Another Hidrag.A problem

Posted 5/17/2005 6:23 PM
#15027
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
Hi, <br/> This is seriously getting me down now,I found out about this when I downloaded the trial version of AVG 7.0, since then I can no longer access most of the stuff on my computer (says I don't have priviliges to open them),can someone have a look at the hijackthis log I have pasted here and help me please. Plus can someone tell me how the hell I can get rid of AVG as it won't let me uninstall it (I hate it, will find another virus checker),here is the hijackthis log.......... <br/> <br/> <br/> <br/>Logfile of HijackThis v1.99.1 <br/>Scan saved at 19:17:47, on 17/05/2005 <br/>Platform: Windows XP SP2 (WinNT 5.01.2600) <br/>MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\WINDOWS\system32\WF2K.EXE <br/>C:\WINDOWS\system32\CTHELPER.EXE <br/>C:\Program Files\Xerox One Touch\OneTouchMon.exe <br/>C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE <br/>C:\Program Files\Google\Gmail Notifier\gnotify.exe <br/>C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>C:\WINDOWS\Mixer.exe <br/>C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe <br/>C:\Program Files\Winamp\winampa.exe <br/>C:\Program Files\Common Files\Real\Update_OB\realsched.exe <br/>C:\WINDOWS\system32\RUNDLL32.EXE <br/>C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe <br/>C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe <br/>C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0F2.EXE <br/>C:\Program Files\Logitech\Profiler\lwemon.exe <br/>C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe <br/>C:\WINDOWS\System32\CTsvcCDA.exe <br/>C:\WINDOWS\system32\nvsvc32.exe <br/>C:\PROGRA~1\INCRED~1\bin\IMApp.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\System32\MsPMSPSv.exe <br/>C:\WINDOWS\system32\wscntfy.exe <br/>C:\Program Files\MSN Messenger\msnmsgr.exe <br/>C:\Program Files\Ac Browser Plus\ACB.exe <br/>D:\Downloads\highjack this\HijackThis.exe <br/> <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.midconair.com/ <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.171.162.37:8002 <br/>O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll <br/>O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll <br/>O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll <br/>O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll <br/>O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll <br/>O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll <br/>O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE <br/>O4 - HKLM\..\Run: [WinFast2KLoadDefault] rundll32.exe wf2kcpl.dll,DllLoadDefaultSettings <br/>O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE <br/>O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE <br/>O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe <br/>O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run <br/>O4 - HKLM\..\Run: [OneTouch Monitor] "C:\Program Files\Xerox One Touch\OneTouchMon.exe" <br/>O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE /h <br/>O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup <br/>O4 - HKLM\..\Run: [FinePrint Dispatcher v5] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM <br/>O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe <br/>O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe <br/>O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot <br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup <br/>O4 - HKLM\..\Run: [nwiz] nwiz.exe /install <br/>O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit <br/>O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" <br/>O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe" <br/>O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe <br/>O4 - HKCU\..\Run: [TaskTray] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe" <br/>O4 - HKCU\..\Run: [TaskBar] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe" <br/>O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c <br/>O4 - HKCU\..\Run: [EPSON Stylus Photo R300 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0F2.EXE /P30 "EPSON Stylus Photo R300 Series" /M "Stylus Photo R300" /EF "HKCU" <br/>O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui <br/>O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" <br/>O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl <br/>O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background <br/>O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ? <br/>O4 - Global Startup: Microsoft Office.lnk = H:\Program Files\Microsoft Office\Office\OSA9.EXE <br/>O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm <br/>O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html <br/>O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html <br/>O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html <br/>O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html <br/>O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html <br/>O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html <br/>O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Customize Menu - http://www.edi-gla.co.uk <br/>O15 - Trusted Zone: http://ediglavirtual.lunarpages.com <br/>O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/22792ba5914a26ae6d22/netzip/RdxIE601.cab <br/>O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1110833642623 <br/>O16 - DPF: {A662DA7E-CCB7-4743-B71A-D817F6D575DF} (Autodesk Dwf Viewer Control) - http://www.autodesk.com/global/dwfviewer/installer/DwfViewerSetup.cab <br/>O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/contents/setup/downloader/imloader.cab <br/>O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe <br/>O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe <br/>O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe <br/>O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe <br/> <br/> <br/> <br/> <br/> <br/>Thanks <br/> <br/> <br/> <br/>Phil
Posted 5/18/2005 7:38 PM
#15091
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
Can someone please look at this hijackthis log and help me, will have to re-format if not .
Posted 5/19/2005 7:07 AM
#15124
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hey redhmt :cool: <br/> <br/> <br/>Sorry for late reply. <br/> <br/> <br/> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; mso-ansi-language: EN-GB">[color=#0000ff>http://www.spywareinfo.dk/download/mwav.exe</FONT></A><?xml:namespace]<o:p></o:p>[/color] <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; mso-ansi-language: EN-GB">Run the mwav scanner: <br/>Put a checkmark in:<SPAN lang=EN-GB style="FONT-SIZE: 10pt; mso-ansi-language: EN-GB"> <br/><SPAN class=spnmessagetext>Memory, Startup folders, drive, Registry, System folders og Services. <br/><SPAN class=spnmessagetext>And: <br/><SPAN class=spnmessagetext>All local drives og Scan all files <br/><SPAN class=spnmessagetext>Push:<SPAN style="mso-spacerun: yes"> Scan <SPAN style="mso-spacerun: yes"> Button <br/><SPAN class=spnmessagetext>The scan can take a couple of hours<o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; mso-ansi-language: EN-GB"> <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; mso-ansi-language: EN-GB">Reboot and post new log <o:p></o:p>

