Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 2 of 2 Posts

·
Registered
Joined
·
2 Posts
Discussion Starter · #1 ·
Okay, I have a major problem. One day, my computer just froze, screen still on, but nothing worked. Mouse didn't move, keyboard didn't work (couldn't even turn CAPsLock off), and I turned it off by holding down the button. So it starts back up, and my ITunes will not load my IPod. It says Apple Mobile Device Service is not started, so I've already been to youtube and google and EVERY SOLUTION I DID DIDN'T WORK! So I scan with avast, and get a CRAP Load of viruses, all removed, and the program still don't work. I went into Computer>Manage>Services>AppleMobileDevice and hit start, and it said...
Cannot Start Service, application terminated unexpectally. So I remove crap and reinstall Itunes OVER AND OVER and it don't work. Please help, I'll include a DXDIAG file and my AVAST report.
DXDIAG FILE
AVAST SCAN RESULTS (BOTH BOOT TIME SCANS)

 

·
Registered
Joined
·
2 Posts
Discussion Starter · #2 ·
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:49:01 PM, on 1/15/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
D:\Windows\system32\taskhost.exe
D:\Windows\system32\Dwm.exe
D:\Program Files\Aston2\Aston2.exe
D:\Program Files\Alwil Software\Avast5\avastUI.exe
D:\Program Files\Synaptics\SynTP\SynTPEnh.exe
D:\Program Files\Common Files\Java\Java Update\jusched.exe
D:\Program Files\IDT\WDM\sttray.exe
D:\Windows\system32\igfxtray.exe
D:\Windows\system32\hkcmd.exe
D:\Windows\system32\igfxpers.exe
D:\Windows\system32\igfxsrvc.exe
D:\program files\steam\steam.exe
D:\Program Files\Skype\Phone\Skype.exe
D:\Users\Cody\AppData\Local\Megamedia\Megakey\Megakey.exe
D:\Users\Cody\AppData\Local\Megamedia\Megakey\MegakeyUpdater.exe
D:\Program Files\MagicDisc\MagicDisc.exe
D:\Program Files\OpenOffice.org 3\program\soffice.exe
D:\Program Files\OpenOffice.org 3\program\soffice.bin
D:\Program Files\drahtwerk\iWebcamera\iWebcameraApp.exe
D:\Windows\explorer.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Users\Cody\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://my.netzero.net/s/search?r=minisearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://my.netzero.net/s/search?r=minisearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://my.netzero.net/s/search?r=minisearch
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://my.netzero.net/s/search?r=minisearch
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://my.netzero.net/s/search?r=minisearch
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\prxtbPage.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - D:\Program Files\AutocompletePro\AutocompletePro.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - D:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - D:\Program Files\GetRight\xx2gr.dll
O2 - BHO: Pop-up Blocker - {52706EF7-D7A2-49AD-A615-E903858CF284} - D:\Program Files\NetZero\qsacc\X1IEBHO.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: FCTBPos00Pos - {6955FB38-7614-4A87-95C5-626CCEA88DF7} - D:\Program Files\Webs Credits\Toolbar.dll
O2 - BHO: MegaIeHelperBHO - {77F4E711-789B-447F-9614-96759B2F83C6} - D:\Users\Cody\AppData\Local\Megamedia\Megakey\MegaIeHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Freecause Shopping BHO - {91917DC6-93B9-4E62-B2D6-D39C9618C418} - D:\Program Files\Shop to Win 4\ShoppingBHO.dll
O2 - BHO: PageRage - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\prxtbPage.dll
O2 - BHO: DCA - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - D:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - D:\Program Files\HyperCam Toolbar\tbcore3.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - D:\Program Files\Yontoo Layers Client\YontooIEClient.dll
O3 - Toolbar: ZeroBar - {F0F8ECBE-D460-4B34-B007-56A92E8F84A7} - D:\Program Files\NetZero\Toolbar.dll
O3 - Toolbar: Webs Credits - {D09588AA-5560-4240-B2F2-774D78D7E917} - D:\Program Files\Webs Credits\Toolbar.dll
O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - D:\Program Files\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\prxtbPage.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - D:\Program Files\ConduitEngine\prxConduitEngine.dll
O4 - HKLM\..\Run: [avast5] "D:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SynTPEnh] D:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [IgfxTray] D:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] D:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] D:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Steam] "d:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Megakey] D:\Users\Cody\AppData\Local\Megamedia\Megakey\Megakey.exe /Tray
O4 - HKCU\..\Run: [MegakeyUpdater] D:\Users\Cody\AppData\Local\Megamedia\Megakey\MegakeyUpdater.exe
O4 - HKCU\..\Run: [uTorrent] "D:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: MagicDisc.lnk = D:\Program Files\MagicDisc\MagicDisc.exe
O4 - Startup: OpenOffice.org 3.2.lnk = D:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Capture Web Page - D:\Users\Cody\AppData\Local\Megamedia\Megakey\CaptureWebPage.htm
O8 - Extra context menu item: Fetch to Megaupload - D:\Users\Cody\AppData\Local\Megamedia\Megakey\MegaUpload.htm
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - D:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - D:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: FlashKeeper - {86301D40-94C1-4a5e-843B-7F43965E364A} - D:\Program Files\FlashKeeper\GetFlash.htm
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O10 - Unknown file in Winsock LSP: d:\programdata\megamedia\megakey\msadm.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/SmileyCentralInitialSetup1.0.1.1.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - D:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - D:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Realtek87B - Realtek - D:\Program Files\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - D:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_029f5b2ddd167969\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - D:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - D:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - D:\Program Files\RealVNC\VNC4\WinVNC4.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - D:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 10731 bytes
 
1 - 2 of 2 Posts
Status
Not open for further replies.
Top