BullGuard
 HomeLog InRegisterCommunity CalendarSearch the ForumView The Member ListHelp
Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)
   
BullGuard Antivirus Forum > BullGuard zone > BullGuard Trial users > Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)  
Forum Quick Jump
 
New Topic Post reply to : Virus, spyware, adware can not be clean or HEAL (Hijackthis.log) Printable version of : Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)
[ << Previous Thread | Next Thread >> ]

liliass
New Member


Date Joined Sep 2006
Total Posts : 2
 
   Posted 9/4/2006 5:04 PM (GMT +2)    Quote: Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)Alert an admin about: Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)
Logfile of HijackThis v1.99.1
Scan saved at 20:26:04, on 4/9/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\PANASO~1\LocalCom\lmsrvnt.exe
C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\ylive.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ntctl.exe
C:\PROGRA~1\阿裡巴巴\貿易通\AliTalk.EXE
C:\WINDOWS\System32\NOVAGSX.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\System32\CTFMDN.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\LSASS.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\NCLAUNCH.EXe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\MSNShell\BIN\MSNShell.exe
C:\WINDOWS\system32\QTRAYIME.exe
c:\Program Files\cleanx\cleanx.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\X-files\WinRAR.exe
C:\DOCUME~1\HOME\LOCALS~1\Temp\Rar$EX00.500\HijackThis.exe

R3 - URLSearchHook: 捇誥翑忒 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: CPub Object - {0CA51D02-7739-43EA-8D9A-1E8AD4327B03} - C:\Program Files\P4P\sodaie.dll (file missing)
O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - D:\X-files\FlashGet\Jccatch.dll
O2 - BHO: yPhtb - {33BBE430-0E42-4f12-B075-8D21ACB10DCB} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
O2 - BHO: AntiFish Class - {38928D50-8A48-44C2-945F-D2F23F771410} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
O2 - BHO: 捇誥翑忒 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: DragSearch BHO - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: 綠綠塭檜 罐夥 - {7FC17C50-6E1C-4533-9B86-D3B9C5B5EF5D} - C:\WINDOWS\System32\BBLIFE~1.DLL
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: KmePchec Class - {D903D9F0-4E8E-2008-E836-6823572F20F2} - C:\WINDOWS\DOWNLO~1\ujjmcieu.dll
O2 - BHO: Cleanx Class - {DC9D1549-8BA3-4476-B6EA-23E263570E93} - c:\Program Files\CleanX\cleanx.dll
O2 - BHO: WMHlprObj Class - {F5824EFB-728A-4726-A5A5-85A68B20EDC3} - C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: (no name) - {5F1ABCDB-A875-46c1-8345-000000002009} - (no file)
O3 - Toolbar: (no name) - {5F1ABCDB-A875-46c1-8345-000000007091} - (no file)
O3 - Toolbar: 收音機(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: 捇誥翑忒 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O3 - Toolbar: 綠綠塭檜 罐夥 - {7FC17C50-6E1C-4533-9B86-D3B9C5B5EF5D} - C:\WINDOWS\System32\BBLIFE~1.DLL
