[Show all top banners]

Nirman
Replies to this thread:

More by Nirman
What people are reading
Subscribers
:: Subscribe
Back to: Kurakani General Refresh page to view new replies
 Computer Expert!!!!!! Help please!!!

[Please view other pages to see the rest of the postings. Total posts: 54]
PAGE: <<  1 2 3  
[VIEWED 13699 TIMES]
SAVE! for ease of future access.
The postings in this thread span 3 pages, View Last 20 replies.
Posted on 05-14-06 12:29 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Can anyone tell whats wrong with this computer...It stops responding from time to time...I have put the log file from hijack this here... and during scan it shows loads of trojan virus..Please suggest what is best option to do??

Log File
Logfile of HijackThis v1.97.7
Scan saved at 19:07:38, on 18/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\SYSTEM32\GEARSEC.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\inet20005\winlogon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Adaptec Shared\CreateCD\CreateCD50.exe
C:\Program Files\Common Files\CMEII\CMESys.exe
C:\PROGRA~1\BUTTER~1\BO1HEL~1.EXE
C:\WINDOWS\System32\wuauclt.exe
C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\PROGRA~1\AQUATI~1\AQ3HEL~1.EXE
C:\WINDOWS\ABox.exe
C:\Program Files\Common Files\eAcceleration\eanthology.exe
C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\Program Files\ErrorSafe\ers.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\System32\kernels8.exe
C:\Program Files\Java\jre1.5.0_05\bin\jucheck.exe
C:\Program Files\Spyware Soft Stop\Spyware Soft Stop.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Common Files\GMT\GMT.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\WINDOWS\System32\dllcache\IExplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgwb.dat
C:\Documents and Settings\kiran sharama\My Documents\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nepaljapan.com/
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
F1 - win.ini: run=C:\WINDOWS\inet20005\winlogon.exe
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - C:\WINDOWS\inet20005\3.03.00.dll
O2 - BHO: (no name) - {71A19F5C-D55F-41A1-AD3C-E470CBBC1A3C} - C:\WINDOWS\lbbho.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: DashBar Toolbar - {CC90CDA0-74A0-45b4-80EF-D89CA8C249B8} - C:\Program Files\DashBar\DashBar21.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CreateCD50] "C:\Program Files\Common Files\Adaptec Shared\CreateCD\CreateCD50.exe" -r
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [CMESys] "C:\Program Files\Common Files\CMEII\CMESys.exe"
O4 - HKLM\..\Run: [BO1HelperStartUp] C:\PROGRA~1\BUTTER~1\BO1HEL~1.EXE /partner BO1
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRA~1\AQUATI~1\AQ3HEL~1.EXE /partner AQ3
O4 - HKLM\..\Run: [ABox] C:\WINDOWS\ABox.exe
O4 - HKLM\..\Run: [EanthologyApp] "C:\Program Files\Common Files\eAcceleration\eanthology.exe" /b Startup
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [ErrorSafe] C:\Program Files\ErrorSafe\ers.exe /scan
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [System] C:\WINDOWS\System32\kernels8.exe
O4 - HKLM\..\Run: [xp_system] C:\WINDOWS\inet20005\winlogon.exe
O4 - HKLM\..\Run: [Software Soft Stop] C:\Program Files\Spyware Soft Stop\Spyware Soft Stop.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0
O4 - HKCU\..\Run: [xp_system] C:\WINDOWS\inet20005\winlogon.exe
O4 - HKLM\..\RunOnce: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus /ro
O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O4 - Global Startup: GStartup.lnk = C:\Program Files\Common Files\GMT\GMT.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk580YYBE
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Messenger (HKLM)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei-2/CursorManiaFWBInitialSetup1.0.0.8-2.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540000} (CInstall Class) - http://www.spywarestormer.com/files2/Install.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540006} (CInstall Class) - http://www.errorguard.com/installation/Install.cab
O16 - DPF: {8C875948-9C60-4381-9248-0DF180542D53} - http://installs.hotbar.com/installs/hbtools/programs/hbtools.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {BAC01377-73DD-4796-854D-2A8997E3D68A} (Yahoo! Photos Easy Upload Tool Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/ydropper/ydropper1_6us.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
 
Posted on 05-14-06 10:13 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

it feels so proud to say I'm from DC rather than saying i'm from Virginia. isnt it? :P :P :D :D
 
Posted on 05-14-06 10:18 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Where in "DC" are you? or "VA"? ;)
 
Posted on 05-14-06 10:19 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

i'm from "MD" part of DC. :P

Silver Spring to be exact. (red line) :D
 
Posted on 05-14-06 10:23 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

LOL.

paila ta mero "Orange line" thiyo now blue line, ani bus! lol
 
Posted on 05-15-06 2:46 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Can any boddy suggest how to copy clips from youtube video ???????
Save that clips....
 
