Results 1 to 2 of 2

Thread: core.cache.dsk

  1. #1
    Junior Member
    Join Date
    Jan 2008
    Posts
    2

    Default core.cache.dsk

    Hi there,

    CCleaner:

    ĀµTorrent
    Adobe Acrobat 5.0
    Adobe Flash Player ActiveX
    Archiveur WinRAR
    Athan Basic 3.3
    CCleaner (remove only)
    Cisco Systems VPN Client 5.0.00.0340
    DivX Codec
    DivX Web Player
    Google Toolbar for Internet Explorer
    HijackThis 2.0.0
    Hotfix for Windows Media Format 11 SDK (KB929399)
    Hotfix for Windows XP (KB926239)
    Intel(R) PRO Network Adapters and Drivers
    InterVideo WinDVD 7
    Java(TM) 6 Update 2
    LimeWire 4.14.12
    Magic ISO Maker v5.4 (build 0245)
    McAfee SecurityCenter
    Microsoft .NET Framework 2.0
    Microsoft LifeChat
    Microsoft Office Professional Edition 2003
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 Parser and SDK
    RealPlayer
    Rhapsody Player Engine
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player 11 (KB936782)
    Security Update for Windows Media Player 6.4 (KB925398)
    WebFldrs XP
    Windows Installer 3.1 (KB893803)
    Windows Live installer
    Windows Live Messenger
    Windows Live Sign-in Assistant
    Windows Media Format 11 runtime
    Windows Updates Downloader
    Windows XP Hotfix - KB873339
    Windows XP Hotfix - KB885835
    Windows XP Hotfix - KB885836
    Windows XP Hotfix - KB886185
    Windows XP Hotfix - KB887472
    Windows XP Hotfix - KB888302
    Windows XP Hotfix - KB890859
    Windows XP Hotfix - KB891781

    ComboFix

    ComboFix 08-01-30.1 - _1 2008-01-30 0:38:07.3 - NTFSx86
    Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.661 [GMT -5:00]
    Running from: \\AZKAB\Desktop\ComboFix.exe

    WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
    .

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\WINDOWS\system32\drivers\core.cache.dsk . . . . failed to delete

    .
    ((((((((((((((((((((((((( Files Created from 2007-12-28 to 2008-01-30 )))))))))))))))))))))))))))))))
    .

