-3284-DD2C23120B40} - (no file)
O2 - BHO: (no name) - {42FE3057-B743-7BB2-8722-62550AAE281B} - (no file)
O2 - BHO: (no name) - {440249E7-0B3C-47CA-90CD-2C41415C8110} - C:\WINNT\system32\pbzbmoek.dll (file missing)
O2 - BHO: (no name) - {4490F698-50C7-E1C1-3BD2-E3C3D1328798} - C:\WINNT\system32\cirfaraj.dll (file missing)
O2 - BHO: (no name) - {4546D03B-F73F-64DD-52C5-E8056CE7F3DB} - C:\WINNT\system32\fjeivnjf.dll
O2 - BHO: (no name) - {465D7AB4-652A-34BE-4DE4-323166BBEF32} - C:\WINNT\system32\sqhkualy.dll
O2 - BHO: (no name) - {47C6D038-DADB-0810-BC50-C90734992F42} - C:\WINNT\system32\xlrptccz.dll
O2 - BHO: (no name) - {48ECDE19-E9A5-9963-13A9-5431BDCAFA59} - C:\WINNT\system32\kdaqnyau.dll
O2 - BHO: (no name) - {491D4039-AB6C-17E8-7A0B-274D83E7D7D2} - C:\WINNT\system32\swqbfnne.dll
O2 - BHO: (no name) - {4C34451F-637F-A934-0E04-8F821841AA1A} - (no file)
O2 - BHO: (no name) - {4DCB945E-1027-91E4-8FC1-687D9A91DF31} - (no file)
O2 - BHO: (no name) - {4E291C1C-3671-61B2-F854-EF3957DD7E33} - C:\WINNT\system32\tbrownjy.dll
O2 - BHO: (no name) - {51D76529-63F9-A6D7-C347-5B3552DB3355} - (no file)
O2 - BHO: (no name) - {52AE354D-3AF4-350D-2B3F-E29C5F59B9C5} - C:\WINNT\system32\oszezopb.dll
O2 - BHO: (no name) - {5506960E-363E-6CF8-13B9-02E182569650} - C:\WINNT\system32\dvbwuvqy.dll
O2 - BHO: (no name) - {56517AA1-AA14-8BFE-6B11-68B8F4E26E64} - C:\WINNT\system32\zcfyhtof.dll
O2 - BHO: (no name) - {57CCB083-6757-E55D-0258-A4BA0F8B27DC} - C:\WINNT\system32\wgjquoyj.dll
O2 - BHO: (no name) - {5A87515A-2E3F-188C-1D31-AF906BDB69D0} - C:\WINNT\system32\occjmwwz.dll (file missing)
O2 - BHO: (no name) - {5A9846A8-900A-2F5B-4A06-D63F70F4E02D} - C:\WINNT\system32\ttmrplqb.dll
O2 - BHO: (no name) - {5AF56341-4BBD-F70E-5974-72047CD284BE} - C:\WINNT\system32\pdkarjmy.dll
O2 - BHO: (no name) - {5B3EBA99-6E04-058A-2F76-CE8584BD4743} - C:\WINNT\system32\vqhkukxt.dll
O2 - BHO: (no name) - {5FE92717-F3B9-6480-61B3-59EE3F588238} - C:\WINNT\system32\lkowxbqp.dll
O2 - BHO: (no name) - {604E56C3-AE55-6817-2211-607E0DC181E7} - (no file)
O2 - BHO: (no name) - {6543CFF4-A850-5F78-850E-6829381CF195} - C:\WINNT\system32\ukfljyuh.dll
O2 - BHO: (no name) - {679D774C-E0F7-D24B-3B35-1C22FF6F37CC} - C:\WINNT\system32\zdzikyzm.dll
O2 - BHO: (no name) - {6AD0F695-EF40-E666-10B8-B5E408F3BEB9} - (no file)
O2 - BHO: (no name) - {6ADD345D-57DB-BDA7-630C-F6EDE87A0A77} - C:\WINNT\system32\zgywvmpx.dll (file missing)
O2 - BHO: (no name) - {6C13781B-5A88-5C9D-5374-F217BB8B46C1} - C:\WINNT\system32\cvzbbrns.dll
O2 - BHO: (no name) - {6D5D1B5C-8502-AB07-824F-B4D97D5E0B40} - (no file)
O2 - BHO: (no name) - {6D9BC5A7-9F55-B938-38F7-ADDAA0F77446} - C:\WINNT\system32\vauvpima.dll
O2 - BHO: (no name) - {6E4FB5FE-7C68-42C5-B8D3-2441E1DD9682} - (no file)
O2 - BHO: (no name) - {712D8B39-C72F-40B5-8D4F-E3BCA9DD5E7E} - (no file)
O2 - BHO: (no name) - {731AE4D3-3AC0-417D-D876-AAC4F63B8AFC} - C:\WINNT\system32\prohwifj.dll
O2 - BHO: (no name) - {7491EF61-A96A-5107-45C2-C9FEED6D58BD} - (no file)
O2 - BHO: (no name) - {75C28085-6FE5-4ADE-481A-AC986DC4A6D4} - (no file)
O2 - BHO: (no name) - {7666B585-BB6D-42DE-AF14-EB275E8DC8EA} - C:\WINNT\system32\bkinb.dll
O2 - BHO: (no name) - {78030490-B248-6AAB-3EC9-3E3C049E9A28} - C:\WINNT\system32\zgovmeaq.dll
O2 - BHO: (no name) - {78F93183-5C88-2BA3-C566-B6A80D4B39F2} - (no file)
O2 - BHO: (no name) - {79B18EA3-826B-3C91-3FD7-E4C2351F2C40} - C:\WINNT\system32\mvsfvefx.dll
O2 - BHO: (no name) - {79CA5BE8-D48D-7727-93CB-9A3E8C89DD2C} - C:\WINNT\system32\ftlgqflm.dll
O2 - BHO: (no name) - {7AF965FB-A5B0-C90D-15DA-40C43D0AEFC3} - C:\WINNT\system32\sipyyyqs.dll
O2 - BHO: (no name) - {7CC9DE10-1917-C5B0-0C67-0379F8D8D5B8} - C:\WINNT\system32\kbsfuoey.dll
O2 - BHO: (no name) - {7D3C411D-04F5-3847-6A55-13256CBCBC0D} - C:\WINNT\system32\clyllafc.dll
O2 - BHO: (no name) - {7DED4C6F-BB2C-A445-EBA8-39D7DD702CBA} - C:\WINNT\system32\jppfnmfe.dll
O2 - BHO: (no name) - {7E4915AE-A198-E544-79CD-8D7F0B30F3B8} - (no file)
O2 - BHO: (no name) - {7E497556-15C6-6DEA-01A7-6FC26AE379FD} - (no file)
O2 - BHO: (no name) - {80F8CB4B-0B6D-173D-544C-7721A45D6FB3} - C:\WINNT\system32\dhhajkag.dll
O2 - BHO: (no name) - {839DDCBB-B958-C04D-E50D-7F807CA7200F} - C:\WINNT\system32\mywwbota.dll (file missing)
O2 - BHO: (no name) - {83AC8B6C-7EE4-5B44-9091-B6030D7CA596} - C:\WINNT\system32\zypzhrhy.dll