Posted on 05-15-06 9:21 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Watch, upload, and share --are the three tasks you can do with youtube. The media that you play with youtube are not meant to be saved on your local disk. As long as it's available online, I don't see a necessity to save it offline though. However, for the maniacs, there are some sharewares available through sourceforge.net that record the streaming media, and let you save them on your disk.

Redstone and Slash, I don't have those Gigs of clusters and sectors on my head; the port record's on the net. You can find it at sans.org.

~@~
 
Posted on 05-15-06 10:43 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

I don find problem with the online at here.
But when u go to nepal there is no chance of net. so wondering

Sajha Thanx for ur response
 
Posted on 05-15-06 11:21 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Dc area ma sabai team shaky chha yar,
Red Skins to play off in what 5 years and how far did they go. wizards...Man Lets not even talk about them. Nationals I don't even follow them and here comes Terps after juan haward was drafted Terps are down the drain. NIT Champs thats what Terps deserves,

Heheheh
Peace
 
Posted on 05-15-06 11:44 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

but how about the women Terps. they are the only ones to cheer for now. :D
 
Posted on 05-15-06 11:49 AM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Slash,
Thats the only one but I don't follow woman NCAA anyway. Lets get into real sports dude.
 
Posted on 05-15-06 1:49 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

Womens ' sport is not sport? c'mon now!! thats funny!
tell me what is real sport!?

but cheers to Terps for winnin NCAA :)
 
Posted on 05-15-06 2:03 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

NCAA Women's basket ball is like CFL (Candian football league),

peace
 
Posted on 05-15-06 2:04 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 
 
Posted on 05-15-06 5:33 PM     Reply [Subscribe]
Login in to Rate this Post:     0       ?    
 

redstone bro,
ke chhaa
exam ko tayari kasto chhaaa?

aafno ta property law ko exam....jyaaan gaye dimaag ma chirenaa......nepal ma 350 rs ko Law Manual by Dr. Gopal Sharma padhne baani bhayeko...ke bujhinthyoo yaha ko bademaan kitab haru.....khair.....class ma yesso....nasutera bitayeka din haru le sahayog hunchha ki bhanne aas ma chhu.....

computer nachalau, chupa lagera padhau bhanya pani testai raichhaa......

yeta uti garyo...tyo keyboard ko awaj kaan ma napare sammaa, ke ho ke ho.....

aahile ta computer le kaam garyaa jasto chhaaa.....6-7 ghanta off garera rakhe.... bro le bhanya jastai, last known good configuration ma gaye ra set gare....aani....virus chire ko din dekhi aahile samma ko file haru khoji khoji delete gare....tai pani 2-4 wata file haru jyaan gaye gayenaaan........


bro le diyeko tyo free antivirus pani gazab raichhaa......

kyaa kare.....ek virus ....salaa..aadmi ko hizadaa bana deta hai......
 



PAGE: <<  1 2 3  
Please Log in! to be able to reply! If you don't have a login, please register here.

YOU CAN ALSO



IN ORDER TO POST!




Within last 60 days
Recommended Popular Threads Controvertial Threads
TPS Re-registration case still pending ..
and it begins - on Day 1 Trump will begin operations to deport millions of undocumented immigrants
From Trump “I will revoke TPS, and deport them back to their country.”
I hope all the fake Nepali refugee get deported
Tourist Visa - Seeking Suggestions and Guidance
advanced parole
Those who are in TPS, what’s your backup plan?
ढ्याउ गर्दा दसैँको खसी गनाउच
To Sajha admin
MAGA denaturalization proposal!!
How to Retrieve a Copy of Domestic Violence Complaint???
wanna be ruled by stupid or an Idiot ?
All the Qatar ailines from Nepal canceled to USA
MAGA मार्का कुरा पढेर दिमाग नखपाउनुस !
Travel Document for TPS (approved)
MAGA and all how do you feel about Trumps cabinet pick?
NOTE: The opinions here represent the opinions of the individual posters, and not of Sajha.com. It is not possible for sajha.com to monitor all the postings, since sajha.com merely seeks to provide a cyber location for discussing ideas and concerns related to Nepal and the Nepalis. Please send an email to admin@sajha.com using a valid email address if you want any posting to be considered for deletion. Your request will be handled on a one to one basis. Sajha.com is a service please don't abuse it. - Thanks.

Sajha.com Privacy Policy

Like us in Facebook!

↑ Back to Top
free counters