    2008-01-30 00:39 . 2008-01-30 00:39 11,207 --a------ C:\WINDOWS\system32\Config.MPF
    2008-01-30 00:37 . 2008-01-30 00:37 <DIR> dr-h----- C:\Documents and Settings\_1\Recent
    2008-01-30 00:03 . 2008-01-30 00:03 <DIR> d-------- C:\Program Files\CCleaner
    2008-01-29 23:30 . 2008-01-29 23:31 270 --a------ C:\WINDOWS\wininit.ini
    2008-01-29 22:43 . 2008-01-29 23:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2008-01-29 12:37 . 2008-01-29 12:37 16,596 --a------ C:\WINDOWS\BM07c076d5.xml
    2008-01-27 15:06 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
    2008-01-27 15:06 . 2007-07-30 19:19 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
    2008-01-27 14:56 . 2006-03-03 11:07 143,360 --a------ C:\WINDOWS\system32\dunzip312.dll
    2008-01-27 14:55 . 2008-01-27 14:55 <DIR> d-------- C:\Program Files\McAfee.com
    2008-01-27 14:55 . 2008-01-29 21:22 <DIR> d-------- C:\Program Files\McAfee
    2008-01-27 14:55 . 2008-01-27 14:55 <DIR> d-------- C:\Program Files\Common Files\McAfee
    2008-01-27 14:55 . 2007-07-13 09:20 113,952 --a------ C:\WINDOWS\system32\drivers\Mpfp.sys
    2008-01-27 14:50 . 2008-01-27 14:57 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\McAfee
    2008-01-27 13:50 . 2008-01-27 13:50 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Avg7
    2008-01-27 13:19 . 2008-01-27 13:19 167,545 --a------ C:\WINDOWS\system32\drivers\core.cache.dsk
    2008-01-27 13:19 . 2008-01-27 13:19 86,144 --a------ C:\WINDOWS\system32\drivers\dmboott.sys
    2008-01-27 12:12 . 2008-01-27 12:12 <DIR> d-------- C:\Documents and Settings\_1\Application Data\skypePM
    2008-01-06 18:17 . 2004-08-04 00:56 159,232 --a------ C:\WINDOWS\system32\ptpusd.dll
    2008-01-06 18:17 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
    2008-01-06 18:17 . 2004-08-03 22:58 15,104 --a--c--- C:\WINDOWS\system32\dllcache\usbscan.sys
    2008-01-06 18:17 . 2001-08-17 22:36 5,632 --a------ C:\WINDOWS\system32\ptpusb.dll
    2008-01-05 17:00 . 2008-01-05 17:04 <DIR> d-------- C:\Documents and Settings\_1\USM3
    2007-12-31 18:29 . 2004-08-04 00:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
    2007-12-31 18:29 . 2004-08-04 00:56 21,504 --a--c--- C:\WINDOWS\system32\dllcache\hidserv.dll
    2007-12-31 18:28 . 2004-08-03 23:07 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
    2007-12-31 18:28 . 2004-08-03 23:07 59,264 --a--c--- C:\WINDOWS\system32\dllcache\usbaudio.sys
    2007-12-31 18:27 . 2007-12-31 18:27 <DIR> d-------- C:\Program Files\Microsoft LifeChat
    2007-12-31 18:27 . 2007-02-07 07:42 1,421,176 --a------ C:\WINDOWS\system32\WdfCoInstaller01001.dll
    2007-12-31 18:27 . 2007-02-07 07:42 61,944 --a------ C:\WINDOWS\system32\drivers\xusb21.sys
    2007-12-31 18:27 . 2007-12-31 18:27 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01001_Coinstaller_Critical.Wdf
    2007-12-31 18:27 . 2007-12-31 18:27 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_xusb21_01001.Wdf
    2007-12-31 02:08 . 2007-12-31 02:08 <DIR> d-------- C:\Program Files\Windows Media Connect 2
    2007-12-31 02:08 . 2004-08-04 07:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
    2007-12-31 02:07 . 2007-12-31 02:07 <DIR> d-------- C:\WINDOWS\system32\LogFiles
    2007-12-31 02:07 . 2008-01-01 00:41 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
    2007-12-30 22:22 . 2007-12-30 22:22 <DIR> d-------- C:\WINDOWS\system32\Adobe
    2007-12-30 22:22 . 2007-12-30 22:22 <DIR> d-------- C:\WINDOWS\Profiles
    2007-12-30 22:22 . 2008-01-05 23:29 <DIR> d-------- C:\Program Files\Common Files\Adobe
    2007-12-30 22:22 . 2007-12-30 22:22 <DIR> d-------- C:\Documents and Settings\_1\Application Data\InterTrust
    2007-12-30 22:19 . 1998-11-13 11:16 308,224 --a------ C:\WINDOWS\IsUn040c.exe
    2007-12-28 18:46 . 2004-08-03 23:08 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys
    2007-12-27 04:33 . 2007-12-27 04:47 <DIR> d-------- C:\Program Files\PartyPoker
    2007-12-23 22:22 . 2007-12-23 22:22 <DIR> d-------- C:\Program Files\Java
    2007-12-23 22:22 . 2007-12-23 22:22 <DIR> d-------- C:\Program Files\Common Files\Java
    2007-12-23 22:22 . 2008-01-30 00:40 <DIR> d-------- C:\Documents and Settings\_1\Shared
    2007-12-23 22:22 . 2008-01-30 00:41 <DIR> d-------- C:\Documents and Settings\_1\Incomplete
    2007-12-23 22:22 . 2008-01-28 18:56 <DIR> d-------- C:\Documents and Settings\_1\Application Data\LimeWire
    2007-12-23 22:22 . 2007-07-12 02:22 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
    2007-12-23 22:21 . 2007-12-23 22:22 <DIR> d-------- C:\Program Files\LimeWire
