HJT Svchost.exe, 5.2.3790.3959, unknown, 0.0.0.0, 0x00000000. – Spyware driving me nuts! IE7 does not work and my start page is now msn. O4 – Global Startup: Adobe Gamma Loader.
O4 – Global Startup: Adobe Reader Speed Launch. O15 – ESC Trusted IP range: 192. Why are you running WIndows 2003 as a client? You show no startup entries for an Antivirus, or Windows Defender.
You show no process active for a firewall. Superfindout” is a Vundo variant, and would not lead to such a poorly functioning machine. Can I ask what other entries you have removed? What other anti-malware tools you have have run? When the scan is complete, a text file will open – Main.
Click on Format and Uncheck Word wrap, if checked. Please save this file and close Notepad. In it will be another text file, Extra. Please save this file too, and exit Notepad. Note: some firewalls may warn that sigcheck. Post back to the Forum the contents of Main. I have downloaded the program to my desktop but it will not start.
I will reboot in safe mode and try again. The computer is getting less stable with each reboot. Extra logfile – please post this as an attachment with your post. PHYSICALDRIVE2 – WDC WD1600JB-00DUA3 – 149. PHYSICALDRIVE3 – WDC WD1600JB-00FUA0 – 149. PHYSICALDRIVE0 – WDC WD1600JB-00REA0 – 149.
PARTITION0 – Logical Disk Manager – 149. PHYSICALDRIVE1 – WDC WD1600JB-00REA0 – 149. PHYSICALDRIVE4 – Maxtor 4 R120L0 SCSI Disk Device – 114. PHYSICALDRIVE5 – Maxtor 4 R120L0 SCSI Disk Device – 114.
3959, faulting module unknown, version 0. The Wep key exchange did not result in a secure connection setup after 802. The current setting has been marked as failed and the Wireless connection will be disconnected. Please post the contents of Main. You show no antivirus, and no firewall. This computer is completely 0wn3d by remote parties.
The only safe recourse in this situation is to flatten the computer and reinstall from known good media. I would be doing you a disservice by cleaning this computer. It can never be made a completely clean nor completely trusted device to use connected to the internet until all drives are reformatted, your OS is reinstalled from known good media, you install an active antivirus software program and keep it updated, and you enable the firewall. That is a dramatic action which will be extremely painful.
When I have tried to run dss before, I get a dialogue stating that I do not have Administrator access so this corroborates your determination. I need to run a program called Catchme, a userland rootkit detector by GMER. While I can do this directly, I would rather let two different utilities use this same tool in slightly different ways. Please then reboot your computer in Safe Mode. Type Y to begin the cleanup process.