O4 - HKLM\..\Run: [NvCplDaemon] rem RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [KIWI] C:\WINDOWS\System32\ntctl.exe
O4 - HKLM\..\Run: [Alitalk] C:\PROGRA~1\阿裡巴巴\貿易通\AliTalk.EXE -hideframe
O4 - HKLM\..\Run: [Install Alitalk] C:\WINDOWS\temp\alitalk\alitalk.exe -hideframe
O4 - HKLM\..\Run: [RelevantKnowledge] c:\windows\system32\rlvknlg.exe -boot
O4 - HKLM\..\Run: [novags] NOVAGSX.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [PHIME2004C] C:\WINDOWS\System32\CTFMDN.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ToP] C:\WINDOWS\LSASS.exe
O4 - HKLM\..\RunServices: [CPQHotKeys] hotkeysvc.exe
O4 - HKLM\..\RunServices: [CTHelper] cthelper.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [cleanx] C:\Program Files\CleanX\cleanxup.exe -h
O4 - HKCU\..\Run: [BuddyBuddy] C:\Program Files\BuddyBuddy\BuddyBuddy\BuddyBuddy.exe
O4 - HKCU\..\Run: [MSNShell] C:\Program Files\MSNShell\BIN\MSNShell.exe autorun
O4 - HKCU\..\RunServices: [CPQHotKeys] hotkeysvc.exe
O4 - HKCU\..\RunServices: [CTHelper] cthelper.exe
O8 - Extra context menu item: 使用 FlashGet 下載 - D:\X-files\FlashGet\jc_link.htm
O8 - Extra context menu item: 全部使用 FlashGet 下載 - D:\X-files\FlashGet\jc_all.htm
O8 - Extra context menu item: 匯出至 Microsoft Excel(&X) - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: 氝樓善捇誥隆堐(&Y) - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT
O8 - Extra context menu item: 訪問通用網址 - C:\Program Files\CNNIC\Cdn\cnnic.htm
O8 - Extra context menu item: 設為 Messenger Live 頭像 - C:\Program Files\MSNShell\BIN\SetMSNDP.htm
O8 - Extra context menu item: 雅虎搜索 - res://C:\PROGRA~1\Yahoo!\Assistant\Assist\yasbar.dll/246
O9 - Extra button: MSN Shell 4 - {0713E8D2-850A-101B-AFC0-4210102A8DA7} - C:\Program Files\MSNShell\Bin\MSNShell.exe
O9 - Extra 'Tools' menuitem: MSN Shell 4 - {0713E8D2-850A-101B-AFC0-4210102A8DA7} - C:\Program Files\MSNShell\Bin\MSNShell.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java 主控台 - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: 中文上網 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra 'Tools' menuitem: 中文上網 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: 贗萼縈蝶 - {EC9679F6-42B7-4593-9E1C-AF421066C125} - http://www.cleanx.co.kr/redirect/redirect.php?from=toolbar (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
O11 - Options group: [CDNCLIENT] 中文上網
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://*.inicis.com
O15 - Trusted Zone: http://*.vpay.co.kr
O16 - DPF: Yahoo! Literati - http://download.games.yahoo.com/games/clients/y/tt4_x.cab
O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/poth_x.cab
O16 - DPF: {00001017-A15C-11D4-97A4-0050BF0FBE67} (NetmarbleStarter17 Class) - http://game.daum.netmarble.net/game/nmstar...NMStarter17.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {04E7BADF-F3B9-420D-B82D-8D8CADEFE4F9} (CyImage2Ctl Class) - http://cyimg6.cyworld.nate.com/ImageUpload...mageUpload2.cab
O16 - DPF: {05C1004E-2596-48E5-8E26-39362985EEB9} (MMCPlayer Class) - http://p3p.sogou.com/MMCShell.cab