    2007-12-23 13:03 . 2008-01-24 12:07 <DIR> d-------- C:\Program Files\SopCast
    2007-12-16 13:32 . 2007-12-16 13:32 <DIR> d-------- C:\Program Files\Real
    2007-12-16 13:32 . 2007-12-16 13:32 <DIR> d-------- C:\Program Files\Common Files\xing shared
    2007-12-16 13:32 . 2007-12-16 13:32 <DIR> d-------- C:\Program Files\Common Files\Real
    2007-12-16 13:32 . 2007-12-16 13:32 <DIR> d-------- C:\Documents and Settings\_1\Application Data\Real
    2007-12-16 13:32 . 2007-12-16 13:32 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
    2007-12-16 13:32 . 2007-12-16 13:32 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
    2007-12-15 23:40 . 2007-12-15 23:40 <DIR> d-------- C:\Documents and Settings\_1\Application Data\DivX
    2007-12-15 18:21 . 2007-12-15 18:21 <DIR> d-------- C:\Program Files\DivX
    2007-12-15 14:49 . 2007-12-15 14:49 <DIR> d-------- C:\WINDOWS\system32\athan
    2007-12-15 14:49 . 2007-12-15 14:49 <DIR> d-------- C:\Program Files\Athan
    2007-12-15 14:49 . 2007-12-15 14:49 737,280 --a------ C:\WINDOWS\iun6002.exe
    2007-12-15 14:38 . 2003-06-18 17:31 17,920 --a------ C:\WINDOWS\system32\mdimon.dll
    2007-12-15 14:38 . 2007-12-15 14:38 376 --a------ C:\WINDOWS\ODBC.INI
    2007-12-15 14:37 . 2007-12-15 14:37 <DIR> d-------- C:\WINDOWS\SHELLNEW
    2007-12-15 14:37 . 2007-12-15 14:37 <DIR> d-------- C:\Program Files\Microsoft.NET
    2007-12-15 14:37 . 2007-12-15 14:37 <DIR> d-------- C:\Program Files\Microsoft ActiveSync
    2007-12-11 17:35 . 2007-12-11 17:35 524,288 --a------ C:\WINDOWS\system32\DivXsm.exe
    2007-12-11 17:35 . 2007-12-11 17:35 4,816 --a------ C:\WINDOWS\system32\divxsm.tlb
    2007-12-11 17:34 . 2007-12-11 17:34 3,596,288 --a------ C:\WINDOWS\system32\qt-dx331.dll
    2007-12-11 17:34 . 2007-12-11 17:34 1,044,480 --a------ C:\WINDOWS\system32\libdivx.dll
    2007-12-11 17:34 . 2007-12-11 17:34 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
    2007-12-11 17:32 . 2007-12-11 17:32 352,401 --a------ C:\WINDOWS\system32\DivXMedia.ax
    2007-12-11 17:32 . 2007-12-11 17:32 156,992 --a------ C:\WINDOWS\system32\DivXCodecVersionChecker.exe
    2007-12-11 17:32 . 2007-12-11 17:32 12,288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
    2007-12-10 01:13 . 2007-12-10 01:13 <DIR> d-------- C:\Documents and Settings\_1\Application Data\InterVideo
    2007-12-10 01:08 . 2007-12-10 01:08 <DIR> d-------- C:\Program Files\MSXML 4.0
    2007-12-10 01:08 . 2007-12-10 01:08 <DIR> d-------- C:\Program Files\Common Files\InterVideo
    2007-12-10 01:08 . 2002-11-21 10:57 204,800 --a------ C:\WINDOWS\system32\IVIresizeW7.dll
    2007-12-10 01:08 . 2002-11-21 10:57 200,704 --a------ C:\WINDOWS\system32\IVIresizeA6.dll
    2007-12-10 01:08 . 2002-11-21 10:57 192,512 --a------ C:\WINDOWS\system32\IVIresizeP6.dll
    2007-12-10 01:08 . 2002-11-21 10:57 192,512 --a------ C:\WINDOWS\system32\IVIresizeM6.dll
    2007-12-10 01:08 . 2002-11-21 10:57 188,416 --a------ C:\WINDOWS\system32\IVIresizePX.dll
    2007-12-10 01:08 . 2002-11-21 10:57 20,480 --a------ C:\WINDOWS\system32\IVIresize.dll
    2007-12-10 01:07 . 2007-12-10 01:07 <DIR> d-------- C:\Program Files\InterVideo
    2007-12-10 01:07 . 2003-01-27 16:32 831,600 --a------ C:\WINDOWS\system32\Ctaa1.dat
    2007-12-10 01:07 . 2003-11-11 10:44 333,600 --a------ C:\WINDOWS\system32\drivers\ctdvda2k.sys
    2007-12-10 01:07 . 2003-11-11 10:43 77,824 --a------ C:\WINDOWS\system32\ctdvda32.dll
    2007-12-09 19:23 . 2007-12-22 19:15 <DIR> d-------- C:\Documents and Settings\_1\Contacts
    2007-12-09 19:01 . 2007-12-31 18:27 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
    2007-12-09 18:58 . 2007-12-09 19:01 <DIR> d-------- C:\Program Files\Windows Live
    2007-12-09 18:58 . 2007-12-09 19:00 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller
    2007-12-09 18:58 . 2007-12-09 18:58 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
    2007-12-09 18:55 . 2008-01-29 03:01 <DIR> d--h----- C:\WINDOWS\$hf_mig$
    2007-12-09 18:55 . 2006-09-25 17:58 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe
    2007-12-09 18:32 . 2007-07-30 19:19 43,352 --a------ C:\WINDOWS\system32\wups2.dll
    2007-12-09 18:32 . 2007-07-30 19:18 34,136 --a------ C:\WINDOWS\system32\wucltui.dll.mui
    2007-12-09 18:32 . 2007-07-30 19:19 25,944 --a------ C:\WINDOWS\system32\wuaucpl.cpl.mui
    2007-12-09 18:32 . 2007-07-30 19:19 25,944 --a------ C:\WINDOWS\system32\wuapi.dll.mui
    2007-12-09 18:32 . 2007-07-30 19:18 20,312 --a------ C:\WINDOWS\system32\wuaueng.dll.mui