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 5/19/2005 8:11 AM
#15132
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
OK , Thanks for getting in touch, Touch, I already downloaded mwav when I first posted problem I ran it then so I have just run hijackthis again and here is the log:-- <br/> <br/>Logfile of HijackThis v1.99.1 <br/>Scan saved at 09:07:49, on 19/05/2005 <br/>Platform: Windows XP (WinNT 5.01.2600) <br/>MSIE: Internet Explorer v6.00 (6.00.2600.0000) <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\WINDOWS\system32\WF2K.EXE <br/>C:\WINDOWS\System32\CTHELPER.EXE <br/>C:\Program Files\Xerox One Touch\OneTouchMon.exe <br/>C:\WINDOWS\System32\CTsvcCDA.exe <br/>C:\WINDOWS\system32\nvsvc32.exe <br/>C:\WINDOWS\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE <br/>C:\Program Files\Google\Gmail Notifier\gnotify.exe <br/>C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>C:\WINDOWS\Mixer.exe <br/>C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe <br/>C:\Program Files\Winamp\winampa.exe <br/>C:\Program Files\Common Files\Real\Update_OB\realsched.exe <br/>C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe <br/>C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe <br/>C:\WINDOWS\System32\RUNDLL32.EXE <br/>C:\WINDOWS\System32\ctfmon.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe <br/>C:\Program Files\Logitech\Profiler\lwemon.exe <br/>C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe <br/>C:\PROGRA~1\INCRED~1\bin\IMApp.exe <br/>D:\Downloads\highjack this\HijackThis.exe <br/> <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.midconair.com/ <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = <br/> <br/>200.171.162.37:8002 <br/>O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber <br/> <br/>Systems\AI RoboForm\RoboForm.dll <br/>O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN <br/> <br/>Apps\ST\01.02.3000.1002\en-xu\stmain.dll <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program <br/> <br/>files\google\googletoolbar1.dll <br/>O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll <br/>O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN <br/> <br/>Apps\MSN Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber <br/> <br/>Systems\AI RoboForm\RoboForm.dll <br/>O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll <br/>O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN <br/> <br/>Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program <br/> <br/>files\google\googletoolbar1.dll <br/>O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - <br/> <br/>C:\WINDOWS\System32\msdxm.ocx <br/>O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE <br/>O4 - HKLM\..\Run: [WinFast2KLoadDefault] rundll32.exe wf2kcpl.dll,DllLoadDefaultSettings <br/>O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE <br/>O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE <br/>O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe <br/>O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run <br/>O4 - HKLM\..\Run: [OneTouch Monitor] "C:\Program Files\Xerox One Touch\OneTouchMon.exe" <br/>O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE /h <br/>O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail <br/> <br/>Notifier\gnotify.exe <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup <br/>O4 - HKLM\..\Run: [FinePrint Dispatcher v5] <br/> <br/>"C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM <br/>O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe <br/>O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe <br/>O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" <br/> <br/>-osboot <br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup <br/>O4 - HKLM\..\Run: [nwiz] nwiz.exe /install <br/>O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat <br/> <br/>7.0\Distillr\Acrotray.exe" <br/>O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN <br/> <br/>Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe" <br/>O4 - HKLM\..\Run: [EPSON Product Registration Reminder] C:\WINDOWS\Temp\RegModule.exe <br/>O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE <br/> <br/>C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit <br/>O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe <br/>O4 - HKCU\..\Run: [TaskTray] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe" <br/>O4 - HKCU\..