| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 77237 | 2007-03-03 05:28:00 | Urget Help Needed. | PedalSlammer (8511) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 529676 | 2007-03-03 05:28:00 | Urget Help Needed. Hey Guys, I think my computer being Hijacked. I tried running Search & Destroy and it shows this even I didn't touch anything except BitDefender V10 is scanning. img63.imageshack.us When I try to run some app. The whole system will get FROZEN and this is rarely happen on this PC. Specs: MOBO: Asus P4P800 SE CPU: P4 3.0Ghz with HT socket 775 HDD: 250GB Seagate HDD PATA MEM: Kingston ValueRAM 1GB DDR (400Mhz) PSU: AcBel 400W OEM OS: Windows XP Pro with SP2 What's the problem? Anyone? Am I being Hijacked? |
PedalSlammer (8511) | ||
| 529677 | 2007-03-03 05:41:00 | Run it in safe mode. Don't run anything else at the same time. Go away and leave it scanning and come back when its finished. And change that terrible power supply. |
pctek (84) | ||
| 529678 | 2007-03-03 05:45:00 | Run it in safe mode. Don't run anything else at the same time. Go away and leave it scanning and come back when its finished. And change that terrible power supply.Thanks I'll try to run it now. |
PedalSlammer (8511) | ||
| 529679 | 2007-03-03 05:49:00 | Err, just to let u know the P4P800 SE isn't 775 pin its 478 pin. Get one or all the files in my sig and run them. |
Speedy Gonzales (78) | ||
| 529680 | 2007-03-03 06:11:00 | Err, just to let u know the P4P800 SE isn't 775 pin its 478 pin. Get one or all the files in my sig and run them.Sorry I forgot that was 478 pin ZIF Socket on that MOBO. >Run in safemode: It run fine when I log in as administrator and scan it and found nothing. :groan: What is going on? And after I log in default login and start scanning it runs fine. Weird. But I can't make the CPU fan RPM lower still. Hijack log: Logfile of HijackThis v1.99.1 Scan saved at 7:06:51 PM, on 3/3/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\WINDOWS\System32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe C:\Program Files\ASUS\Ai Booster\OverClk.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Softwin\BitDefender10\bdmcon.exe C:\Program Files\iolo\System Mechanic Professional 6\SysMech6.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\Program Files\Azureus\Azureus.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\PC Auto Shutdown\AutoShutdown.exe C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe C:\DOCUME~1\Madness\LOCALS~1\Temp\Temporary Directory 1 for HijackThis.zip\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.chinaview.cn/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = www.i.com.ua O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: IEPlugin Class - {CF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\Advanced System Optimizer\IEHelper.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe O4 - HKLM\..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe 1 O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [Azureus.exe] C:\Program Files\Azureus\Azureus.exe O4 - HKLM\..\Run: [AutoShutdown.exe] C:\Program Files\PC Auto Shutdown\AutoShutdown.exe O4 - HKLM\..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1 O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {B9B2EE1A-E314-4338-A305-BE845EACB102} (CS Control) - www.taonline.com.my O17 - HKLM\System\CCS\Services\Tcpip\..\{F04439AC-0A3F-4145-BE90-6B110D098400}: NameServer = 210.55.67.224,202.27.158.40 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: IAA Event Monitor (IAANTMon) - Intel - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing) O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender10\vsserv.exe" /service (file missing) O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing) |
PedalSlammer (8511) | ||
| 529681 | 2007-03-03 06:25:00 | Unzip hijackthis before u run it again, put it in its own folder, then tick these entries and tick fix checked. Close browser/s. O4 - HKLM\..\Run: [AutoShutdown.exe] C:\Program Files\PC Auto Shutdown\AutoShutdown.exe - Do you need this? O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1 Why wld u want to lower the RPM of the fan? I would also get trojan remover in my sig below. Install, run it and click on scan. Then select the 3rd to 7th option in the utilities menu. I would also uninstall all versions of Sun Java, and get the update in my sig below. |
Speedy Gonzales (78) | ||
| 529682 | 2007-03-03 06:32:00 | Unzip hijackthis before u run it again, put it in its own folder, then tick these entries and tick fix checked. Close browser/s. O4 - HKLM\..\Run: [AutoShutdown.exe] C:\Program Files\PC Auto Shutdown\AutoShutdown.exe - Do you need this? O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1 Why wld u want to lower the RPM of the fan? I would also get trojan remover in my sig below. Install, run it and click on scan. Then select the 3rd to 7th option in the utilities menu. I would also uninstall all versions of Sun Java, and get the update in my sig below. Thanks a lot speedy. I need that Auto Shutdown anyway. By automatically turnning off the computer at the time being set. >lower the RPM of the CPU fan. When spywares and errors occur, my Intel 3.0Ghz with HT Stock fan seems to make a very loud noise. What fan should I get if I don't want a noisy fan? And when spywares are cleaned it spins back at normal speed and producing low noise again. |
PedalSlammer (8511) | ||
| 529683 | 2007-03-03 06:36:00 | When spywares and errors occur, my Intel 3.0Ghz with HT Stock fan seems to make a very loud noise. And who told u that? It sounds like a load of bollox. If u lower the RPM its liable to crash. Get trojan remover, and follow what I said in the previous post. |
Speedy Gonzales (78) | ||
| 529684 | 2007-03-03 06:49:00 | And who told u that? It sounds like a load of bollox. If u lower the RPM its liable to crash. Get trojan remover, and follow what I said in the previous post.Hey, I tested it myself. When the CPU spins around more than 5000rpm then I usually run Ad-Aware to clean nasty spywares. And the normal RPM is less 3,000rpm normally. And about trojan cleaner, It can't install it because of Error Code 33. |
PedalSlammer (8511) | ||
| 529685 | 2007-03-03 06:52:00 | Did u download all of trojan remover?? It didnt stop did it? I dont know what error 33 is. Did u tick the 2 entries I posted?? Try rebooting see what happens If u think u got all of trojan remover try to install it after u reboot. |
Speedy Gonzales (78) | ||
| 1 2 | |||||