Go Back   Cyber Tech Help Support Forums > Operating Systems > Older Windows Versions > Windows 98
Reload this Page Hijack This Log File
Register Blogs FAQ Calendar Search Today's Active Topics Mark Forums Read

Notices

Reply
 
Topic Tools
  #1  
Old March 28th, 2004, 11:44 PM
craigyh craigyh is offline
New Member
  
Join Date: Mar 2004
Posts: 1
Hijack This Log File
Hi,
I'm trying to help a friend clear up his problem with missing shortcut errors and ran hijack this on his computer yesterday. It would there are innumerable lines to fix. Rather that playing the Sorcerer's Apprentice (for once) I thought it best to seek advice and find out what to check off for fixing. My impression is that most of it should be checked off. Thank you very much for taking the time to help.

CraigyH

Logfile of HijackThis v1.97.7
Scan saved at 2:43:43 PM, on 3/27/04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\WEBSCANX.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE
C:\PROGRAM FILES\GRISOFT\AVG6\AVGSERV9.EXE
C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSSTAT.EXE
C:\PROGRAM FILES\COMET SYSTEMS\DM\BIN\DMSERVER.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\MOUSE\SYSTEM\EM_EXEC.EXE
C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\CPQEADM.EXE
C:\COMPAQ\INTERNET\CISRVR.EXE
C:\CPQS\BWTOOLS\BWTRAY.EXE
C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\AVCONSOL.EXE
C:\WINDOWS\SYSTEM\INTERNAT.EXE
C:\PROGRAM FILES\NTS\ENTERNET 300\APP\ENTERNET.EXE
C:\WINDOWS\SYSTEM\COMET\BIN\COMET.EXE
C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\BTTNSERV.EXE
C:\PROGRAM FILES\KAZAA\KAZAA.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\PROGRAM FILES\GRISOFT\AVG6\AVGCC32.EXE
C:\PROGRAM FILES\EZULA\MMOD.EXE
C:\PROGRAM FILES\REAL\REALJUKEBOX\TSYSTRAY.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\PROGRAM FILES\COMPAQ\ON-SCREEN DISPLAY\OSD.EXE
C:\CPQS\BACKWEB\PROGRAM\BACKWEB.EXE
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\OUTLOOK EXPRESS\MSIMN.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\HIJACKTHIS.EXE
C:\WINDOWS\PKHQFW7U.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =3D =
http://search.presario.net/scripts/r...edir.dll?c=3D=
2c99&s=3Dsearchbar&i=3Denc
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =3D =
http://search.presario.net/scripts/r...edir.dll?c=3D=
2c99&lc=3D1009&s=3Dsearch&i=3Denu
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =3D =
http://www.zestyfind.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =3D =
http://search.presario.net/scripts/r...edir.dll?c=3D=
2c99&lc=3D1009&s=3Dsearch&i=3Denu
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =3D =
http://search.presario.net/scripts/r...edir.dll?c=3D=
2c99&lc=3D1009&s=3Dsearch&i=3Denu
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =3D =
http://keyword.netscape.com/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet =
Settings,ProxyOverride =3D 127.0.0.1
N1 - Netscape 4: user_pref("browser.startup.homepage", =
"http://home.netscape.com/index.html"); (C:\Program =