\Run: [TaskBar] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe" <br/>O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c <br/>O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" <br/> <br/>/noui <br/>O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI <br/> <br/>RoboForm\RoboTaskBarIcon.exe" <br/>O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl <br/>O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background <br/>O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ? <br/>O4 - Global Startup: Microsoft Office.lnk = H:\Program Files\Microsoft <br/> <br/>Office\Office\OSA9.EXE <br/>O8 - Extra context menu item: &Add animation to IncrediMail Style Box - <br/> <br/>C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm <br/>O8 - Extra context menu item: &Google Search - res://C:\Program <br/> <br/>Files\Google\GoogleToolbar1.dll/cmsearch.html <br/>O8 - Extra context menu item: &Translate English Word - res://C:\Program <br/> <br/>Files\Google\GoogleToolbar1.dll/cmwordtrans.html <br/>O8 - Extra context menu item: Backward Links - res://C:\Program <br/> <br/>Files\Google\GoogleToolbar1.dll/cmbacklinks.html <br/>O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program <br/> <br/>Files\Google\GoogleToolbar1.dll/cmcache.html <br/>O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html <br/>O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html <br/>O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program <br/> <br/>Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat <br/> <br/>7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html <br/>O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat <br/> <br/>7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html <br/>O8 - Extra context menu item: Customize Menu - http://www.edi-gla.co.uk <br/>O15 - Trusted Zone: http://ediglavirtual.lunarpages.com <br/>O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - <br/> <br/>http://software-dl.real.com/22792ba5914a26ae6d22/netzip/RdxIE601.cab <br/>O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - <br/> <br/>http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?111 <br/> <br/>0833642623 <br/>O16 - DPF: {A662DA7E-CCB7-4743-B71A-D817F6D575DF} (Autodesk Dwf Viewer Control) - <br/> <br/>http://www.autodesk.com/global/dwfviewer/installer/DwfViewerSetup.cab <br/>O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - <br/> <br/>http://www2.incredimail.com/contents/setup/downloader/imloader.cab <br/>O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe <br/> <br/>Systems Shared\Service\Adobelmsvc.exe <br/>O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - <br/> <br/>C:\WINDOWS\System32\CTsvcCDA.exe <br/>O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - <br/> <br/>C:\WINDOWS\system32\nvsvc32.exe <br/> <br/>Thanks for your help, its really appreciated
Posted 5/19/2005 8:47 AM
#15134
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Looks clean to me ;-) <br/> <br/> <br/>I can´t see AVG in your log! <br/> <br/> <br/> <br/>You can install Avast: http://www.avast.com/eng/avast_4_home.html <br/>If you do, you will need a Firewall: <SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA">[color=#0000ff>http://www.zonelabs.com/store/content/company/products/znalm/freeDownload.jsp?lid=zaskulist_download</FONT>[/url] <br/> <br/><SPAN] <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA">Or: <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB">Bullguard<SPAN style="mso-spacerun: yes"> Trial:<SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Arial Unicode MS'"><?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" /><o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB">http://www.bullguard.com/antivirus/download.aspx[/color]<SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Arial Unicode MS'"><o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB">It have Firewall build in <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB"> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB">When you installed, updated Avirus, run full systemscan with system restore disabled: <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA">[color=#0000ff>http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm[/url] <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA">Reboot enable system restore again <br/> <br/> <br/> <br/>I suggest you run a onlinescan: http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm <br/> <br/> <br/> <br/>And you need updates! Download SP1: <SPAN class=spnmessagetext><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana; mso-ansi-language: DA; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA; mso-bidi-font-family: 'Times New Roman'"><FONT color=#00008b>http://www.microsoft.com/windowsxp/downloads/updates/sp1/network.mspx[/color] <br/> <br/><SPAN class=spnmessagetext><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana; mso-ansi-language: DA; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA; mso-bidi-font-family: 'Times New Roman'">Download hotfixes: http://v5.windowsupdate.microsoft.com/v5consumer/default.aspx?ln=en <br/> <br/><SPAN class=spnmessagetext><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana; mso-ansi-language: DA; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA; mso-bidi-font-family: 'Times New Roman'"> <br/> <br/><SPAN class=spnmessagetext><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana; mso-ansi-language: DA; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA; mso-bidi-font-family: 'Times New Roman'">Reboot and tell how things are running <br/> <br/><SPAN class=spnmessagetext><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana; mso-ansi-language: DA; mso-fareast-font-family: 'Times New Roman'; mso-fareast-language: DA; mso-bidi-language: AR-SA; mso-bidi-font-family: 'Times New Roman'">