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-01-30 05:39 3,932,160 ---ha-w C:\Documents and Settings\_1\NTUSER.DAT
    2008-01-27 19:56 --------- d-s---w C:\Documents and Settings\_1\Application Data\Microsoft
    2007-12-11 22:33 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
    2007-12-11 22:33 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
    2007-12-11 22:33 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
    2007-12-11 22:33 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
    2007-12-11 22:33 682,496 ----a-w C:\WINDOWS\system32\DivX.dll
    2007-12-11 22:33 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
    2007-12-11 22:33 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
    2007-12-11 22:33 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
    2007-12-11 22:33 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
    2007-12-11 22:33 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
    2007-12-11 22:33 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
    2007-12-11 22:33 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
    2007-12-08 05:38 --------- d--h--w C:\Program Files\Uninstall Information
    2007-12-08 05:38 --------- d-----w C:\Documents and Settings\_1\Application Data\Identities
    2007-12-08 05:30 --------- d-----w C:\Program Files\microsoft frontpage
    2007-11-07 09:26 721,920 ----a-w C:\WINDOWS\system32\lsasrv.dll
    2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
    2007-10-27 22:40 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
    2007-10-18 16:31 51,224 ----a-w C:\WINDOWS\system32\sirenacm.dll
    2007-10-11 06:13 659,456 ----a-w C:\WINDOWS\system32\wininet.dll
    .