Files\Sympatico\Users\ssnyder\prefs.js)
O2 - BHO: CSBHO - {D14D6793-9B65-11D3-80B6-00500487BDBA} - =
C:\WINDOWS\SYSTEM\COMET\BIN\CSBHO.DLL
O2 - BHO: (no name) - {1678F7E1-C422-11D0-AD7D-00400515CAAA} - =
C:\WINDOWS\SYSTEM\COMET.DLL
O2 - BHO: (no name) - {B549456D-F5D0-4641-BCED-8648A0C13D83} - =
C:\WINDOWS\BrowserHelper.dll
O2 - BHO: (no name) - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - =
C:\Program Files\NewDotNet\newdotnet6_10.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - =
C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [ScanRegistry] c:\windows\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [EM_EXEC] c:\mouse\system\em_exec.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\Compaq\Easy Access =
Button Support\cpqeadm.exe
O4 - HKLM\..\Run: [EACLEAN] C:\Program Files\Compaq\Easy Access Button =
Support\eaclean.exe
O4 - HKLM\..\Run: [Compaq Internet Setup] =
C:\Compaq\Internet\InetWizard.exe /RUN
O4 - HKLM\..\Run: [CISrvr Program] C:\COMPAQ\INTERNET\CISRVR.EXE
O4 - HKLM\..\Run: [Service Connection] c:\cpqs\bwtools\bwtray.exe
O4 - HKLM\..\Run: [AvconsoleEXE] C:\Program Files\Network =
Associates\McAfee VirusScan\avconsol.exe /minimize
O4 - HKLM\..\Run: [VsecomrEXE] C:\Program Files\Network =
Associates\McAfee VirusScan\VSECOMR.EXE
O4 - HKLM\..\Run: [VsStatEXE] C:\Program Files\Network Associates\McAfee =
VirusScan\VSSTAT.EXE /SHOWWARNING
O4 - HKLM\..\Run: [OEMCLEANUP] c:\windows\OPTIONS\oemreset.exe
O4 - HKLM\..\Run: [internat.exe] internat.exe
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\Run: [$EnterNet] C:\PROGRAM FILES\NTS\ENTERNET =
300\APP\EnterNet.exe -AutoStart
O4 - HKLM\..\Run: [CC2KUI] C:\WINDOWS\SYSTEM\Comet\Bin\comet.exe
O4 - HKLM\..\Run: [KAZAA] C:\PROGRAM FILES\KAZAA\KAZAA.EXE /SYSTRAY
O4 - HKLM\..\Run: [McAfeeWebScanX] C:\PROGRAM FILES\NETWORK =
ASSOCIATES\MCAFEE VIRUSSCAN\WebScanX.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe =
powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK =
ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE
O4 - HKLM\..\Run: [DM_Server] C:\PROGRA~1\COMETS~1\DM\BIN\DMSERVER.EXE =
/onreboot
O4 - HKLM\..\Run: [New.net Startup] rundll32 =
C:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup
O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\GRISOFT\AVG6\avgcc32.exe /STARTUP
O4 - HKLM\..\Run: [PKHQFW7U.EXE] C:\WINDOWS\PKHQFW7U.EXE /dk
O4 - HKLM\..\RunServices: [McAfeeWebScanX] C:\PROGRAM FILES\NETWORK =
ASSOCIATES\MCAFEE VIRUSSCAN\WebScanX.Exe /RUNSERVICES
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe =
powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK =
ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE
O4 - HKLM\..\RunServices: [Avgserv9.exe] =
C:\PROGRA~1\GRISOFT\AVG6\Avgserv9.exe
O4 - HKCU\..\Run: [eZmmod] C:\PROGRA~1\ezula\mmod.exe
O4 - HKCU\..\Run: [RealJukeboxSystray] C:\PROGRAM =
FILES\REAL\REALJUKEBOX\TSYSTRAY.EXE
O4 - HKCU\..\Run: [PKHQFW7U.EXE] C:\WINDOWS\PKHQFW7U.EXE /dk
O4 - HKLM\..\RunOnce: [DM_Install] C:\WINDOWS\TEMP\CSSTUB\DMUPDATE.EXE =