O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} (NowStarter Control) - http://www.clubbox.co.kr/neo.fld/NowStarter.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {14C619D8-F4CD-48BB-A1A3-B0B431173756} (JuniorNaver & Hangok Music Control) - http://jr.naver.com/songbang/hanjrnaver.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {196300A5-09A2-4C9D-9B67-3A1F5168A025} (DSWC_IEGC Class) - http://www.ktf.co.kr/jlandsoft/DSWC.cab
O16 - DPF: {1D0B249B-16B1-450E-B7D7-FBBA50F7DEF4} - http://www.unsedosa.com/activex/icon03.cab
O16 - DPF: {1DE9BB01-B121-401D-8877-BCD5ED5B7EE5} (Tpwin Control) - http://www.crezio.com/test/leeyunho/AlwaysOn/AlwaysOn.CAB
O16 - DPF: {1EE59A7D-F863-4E86-A3D8-93183460B761} (difplayerctrl Class) - http://images.entoi.co.kr/control/DIFPLAYER.CAB
O16 - DPF: {207048D8-A40B-4505-AE24-92FF13BEB269} (myDancerCTL Class) - http://web.spaceillusion.com/help/myDancer1030.cab
O16 - DPF: {20AC97A6-EA84-437D-89F4-05EA923ADAD3} (RewardNetwork clxLauncher Class) - http://codebase.cleanx.co.kr/codebase/launcher/WScleanx.cab
O16 - DPF: {247D3068-ABDA-4A56-A48A-112183AC08B5} (GK_YH_Launcher Control) - http://kr.games.yahoo.com/GK_YH_Launcher.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/cha...v45/yacscom.cab
O16 - DPF: {2C197E55-080B-42A4-BFD0-9595B3534CF4} (KVPplugin00 Control) - https://www.vpay.co.kr/KVPplugin01.cab
O16 - DPF: {2F3E29F0-830D-448D-B8E4-0A072129BB77} (StartPage Control) - http://yescounter.com/StartPage.cab
O16 - DPF: {3AC7F64E-6154-47B0-82B5-764ED4077F77} (DataStorage Class) - http://txn.hkjc.com/BetSlip/object/HKJCSecKey.cab
O16 - DPF: {3AE77533-70C1-4EAD-AFF8-41660471600C} (CSpyDajaba Control) - http://www.spydajaba.com/activex/spydajabasetup.cab
O16 - DPF: {474AD63A-9B7E-40FE-8E4E-7067CC0F8D3D} (IB_OnAir.IBOnAir) - http://ionair.sbs.co.kr/onair/IB_OnAir.CAB
O16 - DPF: {48ECCD73-123C-4C25-A64C-76E8E8A30CAF} (XPayMPIOCX Control) - https://mpi.dacom.net/XPayMPI/Xecure_LiveUp..._XPayMPIOCX.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {51C99F40-9E0E-4BF1-A92A-77121CC01AD0} (IMBCClient Control) - http://touch.imbc.com/ocx/touch.cab
O16 - DPF: {5AF23F72-BCB5-4E44-AD5B-E752973FB08C} (BankPayNewCtrl Control) - http://www.bankpay.or.kr/BankPayNew.cab
O16 - DPF: {5C899971-E9D6-4496-8077-98378408E340} (MPControl Control) - http://mplay.sbs.co.kr/players/SBSiMPControl.cab
O16 - DPF: {5DAEF053-DEF0-4752-A963-CCE9B49B0B79} (Gogs Class) - http://bridge.item2.naver.com/music/cab/nbgm.cab
O16 - DPF: {63C2B634-4C7B-47CB-9242-CE38B9BE34D8} (SBSi OnAir 727 Talk Input ActiveX Control) - http://chat.sbs.co.kr/freeOnair/pMnb_TalkInOnair.cab
O16 - DPF: {63CEB8E2-06FA-4D79-99C9-F6D5B41CB640} (SpyCopInstallerVer3 Control) - http://spycop.co.kr/setup/activex_new/SpyC...stallerVer3.cab
O16 - DPF: {68219B01-D019-4028-8EC8-6E369AB59396} (SBSi OnAir Free ActiveX Control) - http://chat.sbs.co.kr/freeOnair/oafree.cab
O16 - DPF: {6BB52324-3DE4-4348-88A9-EDC3D4380550} (FSongSearch Control) - http://www.fsong.co.kr/_ocx/FSongOcx.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (趨勢科技線上掃毒程式) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab
O16 - DPF: {7606693A-C18D-4567-AF85-6194FF70761E} (GomWeb Control) - http://app.ipop.co.kr/gom/GomWeb.cab
O16 - DPF: {7A550C60-66BD-4B38-8A78-BA6324E25F43} (NeoInstallShield Class) - http://yahoocasual.nefficient.co.kr/yahooc...lShield/nis.cab
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {7E9FDB80-5316-11D4-B02C-00C04F0CD404} (XecureWeb 4.0 Client Control) - http://www.t-money.co.kr/XecureObject/xw_install.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab28177.cab
O16 - DPF: {90692186-4D2D-4DC9-AF3C-F283A1906606} (Downloader Class) - http://www.dicobox.com/include/plugin/UDSFTPDownloader.cab
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9/dmcc2.cab
O16 - DPF: {98A62E3F-A8C5-4EF0-8A00-C70CF9D18A89} (LoaderCore Class) - http://tb.sogou.com/DLLoader.cab
O16 - DPF: {9B75502C-BBED-4BBD-8FE2-822E5E0AD32C} (MagicLockOCX Control) - http://www.tvcf.co.kr/activx/Down_YZ/MagicLockOCX.cab
O16 - DPF: {9BDBC41E-C335-4263-83C0-ECE78EE28A33} (SysMonOCX Control) - http://ahnlabdownload.nefficient.co.kr/plu...yfirewall20.cab
O16 - DPF: {A0959B22-0249-4121-A5E1-6CE53DE0AB09} (MADanalCtrl Control) - http://www.ohdio.com/iPlayer/MADanalCtrl.cab
O16 - DPF: {A1832535-5218-42F9-8959-19E2BCABFABF} (INIwallet50 Control) - http://plugin.inicis.com/wallet50/INIwallet50.cab
O16 - DPF: {A2979615-DC81-4AE4-A153-912E3C227058} (Yahoo! 相簿輕鬆上載工具 Class) - http://us.dl1.yimg.com/download.yahoo.com/...ropper1_4hk.cab
O16 - DPF: {A5F3B5CF-A05F-479E-B684-13AA512A7B93} (YGLauncher Control) - http://kr.pubbase.yahoo.com/gamesetup/YGLauncher.cab
O16 - DPF: {AD906BA4-9679-4A50-94C6-D677526BB92A} (CyImageCtl Class) - http://cyimg2.cyworld.nate.com/ImageUpload/CyImageUpload.cab
O16 - DPF: {AEFD1FBF-F311-4A6F-A360-B5BCC74BE3EE} (SpriteCtrl Class) - http://jr.naver.com/game/dance/bin/Sprite.cab
O16 - DPF: {B005D02C-E461-4851-8A79-C7FDC8563C07} (BBNPort Class) - http://user.buddybuddy.co.kr/cab/BBNPort.cab
O16 - DPF: {B0B8796D-743E-41CF-83FC-09DAABE77D7D} (DIF_IMSCtrl Class) - http://hompy.chinesegamer.net/inc/DIF_IMS.cab
O16 - DPF: {B104A4D5-3D64-4D7A-A4F9-3E6B4A2D4E00} (SBSToolBar Control) - http://toolbar.sbs.co.kr/toolbar/SBSToolBar.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {B869F34A-A5AD-47B8-AC46-FF5A614F3D44} (MPIClient Control) - https://pg.innotg.com/mall/MPIClient.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BAC01377-73DD-4796-854D-2A8997E3D68A} (Yahoo! Photos Easy Upload Tool Class) - http://us.dl1.yimg.com/download.yahoo.com/...ropper1_4us.cab
O16 - DPF: {BD0FFB95-2589-419E-B605-A416900E7B0B} (IMBCDownload Control) - http://touch.imbc.com/ocx/iMBCDownload.ocx
O16 - DPF: {BDFAC325-5E75-4973-8558-6CB274C4A302} (axPhoneBG Control) - http://mobile.naver.com/phonedeco/character/PhoneBG.cab
O16 - DPF: {C044CD87-DFB0-4130-A5E4-49361106FBC8} (HanSetupCtrl1008 Class) - http://cdn.hangame.com/hangame/hansetup/HanSetup1008.cab
O16 - DPF: {C4662AFB-2596-4C42-8F56-A313C2823C0F} (WMLyrics Control) - http://www.mylisten.com/wmi/WMLyrics.cab
O16 - DPF: {CC32D4D8-2A0B-4CEB-B105-C9B968379105} (CGameManagerCtrl Object) - http://www.disney.go.com/games/downloads/g...GameManager.cab
