I'm sorry for the brief post. I read some other related topics, but the problems wasn't resolved...
I have win xp sp3, I'm on a compaq laptop (6720s) if it can help. I never can access some websites too (Windows, some firewall and antivirus sites...)
I'll add the log from GMER.
ShadowWolf89 0 Newbie Poster
The attachment preview is chopped off after the first 10 KB. Please download the entire file.
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-12-02 19:10:02
Windows 5.1.2600 Service Pack 3
Running: hj2esdik.exe
---- Services - GMER 1.0.15 ----
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [AUTO] tpxksv <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [AUTO] wfeoek <-- ROOTKIT !!!
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@DisplayName Time Windows
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv@Description Fornisce un modello di interfacce e di oggetti comune per accedere alle informazioni di gestione sul sistema operativo, le periferiche, le applicazioni e i servizi. Se il servizio viene interrotto, la maggior parte del software basato su Windows non funzioner? in modo corretto. Se il servizio ? disabilitato, i servizi da esso dipendenti non verranno avviati.
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\tpxksv\Parameters@ServiceDll C:\WINDOWS\system32\izamaka.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@DisplayName Universal Shell
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek@Description Fornisce servizi di conversione indirizzi di rete, indirizzamento e risoluzione nomi e/o servizi di prevenzione intrusione per una rete domestica o una piccola rete aziendale.
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\wfeoek\Parameters@ServiceDll C:\Programmi\Movie Maker\izamaka.dll
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@DisplayName Time Windows
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@Type 32
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@Start 2
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv@Description Fornisce un modello di interfacce e di oggetti comune per accedere alle informazioni di gestione sul sistema operativo, le periferiche, le applicazioni e i servizi. Se il servizio viene interrotto, la maggior parte del software basato su Windows non funzioner? in modo corretto. Se il servizio ? disabilitato, i servizi da esso dipendenti non verranno avviati.
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\tpxksv\Parameters@ServiceDll C:\WINDOWS\system32\izamaka.dll
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@DisplayName Universal Shell
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@Type 32
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@Start 2
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek@Description Fornisce servizi di conversione indirizzi di rete, indirizzamento e risoluzione nomi e/o servizi di prevenzione intrusione per una rete domestica o una piccola rete aziendale.
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\wfeoek\Parameters@ServiceDll
D3m3nt3d 1 Posting Whiz in Training
Hello Shadow,
Have you ran the preliminary steps listed here:
http://www.daniweb.com/forums/thread134865.html
If so, could you please post the other logs as well. :)
crunchie 990 Most Valuable Poster Team Colleague Featured Poster
No attaching of logs either please.
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.