/runonce
O4 - Startup: hpoddt01.exe.lnk =3D C:\Program =
Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
O4 - Startup: hp instant support.lnk =3D C:\Program =
Files\Hewlett-Packard\hpis\bin\matcli.exe
O4 - Startup: hp psc 1000 series.lnk =3D C:\Program =
Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
O4 - Startup: MANDY1.lnk =3D C:\WINDOWS\mandy1.exe
O4 - Startup: HO1WV7JN.lnk =3D C:\WINDOWS\ho1wv7jn.exe
O4 - Startup: AREGON.lnk =3D C:\WINDOWS\aregon.exe
O4 - Startup: 6O7BLFOU.lnk =3D C:\WINDOWS\6o7blfou.exe
O4 - Startup: ARKD0WF0.lnk =3D C:\WINDOWS\arkd0wf0.exe
O4 - Startup: IM2G8Z9G.lnk =3D C:\WINDOWS\im2g8z9g.exe
O4 - Startup: 6V0GW87Z.lnk =3D C:\WINDOWS\0x2xaw2w.exe
O4 - Startup: W9CL7JGW.lnk =3D C:\WINDOWS\w9cl7jgw.exe
O4 - Startup: TR0VJ9WG.lnk =3D C:\WINDOWS\tr0vj9wg.exe
O4 - Startup: 0X2XAW2W.lnk =3D C:\WINDOWS\0x2xaw2w.exe
O4 - Startup: NGNBOY5P.lnk =3D C:\WINDOWS\ngnboy5p.exe
O4 - Startup: HYV7QQGK.lnk =3D C:\WINDOWS\hyv7qqgk.exe
O4 - Startup: U3X60B9V.lnk =3D C:\WINDOWS\u3x60b9v.exe
O4 - Startup: Q60DOKGC.lnk =3D C:\WINDOWS\q60dokgc.exe
O4 - Startup: U370V1EH.lnk =3D C:\WINDOWS\u370v1eh.exe
O4 - Startup: 52IKHKFT.lnk =3D C:\WINDOWS\52ikhkft.exe
O4 - Startup: N2YJ0CON.lnk =3D C:\WINDOWS\n2yj0con.exe
O4 - Startup: 1G9M92GA.lnk =3D C:\WINDOWS\1g9m92ga.exe
O4 - Startup: GLOFYHOC.lnk =3D C:\WINDOWS\glofyhoc.exe
O4 - Startup: AOPDMRNL.lnk =3D C:\WINDOWS\aopdmrnl.exe
O4 - Startup: MIFZ1XKR.lnk =3D C:\WINDOWS\mifz1xkr.exe
O4 - Startup: 11161Z3U.lnk =3D C:\WINDOWS\11161z3u.exe
O4 - Startup: 5ND6NJD6.lnk =3D C:\WINDOWS\5nd6njd6.exe
O4 - Startup: MORZE1.lnk =3D C:\WINDOWS\morze1.exe
O4 - Startup: EKJ2JZBD.lnk =3D C:\WINDOWS\ekj2jzbd.exe
O4 - Startup: 8HC0E304.lnk =3D C:\WINDOWS\8hc0e304.exe
O4 - Startup: ZOTEZI7V.lnk =3D C:\WINDOWS\zotezi7v.exe
O4 - Startup: TU65NW59.lnk =3D C:\WINDOWS\tu65nw59.exe
O4 - Startup: Y35V00PH.lnk =3D C:\WINDOWS\y35v00ph.exe
O4 - Startup: 0ZEV76HC.lnk =3D C:\WINDOWS\0zev76hc.exe
O4 - Startup: 6CEOUUX7.lnk =3D C:\WINDOWS\6ceouux7.exe
O4 - Startup: A8PM07BL.lnk =3D C:\WINDOWS\a8pm07bl.exe
O4 - Startup: 6DYGVLM5.lnk =3D C:\WINDOWS\6dygvlm5.exe
O4 - Startup: X6Y8QF2M.lnk =3D C:\WINDOWS\x6y8qf2m.exe
O4 - Startup: W6U4GYQM.lnk =3D C:\WINDOWS\w6u4gyqm.exe
O4 - Startup: YP8RNOVN.lnk =3D C:\WINDOWS\yp8rnovn.exe
O4 - Startup: 0QWDPV1T.lnk =3D C:\WINDOWS\0qwdpv1t.exe
O4 - Startup: P8H7O6Y5.lnk =3D C:\WINDOWS\p8h7o6y5.exe
O4 - Startup: 7QEZDU9V.lnk =3D C:\WINDOWS\7qezdu9v.exe
O4 - Startup: T606UV6L.lnk =3D C:\WINDOWS\t606uv6l.exe
O4 - Startup: 6OYBM5YB.lnk =3D C:\WINDOWS\6oybm5yb.exe
O4 - Startup: TMB0UBP0.lnk =3D C:\WINDOWS\tmb0ubp0.exe
O4 - Startup: N0TD6CDA.lnk =3D C:\WINDOWS\n0td6cda.exe
O4 - Startup: NVR700AT.lnk =3D C:\WINDOWS\nvr700at.exe
O4 - Startup: 3JDBJMVC.lnk =3D C:\WINDOWS\3jdbjmvc.exe
O4 - Startup: 35TMR237.lnk =3D C:\WINDOWS\35tmr237.exe
O4 - Startup: A3FZZYHJ.lnk =3D C:\WINDOWS\a3fzzyhj.exe
O4 - Startup: G08L5007.lnk =3D C:\WINDOWS\g08l5007.exe
O4 - Startup: TEFUHM6D.lnk =3D C:\WINDOWS\tefuhm6d.exe
