saROMan said:
well bud...sems ur Badly infected with Virus/trojen ...u know what to do in such case......also post ur Hijack log fro more rectification
What abt me.
Anything wrong
Logfile of HijackThis v1.97.7
Scan saved at 12:53:48 AM, on 6/4/05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
D:\UTILITIES\SYSTEM\ZONEALARM FIREWALL\ZLCLIENT.EXE
D:\UTILITIES\ANTI VIRUS\AVG FREE EDITION\AVGCC.EXE
D:\UTILITIES\ANTI VIRUS\AVG FREE EDITION\AVGEMC.EXE
D:\UTILITIES\ANTI VIRUS\AVG FREE EDITION\AVGAMSVR.EXE
C:\WINDOWS\SYSTEM\CARPSERV.EXE
D:\UTILITIES\ESSENTIALS\SPYBOT - SEARCH & DESTROY\TEATIMER.EXE
D:\ANINDYA\FREERAM XP PRO 1.40.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
D:\UTILITIES\INTERNET\FREE DOWNLOAD MANAGER\FDM.EXE
D:\UTILITIES\INTERNET\OPERA\OPERA.EXE
C:\WINDOWS\EXPLORER.EXE
D:\UTILITIES\DOWNLOADS\COMPLETED\HIJACKTHIS.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = *www.zdnetindia.com
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\UTILIT~1\ESSENT~1\SPYBOT~1\SDHELPER.DLL
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\UTILITIES\ESSENTIALS\ADOBE READER 6.0 FULL\READER\ACTIVEX\ACROIEHELPER.DLL
O2 - BHO: (no name) - {7DAAC7DE-9EF0-4FF0-BFA5-AFF3E899054C} - D:\Utilities\System\TweakMASTER\TweakBHO.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Utilities\System\ZoneAlarm Firewall\zlclient.exe"
O4 - HKLM\..\Run: [AVG7_CC] D:\UTILIT~1\ANTIVI~1\AVGFRE~1\AVGCC.EXE /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] D:\UTILIT~1\ANTIVI~1\AVGFRE~1\AVGEMC.EXE
O4 - HKLM\..\Run: [AVG7_AMSVR] D:\UTILIT~1\ANTIVI~1\AVGFRE~1\AVGAMSVR.EXE
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
O4 - HKLM\..\RunServices: [TrueVector] C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE -service
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Utilities\Essentials\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [FreeRAM XP] "D:\ANINDYA\FREERAM XP PRO 1.40.EXE" -win
O8 - Extra context menu item: Download by Free Download Manager - file://D:\Utilities\Internet\Free Download Manager\dllink.htm
O8 - Extra context menu item: Download web site by Free Download Manager - file://D:\Utilities\Internet\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download all by Free Download Manager - file://D:\Utilities\Internet\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected by Free Download Manager - file://D:\Utilities\Internet\Free Download Manager\dlselected.htm
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O14 - IERESET.INF: START_PAGE_URL=*www.zdnetindia.com
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - *v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?38496.5114699074
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - *download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
PLZ HELP