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 5/19/2005 5:27 PM
#15169
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
OK,downloaded and installed bullguard, ran a complete scan, that cleaned out a lot of crap,comp now has all updates but there is one problem I am having and I am not sure if its related to the orig prob but it started around same time. I can no longer use anything that is attached to my USB ports,its as if the usb ports don't exist.I checked in control panel/system and all usb drivers are there.Any idea whats happened. <br/> <br/>Apart from that all is running well, thanks for the advice. <br/>Here is latest hijack this scan..... <br/> <br/> <br/> <br/>Logfile of HijackThis v1.99.1 <br/>Scan saved at 18:28:30, on 19/05/2005 <br/>Platform: Windows XP SP2 (WinNT 5.01.2600) <br/>MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\WINDOWS\system32\WF2K.EXE <br/>C:\WINDOWS\system32\CTHELPER.EXE <br/>C:\Program Files\Xerox One Touch\OneTouchMon.exe <br/>C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE <br/>C:\Program Files\Google\Gmail Notifier\gnotify.exe <br/>C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>C:\WINDOWS\Mixer.exe <br/>C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe <br/>C:\Program Files\Winamp\winampa.exe <br/>C:\Program Files\Common Files\Real\Update_OB\realsched.exe <br/>C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe <br/>C:\WINDOWS\system32\RUNDLL32.EXE <br/>C:\Program Files\Creative\ShareDLL\CtNotify.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\Creative\ShareDLL\MediaDet.exe <br/>C:\Program Files\Logitech\Profiler\lwemon.exe <br/>C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe <br/>C:\Program Files\BullGuard Software\BullGuard 5.0\bullguard.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe <br/>C:\PROGRA~1\INCRED~1\bin\IMApp.exe <br/>C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe <br/>C:\WINDOWS\System32\CTsvcCDA.exe <br/>C:\WINDOWS\system32\nvsvc32.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\Program Files\Internet Explorer\iexplore.exe <br/>D:\Downloads\highjack this\HijackThis.exe <br/> <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.midconair.com/ <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.171.162.37:8002 <br/>O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing) <br/>O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll <br/>O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll <br/>O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll <br/>O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-gb\msntb.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll <br/>O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE <br/>O4 - HKLM\..\Run: [WinFast2KLoadDefault] rundll32.exe wf2kcpl.dll,DllLoadDefaultSettings <br/>O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE <br/>O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE <br/>O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe <br/>O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run <br/>O4 - HKLM\..\Run: [OneTouch Monitor] "C:\Program Files\Xerox One Touch\OneTouchMon.exe" <br/>O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE /h <br/>O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe <br/>O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup <br/>O4 - HKLM\..\Run: [FinePrint Dispatcher v5] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM <br/>O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe <br/>O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe <br/>O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot <br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup <br/>O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-gb\msnappau.exe" <br/>O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit <br/>O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe <br/>O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe <br/>O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE <br/>O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe <br/>O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c <br/>O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui <br/>O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" <br/>O4 - HKCU\..\Run: [BullGuard 5.0] "C:\Program Files\BullGuard Software\BullGuard 5.0\bullguard.exe" <br/>O4 - HKCU\..\Run: [TaskTray] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTray.exe" <br/>O4 - HKCU\..\Run: [TaskBar] "C:\Program Files\Creative\SBAudigy\TaskBar\CTLTask.exe" <br/>O4 - Global Startup: Microsoft Office.lnk = H:\Program Files\Microsoft Office\Office\OSA9.EXE <br/>O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm <br/>O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html <br/>O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html <br/>O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html <br/>O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html <br/>O8 - Extra context menu item: Customize Menu - http://www.edi-gla.co.uk <br/>O15 - Trusted Zone: http://ediglavirtual.lunarpages.com <br/>O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/22792ba5914a26ae6d22/netzip/RdxIE601.cab <br/>O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1110833642623 <br/>O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab <br/>O16 - DPF: {A662DA7E-CCB7-4743-B71A-D817F6D575DF} (Autodesk Dwf Viewer Control) - http://www.autodesk.com/global/dwfviewer/installer/DwfViewerSetup.cab <br/>O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/contents/setup/downloader/imloader.cab <br/>O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe <br/>O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe <br/>O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe <br/>O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe (file missing)
Posted 5/19/2005 5:53 PM
#15171
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
First, do this: <br/>Click Start > Run <br/>Type in services.msc <br/>Click Enter <br/>Scroll down. Double-click on .Find and double-click PowerManager <br/>Click Stop and then set the Startup Type to Disabled. <br/> <br/> <br/>Scan with hijackthis and fix: <br/>O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe (file missing) <br/> <br/> <br/> <br/>Reboot, Check if it´s gone <br/>If it is, you have a clean log :smilewinkgrin: <br/> <br/> <br/> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; mso-ansi-language: EN-GB">[color=#0000ff>Ccleaner.</FONT></B></A><?xml:namespace]<o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB">The Temp folders and Internet cache should be cleaned out periodically as installation programs and hijack programs leave a lot of junk there <br/> <br/><SPAN class=postbody>For safer surfing: <br/>Spywareblaster[/color][/b][/url]<SPAN class=postbody> <br/>SpywareBlaster, a program created by Javacool, is used to secure your Internet Explorer to make it harder for these ActiveX programs to run on your computer, as well as disabling the ability of certain known offending ActiveX programs from running at all. This program also has the ability to stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.<o:p></o:p> <br/> <br/><SPAN class=postbody><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB">[color=#0000ff>Spywareguard[/b]<SPAN] <br/>SpywareGuard<SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB"> provides a real-time protection solution against spyware that is a great addition to SpywareBlaster´s protection method. <br/>An anti-virus program scans files before you open them and prevents execution if a virus is detected - SpywareGuard does the same thing, but for spyware! And you can easily have an anti-virus program running alongside SpywareGuard.<SPAN class=postbody> <br/> <br/><FONT face="Times New Roman" color=#0000ff>IE-Spyad[/color][/b][/url]<SPAN class=postbody> <br/>IE-SPYAD adds a long list of sites and domains associated with known advertisers, marketers, and crapware pushers to the Restricted sites zone of Internet Explorer. Once you merge this list of sites and domains into the Registry, the web sites for these companies will not be able to use cookies, ActiveX controls, Java applets, or scripting to compromise your privacy or your PC while you surf the Net. Nor will they be able to use your browser to push unwanted pop-ups, cookies, or auto-installing programs on your PC. <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB"> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB">It is possible you need updated USB drivers : <SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB">http://www.infdump.com/inf-files/U_1.html <br/>I don´t know which one, but i think. USB Inf will do <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; FONT-FAMILY: 'Times New Roman'; mso-ansi-language: EN-GB"><o:p></o:p>

