Tech Support Forum - View Single Post

sUBs · 08-11-2007, 01:27 PM

Do a HijackThis scan & place a check next to these items and select "Fix checked":

O4 - HKLM\..\RunServices: [] p2pnetworking.exe
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.DLL (file missing)

---------------

Open notepad and copy/paste the text in the quotebox below into it:

Code:

http://www.techsupportforum.com/security-center/hijackthis-log-help/173571-need-help.html
Suspect::
C:\Program Files\d.bat
C:\WINDOWS\system32\rounders.dat
C:\WINDOWS\system32\PRISME5.dll
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
@=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jikea00e]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jkyjhofA]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{DCD2D190-0512-1033-0818-040308200001}]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{DCD2D190-0513-1033-0818-040308200001}]

Save this as "CFScript"

Refering to the picture above, drag CFScript.txt into ComboFix.exe

When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply.

Additonally, ComboFix will generate a zipped file on your Desktop, called Submit [Date Time].zip
Please submit this file before proceeding to the next step.

---------------

Click here perform an online scan >> Online Scanner

---------------

In your next post, please include fresh logs from:

Fresh Hijackthis log taken just before replying

Online scan

ComboFix's log

Please provide details of any problems you encountered whilst performing the above steps & update us on how the computer behaves now

08-11-2007, 01:27 PM	#4 (permalink)
sUBs Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy Join Date: May 2005 Posts: 24,500 OS: N/A	Re: Need help!! Do a HijackThis scan & place a check next to these items and select "Fix checked": O4 - HKLM\..\RunServices: [] p2pnetworking.exe O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.DLL (file missing) --------------- Open notepad and copy/paste the text in the quotebox below into it: Code: http://www.techsupportforum.com/security-center/hijackthis-log-help/173571-need-help.html Suspect:: C:\Program Files\d.bat C:\WINDOWS\system32\rounders.dat C:\WINDOWS\system32\PRISME5.dll Registry:: [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices] @=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jikea00e] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jkyjhofA] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{DCD2D190-0512-1033-0818-040308200001}] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{DCD2D190-0513-1033-0818-040308200001}] Save this as "CFScript" Refering to the picture above, drag CFScript.txt into ComboFix.exe When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply. Additonally, ComboFix will generate a zipped file on your Desktop, called Submit [Date Time].zip Please submit this file before proceeding to the next step. --------------- Click here perform an online scan >> Online Scanner --------------- In your next post, please include fresh logs from: Fresh Hijackthis log taken just before replying Online scan ComboFix's log Please provide details of any problems you encountered whilst performing the above steps & update us on how the computer behaves now __________________ Question - what have you done for the community today?