O4 - Startup: 40TAEP00.lnk =3D C:\WINDOWS\40taep00.exe
O4 - Startup: NDDLAD2B.lnk =3D C:\WINDOWS\nddlad2b.exe
O4 - Startup: FVIBC4NW.lnk =3D C:\WINDOWS\fvibc4nw.exe
O4 - Startup: 0LV4YEO0.lnk =3D C:\WINDOWS\0lv4yeo0.exe
O4 - Startup: 5N59N9OO.lnk =3D C:\WINDOWS\5n59n9oo.exe
O4 - Startup: F9NQQ0GZ.lnk =3D C:\WINDOWS\f9nqq0gz.exe
O4 - Startup: RG90PV55.lnk =3D C:\WINDOWS\rg90pv55.exe
O4 - Startup: EG8LJVDL.lnk =3D C:\WINDOWS\eg8ljvdl.exe
O4 - Startup: GVDPX4NY.lnk =3D C:\WINDOWS\gvdpx4ny.exe
O4 - Startup: PKHQFW7U.lnk =3D C:\WINDOWS\pkhqfw7u.exe
O4 - Global Startup: MANDY1.lnk =3D C:\WINDOWS\0x2xaw2w.exe
O4 - Global Startup: HO1WV7JN.lnk =3D C:\WINDOWS\ho1wv7jn.exe
O4 - Global Startup: AREGON.lnk =3D C:\WINDOWS\aregon.exe
O4 - Global Startup: 6O7BLFOU.lnk =3D C:\WINDOWS\6o7blfou.exe
O4 - Global Startup: ARKD0WF0.lnk =3D C:\WINDOWS\arkd0wf0.exe
O4 - Global Startup: IM2G8Z9G.lnk =3D C:\WINDOWS\im2g8z9g.exe
O4 - Global Startup: 6V0GW87Z.lnk =3D C:\WINDOWS\6v0gw87z.exe
O4 - Global Startup: W9CL7JGW.lnk =3D C:\WINDOWS\w9cl7jgw.exe
O4 - Global Startup: TR0VJ9WG.lnk =3D C:\WINDOWS\tr0vj9wg.exe
O4 - Global Startup: 0X2XAW2W.lnk =3D C:\WINDOWS\0x2xaw2w.exe
O4 - Global Startup: NGNBOY5P.lnk =3D C:\WINDOWS\ngnboy5p.exe
O4 - Global Startup: HYV7QQGK.lnk =3D C:\WINDOWS\hyv7qqgk.exe
O4 - Global Startup: U3X60B9V.lnk =3D C:\WINDOWS\u3x60b9v.exe
O4 - Global Startup: Q60DOKGC.lnk =3D C:\WINDOWS\q60dokgc.exe
O4 - Global Startup: U370V1EH.lnk =3D C:\WINDOWS\u370v1eh.exe
O4 - Global Startup: 52IKHKFT.lnk =3D C:\WINDOWS\52ikhkft.exe
O4 - Global Startup: N2YJ0CON.lnk =3D C:\WINDOWS\n2yj0con.exe
O4 - Global Startup: 1G9M92GA.lnk =3D C:\WINDOWS\1g9m92ga.exe
O4 - Global Startup: GLOFYHOC.lnk =3D C:\WINDOWS\glofyhoc.exe
O4 - Global Startup: AOPDMRNL.lnk =3D C:\WINDOWS\aopdmrnl.exe
O4 - Global Startup: MIFZ1XKR.lnk =3D C:\WINDOWS\mifz1xkr.exe
O4 - Global Startup: 11161Z3U.lnk =3D C:\WINDOWS\11161z3u.exe
O4 - Global Startup: 5ND6NJD6.lnk =3D C:\WINDOWS\5nd6njd6.exe
O4 - Global Startup: MORZE1.lnk =3D C:\WINDOWS\morze1.exe
O4 - Global Startup: EKJ2JZBD.lnk =3D C:\WINDOWS\8hc0e304.exe
O4 - Global Startup: 8HC0E304.lnk =3D C:\WINDOWS\8hc0e304.exe
O4 - Global Startup: ZOTEZI7V.lnk =3D C:\WINDOWS\zotezi7v.exe
O4 - Global Startup: TU65NW59.lnk =3D C:\WINDOWS\tu65nw59.exe
O4 - Global Startup: Y35V00PH.lnk =3D C:\WINDOWS\y35v00ph.exe
O4 - Global Startup: 0ZEV76HC.lnk =3D C:\WINDOWS\0zev76hc.exe
O4 - Global Startup: 6CEOUUX7.lnk =3D C:\WINDOWS\6ceouux7.exe
O4 - Global Startup: A8PM07BL.lnk =3D C:\WINDOWS\a8pm07bl.exe
O4 - Global Startup: 6DYGVLM5.lnk =3D C:\WINDOWS\6dygvlm5.exe
O4 - Global Startup: X6Y8QF2M.lnk =3D C:\WINDOWS\x6y8qf2m.exe
O4 - Global Startup: W6U4GYQM.lnk =3D C:\WINDOWS\w6u4gyqm.exe
O4 - Global Startup: YP8RNOVN.lnk =3D C:\WINDOWS\yp8rnovn.exe
O4 - Global Startup: 0QWDPV1T.lnk =3D C:\WINDOWS\0qwdpv1t.exe
O4 - Global Startup: P8H7O6Y5.lnk =3D C:\WINDOWS\p8h7o6y5.exe
O4 - Global Startup: 7QEZDU9V.lnk =3D C:\WINDOWS\7qezdu9v.exe
O4 - Global Startup: T606UV6L.lnk =3D C:\WINDOWS\t606uv6l.exe
O4 - Global Startup: 6OYBM5YB.lnk =3D C:\WINDOWS\6oybm5yb.exe
O4 - Global Startup: TMB0UBP0.lnk =3D C:\WINDOWS\tmb0ubp0.exe
O4 - Global Startup: N0TD6CDA.lnk =3D C:\WINDOWS\n0td6cda.exe
O4 - Global Startup: NVR700AT.lnk =3D C:\WINDOWS\nvr700at.exe
O4 - Global Startup: 3JDBJMVC.lnk =3D C:\WINDOWS\3jdbjmvc.exe
O4 - Global Startup: 35TMR237.lnk =3D C:\WINDOWS\35tmr237.exe
O4 - Global Startup: A3FZZYHJ.lnk =3D C:\WINDOWS\a3fzzyhj.exe
O4 - Global Startup: G08L5007.lnk =3D C:\WINDOWS\g08l5007.exe
O4 - Global Startup: TEFUHM6D.lnk =3D C:\WINDOWS\tefuhm6d.exe
O4 - Global Startup: 40TAEP00.lnk =3D C:\WINDOWS\40taep00.exe
O4 - Global Startup: NDDLAD2B.lnk =3D C:\WINDOWS\nddlad2b.exe
O4 - Global Startup: FVIBC4NW.lnk =3D C:\WINDOWS\fvibc4nw.exe
O4 - Global Startup: 0LV4YEO0.lnk =3D C:\WINDOWS\0lv4yeo0.exe
O4 - Global Startup: 5N59N9OO.lnk =3D C:\WINDOWS\5n59n9oo.exe
O4 - Global Startup: F9NQQ0GZ.lnk =3D C:\WINDOWS\f9nqq0gz.exe
O4 - Global Startup: RG90PV55.lnk =3D C:\WINDOWS\rg90pv55.exe
O4 - Global Startup: EG8LJVDL.lnk =3D C:\WINDOWS\eg8ljvdl.exe
O4 - Global Startup: GVDPX4NY.lnk =3D C:\WINDOWS\gvdpx4ny.exe
O4 - Global Startup: PKHQFW7U.lnk =3D C:\WINDOWS\pkhqfw7u.exe
O8 - Extra context menu item: AltaVista Home - =
http://jump.altavista.com/avie5/home
O8 - Extra context menu item: AV Search This Term - =
http://jump.altavista.com/avie5/search
O8 - Extra context menu item: AV Translate this Web Page - =
http://jump.altavista.com/avie5/babelfish
O8 - Extra context menu item: AV Translate Selection - =
http://jump.altavista.com/avie5/babelfish
O9 - Extra 'Tools' menuitem: &AltaVista Home (HKLM)
O9 - Extra button: Translate (HKLM)
O9 - Extra 'Tools' menuitem: AV &Translate (HKLM)
O9 - Extra 'Tools' menuitem: &Find Pages Linking to this URL (HKLM)
O9 - Extra 'Tools' menuitem: Find Other Pages on this &Host (HKLM)
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .scr: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin2.dll
O16 - DPF: Win32 Classes - file://c:\windows\Java\classes\win32ie4.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash =
Object) - =
http://download.macromedia.com/pub/s...sh/swflash.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - =
http://v4.windowsupdate.microsoft.co...?38038.472430=
5556


------=_NextPart_000_0007_01C41418.F5B580A0--

---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.644 / Virus Database: 412 - Release Date: 3/26/2004
Reply With Quote


  #2  
Old March 29th, 2004, 12:49 AM
dammit's Avatar
dammit dammit is offline
Rampant Rabbit
  
Join Date: Dec 2002
Location: New York/Paris/Milan/pie country
Age: 8
Posts: 11,532
Blog Entries: 2
Hi buddy....run THIS and also http://www.spywareinfo.com/~merijn/downloads.html

Hit the "fix" button.
and post back a new hijack log
Last edited by dammit; March 29th, 2004 at 12:53 AM.
Reply With Quote
Reply

Bookmarks

« Previous Topic | Next Topic »
Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump




All times are GMT +1. The time now is 04:37 AM.

RSS Cyber Tech Help Forums RSS