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 5/19/2005 6:29 PM
#15172
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
OK, done what you said, when I run services.msc powermanager was already stopped,so just selected disable, ran hijackthis and powermanager was gone already.Re-booted anddownloaded usb.inf (where do I put it?), also got IE-SPYAD. Still no usb tho!!! <br/> <br/>Where do I put the usb.inf file I downloaded? <br/> <br/>Phil
Posted 5/20/2005 4:21 AM
#15195
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Just rightclick on it-install. Checked my own computer, i have usb2.inf! <br/> <br/>I am not expert in these matter´s

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 5/20/2005 7:18 AM
#15202
User avatar

redhmt Member

Date Joined Nov 2016
Total Posts: 6
OK, I figured it out, also have everything running ust great,in the end all it took was going into device manager and clicking on usb root and re-installing driver, talk about simple answer, took me all evening to find that ( just goes to show sometimes the answer is a simple one staring you in face lol).Anyway, everything is runing just great, bullguard is protecting my comp just great and no more probs. <br/> <br/>Thanks for all your help,I owe ya one. <br/> <br/>Phil
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Monday, December 5, 2016, 9:46 PM (GMT +1)
There are a total of 61,160 posts in 13,449 threads.
In the last 3 days there were 2 new threads and 3 reply posts.

Who's online

This forum has 37,965 registered members. Please welcome our newest member, Old shape.
There are currently no users on-line.