View Single Post
  #13  
Old January 22nd, 2008, 02:29 PM
Morfeasss Morfeasss is offline
CTH Subscriber
 
Join Date: Feb 2006
O/S: Windows XP Home
Location: Greece
Posts: 5,140
That's alright,

Run HijackThis and place a checkmark next to the following item in bold, close all open windows and click Fix Checked:

O23 - Service: SphtBot Profile Launcher (SBProfileLauncher) - Unknown owner - C:\Documents and Settings\Jun Lee\Desktop\New Folder (3)\ProfileLauncher.exe (file missing)

And close HijackThis.
~~~~~~~~~~~~~~~~


Code:
KillAll::
File::
C:\WINDOWS\regedit.exe.reg
C:\WINDOWS\system32\data1.set
C:\WINDOWS\system32\data2.set


Folder::
C:\WINDOWS\svchost

RenV::
----a-w           970,752 2008-01-18 22:18:52  C:\Program Files\Common Files\Adobe\Updater\AdobeUpdater .exe
----a-w           202,024 2008-01-18 22:18:38  C:\Program Files\Common Files\Nero\Lib\NMBgMonitor .exe
----a-w           115,816 2008-01-18 22:18:28  C:\Program Files\Common Files\Symantec Shared\ccApp .exe
----a-w           517,768 2008-01-19 00:31:33  C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc .exe
----a-w           136,136 2008-01-17 20:43:59  C:\Program Files\DAEMON Tools Pro\DTProAgent .exe
----a-w            68,856 2008-01-18 22:18:41  C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe
----a-w           139,264 2008-01-18 22:18:25  C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif .exe
----a-w           267,048 2008-01-18 22:18:25  C:\Program Files\iTunes\iTunesHelper .exe
----a-w           132,496 2008-01-18 22:18:28  C:\Program Files\Java\jre1.6.0_03\bin\jusched .exe
----a-w         1,694,208 2008-01-18 22:19:02  C:\Program Files\Messenger\msmsgs .exe
----a-w            31,016 2008-01-18 22:18:28  C:\Program Files\Microsoft Office\Office12\GrooveMonitor .exe
----a-w            81,920 2008-01-18 22:18:34  C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd .exe
----a-w           286,720 2008-01-19 00:33:21  C:\Program Files\QuickTime\qttask                         .exe
----a-w           286,720 2008-01-20 18:42:07  C:\Program Files\QuickTime\qttask                        .exe
----a-w           286,720 2008-01-20 18:42:08  C:\Program Files\QuickTime\qttask                       .exe
----a-w           286,720 2008-01-20 18:42:08  C:\Program Files\QuickTime\qttask                      .exe
----a-w           286,720 2008-01-20 18:42:09  C:\Program Files\QuickTime\qttask                     .exe
----a-w           286,720 2008-01-20 18:42:10  C:\Program Files\QuickTime\qttask                    .exe
----a-w           286,720 2008-01-20 18:42:11  C:\Program Files\QuickTime\qttask                   .exe
----a-w           286,720 2008-01-20 18:42:12  C:\Program Files\QuickTime\qttask                  .exe
----a-w           286,720 2008-01-20 18:42:12  C:\Program Files\QuickTime\qttask                 .exe
----a-w           286,720 2008-01-20 18:42:13  C:\Program Files\QuickTime\qttask                .exe
----a-w           286,720 2008-01-20 18:42:13  C:\Program Files\QuickTime\qttask               .exe
----a-w           286,720 2008-01-20 18:42:14  C:\Program Files\QuickTime\qttask              .exe
----a-w           286,720 2008-01-20 18:42:16  C:\Program Files\QuickTime\qttask             .exe
----a-w           286,720 2008-01-20 18:42:18  C:\Program Files\QuickTime\qttask            .exe
----a-w           286,720 2008-01-20 18:42:19  C:\Program Files\QuickTime\qttask           .exe
----a-w           286,720 2008-01-20 18:42:20  C:\Program Files\QuickTime\qttask          .exe
