Hijack this ? Virus 01012011 Problem

debitcardmayhem

Hello folks, my PC has been slow all year, can interpret this log ?


Logfile of Trend Micro HijackThis v2011.01.01
Scan saved at 00:00:00, on 01/01/2011
Platform: Windows 7 (WinNT 1.01.2011)
MSIE: Internet Explorer v8.01 01..2011)
Boot mode: Normal(01-01-11)

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\2011.1.01\HappyNewYear.exe
C:\Program Files (x86)\Common Files\Acronis\HappyNewYear.exe
C:\Program Files (x86)\BillP Studios\WinPatrol\HappyNewYear.exe
C:\Program Files (x86)\Acronis\OnlineBackupStandalone\HappyNewYear.exe
C:\Program Files (x86)\Acronis\TrueImageHome\HappyNewYear.exe
C:\Program Files (x86)\Virtual CD v10\System\HappyNewYear.exe
C:\Program Files (x86)\Virtual CD v10\System\HappyNewYear.exe
C:\Program Files (x86)\Mozilla Firefox\firefox2011.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\I_Object_to_2010_finishing-2010.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HiJackThatLastYear.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://Happy New Year to You
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank 2011
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=2011.01.01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=2011.01.01
- HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=2011.01.01
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=2010(file gone now)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - HAPPY NEW YEAR to ALL

--
End of file - 20110101 bytes
Commit Charge = 1012011 / out of 31/12/2010 (apologies to Closed)

Loads of respect to you guys Happy New Year from the S.O.G. here .....

Personal thanks to those helping out on here - click under your initial to find the results

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Happy New Year helping others
Respect and HNY Debit/dcm/Rob

GunJack

@ dcm. ..... nice way to start 2011

GunJack

oh, and BTWQ, use the norton removal tool, mbam, combofix, dr web, hitman pro, and regExe ...... then you may get somewhere

FireFox

GunJack wrote: »

oh, and BTWQ, use the norton removal tool, mbam, combofix, dr web, hitman pro, and regExe ...... then you may get somewhere

Sod it ... just delete EVERYTHING!

You can't beat a fresh start:)

Happy 2011 all
:beer::beer::beer::beer:

debitcardmayhem

GunJack wrote: »

oh, and BTWQ, use the norton removal tool, mbam, combofix, dr web, hitman pro, and regExe ...... then you may get somewhere

Can't do Combofix without wishing Happy New Year to Rik and Browntoa , and waiting them to tell me what to run Happy New 2011 fellas and the rest too :beer:

TwistedPsycho

Take it to the Tech Guys. They can not ruin it any more than it is already.

Browntoa

save the trip to tech guys I have their secret code

FORMAT C:

GunJack

Browntoa wrote: »

save the trip to tech guys I have their secret code

FORMAT C:

you after a job there, B ?!?!?

TwistedPsycho

I wonder if they will start sub contracting to MSE members in the long run?

Cash-Strapped.T32

Browntoa wrote: »

I have their secret code

FORMAT C:

I say we take off & nuke the site from orbit - It's the only way to be sure.

spud17

Have you tried turning it on, then off again?