O2 - BHO: (no name) - {8485F5D8-2654-D487-1574-90D88B7ADF0B} - C:\WINNT\system32\tslyvjjp.dll (file missing)
O2 - BHO: (no name) - {84BC391D-C470-F6BB-BB96-6D859DD22C1E} - C:\WINNT\system32\mfidwmdp.dll (file missing)
O2 - BHO: (no name) - {8550929D-8BB5-421A-7942-9E55BBEF4909} - C:\WINNT\system32\tdgflsla.dll
O2 - BHO: (no name) - {8A46F740-6EB5-8B65-E0C0-981694E4C83E} - C:\WINNT\system32\bdtbkidf.dll
O2 - BHO: (no name) - {8A7BDBFA-0954-1ED2-7DF2-0A1A64ED5E40} - C:\WINNT\system32\bayvuzcu.dll
O2 - BHO: (no name) - {8B514739-A893-479F-066C-7746C965FB2F} - C:\WINNT\system32\kafmxafh.dll
O2 - BHO: (no name) - {8C52D5C9-A680-94DF-E093-04DC380807D0} - C:\WINNT\system32\jscmsvkz.dll
O2 - BHO: (no name) - {8D1C0A40-0130-2DB6-F35E-EC01CA454C36} - C:\WINNT\system32\ueejacxv.dll
O2 - BHO: (no name) - {8E3AB021-B8C9-A75D-0F7F-5E98F74FD0AF} - (no file)
O2 - BHO: (no name) - {90334F9A-1DD2-6132-F4D8-858FBDA1F7BE} - C:\WINNT\system32\qbvkpjka.dll
O2 - BHO: (no name) - {938D8D0C-0985-55FE-33C5-FE46901D0955} - (no file)
O2 - BHO: (no name) - {93E9D31A-9A3C-54A2-86E7-F5F9DF9A9A6E} - C:\WINNT\system32\wdjmmrqf.dll
O2 - BHO: (no name) - {952E814B-9F56-EE9F-D95C-AD236A3D38D1} - (no file)
O2 - BHO: (no name) - {955D60C4-1325-698A-954B-827620D7075A} - C:\WINNT\system32\jkspaqzd.dll
O2 - BHO: (no name) - {960C6AD6-E3C8-BBEF-96D9-A9FC515898F1} - C:\WINNT\system32\pbsnimrc.dll
O2 - BHO: (no name) - {96E57C7B-7ED8-C370-55FE-62AA04EF6164} - C:\WINNT\system32\ytjdvybd.dll
O2 - BHO: (no name) - {974287C7-721B-2AA0-5047-4B55CBF1CAF0} - C:\WINNT\system32\jegmidof.dll
O2 - BHO: (no name) - {983D6255-4C4E-CD4F-D0E3-A087BF3FC206} - (no file)
O2 - BHO: (no name) - {9A12F715-F9DA-F090-AEB2-45C3B79D233D} - C:\WINNT\system32\mtquyitn.dll
O2 - BHO: (no name) - {9AE9FC1E-E2AC-1A04-2FBA-5847505EEBC8} - C:\WINNT\system32\fnxiqnaz.dll
O2 - BHO: (no name) - {9BF2CF70-BCBA-42E0-BA9D-7A7D47F39AB4} - (no file)
O2 - BHO: (no name) - {A2F20EBE-896F-4651-8C50-BE54A5C119DE} - (no file)
O2 - BHO: (no name) - {A407556D-ABE2-22C1-6944-DFE8D561B6BB} - (no file)
O2 - BHO: (no name) - {A787DA2D-9C76-1BBC-6B1E-2C2C9907E1E5} - (no file)
O2 - BHO: (no name) - {A7C8B9D0-5421-E745-BB78-A5E3CC0F5CD2} - C:\WINNT\system32\japxnacs.dll
O2 - BHO: (no name) - {A8479C25-E40B-CE7B-7ADB-90B7DC2C0456} - C:\WINNT\system32\gvnouruu.dll
O2 - BHO: (no name) - {A8E54741-1764-48CC-876E-7CA80E693F5D} - (no file)
O2 - BHO: (no name) - {A9E366C7-36FE-BF67-B912-60E08F6137E7} - C:\WINNT\system32\sscrdasz.dll
O2 - BHO: (no name) - {AA03C22A-C017-F656-109B-4EE4300D4378} - C:\WINNT\system32\tzoyyxco.dll
O2 - BHO: (no name) - {ACB75A7B-4E71-33BA-8DB6-7F1BDC4292C3} - C:\WINNT\system32\spaixhuq.dll
O2 - BHO: (no name) - {AD094DC0-9BCD-0AD8-A48F-BD93B555B32C} - C:\WINNT\system32\ddnyoxhw.dll
O2 - BHO: (no name) - {AF801892-91E3-E218-F475-46538AF5BECD} - C:\WINNT\system32\swbhjuqp.dll
O2 - BHO: (no name) - {AF8AAD5B-36AA-5B10-256C-4F49CBBCF218} - C:\WINNT\system32\jestwjqj.dll
O2 - BHO: (no name) - {AFC62399-6A0A-360A-D8D2-A075BBEAA46E} - C:\WINNT\system32\notqauql.dll
O2 - BHO: (no name) - {B028F69F-D038-43F3-A726-47F8A84543EC} - (no file)
O2 - BHO: (no name) - {B0426E3B-5114-9180-0D77-F7A7DA264B68} - (no file)
O2 - BHO: (no name) - {B1433188-BF30-641F-7029-3C4056DD9828} - C:\WINNT\system32\qocoklvl.dll
O2 - BHO: (no name) - {B1B99D43-4668-AC8C-1527-C4B7E8A8D514} - C:\WINNT\system32\qwbwmies.dll
O2 - BHO: (no name) - {B22D9FBE-F00C-4B2F-6A57-0C2E250DEE4D} - (no file)
O2 - BHO: (no name) - {B53B80C8-9D82-2BDE-615F-7E14F90F7880} - (no file)
O2 - BHO: (no name) - {B96CD8A1-FC66-256B-79B1-8EA3826B3C91} - C:\WINNT\system32\eidpbwyl.dll
O2 - BHO: (no name) - {BAAC47DA-1F9A-4B9C-55D2-073D5CD1EA0D} - C:\WINNT\system32\nmxuuadj.dll
O2 - BHO: (no name) - {BB8F1DD2-E571-1E87-9BCA-A883B905CA79} - C:\WINNT\system32\rptxporo.dll
O2 - BHO: (no name) - {BCD4CF67-50F3-49AE-A19D-B1053DA94621} - C:\WINNT\system32\xwzmnwgv.dll
O2 - BHO: (no name) - {BDF527DC-9AE3-6E97-8D2E-8272EBA63F30} - C:\WINNT\system32\btkawmbz.dll
O2 - BHO: (no name) - {BF3975DC-62B2-8E75-7AF9-65FBA5B0C90D} - C:\WINNT\system32\fwdgrdof.dll
O2 - BHO: (no name) - {BFB4DFA0-B013-5C74-B9C0-DF7B2DFCD64F} - C:\WINNT\system32\chhntivx.dll
O2 - BHO: (no name) - {C3CA0B8E-A75E-3405-25AB-567EA3D14911} - C:\WINNT\system32\tqxaawmi.dll
