I have a setup which cost me about £25 ($45) in total and which I'm very happy with. O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.There has been quite a lot of discussion of this over on the song/tune project forum. O23 - Service: MobilePre Installer (MobilePreInstallerService) - M-Audio - C:\Program Files\M-Audio\MobilePre\Install\MPInst.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Digidesign\Pro Tools\digiSPTIService.exe O23 - Service: digiSPTIService - Digidesign, A Division of Avid Technology, Inc. C:\Program Files\Digidesign\Drivers\MMERefresh.exe O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Digidesign, A Division of Avid Technology, Inc. C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe VPN Service (CVPND) - Cisco Systems, Inc. C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bonjour Service - Apple Inc. C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Apple Mobile Device - Apple, Inc. O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O3 - Toolbar: Yahoo! Toolbar - (MsnMessengerSetupDownloadControl Class). R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
If anyone can help at all, I'd be so grateful!Ĭ:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeĬ:\Program Files\Bonjour\mDNSResponder.exeĬ:\Program Files\Cisco Systems\VPN Client\cvpnd.exeĬ:\Program Files\Digidesign\Drivers\MMERefresh.exeĬ:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exeĬ:\Program Files\Java\jre1.6.0_07\bin\jusched.exeĬ:\Program Files\HP\HP Software Update\HPWuSchd2.exeĬ:\WINDOWS\System32\M-AudioTaskBarIcon.exeĬ:\Program Files\Common Files\Real\Update_OB\realsched.exeĬ:\Program Files\MSN Messenger\MsnMsgr.ExeĬ:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exeĬ:\Documents and Settings\Suzie\Application Data\gadcom\gadcom.exeĬ:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeĬ:\Program Files\Sophos\AutoUpdate\ALMon.exeĬ:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeĬ:\Program Files\M-Audio\MobilePre\Install\MPInst.exeĬ:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exeĬ:\Program Files\Sophos\AutoUpdate\ALsvc.exeĬ:\Program Files\HP\Digital Imaging\bin\hpqimzone.exeĬ:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exeĬ:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exeĬ:\Program Files\iPod\bin\iPodService.exeĬ:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exeĬ:\Program Files\MSN Messenger\usnsvc.exeĬ:\Program Files\Sophos\Sophos Anti-Virus\SAVMain.exeĬ:\Program Files\Mozilla Firefox\firefox.exeĬ:\Program Files\Trend Micro\HijackThis\HijackThis.exe
HT is still working though! Here's a log from my scan. then it won't let me clean up the trojan, cos it didn't finish the scan. The scan won't finish tho-says it can't access some places on my c drive-one of them mentions not being able to do a boot scan. It has also disabled access to antivirus sites and has hijacked google.īizarrely, I can still run a Sophos scan, and it has flagged 'RegCure.exe' as a trojan-I do have RegCure, but this thing is in some weird directory.
It has turned off Windows updates, stopped sophos contacting the server for updates, and stops XoftSpySE and MBAM from loading/reinstalling. I seem to have picked up a weird virus that appears to just stop anything antiviral from running.