Topic: Lots of pop ups....running slow...here is my HJT log..Please Help!!!
View Single Post
  #6  
Old May 10th, 2007, 04:07 PM
Timsgirl Timsgirl is offline
New Member
  
Join Date: Sep 2006
Posts: 28
Here is a complete Silent Runner log. I dont have anyone that can download the Combofix for me, and I still cant do it myself.


"Silent Runners.vbs", revision R50, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run \ {++}
"MSMSGS" = ""C:\Program Files\Messenger\msmsgs.exe" /background" [MS]
"Fshanlfd" = "C:\WINDOWS\system32\*icrosoft.NET\**rvices.ex e" (unwritable string) [null data]
"Srro" = ""C:\DOCUME~1\CRISTINA\MYDOCU~1\STEM~1\spool32.exe " -vt yazb" [null data]
"ctfmon.exe" = "C:\WINDOWS\system32\ctfmon.exe" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Pol icies\Explorer\Run\ {++}
"svchost.exe" = "C:\WINDOWS\svchost.exe" [null data]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run \ {++}
"HPBootOp" = ""C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run" ["Hewlett-Packard Company"]
"Reminder" = ""C:\Windows\Creator\Remind_XP.exe"" ["SoftThinks"]
"HP Software Update" = "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" ["Hewlett-Packard Development Company, L.P."]
"YBrowser" = "C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe" ["Yahoo!, Inc."]
"Motive SmartBridge" = "C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe" ["Motive Communications, Inc."]
"QuickTime Task" = ""C:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."]
"runner1" = "C:\WINDOWS\retadpu1000272.exe 61A847B5BBF72813329B385475FB01F0B3E35B6638993F4661 AA4EBD86D67C56389B284534F310" [empty string]
"{ZN}" = "C:\WINDOWS\system32\TISKY002.exe SKY002" [empty string]
"WindowsService" = "rundll32.exe "C:\WINDOWS\system32\bsrxrwup.dll",realset" [MS]
"MSConfig" = "C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig .exe /auto" [MS]
"SvcManager" = "winlogin2.exe" [null data]
"CTDrive" = "rundll32.exe C:\WINDOWS\system32\drvkof.dll,startup" [MS]
"SManager" = "smanager.7.exe" [null data]

HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\
{02478D38-C3F9-4EFB-9B51-7695ECA05670}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Yahoo! Toolbar Helper"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll" ["Yahoo! Inc."]
{03610430-31B9-447E-A54D-B22A80A3556A}\(Default) = (no title provided)
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\WINDOWS\system32\jkkli.dll" [null data]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "AcroIEHlprObj Class"
\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat
Reply With Quote