O2 - BHO: (no name) - {C4170177-B4AC-BFBE-574E-6EEADA2C082C} - C:\WINNT\system32\zdnebrvh.dll
O2 - BHO: (no name) - {C52E12DA-8AEC-0DBA-86EB-D3D1F7938369} - (no file)
O2 - BHO: (no name) - {C5C8451E-B87B-ABEA-E3A2-BC1A2E354E5A} - (no file)
O2 - BHO: (no name) - {C649EED6-3C0C-DD96-46CA-552EC8A6DB06} - C:\WINNT\system32\qusjgnsv.dll (file missing)
O2 - BHO: (no name) - {C7A4F38C-BDCC-BADA-51EF-2B21CBD7B6D4} - C:\WINNT\system32\ysfkijrp.dll
O2 - BHO: (no name) - {C857419B-8411-4EDB-B369-3C5561281137} - (no file)
O2 - BHO: (no name) - {CB6C0D2D-DC18-D137-16C6-211AF3C00C82} - C:\WINNT\system32\lzvrtist.dll
O2 - BHO: (no name) - {CDC8849F-3702-4728-CC3F-68D07DD92A21} - (no file)
O2 - BHO: (no name) - {CEA92606-1585-A089-6D3E-079F53766784} - (no file)
O2 - BHO: (no name) - {CED723B7-6281-017A-251E-D2898A6C56E9} - C:\WINNT\system32\hvlaqsmq.dll (file missing)
O2 - BHO: (no name) - {D7C431D8-3F45-CC53-EC3C-C446456BC01A} - C:\WINNT\system32\mzvttrhr.dll
O2 - BHO: (no name) - {D97EBE75-3328-7822-A83F-9A27720948FA} - (no file)
O2 - BHO: (no name) - {DA8E64DD-C680-E097-3565-0FB98B7F85A5} - C:\WINNT\system32\apyngixe.dll (file missing)
O2 - BHO: (no name) - {DABC6F61-798C-8C32-8AAB-09340FB77346} - (no file)
O2 - BHO: (no name) - {DE128516-B6EB-9CA2-630B-721A66DDADE9} - C:\WINNT\system32\chorbpej.dll
O2 - BHO: (no name) - {DF04A658-664C-4139-AA59-45D6AD2A8E6F} - C:\WINNT\system32\mcyhjycd.dll
O2 - BHO: (no name) - {DFB9AD3A-459F-3C51-3915-FA7D347D995C} - C:\WINNT\system32\zmqdpxwg.dll
O2 - BHO: (no name) - {E0F050A0-41C3-8543-A501-B608941E907C} - C:\WINNT\system32\xrmpsiug.dll (file missing)
O2 - BHO: (no name) - {E243E3B0-1FEC-AFBD-C2B9-CC5F0B57C56F} - (no file)
O2 - BHO: (no name) - {E39D735D-2CDB-7587-E7A1-D28C7A83D1D1} - C:\WINNT\system32\citwlthf.dll
O2 - BHO: (no name) - {E3ABF6B9-AC62-8732-55EA-4102A1CB5374} - (no file)
O2 - BHO: (no name) - {E4E92725-72C6-1D42-B657-2F8F3E7A7EC0} - (no file)
O2 - BHO: (no name) - {E51E3F8D-A6BC-53CC-939E-A8017DF57CAD} - C:\WINNT\system32\vcfkqneh.dll
O2 - BHO: (no name) - {E6B95643-58D8-67E0-4C71-B3E676CEDDA7} - (no file)
O2 - BHO: (no name) - {E6F7082F-1EBD-7B71-AD5F-22F3137C09F3} - (no file)
O2 - BHO: (no name) - {E7796B7F-ABA6-3D90-8D3B-7816816A7B42} - C:\WINNT\system32\iypglcon.dll (file missing)
O2 - BHO: (no name) - {E799834B-89D1-64DE-CBCC-06A903DEBC97} - C:\WINNT\system32\zycekkds.dll
O2 - BHO: (no name) - {E9D67FA4-4DED-E1DC-8FD8-C4A3646C1EF1} - C:\WINNT\system32\jcpacvzi.dll
O2 - BHO: (no name) - {EBECD78D-10CC-E874-6EB0-95015A01A967} - (no file)
O2 - BHO: (no name) - {F00BB913-C5C6-4AB0-8B0C-E0C32C8E6E62} - (no file)
O2 - BHO: (no name) - {F098C08C-AF76-02A0-29B1-6DC2D1575BB1} - C:\WINNT\system32\chqzmfkg.dll
O2 - BHO: (no name) - {F1239FB8-BBB0-E70D-3F79-0F0D5EA6F06D} - C:\WINNT\system32\dmvrcioz.dll
O2 - BHO: (no name) - {F35EEC01-CA45-4C36-1A64-C720FBB5E699} - C:\WINNT\system32\pyitltsq.dll
O2 - BHO: (no name) - {F683C68D-5EBF-B1A6-E878-58966255FA44} - C:\WINNT\system32\wpvbbmnm.dll
O2 - BHO: (no name) - {F9929C6A-5960-F2A6-7774-518112707EFD} - (no file)
O2 - BHO: (no name) - {FA05D554-FD62-DDC7-2587-DFBF6E1C2F87} - C:\WINNT\system32\fqeitmfh.dll
O2 - BHO: (no name) - {FAA9D56B-5026-E62C-A85C-C3C2343981C1} - C:\WINNT\system32\bjzjsqea.dll
O2 - BHO: (no name) - {FACE09F1-7CA3-677F-18CA-9E79DB393F22} - (no file)
O2 - BHO: (no name) - {FDB11812-5498-1E87-B8F5-C336C89BE8BD} - C:\WINNT\system32\yqcbgkse.dll
O2 - BHO: (no name) - {FDE941B9-3152-118C-63F3-67B5BFB0A63A} - C:\WINNT\system32\sdfjdqib.dll
O2 - BHO: (no name) - {FE1C04C9-1471-B8BE-DBE6-A6738F658DED} - C:\WINNT\system32\pbgrozwm.dll
O2 - BHO: (no name) - {FEE02225-A3BB-706E-B984-6A3DF99C7AD5} - C:\WINNT\system32\mfylpkyl.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: (no name) - {FB2961FD-DD24-4F8A-8A92-6F9325FF6F11} - (no file)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TMEPROP] C:\Program Files\Toshiba\Toshiba Applet\TMEPROP.exe -S
O4 - HKLM\..\Run: [JobHisInit] C:\Program Files\RMClient\JobHisInit.exe
O4 - HKLM\..\Run: [MplSetUp] C:\Program Files\RMClient\MplSetUp.exe
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\ORL\VNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
O4 - HKCU\..\Run: [Oaal] C:\Documents and Settings\OllierR\Application Data\aona.exe
O4 - HKCU\..\Run: [Quidtnkt] C:\WINNT\system32\umkwtl.exe