O16 - DPF: {CD5DB70E-9969-45A5-9E45-5BAC1B2154F8} (ERADMStart.StartControl) - http://www.im.tv/bbstart.ocx
O16 - DPF: {CE15AEDF-19E1-462C-AF28-948A5C715571} (IBSnetHttpFileTransfer Control) - http://pmms.magicn.com/WebShot03/ActiveX/PhotoShot.cab
O16 - DPF: {D44C7CBF-FB35-41CF-8D6C-C0A2143EB46C} (Yessign3 Control) - http://www.yessign.or.kr/yessignCert/yessign3.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} (NPKCX Control) - https://acs.yescard.co.kr/npkcx/npkcx_inca.cab
O16 - DPF: {D711C9FB-B37A-49C3-8229-2F5F3641D6DB} (DigitalAria WideView Control) - http://activex.digitalaria.com/WVActiveX.cab
O16 - DPF: {D8798B2A-5EB1-424A-AB19-E38CFB69E295} (CywordMovieUp Control) - http://mptop.cyworld.nate.com/activex/CyworldMovieUp.cab
O16 - DPF: {D8F001C6-43B1-4CFD-9DAF-C8BEAE0E2B6D} (Touch Control) - http://touch.imbc.com/ocx/test/Online.cab
O16 - DPF: {D94A2D62-054C-48C2-8F25-21D1A347EB21} (Image Class) - http://pmms.magicn.com/WebShot03/ActiveX/PhotoShot.cab
O16 - DPF: {E08E0CF9-391D-420E-9B67-029DE4DF2DA8} (AOT.AlwaysOnTop) - http://www.ytn.co.kr/main/DigitalYTN.CAB
O16 - DPF: {E78928A6-3D2A-4BF7-A100-F3FBAA351B49} (KvpIspCtlD Control) - https://www.vpay.co.kr/kvpfiles/KVPISPCTLD.cab
O16 - DPF: {ED5896AC-7F1A-4095-87A8-08206DE7835C} (WingCtl Class) - http://web.spaceillusion.com/mysprite/install/Wings2.cab
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - http://www.gamespot.com/KDX22/download/kdx.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Gray_Pigeon_Server1.23 (GrayPigeonServer1.23) - Unknown owner - C:\WINDOWS\G_Server1.23.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Network Client - Unknown owner - C:\WINDOWS\system32\netcom.exe (file missing)
O23 - Service: New work (New Coections) - Unknown owner - C:\WINDOWS\system\svchost.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Panasonic Local Printer Service - Panasonic Communications Co., Ltd. - C:\PROGRA~1\PANASO~1\LocalCom\lmsrvnt.exe
O23 - Service: Panasonic Trap Monitor Service - Panasonic - C:\PROGRA~1\PANASO~1\TRAPMO~1\Trapmnnt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: windbs (Windows Database Control) - Unknown owner - C:\WINDOWS\System32\winxtc.exe" -service (file missing)
Back to Top
 
New Topic Post reply to : Virus, spyware, adware can not be clean or HEAL (Hijackthis.log) Printable version of : Virus, spyware, adware can not be clean or HEAL (Hijackthis.log)
 
Forum Information
Currently it is Saturday, November 22, 2014 6:48 PM (GMT +2)
There are a total of 60,769 posts in 13,349 threads.
In the last 3 days there were 0 new threads and 5 reply posts. View Active Threads
Who's Online
This forum has 36820 registered members. Please welcome our newest member, clairebutler.
6 Guest(s), 0 Registered Member(s) are currently online.  Details
5 Latest Threads
Will the problems never end? (4)11/21/2014 8:06:59 AM (Deb1957)
Bgscan parameters (4)11/20/2014 7:17:53 PM (janis)
Is there a future for the Forum? (4)11/19/2014 8:31:27 PM (Dickens)