----a-w           286,720 2008-01-20 18:42:22  C:\Program Files\QuickTime\qttask         .exe
----a-w           286,720 2008-01-20 18:42:23  C:\Program Files\QuickTime\qttask        .exe
----a-w           286,720 2008-01-20 18:42:24  C:\Program Files\QuickTime\qttask       .exe
----a-w           286,720 2008-01-20 18:42:25  C:\Program Files\QuickTime\qttask      .exe
----a-w           286,720 2008-01-20 18:42:25  C:\Program Files\QuickTime\qttask     .exe
----a-w           286,720 2008-01-20 18:42:26  C:\Program Files\QuickTime\qttask    .exe
----a-w           286,720 2008-01-20 18:42:27  C:\Program Files\QuickTime\qttask   .exe
----a-w           286,720 2008-01-20 18:42:28  C:\Program Files\QuickTime\qttask  .exe
----a-w           286,720 2008-01-20 18:42:28  C:\Program Files\QuickTime\qttask .exe
----a-w         1,266,936 2008-01-18 22:18:52  C:\Program Files\Steam\Steam .exe
----a-w         5,724,184 2008-01-16 18:52:21  C:\Program Files\Windows Live\Messenger\MsnMsgr                   .Exe
----a-w         5,724,184 2008-01-20 18:45:46  C:\Program Files\Windows Live\Messenger\MsnMsgr                  .Exe
----a-w         5,724,184 2008-01-20 18:45:55  C:\Program Files\Windows Live\Messenger\MsnMsgr                 .Exe
----a-w         5,724,184 2008-01-20 18:46:03  C:\Program Files\Windows Live\Messenger\MsnMsgr                .Exe
----a-w         5,724,184 2008-01-20 18:46:12  C:\Program Files\Windows Live\Messenger\MsnMsgr               .Exe
----a-w         5,724,184 2008-01-20 18:46:21  C:\Program Files\Windows Live\Messenger\MsnMsgr              .Exe
----a-w         5,724,184 2008-01-20 18:46:31  C:\Program Files\Windows Live\Messenger\MsnMsgr             .Exe
----a-w         5,724,184 2008-01-20 18:46:41  C:\Program Files\Windows Live\Messenger\MsnMsgr            .Exe
----a-w         5,724,184 2008-01-20 18:46:50  C:\Program Files\Windows Live\Messenger\MsnMsgr           .Exe
----a-w         5,724,184 2008-01-20 18:46:59  C:\Program Files\Windows Live\Messenger\MsnMsgr          .Exe
----a-w         5,724,184 2008-01-20 18:47:07  C:\Program Files\Windows Live\Messenger\msnmsgr        .exe
----a-w         5,724,184 2008-01-20 18:47:17  C:\Program Files\Windows Live\Messenger\msnmsgr       .exe
----a-w         5,724,184 2008-01-20 18:47:26  C:\Program Files\Windows Live\Messenger\msnmsgr      .exe
----a-w         5,724,184 2008-01-20 18:47:34  C:\Program Files\Windows Live\Messenger\msnmsgr     .exe
----a-w         5,724,184 2008-01-20 18:47:43  C:\Program Files\Windows Live\Messenger\msnmsgr    .exe
----a-w         5,724,184 2008-01-20 18:47:53  C:\Program Files\Windows Live\Messenger\msnmsgr   .exe
----a-w         5,724,184 2008-01-20 18:48:01  C:\Program Files\Windows Live\Messenger\msnmsgr  .exe
----a-w         5,724,184 2008-01-18 01:12:19  C:\Program Files\Windows Live\Messenger\msnmsgr .exe
----a-w            15,360 2008-01-17 13:21:10  C:\WINDOWS\system32\ctfmon .exe
Open Notepad and copy and paste the above text (inside the box) into the text file. Now go to File > Save As and call it CFScript.txt, in the same location as ComboFix.exe which is on the Desktop.

[IMG]http://users.*******.be/bluepatchy/miekiemoes/images/CFScript.gif[/IMG]

Referring to the picture above, drag CFScript.txt into ComboFix.exe

ComboFix will now run as it did before. When the command window opens, select 1 (and Enter). Allow the scan to run. When completed a text window will appear - please copy/paste the contents back here. This log can also be found at C:\ComboFix.txt.
Reply With Quote