Member Panel

Remember me ?

Forgot password?   

Sponsors and Ads

Noticeboard
PC Forum PC Help Forum » Security & Safety » [Fixed] Hijackthis! Logs » [Pending] Win Anti Spyware 2007??? (really slow, + popups)

[Fixed] Hijackthis! Logs - [Pending] Win Anti Spyware 2007??? (really slow, + popups) posted in the Security & Safety forums; My computer is going very slow. I have a million popups, and something called "Win Anti Spyware 2007"... can someone please help me? Logfile of Trend Micro HijackThis v2.0.0 (BETA) ...

JOIN US NOW to remove these Ads

Post New Thread  Reply
  #1  
Old 08-27-2007
New Poster
  
Join Date: Aug 2007
Posts: 2
iidhaegn - See this Members User comments on their Profile page
Default [Pending] Win Anti Spyware 2007??? (really slow, + popups)
My computer is going very slow. I have a million popups, and something called "Win Anti Spyware 2007"... can someone please help me?

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 1:26:55 PM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\Ati2evxx.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\System32\svchost.exe
H:\WINDOWS\system32\spoolsv.exe
H:\WINDOWS\system32\Ati2evxx.exe
H:\WINDOWS\Explorer.EXE
H:\Program Files\Common Files\LightScribe\LSSrvc.exe
H:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
H:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
H:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
H:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
H:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
H:\Program Files\ATI Multimedia\main\ATIDtct.EXE
H:\WINDOWS\system32\rundll32.exe
H:\WINDOWS\system32\wscntfy.exe
H:\WINDOWS\svhost.exe
H:\WINDOWS\system32\swinpmdt.exe
H:\Program Files\Common Files\WinAntiSpyware 2007\WAS7Mon.exe
H:\Program Files\Messenger\msmsgs.exe
H:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
H:\PROGRA~1\COMMON~1\YSTEM3~1\wucrtupd.exe
H:\WINDOWS\F?nts\?hkdsk.exe
H:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
H:\WINDOWS\system32\ntvdm.exe
H:\WINDOWS\system32\wuauclt.exe
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Program Files\Internet Explorer\IEXPLORE.EXE
H:\Documents and Settings\Owner\Desktop\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Comcast.net
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Comcast.net
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Comcast
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = :0
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - H:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - H:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {57D6708C-88E2-4CAB-9FA4-78BB8CA3A3C4} - H:\WINDOWS\system32\pmnmkig.dll
O2 - BHO: 0 - {59A80B34-95BC-4E93-80AF-C9A591697CBE} - H:\Program Files\Messenger\ryciru776.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - H:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {6562cf99-e261-4255-92b8-6954b3d9edec} - H:\WINDOWS\system32\cknfcou.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {9DB0DA0C-42BE-6118-BD58-3676116003C6} - H:\WINDOWS\system32\qhe.dll
O2 - BHO: (no name) - {C5409798-47E6-412E-B1E6-0769BCE5B3E3} - H:\WINDOWS\system32\werwed.dll
O2 - BHO: (no name) - {CF46BFB3-2ACC-441b-B82B-36B9562C7FF1} - H:\WINDOWS\system32\yhwmakdp.dll
O2 - BHO: (no name) - {E2AE06FA-C93F-4BBE-A82A-4E89218DD1E9} - H:\WINDOWS\system32\ssqrr.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - H:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "H:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] H:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DVDTray] H:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
O4 - HKLM\..\Run: [RemoteControl] "H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ddoctorv2] "H:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ATIPTA] H:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATI DeviceDetect] H:\Program Files\ATI Multimedia\main\ATIDtct.EXE
O4 - HKLM\..\Run: [svhost] "H:\WINDOWS\svhost.exe"
O4 - HKLM\..\Run: [plite731] H:\WINDOWS\plite731.exe
O4 - HKLM\..\Run: [nixonoce] H:\Program Files\MSN\nixonoce22011.exe
O4 - HKLM\..\Run: [{BA-AA-AA-A8-ZN}] H:\WINDOWS\system32\lodsrngr.exe SKY002
O4 - HKLM\..\Run: [ExploreUpdSched] H:\WINDOWS\system32\swinpmdt.exe SKY002
O4 - HKLM\..\Run: [WinAntiSpyware 2007 Free] "H:\Program Files\WinAntiSpyware 2007\was7.exe" /min
O4 - HKLM\..\Run: [Salestart] "H:\Program Files\Common Files\WinAntiSpyware 2007\WAS7Mon.exe"
O4 - HKCU\..\Run: [MSMSGS] "H:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ATI Launchpad] "H:\Program Files\ATI Multimedia\main\launchpd.exe"
O4 - HKCU\..\Run: [ATI Remote Control] H:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - HKCU\..\Run: [WebBuying] H:\Program Files\Web Buying\v1.8.2\webbuying.exe
O4 - HKCU\..\Run: [WinPop] H:\Program Files\WinPop\winpop.exe
O4 - HKCU\..\Run: [Lhmd] "H:\PROGRA~1\COMMON~1\YSTEM3~1\wucrtupd.exe" -vt yazb
O4 - HKCU\..\Run: [Cmir] H:\WINDOWS\F?nts\?hkdsk.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "H:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - Startup: TA_Start.lnk = H:\WINDOWS\system32\lodsrngr.exe
O4 - Startup: Think-Adz.lnk = H:\WINDOWS\system32\swinpmdt.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://H:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - H:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - H:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/micr...?1184169068421
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1184168995109
O20 - Winlogon Notify: pmnmkig - H:\WINDOWS\SYSTEM32\pmnmkig.dll
O20 - Winlogon Notify: ssqrr - H:\WINDOWS\system32\ssqrr.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - Unknown owner - H:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - H:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Command Service (cmdService) - Unknown owner - H:\WINDOWS\RGFuaWVsIENlcGVkYQ\command.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - H:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: SupportSoft Sprocket Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc. - H:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - H:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)

--
End of file - 8013 bytes
  #2  
Old 08-27-2007
New Poster
  
Join Date: Aug 2007
Posts: 2
iidhaegn - See this Members User comments on their Profile page
Default Re: Win Anti Spyware 2007??? (really slow, + popups)
Wow. Please disregard this as I just saw the prework... I'm gonna' try and run all that first, then maybe repost this... Sorry...
  #3  
Old 08-28-2007
chiaz's Avatar
Senior Security Analyst
  
Join Date: Jun 2006
Location: Singapore
Posts: 2,712
PC Experience: PC Guru
chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page chiaz - See this Members User comments on their Profile page
Default Re: Win Anti Spyware 2007??? (really slow, + popups)
Sure thing.



Reply
Satellite TV on your PC - over 3000 Channels! Click Here!

Bookmarks

« [Pending] Error Messages after Zonealarm installation | [Pending] Scrutinize Please! Slow PC »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Contact Us - PC Help Forum - Site Map - Privacy Statement - Top
All times are GMT +1. The time now is 02:22 AM.
Powered by vBulletin
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0 RC7
All Graphics & Content Copyright © 2004-2008 - PC Help Forum.com


Back to Top