Jump to content


Photo

HELP!!!


  • Please log in to reply
4 replies to this topic

#1 Metallibanger_no.1

Metallibanger_no.1

    Member

  • Full Member
  • Pip
  • 4 posts

Posted 06 July 2004 - 03:58 PM

My browser keeps getting shut down, my connection turned off, unable to reconnect and before the browser goes off a woman in underwear flashes up on the browser for about a second.

And some hardcore stuff cameup too.

What d o i do?

#2 Metallibanger_no.1

Metallibanger_no.1

    Member

  • Full Member
  • Pip
  • 4 posts

Posted 06 July 2004 - 04:00 PM

oh yeah and Ad aware finds the dialer, i can remove it but it comes back everytime

#3 Metallibanger_no.1

Metallibanger_no.1

    Member

  • Full Member
  • Pip
  • 4 posts

Posted 07 July 2004 - 08:59 AM

Lavasoft Ad-aware Personal Build 6.181
Logfile created on :07 July 2004 14:52:14
Created with Ad-aware Personal, free for private use.
Using reference-file :1R200 12.07.2003
______________________________________________________

Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry


07-07-2004 14:52:14 - Scan started. (Smart mode)

Listing running processes
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 07-07-2004 13:35:16
BasePriority : Normal


#:2 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:20
BasePriority : High


#:3 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:20
BasePriority : Normal
FileSize : 86 KB
FileVersion : 5.00.2195.2780
ProductVersion : 5.00.2195.2780
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:4 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:20
BasePriority : Normal
FileSize : 32 KB
FileVersion : 5.00.2195.4436
ProductVersion : 5.00.2195.4436
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : LSA Executable and Server DLL (Export Version)
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 30/10/2001 03:57:00

#:5 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:22
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:6 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:23
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.4299
ProductVersion : 5.00.2195.4299
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 30/10/2001 03:57:00

#:7 [asfagent.exe]
FilePath : C:\Program Files\Intel\ASF Agent\
ThreadCreationTime : 07-07-2004 13:35:23
BasePriority : Normal
FileSize : 208 KB
FileVersion : 3.0
ProductVersion : 3.0
Copyright : Copyright
CompanyName : Intel Corporation
FileDescription : ASF Agent COM Service
InternalName : ASFAgent
OriginalFilename : ASFAgent.EXE
ProductName : Intel
Created on : 08/05/2002 08:51:52
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2002 08:51:52

#:8 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 07-07-2004 13:35:23
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:9 [iap.exe]
FilePath : C:\Program Files\Dell\OpenManage\Client\
ThreadCreationTime : 07-07-2004 13:35:23
BasePriority : Normal
FileSize : 160 KB
FileVersion : 7, 0, 316, 0
ProductVersion : 7, 0, 316, 0
Copyright : Copyright
CompanyName : Dell Computer Corporation
FileDescription : Iap Module
InternalName : Iap
OriginalFilename : Iap.EXE
ProductName : OpenManage Client Instrumentation
Created on : 04/04/2002 11:56:10
Last accessed : 06/07/2004 23:00:00
Last modified : 04/04/2002 11:56:10

#:10 [nmssvc.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 07-07-2004 13:35:24
BasePriority : Normal
FileSize : 1092 KB
FileVersion : 2.1.8.0
ProductVersion : 2.1.8.0
Copyright : Copyright
CompanyName : Intel Corporation
FileDescription : NMS Module
InternalName : NMS Module
ProductName : NMS
Created on : 27/02/2002 08:57:34
Last accessed : 06/07/2004 23:00:00
Last modified : 27/02/2002 08:57:34

#:11 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:27
BasePriority : Normal
FileSize : 65 KB
FileVersion : 5.00.2195.2104
ProductVersion : 5.00.2195.2104
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:12 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:29
BasePriority : Normal
FileSize : 115 KB
FileVersion : 4.71.2195.1
ProductVersion : 4.71.2195.1
Copyright : Copyright © Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Microsoft
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:13 [stisvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 07-07-2004 13:35:29
BasePriority : Normal
FileSize : 60 KB
FileVersion : 5.00.2195.2104
ProductVersion : 5.00.2195.2104
Copyright : Copyright © Microsoft Corp. 1996-1997
CompanyName : Microsoft Corporation
FileDescription : Still Image Devices Monitor
InternalName : STIMON
OriginalFilename : STIMON.EXE
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:14 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 07-07-2004 13:35:35
BasePriority : Normal
FileSize : 237 KB
FileVersion : 5.00.3315.2846
ProductVersion : 5.00.3315.2846
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:15 [hkcmd.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 07-07-2004 13:35:37
BasePriority : Normal
FileSize : 104 KB
FileVersion : 3,0,0,1517
ProductVersion : 7,0,0,1517
Copyright : Copyright 1999-2001, Intel Corporation
CompanyName : Intel Corporation
FileDescription : hkcmd Module
InternalName : HKCMD
OriginalFilename : HKCMD.EXE
ProductName : Intel® Common User Interface
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 26/03/2002 20:20:52

#:16 [point32.exe]
FilePath : C:\Program Files\Microsoft Hardware\Mouse\
ThreadCreationTime : 07-07-2004 13:35:37
BasePriority : Normal
FileSize : 72 KB
FileVersion : 3.20.0484
ProductVersion : 3.20.0484
Copyright : Copyright © Microsoft Corp. 1983-2000
CompanyName : Microsoft Corporation
FileDescription : Cursor features application file
InternalName : IntelliPoint
OriginalFilename : POINT32.EXE
ProductName : Microsoft Pointing Device Software
Created on : 04/11/2002 09:19:52
Last accessed : 06/07/2004 23:00:00
Last modified : 19/05/2000 13:24:56

#:17 [winampa.exe]
FilePath : C:\Program Files\Winamp\
ThreadCreationTime : 07-07-2004 13:35:38
BasePriority : Normal
FileSize : 33 KB
Created on : 12/12/2003 23:50:34
Last accessed : 06/07/2004 23:00:00
Last modified : 12/12/2003 23:50:34

#:18 [wnetlogin.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 07-07-2004 13:35:39
BasePriority : Normal
FileSize : 67 KB
Created on : 04/06/2004 11:57:42
Last accessed : 06/07/2004 23:00:00
Last modified : 04/06/2004 11:57:42

#:19 [msgaol.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 07-07-2004 13:35:40
BasePriority : Normal
FileSize : 30 KB
Created on : 24/06/2004 12:05:19
Last accessed : 06/07/2004 23:00:00
Last modified : 24/06/2004 12:06:14

#:20 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ThreadCreationTime : 07-07-2004 13:37:21
BasePriority : Normal
FileSize : 59 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright © Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Microsoft® Windows ® 2000 Operating System
Created on : 31/12/1979 23:00:00
Last accessed : 06/07/2004 23:00:00
Last modified : 08/05/2001 06:00:00

#:21 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-aware 6\
ThreadCreationTime : 07-07-2004 13:52:06
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 12/08/2003 23:58:59
Last accessed : 06/07/2004 23:00:00
Last modified : 12/07/2003 21:00:20

Memory scan result :
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ
New objects : 0
Objects found so far: 0


Started registry scan
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ

Dialer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : Software\Coulomb





Deep scanning and examining files (C:)
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ

14:52:17 Scan stopped by user.

Summary of this scan
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ
Total scanning time :00:00:03:94
Objects scanned :2346
Objects identified :1
Objects ignored :0
New objects :1



Ad-Aware's logfile is the only one i can save, Hijackthis wont stay open and the thing for fixing it that i downloaded didnt work. It still closes everytime

#4 Metallibanger_no.1

Metallibanger_no.1

    Member

  • Full Member
  • Pip
  • 4 posts

Posted 07 July 2004 - 09:05 AM

i dont know how to get rid of this dialer, i really need help!

Can i save microsoft office to a memory key and reinstall it if i format the PC?

#5 dave38

dave38

    Devout Murphyite!

  • Emeritus
  • PipPipPipPipPip
  • 8,508 posts

Posted 07 July 2004 - 02:31 PM

We need a closer look at what's happening.
Please download Hijack this
Copy it into its own folder, doubleclick HijackThis.exe, and hit "Scan".

When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, do Ctrl-A to Select All, and copy its contents here. Most of what it lists will be harmless or even essential, don't fix anything yet.
Be wary of strong drink. It may make you shoot at tax collectors, and miss!
Please support SWI forum




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Member of ASAP and UNITE
Support SpywareInfo Forum - click the button