Reply To: Vista Windows Explorer Freezing Up

Home Forums Computers / Electronics / Online Vista Windows Explorer Freezing Up Reply To: Vista Windows Explorer Freezing Up

September 23, 2008 11:33 pm at 11:33 pm #622719
TOHIGHSCHOOLGUY
Member

This is the data from the hijack this logfile … thank you so much … i really appreciate it

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 7:13:59 PM, on 23/09/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Safe mode with network support

Running processes:

C:WindowsExplorer.EXE

C:Windowshelppane.exe

C:Program FilesTrend MicroHijackThisHijackThis.exe

C:Program FilesWindows Media Playerwmpnscfg.exe

R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://en.ca.acer.yahoo.com

R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://en.ca.acer.yahoo.com

R0 – HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =

R1 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local

R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =

R3 – URLSearchHook: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:Program FilesYahoo!CompanionInstallscpnyt.dll (file missing)

O1 – Hosts: ::1 localhost

O2 – BHO: Yahoo! Toolbar Helper – {02478D38-C3F9-4EFB-9B51-7695ECA05670} – C:Program FilesYahoo!CompanionInstallscpnyt.dll (file missing)

O2 – BHO: (no name) – {1E8A6170-7264-4D0F-BEAE-D42A53123C75} – C:Program FilesCommon FilesSymantec SharedcoSharedBrowser1.0NppBho.dll

O2 – BHO: WormRadar.com IESiteBlocker.NavFilter – {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} – C:Program FilesAVGAVG8avgssie.dll

O2 – BHO: (no name) – {53707962-6F74-2D53-2644-206D7942484F} – C:PROGRA~1SPYBOT~1SDHelper.dll

O2 – BHO: ALOT Toolbar – {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} – C:Program Filesalotbinalot.dll

O2 – BHO: AVG Security Toolbar – {A057A204-BACC-4D26-9990-79A187E2698E} – C:PROGRA~1AVGAVG8AVGTOO~1.DLL

O2 – BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – c:program filesgooglegoogletoolbar1.dll

O3 – Toolbar: Show Norton Toolbar – {90222687-F593-4738-B738-FBEE9C7B26DF} – C:Program FilesCommon FilesSymantec SharedcoSharedBrowser1.0UIBHO.dll

O3 – Toolbar: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:Program FilesYahoo!CompanionInstallscpnyt.dll (file missing)

O3 – Toolbar: ALOT Toolbar – {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} – C:Program Filesalotbinalot.dll

O3 – Toolbar: &Google – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – c:program filesgooglegoogletoolbar1.dll

O3 – Toolbar: AVG Security Toolbar – {A057A204-BACC-4D26-9990-79A187E2698E} – C:PROGRA~1AVGAVG8AVGTOO~1.DLL

O4 – HKLM..Run: [ALaunch] C:AcerALaunchAlaunchClient.exe

O4 – HKLM..Run: [RtHDVCpl] RtHDVCpl.exe

O4 – HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe

O4 – HKLM..Run: [osCheck] “C:Program FilesNorton Internet SecurityosCheck.exe”

O4 – HKLM..Run: [LManager] C:PROGRA~1LAUNCH~1QtZgAcer.EXE

O4 – HKLM..Run: [Acer Product Registration] “C:Program FilesAcer RegistrationACE1.exe” /startup

O4 – HKLM..Run: [SetPanel] C:AcerAPanelAPanel.cmd

O4 – HKLM..Run: [LaunchList] C:Program FilesPinnacleStudio 10LaunchList.exe

O4 – HKLM..Run: [Symantec PIF AlertEng] “C:Program FilesCommon FilesSymantec SharedPIF{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}PIFSvc.exe” /a /m “C:Program FilesCommon FilesSymantec SharedPIF{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}AlertEng.dll”

O4 – HKLM..Run: [WPCUMI] C:Windowssystem32WpcUmi.exe

O4 – HKLM..Run: [AVG8_TRAY] C:PROGRA~1AVGAVG8avgtray.exe

O4 – HKLM..Run: [MSConfig] “C:Windowssystem32msconfig.exe” /auto

O4 – HKLM..Run: [SSBkgdUpdate] “C:Program FilesCommon FilesScansoft SharedSSBkgdUpdateSSBkgdupdate.exe” -Embedding -boot

O4 – HKLM..Run: [PaperPort PTD] C:Program FilesScanSoftPaperPortpptd40nt.exe

O4 – HKLM..Run: [IndexSearch] C:Program FilesScanSoftPaperPortIndexSearch.exe

O4 – HKLM..Run: [QuickTime Task] “C:Program FilesQuickTimeQTTask.exe” -atboottime

O4 – HKLM..Run: [AppleSyncNotifier] C:Program FilesCommon FilesAppleMobile Device SupportbinAppleSyncNotifier.exe

O4 – HKLM..Run: [iTunesHelper] “C:Program FilesiTunesiTunesHelper.exe”

O4 – HKCU..Run: [StartCCC] C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe

O4 – HKCU..Run: [ISUSPM Startup] “C:Program FilesCommon FilesInstallShieldUpdateServiceISUSPM.exe” -startup

O4 – HKCU..Run: [LSA Shellu] C:Userssweib91lsass.exe

O4 – HKCU..Run: [MSServer] rundll32.exe C:Userssweib91AppDataLocalTempopnNdATn.dll,#1

O4 – HKCU..Run: [cmds] rundll32.exe C:Userssweib91AppDataLocalTempljJYOeCV.dll,c

O4 – HKCU..Run: [BMcba750af] Rundll32.exe “C:Userssweib91AppDataLocalTempguvguljf.dll”,s

O4 – HKCU..Run: [lphcrqhj0e905] C:Windowssystem32lphcrqhj0e905.exe

O4 – HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)

O4 – HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)

O4 – HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)

O4 – Global Startup: Empowering Technology Launcher.lnk = ?

O8 – Extra context menu item: &Google Search – res://C:Program FilesGoogleGoogleToolbar1.dll/cmsearch.html

O8 – Extra context menu item: &Translate English Word – res://C:Program FilesGoogleGoogleToolbar1.dll/cmwordtrans.html

O8 – Extra context menu item: Backward Links – res://C:Program FilesGoogleGoogleToolbar1.dll/cmbacklinks.html

O8 – Extra context menu item: Cached Snapshot of Page – res://C:Program FilesGoogleGoogleToolbar1.dll/cmcache.html

O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000

O8 – Extra context menu item: Similar Pages – res://C:Program FilesGoogleGoogleToolbar1.dll/cmsimilar.html

O8 – Extra context menu item: Translate Page into English – res://C:Program FilesGoogleGoogleToolbar1.dll/cmtrans.html

O9 – Extra button: Send to OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:PROGRA~1MICROS~2Office12ONBttnIE.dll

O9 – Extra ‘Tools’ menuitem: S&end to OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:PROGRA~1MICROS~2Office12ONBttnIE.dll

O9 – Extra button: Research – {92780B25-18CC-41C8-B9BE-3C9C571A8263} – C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O10 – Unknown file in Winsock LSP: c:windowssystem32wpclsp.dll

O13 – Gopher Prefix:

O16 – DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) – http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.3.5.cab

O18 – Protocol: linkscanner – {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} – C:Program FilesAVGAVG8avgpp.dll

O20 – AppInit_DLLs: C:PROGRA~1GoogleGOOGLE~1GOEC62~1.DLL avgrsstx.dll eNetHook.dll

O23 – Service: ALaunch Service (ALaunchService) – Unknown owner – C:AcerALaunchALaunchSvc.exe

O23 – Service: Apple Mobile Device – Apple Inc. – C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 – Service: Ati External Event Utility – ATI Technologies Inc. – C:Windowssystem32Ati2evxx.exe

O23 – Service: Automatic LiveUpdate Scheduler – Unknown owner – C:Program FilesSymantecLiveUpdateALUSchedulerSvc.exe (file missing)

O23 – Service: AVG Free8 E-mail Scanner (avg8emc) – AVG Technologies CZ, s.r.o. – C:PROGRA~1AVGAVG8avgemc.exe

O23 – Service: AVG Free8 WatchDog (avg8wd) – AVG Technologies CZ, s.r.o. – C:PROGRA~1AVGAVG8avgwdsvc.exe

O23 – Service: Bonjour Service – Apple Inc. – C:Program FilesBonjourmDNSResponder.exe

O23 – Service: eNet Service – Acer Inc. – C:AcerEmpowering TechnologyeNeteNet Service.exe

O23 – Service: eRecovery Service (eRecoveryService) – Acer Inc. – C:AcerEmpowering TechnologyeRecoveryeRecoveryService.exe

O23 – Service: eSettings Service (eSettingsService) – Unknown owner – C:AcerEmpowering TechnologyeSettingsServicecapuserv.exe

O23 – Service: iPod Service – Apple Inc. – C:Program FilesiPodbiniPodService.exe

O23 – Service: Symantec IS Password Validation (ISPwdSvc) – Unknown owner – C:Program FilesNorton Internet SecurityisPwdSvc.exe (file missing)

O23 – Service: LiveUpdate – Unknown owner – C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE (file missing)

O23 – Service: lxbc_device – – C:Windowssystem32lxbccoms.exe

O23 – Service: MobilityService – Unknown owner – C:AcerMobility CenterMobilityService.exe

O23 – Service: OSCM Utility Service – Sprint Spectrum, L.L.C – C:Program FilesNovatel WirelessSprintSprint PCS Connection ManagerOSCMUtilityService.exe

O23 – Service: Symantec Core LC – Unknown owner – C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe

O23 – Service: Symantec AppCore Service (SymAppCore) – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedAppCoreAppSvc32.exe

O23 – Service: ePower Service (WMIService) – acer – C:AcerEmpowering TechnologyePowerePowerSvc.exe

O23 – Service: XAudioService – Conexant Systems, Inc. – C:Windowssystem32DRIVERSxaudio.exe

End of file – 9813 bytes