Nevar atvērt Task Manager

**ImSoLost** · #1 Decembris 23, 2007, 17:38

Labi, tāpēc es izlasītā apkārt mazliet, un šķiet, ka pastāv dažādi risinājumi. Es skrienu regula Windows Vista. Ctrl Alt Del nestrādā ... labais klikšķis nedarbojas. kad es mekl Taskmgr.exe saka, ka tā ir bijis izslēgts administrators. Ko es varu darīt?

**Hybr! D** · #2 Decembris 23, 2007, 17:41

Vista atšķiras XP.

Tiesības noklikšķiniet uzdevumjoslas un pēc tam noklikšķiniet uz Uzdevumu pārvaldnieks.

**ImSoLost** · #3 Decembris 23, 2007, 18:11

Es labi noklikšķinājis uzdevumu joslu, un tas ir `pelēcīga`. Tomēr es meklēja apkārt bitu un atradu vietā ar tiešo saiti uz manu Reged un tas deva man brīdinājumi un tad es tikai izbrauc ārpus jo man nebija ne jausmas, kas man bija darīt. Pēc tam no curiousity I cheked uzdevumu joslā un tā netika izcelta. Es atsākt sava datora (lai pārliecinātos, ka tas nebija pagaidu lieta) un par dažu dīvainu iemeslu dēļ, kad uz ekrāna, lai pieteiktos nāktu līdz ... tā teica nospiediet Ctrl Alt Del lai ieietu Es nesaprotu kas noticis .

**ImSoLost** · #4 Decembris 23, 2007, 19:11

Te ir mana HijackThis log

C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ Explorer.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ HP \ QuickPlay \ QPService.exe
C: \ Program Files \ HP \ HP Software Update \ hpwuSchd2.exe
C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ QLBCTRL.exe
C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ WiFiMsg.exe
C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe
C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe
C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccApp.exe
C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtcmd.exe
C: \ Program Files \ Windows sānjoslas \ sidebar.exe
C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ HPAdvisor.exe
C: \ WINDOWS \ System32 \ rundll32.exe
C: \ WINDOWS \ ehome \ ehtray.exe
C: \ Windows \ ehome \ ehmsas.exe
C: \ Users \ Yasmany \ Desktop \ Veoh \ VeohClient.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ 1.2.1128.5462 \ G oogleToolbarNotifier.exe
C: \ Program Files \ Common Files \ Adobe \ Updater5 \ AdobeUpdater.exe
C: \ Program Files \ HP Connections \ 6811507 \ Program \ HP Connections.exe
C: \ Windows \ system32 \ wbem \ unsecapp.exe
C: \ PROGRA ~ 1 \ HEWLET ~ 1 \ Shared \ HPQTOA ~ 1.EXE
C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ SSDK04.exe
C: \ Program Files \ Internet Explorer \ ieuser.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
C: \ Windows \ system32 \ SearchFilterHost.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Windows \ system32 \ Macromed \ Flash \ FlashUtil9b.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.comcast.net/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...lion&pf=laptop
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.comcast.net/
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window title = Windows Internet Explorer, ko Comcast
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Settings, ProxyServer =: 0
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AOLTBSearch Class - (EA756889-2.338-43DB-8F07-D1CA6FB9C90D) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O1 - Hosts::: 1 localhost
O2 - BHO: Mana Meklēt BHO - (014DA6C1-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7,0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
O2 - BHO: AOL Toolbar Launcher - (7C554162-8CB7-45A4-B8F4-8EA1C75885F9) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: BDEX System - (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) - C: \ Windows \ blopenvxdt.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8.333-CF10577473F7) - C: \ Program Files \ Google \ googletoolbar1.dll
O2 - BHO: FastRX - (E09962E7-A39E-4F60-8.003-66D57BED27B7) - C: \ Windows \ system32 \ fastRX.dll (file missing)
O3 - Toolbar: My Search Bar - (014DA6C9-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL
O3 - Toolbar: Veoh Browser Plug-in - (D0943516-5.076-4.020-A3B5-AEFAF26AB263) - C: \ Users \ Yasmany \ Desktop \ Veoh \ Plugins \ reg \ VeohTool bar.dll
O3 - Toolbar: & Google - (2318C2B1-4.965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ googletoolbar1.dll
O3 - Toolbar: AIM Toolbar - (DE9C389F-3.316-41A7-809B-AA305ED9D922) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O3 - Toolbar: retnsrp - (CC304A4D-FC79-4CD3-9A67-46E3AF59319D) - C: \ Windows \ retnsrp.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% programfiles% \ Windows Defender \ MSASCui.exe-hide
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [QPService] "C: \ Program Files \ HP \ QuickPlay \ QPService.exe"
O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [QlbCtrl]% programfiles% \ Hewlett-Packard \ HP Quick Launch Buttons \ QlbCtrl.exe / Sākumlapa
O4 - HKLM \ .. \ Run: [HP Health Check plānotājs] C: \ Program Files \ Hewlett-Packard \ HP veselības pārbaudi \ HPHC_Scheduler.exe
O4 - HKLM \ .. \ Run: [WAWifiMessage]% programfiles% \ Hewlett-Packard \ HP Wireless Assistant \ WiFiMsg.exe
O4 - HKLM \ .. \ Run: [hpWirelessAssistant]% programfiles% \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [kpx] C: \ Windows \ system32 \ rundll32.exe C: \ Windows \ system32 \ fastRX.dll DllInitApp
O4 - HKLM \ .. \ Run: [NvSvc] RUNDLL32.EXE C: \ Windows \ system32 \ nvsvc.dll, nvsvcStart
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ Windows \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ Windows \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [SeekmoOE] C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ OEAddOn.exe
O4 - HKLM \ .. \ Run: [SeekmoSA] "C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ SeekmoSA.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccApp.exe"
O4 - HKLM \ .. \ Run: [Symantec PIF AlertEng] "C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ PIFSvc.exe" / / M " C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ AlertEng.dll "
O4 - HKLM \ .. \ Run: [ddoctorv2] "C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtcmd.exe" / P ddoctorv2
O4 - HKLM \ .. \ RunOnce: [Launcher]% WINDIR% \ SMINST \ launcher.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows sānjoslas \ sidebar.exe / Autorun
O4 - HKCU \ .. \ Run: [HPAdvisor] C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ HPAdvisor.exe
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files \ AIM6 \ aim6.exe" / d locale = en-US EE: / / AOL / imApp
O4 - HKCU \ .. \ Run: [ehTray.exe] C: \ Windows \ ehome \ ehTray.exe
O4 - HKCU \ .. \ Run: [Veoh] "C: \ Users \ Yasmany \ Desktop \ Veoh \ VeohClient.exe" / VeohHide
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ MsnMsgr.Exe" / background
O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ 1.2.1128.5462 \ G oogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [AdobeUpdater] C: \ Program Files \ Common Files \ Adobe \ Updater5 \ AdobeUpdater.exe
O4 - HKCU \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'NETWORK SERVICE')
O4 - Startup: limewire On Startup.lnk = C: \ Program Files \ limewire \ LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7,0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Program Files \ Adobe \ Reader 8,0 \ Reader \ AdobeCollabSync.exe
O4 - Global Startup: HP Connections.lnk = C: \ Program Files \ HP Connections \ 6.811.507 \ Program \ HP Connections.exe
Ø8 - ārpus konteksta menu item: & AOL Toolbar Search - C: \ Program Files \ aol \ mērķis rīkjoslu 5,0 \ resursu \ en-US \ Local \ search.html
Ø8 - ārpus konteksta menu item: E & ksportēt uz Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ EXCEL.EXE/3000
Ø9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
Ø9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
Ø9 - Extra button: Nosūtīt OneNote - (2670000A-7350-4f3c-8.081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ ONBttnIE.dll
Ø9 - Extra 'Tools' MENUITEM: S & galu OneNote - (2670000A-7350-4f3c-8.081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ ONBttnIE.dll
Ø9 - Extra button: AIM Toolbar - (3369AF0D-62E9-4bda-8.103-B4C75499B578) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
Ø9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ REFIEBAR.DLL
O13 - Gopher Prefix:
Ø16 - DPF: (48DD0448-9.209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1005.cab
Ø16 - DPF: (5D6F45B3-9.043-443D-A792-115447494D24) (UnoCtrl klase) -- http://messenger.zone.msn.com/EN-US/.../GAME_UNO1.cab
Ø16 - DPF: (67DABFBF-D0AB-41FA-9C46-CC0F21721616) (DivXBrowserPlugin Object) -- http://download.divx.com/player/DivXBrowserPlugin.cab
Ø16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220.313.175.592) (MSN Games - Installer) -- http://messenger.zone.msn.com/binary...o.cab56649.cab
Ø16 - DPF: (BD393C14-72AD-4.790-A095-76522973D6B8) (CBreakshotControl klase) -- http://messenger.zone.msn.com/binary...t.cab57213.cab
Ø16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient klase) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
Ø16 - DPF: (DA758BB1-5F89-4.465-975F-8D7179A4BCF3) (WheelofFortune Object) -- http://messenger.zone.msn.com/binary/WoF.cab57176.cab
O21 - SSODL: leorop - (38CA8AE4-A78E-4.111-8D0E-BDDF145A5040) - C: \ Windows \ leorop.dll
O21 - SSODL: nopzet - (9543D4D7-3E5B-4B70-BB93-83AC9865627C) - C: \ Windows \ nopzet.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ AddFiltr.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown īpašnieks - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown īpašnieks - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ CLSched.exe
O23 - Service: Symantec Lic NetConnect dienests (CLTNetCnService) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C: \ Program Files \ Hewlett-Packard \ HP veselības pārbaudi \ hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ Shared \ hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Roxio \ Roxio MyDVD Basic V9 \ InstallShield \ Driver \ 1.050 \ Intel 32 \ IDriverT.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Marķēšanas dienests (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ PIFSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C: \ Program Files \ Common Files \ Roxio Shared \ 9,0 \ SharedCOM \ RoxMediaDB9.exe
O23 - Service: SupportSoft zobs Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc - C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc - C: \ Program Files \ Common Files \ SureThing Shared \ stllssvr.exe
O23 - Service: Symantec Core LC - Unknown īpašnieks - C: \ Program Files \ Common Files \ Symantec Shared \ CCPD-LC \ symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ AppCore \ AppSvc32.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: XAudioService - Conexant Systems, Inc - C: \ Windows \ system32 \ drivers \ xaudio.exe

**howardhopkinson** · #5 Decembris 31, 2007, 01:33

Jūsu sistēma ir riddled ar ļaunprātīgu programmatūru.

Iet ŠEIT un izpildiet norādījumus precīzi.

Post pieprasīto datņu.

I `ll get mod pārcelt šo pavedienu atpakaļ drošības forumā. Don `t know why it got pārcelts no tur pirmo vietu.

Regards Howard.

**ImSoLost** · #6 5 janvāris 2008, 18:05

Pirms iesaiņojumu kaut ko es vēlos atzīmēt, ka tad, kad es devos uz darbināt Online skenēšanu nebūtu let me ... tas kaut ko teica par to, kam nav atļaujas.

Kad es izskatījās manā Add / Remove hardware Šīs ir dažas no lietām, atradu mazliet aizdomīgu vai ka es neko nezināja.

MSXML 4,0 SP2
Mana meklēšanas Bar
muvee Pašražotāju 5,0
Smart Video Codec v1.6

SUPERAntiSpyware log
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 01/05/2008 at 07:32
Application Version: 3.9.1008
Core Noteikumi Database Version: 3.374
Trace Noteikumi Database Version: 1369
Scan type: Complete Scan
Kopā Scan Time: 01:23:02
Atmiņas vienības skenēts: 712
Memory draudiem detected: 1
Reģistra vienības skenēts: 8.254
Reģistrs draudiem detected: 122
File preces skenēts: 60.434
File draudiem detected: 12
Trojan.Net-MSV/VPS-Variant
C: \ WINDOWS \ BLOPENVXDT.DLL
C: \ WINDOWS \ BLOPENVXDT.DLL
HKLM \ Software \ Classes \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126)
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126)
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126)
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ InprocServer32
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ ProgId
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ Programmable
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ TypeLib
HKCR \ CLSID \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) \ VersionIndependentProgID
HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126)
Adware.MyWay
HKLM \ Software \ Classes \ CLSID \ (014DA6C1-189F-421a-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10) \ InprocServer32
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10) \ Programmable
HKCR \ CLSID \ (014DA6C1-189F-421A-88CD-07CFE51CFF10) \ TypeLib
C: \ Program Files \ MYSEARCH \ bar \ 1.BIN \ S4BAR.DLL
HKLM \ Software \ Classes \ CLSID \ (014DA6C9-189F-421a-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10)
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10) \ InprocServer32
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10) \ Programmable
HKCR \ CLSID \ (014DA6C9-189F-421A-88CD-07CFE51CFF10) \ TypeLib
HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (014DA6C1-189F-421a-88CD-07CFE51CFF10)
HKLM \ Software \ Microsoft \ Internet Explorer \ Toolbar # (014DA6C9-189F-421a-88CD-07CFE51CFF10)
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10)
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10) \ 1,0
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10) \ 1.0 \ 0
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10) \ 1.0 \ 0 \ Win32
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10) \ 1.0 \ KAROGI
HKCR \ TypeLib \ (014DA6C0-189F-421a-88CD-07CFE51CFF10) \ 1.0 \ HELPDIR
HKU \ S-1-5-21-3682377349-2593316749-328379415-1000 \ Software \ Microsoft \ Internet Explorer \ Toolbar \ WebBrowser # (014DA6C9-189F-421A-88CD-07CFE51CFF10)
Unclassified.Unknown Izcelsme
HKLM \ Software \ Classes \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7)
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7)
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7)
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ InprocServer32
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ ProgId
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ Programmable
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ TypeLib
HKCR \ CLSID \ (E09962E7-A39E-4F60-8.003-66D57BED27B7) \ VersionIndependentProgID
C: \ WINDOWS \ SYSTEM32 \ FASTRX.DLL
HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (E09962E7-A39E-4F60-8.003-66D57BED27B7)
Adware.Tracking Cookie
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany@ar.atwola [2]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ atwola [1]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ DoubleClick [1]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ adlegend [1]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ reklāmu [2]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ 2o7 [1]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ atdmt [2]. Txt
C: \ Users \ Yasmany \ AppData \ Roaming \ Microsoft \ Windows \ Cookies \ yasmany @ mediaplex [1]. Txt
Adware.180solutions/Seekmo
HKCR \ Seekmo.DesktopFlash
HKCR \ Seekmo.DesktopFlash \ CLSID
HKCR \ Seekmo.DesktopFlash \ CurVer
HKCR \ Seekmo.DesktopFlash.1
HKCR \ Seekmo.DesktopFlash.1 \ CLSID
HKCR \ SeekmoAX.ClientDetector
HKCR \ SeekmoAX.ClientDetector \ CLSID
HKCR \ SeekmoAX.ClientDetector \ CurVer
HKCR \ SeekmoAX.ClientDetector.1
HKCR \ SeekmoAX.ClientDetector.1 \ CLSID
HKCR \ SeekmoAX.UserProfiles
HKCR \ SeekmoAX.UserProfiles \ CLSID
HKCR \ SeekmoAX.UserProfiles \ CurVer
HKCR \ SeekmoAX.UserProfiles.1
HKCR \ SeekmoAX.UserProfiles.1 \ CLSID
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C)
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ Control
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ InprocServer32
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ MiscStatus
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ MiscStatus \ 1
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ ProgId
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ Programmable
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ ToolboxBitmap32
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ TypeLib
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ Version
HKCR \ CLSID \ (1F158A1E-A687-4a11-9.679-B3AC64B86A1C) \ VersionIndependentProgID
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030)
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) # AppID
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) \ LocalServer32
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) \ ProgId
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) \ Programmable
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) \ TypeLib
HKCR \ CLSID \ (914A8F99-38E4-47ec-B875-2B0653516030) \ VersionIndependentProgID
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571)
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ InprocServer32
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ InprocServer32 # ThreadingModel
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ ProgId
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ Programmable
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ TypeLib
HKCR \ CLSID \ (E313F5DC-CFE7-4.568-84A4-C76653547571) \ VersionIndependentProgID
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12)
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12) \ 1,0
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12) \ 1.0 \ 0
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12) \ 1.0 \ 0 \ Win32
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12) \ 1.0 \ KAROGI
HKCR \ TypeLib \ (995E885E-3FF5-4F66-A107-8BFB3A0F8F12) \ 1.0 \ HELPDIR
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979)
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979) \ 1,0
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979) \ 1.0 \ 0
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979) \ 1.0 \ 0 \ Win32
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979) \ 1.0 \ KAROGI
HKCR \ TypeLib \ (FBB40FDF-B715-4.342-AB82-244ECC66E979) \ 1.0 \ HELPDIR
HKCR \ Interface \ (BD5258AF-20AE-4BD3-B748-B2851ACA7335)
HKCR \ Interface \ (BD5258AF-20AE-4BD3-B748-B2851ACA7335) \ ProxyStubClsid
HKCR \ Interface \ (BD5258AF-20AE-4BD3-B748-B2851ACA7335) \ ProxyStubClsid32
HKCR \ Interface \ (BD5258AF-20AE-4BD3-B748-B2851ACA7335) \ TypeLib
HKCR \ Interface \ (BD5258AF-20AE-4BD3-B748-B2851ACA7335) \ TypeLib # Version
HKCR \ AppId \ SeekmoSA_df.exe
HKCR \ AppId \ SeekmoSA_df.exe # AppID
HKCR \ AppId \ (4A40E8FC-C7E4-4F57-9FA4-85DD77402897)
HKU \ S-1-5-21-3682377349-2593316749-328379415-1000 \ Software \ seekmosa
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # DisplayName
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # DisplayIcon
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # UninstallString
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # DisplayVersion
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # HelpLink
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # Publisher
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ SeekmoSA # URLInfoAbout
HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run # SeekmoOE [C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ OEAddOn.exe]
C: \ Users \ Yasmany \ AppData \ Roaming \ Seekmo
Trojan.DNSChanger-Codec
HKCR \ VAC.Video
HKCR \ VAC.Video \ CLSID
Trojan.Net-MSV/VPS
HKCR \ MSVPS.MSVPSApp
HKCR \ MSVPS.MSVPSApp \ CLSID
HKCR \ MSVPS.MSVPSApp \ CurVer
Trojan.Net-MU/Gen
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ WebVideo
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ WebVideo # DisplayName
HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Uni INSTALĒT \ WebVideo # uninstallString

HijackThis Log

Logfile of Trend Micro HijackThis v2.0.2
Scan saglabāts 8:13:58 gada 12/23/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal
Running procesiem:
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ Explorer.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ HP \ QuickPlay \ QPService.exe
C: \ Program Files \ HP \ HP Software Update \ hpwuSchd2.exe
C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ QLBCTRL.exe
C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ WiFiMsg.exe
C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe
C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe
C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccApp.exe
C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtcmd.exe
C: \ Program Files \ Windows sānjoslas \ sidebar.exe
C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ HPAdvisor.exe
C: \ WINDOWS \ System32 \ rundll32.exe
C: \ WINDOWS \ ehome \ ehtray.exe
C: \ Windows \ ehome \ ehmsas.exe
C: \ Users \ Yasmany \ Desktop \ Veoh \ VeohClient.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ 1.2.1128.5462 \ G oogleToolbarNotifier.exe
C: \ Program Files \ Common Files \ Adobe \ Updater5 \ AdobeUpdater.exe
C: \ Program Files \ HP Connections \ 6811507 \ Program \ HP Connections.exe
C: \ Windows \ system32 \ wbem \ unsecapp.exe
C: \ PROGRA ~ 1 \ HEWLET ~ 1 \ Shared \ HPQTOA ~ 1.EXE
C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ SSDK04.exe
C: \ Program Files \ Internet Explorer \ ieuser.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
C: \ Windows \ system32 \ SearchFilterHost.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Windows \ system32 \ Macromed \ Flash \ FlashUtil9b.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.comcast.net/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...lion&pf=laptop
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.comcast.net/
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window title = Windows Internet Explorer, ko Comcast
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Settings, ProxyServer =: 0
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AOLTBSearch Class - (EA756889-2.338-43DB-8F07-D1CA6FB9C90D) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O1 - Hosts::: 1 localhost
O2 - BHO: Mana Meklēt BHO - (014DA6C1-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7,0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
O2 - BHO: AOL Toolbar Launcher - (7C554162-8CB7-45A4-B8F4-8EA1C75885F9) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: BDEX System - (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) - C: \ Windows \ blopenvxdt.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8.333-CF10577473F7) - C: \ Program Files \ Google \ googletoolbar1.dll
O2 - BHO: FastRX - (E09962E7-A39E-4F60-8.003-66D57BED27B7) - C: \ Windows \ system32 \ fastRX.dll (file missing)
O3 - Toolbar: My Search Bar - (014DA6C9-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL
O3 - Toolbar: Veoh Browser Plug-in - (D0943516-5.076-4.020-A3B5-AEFAF26AB263) - C: \ Users \ Yasmany \ Desktop \ Veoh \ Plugins \ reg \ VeohTool bar.dll
O3 - Toolbar: & Google - (2318C2B1-4.965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ googletoolbar1.dll
O3 - Toolbar: AIM Toolbar - (DE9C389F-3.316-41A7-809B-AA305ED9D922) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
O3 - Toolbar: retnsrp - (CC304A4D-FC79-4CD3-9A67-46E3AF59319D) - C: \ Windows \ retnsrp.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% programfiles% \ Windows Defender \ MSASCui.exe-hide
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [QPService] "C: \ Program Files \ HP \ QuickPlay \ QPService.exe"
O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [QlbCtrl]% programfiles% \ Hewlett-Packard \ HP Quick Launch Buttons \ QlbCtrl.exe / Sākumlapa
O4 - HKLM \ .. \ Run: [HP Health Check plānotājs] C: \ Program Files \ Hewlett-Packard \ HP veselības pārbaudi \ HPHC_Scheduler.exe
O4 - HKLM \ .. \ Run: [WAWifiMessage]% programfiles% \ Hewlett-Packard \ HP Wireless Assistant \ WiFiMsg.exe
O4 - HKLM \ .. \ Run: [hpWirelessAssistant]% programfiles% \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [kpx] C: \ Windows \ system32 \ rundll32.exe C: \ Windows \ system32 \ fastRX.dll DllInitApp
O4 - HKLM \ .. \ Run: [NvSvc] RUNDLL32.EXE C: \ Windows \ system32 \ nvsvc.dll, nvsvcStart
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ Windows \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ Windows \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [SeekmoOE] C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ OEAddOn.exe
O4 - HKLM \ .. \ Run: [SeekmoSA] "C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ SeekmoSA.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccApp.exe"
O4 - HKLM \ .. \ Run: [Symantec PIF AlertEng] "C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ PIFSvc.exe" / / M " C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ AlertEng.dll "
O4 - HKLM \ .. \ Run: [ddoctorv2] "C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtcmd.exe" / P ddoctorv2
O4 - HKLM \ .. \ RunOnce: [Launcher]% WINDIR% \ SMINST \ launcher.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows sānjoslas \ sidebar.exe / Autorun
O4 - HKCU \ .. \ Run: [HPAdvisor] C: \ Program Files \ Hewlett-Packard \ HP padomnieks \ HPAdvisor.exe
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files \ AIM6 \ aim6.exe" / d locale = en-US EE: / / AOL / imApp
O4 - HKCU \ .. \ Run: [ehTray.exe] C: \ Windows \ ehome \ ehTray.exe
O4 - HKCU \ .. \ Run: [Veoh] "C: \ Users \ Yasmany \ Desktop \ Veoh \ VeohClient.exe" / VeohHide
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ MsnMsgr.Exe" / background
O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ 1.2.1128.5462 \ G oogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [AdobeUpdater] C: \ Program Files \ Common Files \ Adobe \ Updater5 \ AdobeUpdater.exe
O4 - HKCU \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% programfiles% \ Windows sānjoslas \ Sidebar.exe / detectMem (User 'NETWORK SERVICE')
O4 - Startup: limewire On Startup.lnk = C: \ Program Files \ limewire \ LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7,0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Program Files \ Adobe \ Reader 8,0 \ Reader \ AdobeCollabSync.exe
O4 - Global Startup: HP Connections.lnk = C: \ Program Files \ HP Connections \ 6.811.507 \ Program \ HP Connections.exe
Ø8 - ārpus konteksta menu item: & AOL Toolbar Search - C: \ Program Files \ aol \ mērķis rīkjoslu 5,0 \ resursu \ en-US \ Local \ search.html
Ø8 - ārpus konteksta menu item: E & ksportēt uz Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ EXCEL.EXE/3000
Ø9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
Ø9 - Extra 'Tools' MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
Ø9 - Extra button: Nosūtīt OneNote - (2670000A-7350-4f3c-8.081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ ONBttnIE.dll
Ø9 - Extra 'Tools' MENUITEM: S & galu OneNote - (2670000A-7350-4f3c-8.081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ ONBttnIE.dll
Ø9 - Extra button: AIM Toolbar - (3369AF0D-62E9-4bda-8.103-B4C75499B578) - C: \ Program Files \ AOL \ AIM rīkjoslu 5,0 \ aoltb.dll
Ø9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ Micros ~ 3 \ Office12 \ REFIEBAR.DLL
O13 - Gopher Prefix:
Ø16 - DPF: (48DD0448-9.209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1005.cab
Ø16 - DPF: (5D6F45B3-9.043-443D-A792-115447494D24) (UnoCtrl klase) -- http://messenger.zone.msn.com/EN-US/.../GAME_UNO1.cab
Ø16 - DPF: (67DABFBF-D0AB-41FA-9C46-CC0F21721616) (DivXBrowserPlugin Object) -- http://download.divx.com/player/DivXBrowserPlugin.cab
Ø16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220.313.175.592) (MSN Games - Installer) -- http://messenger.zone.msn.com/binary...o.cab56649.cab
Ø16 - DPF: (BD393C14-72AD-4.790-A095-76522973D6B8) (CBreakshotControl klase) -- http://messenger.zone.msn.com/binary...t.cab57213.cab
Ø16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient klase) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
Ø16 - DPF: (DA758BB1-5F89-4.465-975F-8D7179A4BCF3) (WheelofFortune Object) -- http://messenger.zone.msn.com/binary/WoF.cab57176.cab
O21 - SSODL: leorop - (38CA8AE4-A78E-4.111-8D0E-BDDF145A5040) - C: \ Windows \ leorop.dll
O21 - SSODL: nopzet - (9543D4D7-3E5B-4B70-BB93-83AC9865627C) - C: \ Windows \ nopzet.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ AddFiltr.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown īpašnieks - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown īpašnieks - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ CLSched.exe
O23 - Service: Symantec Lic NetConnect dienests (CLTNetCnService) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C: \ Program Files \ Hewlett-Packard \ HP veselības pārbaudi \ hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ Shared \ hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Roxio \ Roxio MyDVD Basic V9 \ InstallShield \ Driver \ 1.050 \ Intel 32 \ IDriverT.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Marķēšanas dienests (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ PIF \ (B8E1DD85-8.582-4c61-B58F-2F227FCA9A08) \ PIFSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C: \ Program Files \ Common Files \ Roxio Shared \ 9,0 \ SharedCOM \ RoxMediaDB9.exe
O23 - Service: SupportSoft zobs Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc - C: \ Program Files \ Comcast \ Desktop Doctor \ bin \ sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc - C: \ Program Files \ Common Files \ SureThing Shared \ stllssvr.exe
O23 - Service: Symantec Core LC - Unknown īpašnieks - C: \ Program Files \ Common Files \ Symantec Shared \ CCPD-LC \ symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ AppCore \ AppSvc32.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: XAudioService - Conexant Systems, Inc - C: \ Windows \ system32 \ drivers \ xaudio.exe
--
End of failu - 13.628 bytes

**howardhopkinson** · #7 5 janvāris 2008, 19:34

Jūs varbūt vēlaties kopēt un ielīmēt šīs instrukcijas stājas notepad failu. Tad jūs varat atvērt failu drošajā režīmā, lai Jūs varētu sekot instrukcijām vieglāk.

Ielādēs drošo režīmu saskaņā ar parasto lietotāja vārds (nav administratora konts). Redzēt, kā ŠEIT.

Programmā Windows Explorer, savukārt par "Rādīt visus failus un mapes, tostarp slēpto un sistēmas." Redzēt, kā ŠEIT.

Go to pievienot noņemt programmas jūsu kontroles paneli un atinstalēt kaut ko darīt ar (ja).

MySearch
bar
Seekmo
Viedoklis

Aizveriet vadības paneli.

Noklikšķiniet uz Sākt / palaist un tips services.msc vērā palaist lodziņā un nospiediet taustiņu Enter.

Kad logs, palielinātu to. Dubultklikšķi uz šādiem pakalpojumiem (ja) Un izvēlieties jāpārtrauc, ja tie darbojas. Uzstādīt Startup tipa invalīdiem. Noklikšķiniet uz Pievienot / ok par katru pakalpojumu, Jums atspējot.

Viedoklis Manager Service

Aizvērt pakalpojumi loga.

Atvērt savu uzdevumu menedžeris, turot ctrl un alt taustiņi un nospiežot izdzēst taustiņu.

Noklikšķiniet uz cilnes Procesi un beigu procesu (ja).

ViewpointService.exe
launcher.exe
SeekmoSA.exe
OEAddOn.exe

Tuvu uzdevumu pārvaldnieks.

Run HJT bez citām programmām atvērt (izņemot notepad). Noklikšķiniet skenēšanas pogu. Vai HJT noteikt šādu, ievietojot ķeksīti mazā kastīte blakus (ja).

O2 - BHO: Mana Meklēt BHO - (014DA6C1-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL

O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)

O2 - BHO: BDEX System - (A8565FBC-8D53-4D4F-9BB0-CBC68A22B126) - C: \ Windows \ blopenvxdt.dll

O2 - BHO: FastRX - (E09962E7-A39E-4F60-8.003-66D57BED27B7) - C: \ Windows \ system32 \ fastRX.dll (file missing)

O3 - Toolbar: My Search Bar - (014DA6C9-189F-421a-88CD-07CFE51CFF10) - C: \ Program Files \ MySearch \ bar \ 1.bin \ S4BAR.DLL

O3 - Toolbar: retnsrp - (CC304A4D-FC79-4CD3-9A67-46E3AF59319D) - C: \ Windows \ retnsrp.dll

O4 - HKLM \ .. \ Run: [kpx] C: \ Windows \ system32 \ rundll32.exe C: \ Windows \ system32 \ fastRX.dll DllInitApp

O4 - HKLM \ .. \ Run: [SeekmoOE] C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ OEAddOn.exe

O4 - HKLM \ .. \ Run: [SeekmoSA] "C: \ Program Files \ Seekmo \ bin \ 10.0.341.0 \ SeekmoSA.exe"

O4 - HKLM \ .. \ RunOnce: [Launcher]% WINDIR% \ SMINST \ launcher.exe

O21 - SSODL: leorop - (38CA8AE4-A78E-4.111-8D0E-BDDF145A5040) - C: \ Windows \ leorop.dll

O21 - SSODL: nopzet - (9543D4D7-3E5B-4B70-BB93-83AC9865627C) - C: \ Windows \ nopzet.dll

O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe

Click on noteikt pārbaudes poga.

Close HJT.

Atrodiet un dzēst šādus bold faili un / vai mapju (ja).

C: \ Program Files \Viedoklis<Dzēst visu mapi.
C: \ Windows \nopzet.dll
C: \ Windows \leorop.dll

% WINDIR% \ SMINST \launcher.exe
C: \ Program Files \Seekmo<Dzēst visu mapi.
C: \ Windows \ system32 \fastRX.dll

C: \ Windows \retnsrp.dll
C: \ Program Files \MySearch<Dzēst visu mapi.
C: \ Windows \blopenvxdt.dll

Reboot parastām režīmā un rehide Jūsu aizsargātas OS failus.

Lejupielādēt combofix.exe uz Jūsu rakstāmgalda. Dubultklikšķi combofix.exe un sekojiet norādījumiem. Logs ar brīdinājumu. Type "1" (un Enter), lai sāktu fiksēt. Kad skenēšana pabeigta tā atver teksta loga. Lūdzu, pievienojiet šo piesakieties šeit kopā ar svaigu HJT log. Uzmanību - nepieskarieties peli / tastatūru līdz skenēšana ir pabeigta. Skenēšana uz laiku apturēt jūsu galda, un, ja pārtraukta var atstāt darbvirsmas atspējota. Ja tā notiek, lūdzu pārstartējiet atjaunošanai darbvirsmas.

Combofix automātiski saglabāt log failu uz C: \ combofix.txt

Post Combofix žurnālā, kā arī svaigu HJT log.

Regards Howard.

**ImSoLost** · #8 5 janvāris 2008, 19:45

Vīrietis man ir slikts laiks. Es tikko uzzināju, kā vadīt tiešsaistē skenēšanu. Es skrienu to tieši tagad, kā mēs runājam. Vai jūs joprojām vēlaties man darīt, kā jūs teicāt.

**howardhopkinson** · #9 5 janvāris 2008, 19:47

Aizmirstiet online scan tagad, vienkārši izpildiet instrukcijas, esmu devusi jums.

Regards Howard.

**ImSoLost** · #10 5 janvāris 2008, 21:01

Kad mēģinu, lai palaistu Combofix man zilo logu, bet pēc tam tas saka gatavojās palaist, tad no atmiņas vai piekļuves pārkāpumiem un tad man vēl pop up sakot "Freeware ieviešanu REG.EXE ir pārtraucis strādāt un spēki man tuvu noteikti programmā. Vai jūs vēlaties, lai es pēc HJT log?

Es atvainojos par to visu nepatikšanas.

Uzgaidiet, otrkārt, es nezinu kā, bet tagad tas strādā esmu gatavojas palaist to.

Similar Threads
Pavediens	Thread Starter	Forums	Replies	Last Post
Help, nevaru piekļūt savam Task Manager	Raph78	Windows Operating Systems	5	23 jūlijs 2009 02:45
Task Manager nav slēdz programmas	tbarber	Windows Operating Systems	0	17 jūnijs 2009 17:52
Task Manager Processes ..	IsoldeAislinn	Windows Operating Systems	9	25 septembris 2008 19:26
Pārbaudīt savu uzdevumu menedžeris out for me plz:)	pete21	General Software Čats	5	9 jūlijs 2008 06:05
AnVir Task Manager	evilfantasy	General Software Čats	0	28 marts 2008 14:40