O4 - HKCU\..\Run: [monitor] monitor.exe
O4 - Startup: Shortcut to mstran40.lnk = C:\Program Files\Replication Manager\Software\mstran40.exe
O4 - Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com/templates/ieawsdc.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {11111111-1111-1111-1111-111111111171} - ms-its:mhtml:file://c:\nosuch.mht!http://list2004.com/help.chm::/help.exe
O16 - DPF: {12B574CE-A702-E7AD-358C-597D3BCEA9FA} (IEplugin Class) - http://www.mrketing.biz/IE_plugin.cab
O16 - DPF: {2253F320-AB68-4A07-917D-4F12D8884A06} (ChainCast VMR Client Proxy) - http://www.streamaudio.com/download/ccpm_0237.cab
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine) - http://office.microsoft.com/officeup...ntent/opuc.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {8D83D301-E841-11D1-B155-00600823BCF9} (WebLine Browser Integration Classes) - http://198.207.241.9/webline/applets/msie40x.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.co...936.1955208333
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/s...sh/swflash.cab
O16 - DPF: {E9F4DF12-E82E-4177-8B82-ED7355ED4362} (DownloadX Control) - http://j.cdrdev.com/wkrc/downloadX.ocx
O16 - DPF: {FB2961FD-DD24-4F8A-8A92-6F9325FF6F11} - http://www.supaseek.com/toolbar/toolbar.cab
Reply With Quote Quick reply to this message  
Join Date: Jun 2004
Posts: 253
Reputation: deonnanicole is an unknown quantity at this point 
Solved Threads: 13
deonnanicole deonnanicole is offline Offline
Posting Whiz in Training

Re: please check the log

 
0
  #2
Sep 13th, 2004
You could start by updating HijackThis to version 1.98.2 and posting a fresh log. It says you have run Adaware...have you also run Spybot Search & Destroy? If not, I would try that too, just to see if it picked up anything that Adaware didn't. Good luck!
Reply With Quote Quick reply to this message  
Join Date: Sep 2004
Posts: 2
Reputation: idle is an unknown quantity at this point 
Solved Threads: 0
idle idle is offline Offline
Newbie Poster

Re: please check the log

 
0
  #3
Sep 13th, 2004
Spybot has been ran on htis pc and finds nothing.

Logfile of HijackThis v1.98.2
Scan saved at 12:27:14 PM, on 9/13/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\NavNT\vptray.exe
C:\Palm\HOTSYNC.EXE
C:\Lotus\Notes\NLNOTES.EXE
C:\Lotus\Notes\nhldaemn.EXE
C:\WINNT\system32\taskmgr.exe
C:\PROGRA~1\LAVASOFT\AD-AWA~1\Ad-aware.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\OllierR\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
O2 - BHO: (no name) - {0258A4BA-0F8B-27DC-9D87-18C28F539EF9} - (no file)
O2 - BHO: (no name) - {041E440E-C6E5-4172-93E4-80F1A6A5844A} - (no file)
O2 - BHO: (no name) - {0517E9A6-081F-EB57-424A-3786909357E5} - C:\WINNT\system32\yrwhxywr.dll
O2 - BHO: (no name) - {05487F9A-F2F4-790E-610F-402D9B4C2EB4} - C:\WINNT\system32\iqkbrgkv.dll
O2 - BHO: (no name) - {06790F88-1447-ADC0-A223-0470A2860EAF} - C:\WINNT\system32\pgnfbzsn.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06E61832-A7D2-E96E-82A4-232BAD2E5180} - (no file)
O2 - BHO: (no name) - {076C484E-712D-7D7A-11DB-EDBCE10FF105} - C:\WINNT\system32\swdcamzh.dll
O2 - BHO: (no name) - {07C4A95A-AC31-F912-60A0-C14D66135854} - (no file)
O2 - BHO: (no name) - {07F2A60C-792D-D904-1801-8D379D09C639} - C:\WINNT\system32\qnhhtbgc.dll (file missing)
O2 - BHO: (no name) - {0A0144C8-B688-6515-ABD5-BB8477D4032D} - (no file)
O2 - BHO: (no name) - {0A1062BA-0919-50AF-05DD-7C4E837D385B} - (no file)
O2 - BHO: (no name) - {0B82EE7E-A115-E65F-9526-E94284137A93} - C:\WINNT\system32\movznldz.dll
O2 - BHO: (no name) - {0CAFF552-2929-FD12-3BF4-A63FD8E09118} - C:\WINNT\system32\zasazknl.dll
O2 - BHO: (no name) - {0E35033F-9F82-3F3E-230E-8AF583521729} - C:\WINNT\system32\djefxsvp.dll
O2 - BHO: (no name) - {0E6D2BE6-7C3C-B1C2-CD8B-2FF4FA68D325} - C:\WINNT\system32\wwimmqst.dll
O2 - BHO: (no name) - {1029B3D8-91D5-C2F5-3CAA-B689F8BF01B4} - (no file)
O2 - BHO: (no name) - {102CE3A9-926C-9F1F-F91F-8D7EBCBE6BC5} - C:\WINNT\system32\xtxhjmlz.dll
O2 - BHO: (no name) - {105F342D-56F0-25DC-DF1E-FEF358083169} - C:\WINNT\system32\vrrswabd.dll
O2 - BHO: (no name) - {11141764-40C9-6389-25AA-D70365D4B959} - C:\WINNT\system32\dvfzplgk.dll
O2 - BHO: (no name) - {142E3FD9-1E5F-49C2-BB34-A5F6A1CE5B66} - C:\WINNT\system32\hzudnwxg.dll (file missing)