    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-12-08 01:32 171448]
    "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 11:24 1694208]
    "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Athan"="C:\Program Files\Athan\Athan.exe" [2007-09-06 14:25 1003520]
    "TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-12-16 13:32 185896]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00 132496]
    "LifeChat"="C:\Program Files\Microsoft LifeChat\LifeChat.exe" [2007-01-26 14:31 259440]
    "mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [2007-08-03 22:33 582992]
    "McENUI"="C:\PROGRA~1\McAfee\MHN\McENUI.exe" [2007-07-22 20:29 1160480]

    C:\Documents and Settings\_1\Start Menu\Programs\Startup\
    LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2007-12-03 16:35:53 147456]

    C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
    InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe [2007-12-10 01:08:07 278528]
    VPN Client.lnk - C:\WINDOWS\Installer\{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}\Icon3E5562ED7.ico [2007-12-08 01:48:16 6144]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\jfbouafc]
    jfbouafc.dll

    R1 dmboott;dmboott;C:\WINDOWS\system32\drivers\dmboott.sys [2008-01-27 13:19]

    .
    Contents of the 'Scheduled Tasks' folder
    "2008-01-27 19:55:33 C:\WINDOWS\Tasks\McDefragTask.job"
    - c:\PROGRA~1\mcafee\mqc\QcConsol.exe'
    "2008-01-27 19:55:32 C:\WINDOWS\Tasks\McQcTask.job"
    - c:\PROGRA~1\mcafee\mqc\QcConsol.exe
    .
    **************************************************************************

    catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-01-30 00:41:04
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...

    scan completed successfully
    hidden files: 0

    **************************************************************************
    .
    ------------------------ Other Running Processes ------------------------
    .
    C:\Program Files\Athan\Athan.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
    C:\Program Files\Microsoft LifeChat\LifeChat.exe
    C:\Program Files\McAfee.com\Agent\mcagent.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    C:\Program Files\LimeWire\LimeWire.exe
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    .
    **************************************************************************
    .
    Completion time: 2008-01-30 0:42:04 - machine was rebooted
    ComboFix-quarantined-files.txt 2008-01-30 05:41:47
    ComboFix2.txt 2008-01-30 05:13:17
    ComboFix3.txt 2008-01-30 03:37:37
    .
    2008-01-29 08:01:41 --- E O F ---

  2. #2
    Junior Member
    Join Date
    Jan 2008
    Posts
    2

    Default

    HJT:

    Logfile of Trend Micro HijackThis v2.0.0 (BETA)
    Scan saved at 1:40:39 AM, on 1/30/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Athan\Athan.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
    C:\Program Files\Microsoft LifeChat\LifeChat.exe
    C:\Program Files\McAfee.com\Agent\mcagent.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    C:\Program Files\LimeWire\LimeWire.exe
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\Program Files\McAfee\MSK\MskSrver.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\notepad.exe
    C:\Program Files\McAfee\MSC\mcuimgr.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Documents and Settings\_1\Desktop\HiJackThis_v2.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - C:\Program Files\McAfee\MSK\mcapbho.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
    O4 - HKLM\..\Run: [LifeChat] "C:\Program Files\Microsoft LifeChat\LifeChat.exe"
    O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
    O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
    O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O15 - Trusted Zone: *.gomyhit.com
    O15 - Trusted Zone: *.imageservr.com
    O15 - Trusted Zone: *.imagesrvr.com
    O15 - Trusted Zone: *.storageguardsoft.com
    O15 - Trusted Zone: *.gomyhit.com (HKLM)
    O15 - Trusted Zone: *.imageservr.com (HKLM)
    O15 - Trusted Zone: *.imagesrvr.com (HKLM)
    O15 - Trusted Zone: *.storageguardsoft.com (HKLM)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1197243108546
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - Winlogon Notify: jfbouafc - jfbouafc.dll (file missing)
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe

    --
    End of file - 6903 bytes

    please help me, My PC hase a lot of troubles...I have tried to delete core.cache.dsk and dmboott.sys unsuccessfully.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •