The Best Cyprus Community

Skip to content


Zcv appears when I press c on my keyboard

Feel free to talk about anything that you want.
Post a reply

Postby Get Real! » Mon Jan 31, 2011 7:51 am

laptachap wrote:tried system restore no joy

Download and run this program… (instant download)
http://www.trendmicro.com/ftp/products/ ... ckThis.exe


Click on “Do a system scan and save log file”

Notepad should open with a lot of text in it.

Select ALL that text from Notepad and post it here.
User avatar
Get Real!
Forum Addict
Forum Addict
 
Posts: 48333
Joined: Mon Feb 26, 2007 12:25 am
Location: Nicosia
Top

Postby laptachap » Mon Jan 31, 2011 9:28 am

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:27:37 AM, on 1/31/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASG USB Phone\ASG_USB_Phone.exe
C:\WINDOWS\VM305_STI.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\VoipStunt.com\VoipStunt\VoipStunt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
F:\Program Files\SkypeMate\SkypeMate.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\IncrediMail\Bin\ImApp.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\WINDOWS\system32\svchost.exe

thankyou
User avatar
laptachap
Member
Member
 
Posts: 156
Joined: Fri Feb 08, 2008 9:19 am
Top

Postby Get Real! » Mon Jan 31, 2011 10:15 am

I’ve directly marked problem entries in your list as follows…

Entries marked in BLUE need not load and stay resident wasting precious Windows load time and memory resources so you can just delete all entries coloured blue from within HijackThis.

Just click/tick the box of all blue entries and then select “Fix checked”.

Entries marked in RED are very suspicious:

1. Explorer.EXE is the windows file manager but it should not load automatically at startup unless you specifically set it up to, and it should not have a capitalized file extension! Research points to a “vundo/monder infection”.

Start with a Malwarebytes scan and if it doesn’t go away proceed to an online virus scan for that.

2. IncrediMail is a nifty Mail program but also a Trojan! Go to add/remove programs in control panel and uninstall it.

And finally when you've done all the above, rerstart your PC and post a new log again.


C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASG USB Phone\ASG_USB_Phone.exe
C:\WINDOWS\VM305_STI.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\VoipStunt.com\VoipStunt\VoipStunt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
F:\Program Files\SkypeMate\SkypeMate.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\IncrediMail\Bin\ImApp.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\WINDOWS\system32\svchost.exe
User avatar
Get Real!
Forum Addict
Forum Addict
 
Posts: 48333
Joined: Mon Feb 26, 2007 12:25 am
Location: Nicosia
Top

Postby CBBB » Mon Jan 31, 2011 9:09 pm

Well done GR!!!! Laptachap will have to buy a new computer now, that will teach him!
User avatar
CBBB
Leading Contributor
Leading Contributor
 
Posts: 11521
Joined: Tue May 20, 2008 1:15 pm
Location: Centre of the Universe
Top

Postby RichardB » Mon Jan 31, 2011 9:25 pm

Maybe GR can help with my computer problem

Each time I try to write British Residents of Northern Cyprus

It comes up as Carpetbagging Twats



sent from my i.modium as computer cannot write this[/b][/i]
User avatar
RichardB
Main Contributor
Main Contributor
 
Posts: 3644
Joined: Thu May 18, 2006 9:48 pm
Location: Blackpool/Lefkosia
Top

Postby bill cobbett » Mon Jan 31, 2011 10:00 pm

RichardB wrote:Maybe GR can help with my computer problem

Each time I try to write British Residents of Northern Cyprus

It comes up as Carpetbagging Twats



sent from my i.modium as computer cannot write this[/b][/i]


Buggers

#jan25 #carpet #shaggers
User avatar
bill cobbett
Leading Contributor
Leading Contributor
 
Posts: 15759
Joined: Sun Dec 17, 2006 5:20 pm
Location: Embargoed from Kyrenia by Jurkish Army and Genocided (many times) by Thieving, Brain-Washed Lordo
Top

Postby laptachap » Wed Feb 02, 2011 6:07 pm

unplug all from computer drive round for a couple of hours with computer in car plug all in again problem solved !
User avatar
laptachap
Member
Member
 
Posts: 156
Joined: Fri Feb 08, 2008 9:19 am
Top

Postby kurupetos » Wed Feb 02, 2011 6:10 pm

laptachap wrote:unplug all from computer drive round for a couple of hours with computer in car plug all in again problem solved !


We don't give a shit. Bog off.
User avatar
kurupetos
Leading Contributor
Leading Contributor
 
Posts: 18855
Joined: Tue Jul 31, 2007 7:46 pm
Location: Cyprus
Top

Postby pretty-as-pink » Wed Feb 02, 2011 6:12 pm

Oh great so GR did all that for nothing :roll: :roll: :roll:
User avatar
pretty-as-pink
Contributor
Contributor
 
Posts: 899
Joined: Sat Nov 28, 2009 2:01 pm
Location: uk
Top

Postby kurupetos » Wed Feb 02, 2011 6:13 pm

pretty-as-pink wrote:Oh great so GR did all that for nothing :roll: :roll: :roll:


He loves helping carpetbaggers. :twisted:
User avatar
kurupetos
Leading Contributor
Leading Contributor
 
Posts: 18855
Joined: Tue Jul 31, 2007 7:46 pm
Location: Cyprus
Top
PreviousNext
Post a reply

Return to General Chat

Who is online

Users browsing this forum: No registered users and 1 guest

cron
© 2002 - 2015 Cyprus-Forum.com
powered by phpbb
Cyprus Forum RSS Feed Cyprus Forum Atom Feed