O2 - BHO: (no name) - {1AB71983-9816-010C-D046-094A5F66BA11} - (no file)
O2 - BHO: (no name) - {1EEEC18E-D356-9BCF-A50A-33E4FAD27279} - C:\WINNT\system32\fuvronsn.dll (file missing)
O2 - BHO: (no name) - {1FE1FADD-F06D-5B22-9DEB-7808A742AA2D} - (no file)
O2 - BHO: (no name) - {1FF60D39-5CCA-C10C-8B6D-74AC6A4D1B2E} - C:\WINNT\system32\vsugzfko.dll
O2 - BHO: (no name) - {224ABBFF-A28B-36BE-1E8E-65B1C5208BE1} - (no file)
O2 - BHO: (no name) - {27F007F0-4CD9-5D70-C624-F26F21475A9F} - (no file)
O2 - BHO: (no name) - {289AFFD2-5CC9-F706-59CF-1FCB23B8CAEC} - (no file)
O2 - BHO: (no name) - {2F45A270-DFAF-1693-3EE5-77FA22BFE887} - (no file)
O2 - BHO: (no name) - {3140348B-E9CC-610F-1438-614D1BF010EA} - C:\WINNT\system32\acbmsivo.dll
O2 - BHO: (no name) - {334B6F7B-F6D3-962E-3140-348BE9CC610F} - C:\WINNT\system32\gksafefw.dll
O2 - BHO: (no name) - {368D71D7-B3EA-4751-AAEB-CE550BC5AEF4} - C:\WINNT\system32\fbidskdr.dll
O2 - BHO: (no name) - {39AEC615-26F0-7EA4-BE0D-C8FDD0BEBF2E} - C:\WINNT\system32\idntigdw.dll
O2 - BHO: (no name) - {39CDEE8D-3067-4C3A-8631-60D2A9FAE038} - (no file)
O2 - BHO: (no name) - {3ACD2377-3108-B593-9496-B6037169CABD} - C:\WINNT\system32\jlqadenm.dll
O2 - BHO: (no name) - {3B53A723-1F8D-C64E-129A-A680F73FDEE2} - C:\WINNT\system32\itzbnucp.dll
O2 - BHO: (no name) - {3C336210-2BB6-6286-A2F1-244F6C58A991} - C:\WINNT\system32\ytynxmxg.dll
O2 - BHO: (no name) - {3CFC76BB-72BE-35F6-67C5-F243F726A9D8} - C:\WINNT\system32\tewgkzff.dll
O2 - BHO: (no name) - {3D335B39-8276-F4D3-C0DF-F793817A812D} - C:\WINNT\system32\msgedogy.dll
O2 - BHO: (no name) - {3DEA84E0-E031-6658-6BDD-9B13790F3F29} - C:\WINNT\system32\fxjtandd.dll
O2 - BHO: (no name) - {3E0ADF43-6B48-1D47-41E7-0B171A3B4A39} - C:\WINNT\system32\fmvavlnt.dll
O2 - BHO: (no name) - {407E0CC7-E659-79BA-3284-DD2C23120B40} - (no file)
O2 - BHO: (no name) - {42FE3057-B743-7BB2-8722-62550AAE281B} - (no file)
O2 - BHO: (no name) - {440249E7-0B3C-47CA-90CD-2C41415C8110} - C:\WINNT\system32\pbzbmoek.dll (file missing)
O2 - BHO: (no name) - {4490F698-50C7-E1C1-3BD2-E3C3D1328798} - C:\WINNT\system32\cirfaraj.dll (file missing)
O2 - BHO: (no name) - {4546D03B-F73F-64DD-52C5-E8056CE7F3DB} - C:\WINNT\system32\fjeivnjf.dll
O2 - BHO: (no name) - {465D7AB4-652A-34BE-4DE4-323166BBEF32} - C:\WINNT\system32\sqhkualy.dll
O2 - BHO: (no name) - {47C6D038-DADB-0810-BC50-C90734992F42} - C:\WINNT\system32\xlrptccz.dll
O2 - BHO: (no name) - {48ECDE19-E9A5-9963-13A9-5431BDCAFA59} - C:\WINNT\system32\kdaqnyau.dll
O2 - BHO: (no name) - {491D4039-AB6C-17E8-7A0B-274D83E7D7D2} - C:\WINNT\system32\swqbfnne.dll
O2 - BHO: (no name) - {4C34451F-637F-A934-0E04-8F821841AA1A} - (no file)
O2 - BHO: (no name) - {4DCB945E-1027-91E4-8FC1-687D9A91DF31} - (no file)
O2 - BHO: (no name) - {4E291C1C-3671-61B2-F854-EF3957DD7E33} - C:\WINNT\system32\tbrownjy.dll
O2 - BHO: (no name) - {51D76529-63F9-A6D7-C347-5B3552DB3355} - (no file)
O2 - BHO: (no name) - {52AE354D-3AF4-350D-2B3F-E29C5F59B9C5} - C:\WINNT\system32\oszezopb.dll
O2 - BHO: (no name) - {5506960E-363E-6CF8-13B9-02E182569650} - C:\WINNT\system32\dvbwuvqy.dll
O2 - BHO: (no name) - {56517AA1-AA14-8BFE-6B11-68B8F4E26E64} - C:\WINNT\system32\zcfyhtof.dll
O2 - BHO: (no name) - {57CCB083-6757-E55D-0258-A4BA0F8B27DC} - C:\WINNT\system32\wgjquoyj.dll
O2 - BHO: (no name) - {5A87515A-2E3F-188C-1D31-AF906BDB69D0} - C:\WINNT\system32\occjmwwz.dll (file missing)
O2 - BHO: (no name) - {5A9846A8-900A-2F5B-4A06-D63F70F4E02D} - C:\WINNT\system32\ttmrplqb.dll
O2 - BHO: (no name) - {5AF56341-4BBD-F70E-5974-72047CD284BE} - C:\WINNT\system32\pdkarjmy.dll
O2 - BHO: (no name) - {5B3EBA99-6E04-058A-2F76-CE8584BD4743} - C:\WINNT\system32\vqhkukxt.dll
O2 - BHO: (no name) - {5FE92717-F3B9-6480-61B3-59EE3F588238} - C:\WINNT\system32\lkowxbqp.dll
O2 - BHO: (no name) - {604E56C3-AE55-6817-2211-607E0DC181E7} - (no file)
O2 - BHO: (no name) - {6543CFF4-A850-5F78-850E-6829381CF195} - C:\WINNT\system32\ukfljyuh.dll
O2 - BHO: (no name) - {679D774C-E0F7-D24B-3B35-1C22FF6F37CC} - C:\WINNT\system32\zdzikyzm.dll
O2 - BHO: (no name) - {6AD0F695-EF40-E666-10B8-B5E408F3BEB9} - (no file)
O2 - BHO: (no name) - {6ADD345D-57DB-BDA7-630C-F6EDE87A0A77} - C:\WINNT\system32\zgywvmpx.dll (file missing)
O2 - BHO: (no name) - {6C13781B-5A88-5C9D-5374-F217BB8B46C1} - C:\WINNT\system32\cvzbbrns.dll
O2 - BHO: (no name) - {6D5D1B5C-8502-AB07-824F-B4D97D5E0B40} - (no file)
O2 - BHO: (no name) - {6D9BC5A7-9F55-B938-38F7-ADDAA0F77446} - C:\WINNT\system32\vauvpima.dll
O2 - BHO: (no name) - {6E4FB5FE-7C68-42C5-B8D3-2441E1DD9682} - (no file)
O2 - BHO: (no name) - {712D8B39-C72F-40B5-8D4F-E3BCA9DD5E7E} - (no file)
O2 - BHO: (no name) - {731AE4D3-3AC0-417D-D876-AAC4F63B8AFC} - C:\WINNT\system32\prohwifj.dll
O2 - BHO: (no name) - {7491EF61-A96A-5107-45C2-C9FEED6D58BD} - (no file)
O2 - BHO: (no name) - {75C28085-6FE5-4ADE-481A-AC986DC4A6D4} - (no file)
O2 - BHO: (no name) - {7666B585-BB6D-42DE-AF14-EB275E8DC8EA} - C:\WINNT\system32\bkinb.dll
O2 - BHO: (no name) - {78030490-B248-6AAB-3EC9-3E3C049E9A28} - C:\WINNT\system32\zgovmeaq.dll
O2 - BHO: (no name) - {78F93183-5C88-2BA3-C566-B6A80D4B39F2} - (no file)
O2 - BHO: (no name) - {79B18EA3-826B-3C91-3FD7-E4C2351F2C40} - C:\WINNT\system32\mvsfvefx.dll
O2 - BHO: (no name) - {79CA5BE8-D48D-7727-93CB-9A3E8C89DD2C} - C:\WINNT\system32\ftlgqflm.dll
O2 - BHO: (no name) - {7AF965FB-A5B0-C90D-15DA-40C43D0AEFC3} - C:\WINNT\system32\sipyyyqs.dll
O2 - BHO: (no name) - {7CC9DE10-1917-C5B0-0C67-0379F8D8D5B8} - C:\WINNT\system32\kbsfuoey.dll
O2 - BHO: (no name) - {7D3C411D-04F5-3847-6A55-13256CBCBC0D} - C:\WINNT\system32\clyllafc.dll
O2 - BHO: (no name) - {7DED4C6F-BB2C-A445-EBA8-39D7DD702CBA} - C:\WINNT\system32\jppfnmfe.dll
O2 - BHO: (no name) - {7E4915AE-A198-E544-79CD-8D7F0B30F3B8} - (no file)
O2 - BHO: (no name) - {7E497556-15C6-6DEA-01A7-6FC26AE379FD} - (no file)
O2 - BHO: (no name) - {80F8CB4B-0B6D-173D-544C-7721A45D6FB3} - C:\WINNT\system32\dhhajkag.dll
O2 - BHO: (no name) - {839DDCBB-B958-C04D-E50D-7F807CA7200F} - C:\WINNT\system32\mywwbota.dll (file missing)
O2 - BHO: (no name) - {83AC8B6C-7EE4-5B44-9091-B6030D7CA596} - C:\WINNT\system32\zypzhrhy.dll
O2 - BHO: (no name) - {8485F5D8-2654-D487-1574-90D88B7ADF0B} - C:\WINNT\system32\tslyvjjp.dll (file missing)
O2 - BHO: (no name) - {84BC391D-C470-F6BB-BB96-6D859DD22C1E} - C:\WINNT\system32\mfidwmdp.dll (file missing)
O2 - BHO: (no name) - {8550929D-8BB5-421A-7942-9E55BBEF4909} - C:\WINNT\system32\tdgflsla.dll
O2 - BHO: (no name) - {8A46F740-6EB5-8B65-E0C0-981694E4C83E} - C:\WINNT\system32\bdtbkidf.dll
O2 - BHO: (no name) - {8A7BDBFA-0954-1ED2-7DF2-0A1A64ED5E40} - C:\WINNT\system32\bayvuzcu.dll
O2 - BHO: (no name) - {8B514739-A893-479F-066C-7746C965FB2F} - C:\WINNT\system32\kafmxafh.dll
O2 - BHO: (no name) - {8C52D5C9-A680-94DF-E093-04DC380807D0} - C:\WINNT\system32\jscmsvkz.dll
O2 - BHO: (no name) - {8D1C0A40-0130-2DB6-F35E-EC01CA454C36} - C:\WINNT\system32\ueejacxv.dll
O2 - BHO: (no name) - {8E3AB021-B8C9-A75D-0F7F-5E98F74FD0AF} - (no file)
O2 - BHO: (no name) - {90334F9A-1DD2-6132-F4D8-858FBDA1F7BE} - C:\WINNT\system32\qbvkpjka.dll
O2 - BHO: (no name) - {938D8D0C-0985-55FE-33C5-FE46901D0955} - (no file)
O2 - BHO: (no name) - {93E9D31A-9A3C-54A2-86E7-F5F9DF9A9A6E} - C:\WINNT\system32\wdjmmrqf.dll
O2 - BHO: (no name) - {952E814B-9F56-EE9F-D95C-AD236A3D38D1} - (no file)
O2 - BHO: (no name) - {955D60C4-1325-698A-954B-827620D7075A} - C:\WINNT\system32\jkspaqzd.dll
O2 - BHO: (no name) - {960C6AD6-E3C8-BBEF-96D9-A9FC515898F1} - C:\WINNT\system32\pbsnimrc.dll
O2 - BHO: (no name) - {96E57C7B-7ED8-C370-55FE-62AA04EF6164} - C:\WINNT\system32\ytjdvybd.dll
O2 - BHO: (no name) - {974287C7-721B-2AA0-5047-4B55CBF1CAF0} - C:\WINNT\system32\jegmidof.dll
O2 - BHO: (no name) - {983D6255-4C4E-CD4F-D0E3-A087BF3FC206} - (no file)
O2 - BHO: (no name) - {9A12F715-F9DA-F090-AEB2-45C3B79D233D} - C:\WINNT\system32\mtquyitn.dll
O2 - BHO: (no name) - {9AE9FC1E-E2AC-1A04-2FBA-5847505EEBC8} - C:\WINNT\system32\fnxiqnaz.dll
O2 - BHO: (no name) - {9BF2CF70-BCBA-42E0-BA9D-7A7D47F39AB4} - (no file)
O2 - BHO: (no name) - {A2F20EBE-896F-4651-8C50-BE54A5C119DE} - (no file)
O2 - BHO: (no name) - {A407556D-ABE2-22C1-6944-DFE8D561B6BB} - (no file)
O2 - BHO: (no name) - {A787DA2D-9C76-1BBC-6B1E-2C2C9907E1E5} - (no file)
O2 - BHO: (no name) - {A7C8B9D0-5421-E745-BB78-A5E3CC0F5CD2} - C:\WINNT\system32\japxnacs.dll
O2 - BHO: (no name) - {A8479C25-E40B-CE7B-7ADB-90B7DC2C0456} - C:\WINNT\system32\gvnouruu.dll
O2 - BHO: (no name) - {A8E54741-1764-48CC-876E-7CA80E693F5D} - (no file)
O2 - BHO: (no name) - {A9E366C7-36FE-BF67-B912-60E08F6137E7} - C:\WINNT\system32\sscrdasz.dll
O2 - BHO: (no name) - {AA03C22A-C017-F656-109B-4EE4300D4378} - C:\WINNT\system32\tzoyyxco.dll
O2 - BHO: (no name) - {ACB75A7B-4E71-33BA-8DB6-7F1BDC4292C3} - C:\WINNT\system32\spaixhuq.dll
O2 - BHO: (no name) - {AD094DC0-9BCD-0AD8-A48F-BD93B555B32C} - C:\WINNT\system32\ddnyoxhw.dll
O2 - BHO: (no name) - {AF801892-91E3-E218-F475-46538AF5BECD} - C:\WINNT\system32\swbhjuqp.dll
O2 - BHO: (no name) - {AF8AAD5B-36AA-5B10-256C-4F49CBBCF218} - C:\WINNT\system32\jestwjqj.dll
O2 - BHO: (no name) - {AFC62399-6A0A-360A-D8D2-A075BBEAA46E} - C:\WINNT\system32\notqauql.dll
O2 - BHO: (no name) - {B028F69F-D038-43F3-A726-47F8A84543EC} - (no file)
O2 - BHO: (no name) - {B0426E3B-5114-9180-0D77-F7A7DA264B68} - (no file)
O2 - BHO: (no name) - {B1433188-BF30-641F-7029-3C4056DD9828} - C:\WINNT\system32\qocoklvl.dll
O2 - BHO: (no name) - {B1B99D43-4668-AC8C-1527-C4B7E8A8D514} - C:\WINNT\system32\qwbwmies.dll
O2 - BHO: (no name) - {B22D9FBE-F00C-4B2F-6A57-0C2E250DEE4D} - (no file)
O2 - BHO: (no name) - {B53B80C8-9D82-2BDE-615F-7E14F90F7880} - (no file)
O2 - BHO: (no name) - {B96CD8A1-FC66-256B-79B1-8EA3826B3C91} - C:\WINNT\system32\eidpbwyl.dll
O2 - BHO: (no name) - {BAAC47DA-1F9A-4B9C-55D2-073D5CD1EA0D} - C:\WINNT\system32\nmxuuadj.dll
O2 - BHO: (no name) - {BB8F1DD2-E571-1E87-9BCA-A883B905CA79} - C:\WINNT\system32\rptxporo.dll
O2 - BHO: (no name) - {BCD4CF67-50F3-49AE-A19D-B1053DA94621} - C:\WINNT\system32\xwzmnwgv.dll
O2 - BHO: (no name) - {BDF527DC-9AE3-6E97-8D2E-8272EBA63F30} - C:\WINNT\system32\btkawmbz.dll
O2 - BHO: (no name) - {BF3975DC-62B2-8E75-7AF9-65FBA5B0C90D} - C:\WINNT\system32\fwdgrdof.dll
O2 - BHO: (no name) - {BFB4DFA0-B013-5C74-B9C0-DF7B2DFCD64F} - C:\WINNT\system32\chhntivx.dll
O2 - BHO: (no name) - {C3CA0B8E-A75E-3405-25AB-567EA3D14911} - C:\WINNT\system32\tqxaawmi.dll
O2 - BHO: (no name) - {C4170177-B4AC-BFBE-574E-6EEADA2C082C} - C:\WINNT\system32\zdnebrvh.dll
O2 - BHO: (no name) - {C52E12DA-8AEC-0DBA-86EB-D3D1F7938369} - (no file)
O2 - BHO: (no name) - {C5C8451E-B87B-ABEA-E3A2-BC1A2E354E5A} - (no file)
O2 - BHO: (no name) - {C649EED6-3C0C-DD96-46CA-552EC8A6DB06} - C:\WINNT\system32\qusjgnsv.dll (file missing)
O2 - BHO: (no name) - {C7A4F38C-BDCC-BADA-51EF-2B21CBD7B6D4} - C:\WINNT\system32\ysfkijrp.dll
O2 - BHO: (no name) - {C857419B-8411-4EDB-B369-3C5561281137} - (no file)
O2 - BHO: (no name) - {CB6C0D2D-DC18-D137-16C6-211AF3C00C82} - C:\WINNT\system32\lzvrtist.dll
O2 - BHO: (no name) - {CDC8849F-3702-4728-CC3F-68D07DD92A21} - (no file)
O2 - BHO: (no name) - {CEA92606-1585-A089-6D3E-079F53766784} - (no file)
O2 - BHO: (no name) - {CED723B7-6281-017A-251E-D2898A6C56E9} - C:\WINNT\system32\hvlaqsmq.dll (file missing)
O2 - BHO: (no name) - {D7C431D8-3F45-CC53-EC3C-C446456BC01A} - C:\WINNT\system32\mzvttrhr.dll
O2 - BHO: (no name) - {D97EBE75-3328-7822-A83F-9A27720948FA} - (no file)
O2 - BHO: (no name) - {DA8E64DD-C680-E097-3565-0FB98B7F85A5} - C:\WINNT\system32\apyngixe.dll (file missing)
O2 - BHO: (no name) - {DABC6F61-798C-8C32-8AAB-09340FB77346} - (no file)
O2 - BHO: (no name) - {DE128516-B6EB-9CA2-630B-721A66DDADE9} - C:\WINNT\system32\chorbpej.dll
O2 - BHO: (no name) - {DF04A658-664C-4139-AA59-45D6AD2A8E6F} - C:\WINNT\system32\mcyhjycd.dll
O2 - BHO: (no name) - {DFB9AD3A-459F-3C51-3915-FA7D347D995C} - C:\WINNT\system32\zmqdpxwg.dll
O2 - BHO: (no name) - {E0F050A0-41C3-8543-A501-B608941E907C} - C:\WINNT\system32\xrmpsiug.dll (file missing)
O2 - BHO: (no name) - {E243E3B0-1FEC-AFBD-C2B9-CC5F0B57C56F} - (no file)
O2 - BHO: (no name) - {E39D735D-2CDB-7587-E7A1-D28C7A83D1D1} - C:\WINNT\system32\citwlthf.dll
O2 - BHO: (no name) - {E3ABF6B9-AC62-8732-55EA-4102A1CB5374} - (no file)
O2 - BHO: (no name) - {E4E92725-72C6-1D42-B657-2F8F3E7A7EC0} - (no file)
O2 - BHO: (no name) - {E51E3F8D-A6BC-53CC-939E-A8017DF57CAD} - C:\WINNT\system32\vcfkqneh.dll
O2 - BHO: (no name) - {E6B95643-58D8-67E0-4C71-B3E676CEDDA7} - (no file)
O2 - BHO: (no name) - {E6F7082F-1EBD-7B71-AD5F-22F3137C09F3} - (no file)
O2 - BHO: (no name) - {E7796B7F-ABA6-3D90-8D3B-7816816A7B42} - C:\WINNT\system32\iypglcon.dll (file missing)
O2 - BHO: (no name) - {E799834B-89D1-64DE-CBCC-06A903DEBC97} - C:\WINNT\system32\zycekkds.dll
O2 - BHO: (no name) - {E9D67FA4-4DED-E1DC-8FD8-C4A3646C1EF1} - C:\WINNT\system32\jcpacvzi.dll
O2 - BHO: (no name) - {EBECD78D-10CC-E874-6EB0-95015A01A967} - (no file)
O2 - BHO: (no name) - {F00BB913-C5C6-4AB0-8B0C-E0C32C8E6E62} - (no file)
O2 - BHO: (no name) - {F098C08C-AF76-02A0-29B1-6DC2D1575BB1} - C:\WINNT\system32\chqzmfkg.dll
O2 - BHO: (no name) - {F1239FB8-BBB0-E70D-3F79-0F0D5EA6F06D} - C:\WINNT\system32\dmvrcioz.dll
O2 - BHO: (no name) - {F35EEC01-CA45-4C36-1A64-C720FBB5E699} - C:\WINNT\system32\pyitltsq.dll
O2 - BHO: (no name) - {F683C68D-5EBF-B1A6-E878-58966255FA44} - C:\WINNT\system32\wpvbbmnm.dll
O2 - BHO: (no name) - {F9929C6A-5960-F2A6-7774-518112707EFD} - (no file)
O2 - BHO: (no name) - {FA05D554-FD62-DDC7-2587-DFBF6E1C2F87} - C:\WINNT\system32\fqeitmfh.dll
O2 - BHO: (no name) - {FAA9D56B-5026-E62C-A85C-C3C2343981C1} - C:\WINNT\system32\bjzjsqea.dll
O2 - BHO: (no name) - {FACE09F1-7CA3-677F-18CA-9E79DB393F22} - (no file)
O2 - BHO: (no name) - {FDB11812-5498-1E87-B8F5-C336C89BE8BD} - C:\WINNT\system32\yqcbgkse.dll
O2 - BHO: (no name) - {FDE941B9-3152-118C-63F3-67B5BFB0A63A} - C:\WINNT\system32\sdfjdqib.dll
O2 - BHO: (no name) - {FE1C04C9-1471-B8BE-DBE6-A6738F658DED} - C:\WINNT\system32\pbgrozwm.dll
O2 - BHO: (no name) - {FEE02225-A3BB-706E-B984-6A3DF99C7AD5} - C:\WINNT\system32\mfylpkyl.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: (no name) - {FB2961FD-DD24-4F8A-8A92-6F9325FF6F11} - (no file)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TMEPROP] C:\Program Files\Toshiba\Toshiba Applet\TMEPROP.exe -S
O4 - HKLM\..\Run: [JobHisInit] C:\Program Files\RMClient\JobHisInit.exe
O4 - HKLM\..\Run: [MplSetUp] C:\Program Files\RMClient\MplSetUp.exe
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\ORL\VNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
O4 - HKCU\..\Run: [Oaal] C:\Documents and Settings\OllierR\Application Data\aona.exe
O4 - HKCU\..\Run: [Quidtnkt] C:\WINNT\system32\umkwtl.exe
O4 - HKCU\..\Run: [monitor] monitor.exe
O4 - Startup: Shortcut to mstran40.lnk = C:\Program Files\Replication Manager\Software\mstran40.exe
O4 - Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\system32\msjava.dll
O16 - DPF: {11111111-1111-1111-1111-111111111171} - ms-its:mhtml:file://c:\nosuch.mht!http://list2004.com/help.chm::/help.exe
O16 - DPF: {12B574CE-A702-E7AD-358C-597D3BCEA9FA} (IEplugin Class) - http://www.mrketing.biz/IE_plugin.cab
O16 - DPF: {2253F320-AB68-4A07-917D-4F12D8884A06} (ChainCast VMR Client Proxy) - http://www.streamaudio.com/download/ccpm_0237.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {8D83D301-E841-11D1-B155-00600823BCF9} (WebLine Browser Integration Classes) - http://198.207.241.9/webline/applets/msie40x.cab
O16 - DPF: {E9F4DF12-E82E-4177-8B82-ED7355ED4362} (DownloadX Control) - http://j.cdrdev.com/wkrc/downloadX.ocx
O16 - DPF: {FB2961FD-DD24-4F8A-8A92-6F9325FF6F11} - http://www.supaseek.com/toolbar/toolbar.cab
O18 - Filter: text/html - {F0E903A0-7605-4B94-BEB7-4E30A9AE0AB1} - C:\WINNT\system32\bkinb.dll
O18 - Filter: text/plain - {F0E903A0-7605-4B94-BEB7-4E30A9AE0AB1} - C:\WINNT\system32\bkinb.dll
Reply With Quote Quick reply to this message  
Reply

Quick Reply to Thread
This thread is more than three months old.
Perhaps start a new thread instead?
Message:



Similar Threads
Other Threads in the Viruses, Spyware and other Nasties Forum
Thread Tools Search this Thread



adware anti-malware anti-virussitesaccessissue antivirus attack audio avg backtoschoolspeech bar blackhat botnet botnets censorship china commercial commercials conficker connect control crosssitescripting cyber cybercrime cyberwarfare ddos domains e-mafia education email europe exam exploit facebook fake fancheckvirus gaming gumblar halloween herss.exe hijack hosting internet kaspersky legal logfiles mail malware mcafee mega-d messagelabs microsoft mobile nazi news obama onlinethreats paedophile panel parents patch phishing police policeprovirusmba-mblockedinternetaccess president privacy pro problem redirect redirecting reliability report research risk rogueantivirus samhain sans scareware school search security seopoisoning software spam spyware spywareexternalwindows7adminstratortrojans sqlinjection symantec trojan unwanted update usa virus viruses vista volume war warning windows worm yahoo zeroday
About Us | Contact Us | Advertise | DaniWeb | Acceptable Use Policy | RSS Feed

©2003 - 2009 DaniWeb® LLC