I just purchased NOD32 and it found a couple trojans.. How do I get rid of them and how do I ajust the settings for NOD32 so that it kicks butt? please help..Logfile of HijackThis v1.99.1
Scan saved at 5:23:33 PM, on 4/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLANSTA.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE
C:\WINDOWS\system32\carpserv.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Register Morpheus Upgrade Suite3.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\OdHost.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 3 for hijackthis[1].zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us4nb.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us4nb.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IExplorr22.clsIS - {39AF31DD-EAFC-45EA-A56C-385B52E25CC0} - c:\windows\iexplorr22.dll
O2 - BHO: IExplorr23.clsIS - {4CEBBC6B-5CEE-4644-80CF-38980BAE93F6} - c:\windows\iexplorr23.dll
O2 - BHO: IExplorr24.clsIS - {6B12DABB-0B7C-44FA-B0B3-4BAFF3790256} - c:\windows\iexplorr24.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: IExplorr11.clsIS - {BC0D2038-2DE5-4A6F-92BC-B18A3E0DE32A} - c:\windows\iexplorr11.dll
O3 - Toolbar: &My Way Speedbar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [QT4HPOT] C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE
O4 - HKLM\..\Run: [WLANSTA.EXE] WLANSTA.EXE START
O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62"
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
O4 - Global Startup: Register Morpheus Upgrade Suite3.exe
O4 - Global Startup: Wireless-G Notebook Adapter.lnk = C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Fun Web Products Installer Start) - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webiqonline.com/WebIQ/bin/WebIQ.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: Black Box Installer (BlackBoxInstallerService) - Unknown owner - C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: M-Audio USB Installer (MAudioUSBService) - M-Audio - C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: M-Audio Ozone Installer (OzoneInstallerService) - Nemesis - C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: M-Audio Transit Installer (TransitInstallerService) - M-Audio - C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
Full Version: trojans
Hello broskies,
Welcome to Gladiator Security Forum
We need to move HijackThis! to it's own permanent folder to ensure that we don't lose its backups. To make a permanent folder, double-click the My Computer icon on the desktop.
Click Local Disk C:.
File | New | Folder
A new folder called New Folder will be created.
Rename New Folder to HJT or HijackThis. Now move HijackThis! into the new folder you just created.
Read here how to unzip/extract properly:
http://metallica.geekstogo.com/xpcompressedexplanation.html
Please download, install, and update AVG Anti-Spyware (formerly Ewido)
Please reboot your computer into Safe Mode. To boot into Safe Mode, please restart your computer. Tap F8 before Windows loads. Select Safe Mode on the screen that appears.
Please run HijackThis! and click "Scan." Place checks next to the following entries, if present:
O2 - BHO: IExplorr22.clsIS - {39AF31DD-EAFC-45EA-A56C-385B52E25CC0} - c:\windows\iexplorr22.dll
O2 - BHO: IExplorr23.clsIS - {4CEBBC6B-5CEE-4644-80CF-38980BAE93F6} - c:\windows\iexplorr23.dll
O2 - BHO: IExplorr24.clsIS - {6B12DABB-0B7C-44FA-B0B3-4BAFF3790256} - c:\windows\iexplorr24.dll
O2 - BHO: IExplorr11.clsIS - {BC0D2038-2DE5-4A6F-92BC-B18A3E0DE32A} - c:\windows\iexplorr11.dll
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Fun Web Products Installer Start) - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab
Close all browsers and other windows except for HijackThis!, and click "Fix checked".
Navigate to and delete the following files, if present:
c:\windows\iexplorr11.dll
c:\windows\iexplorr24.dll
c:\windows\iexplorr23.dll
c:\windows\iexplorr22.dll
In your reply, please post the report from AVG and a new HijackThis log. Please also let me know how your computer is running. :)
Thanks,
tea
Welcome to Gladiator Security Forum
We need to move HijackThis! to it's own permanent folder to ensure that we don't lose its backups. To make a permanent folder, double-click the My Computer icon on the desktop.
Click Local Disk C:.
File | New | Folder
A new folder called New Folder will be created.
Rename New Folder to HJT or HijackThis. Now move HijackThis! into the new folder you just created.
Read here how to unzip/extract properly:
http://metallica.geekstogo.com/xpcompressedexplanation.html
Please download, install, and update AVG Anti-Spyware (formerly Ewido)
- Load AVG Anti-Spyware and then click the Update tab at the top. Under Manual Update click Start update.
- After the update finishes (the status bar at the bottom will display "Update successful")
- Click the settings tab, then click "apply all actions" and choose clean (quarantine)
- Close AVG. Do not run it yet.
Please reboot your computer into Safe Mode. To boot into Safe Mode, please restart your computer. Tap F8 before Windows loads. Select Safe Mode on the screen that appears.
Please run HijackThis! and click "Scan." Place checks next to the following entries, if present:
O2 - BHO: IExplorr22.clsIS - {39AF31DD-EAFC-45EA-A56C-385B52E25CC0} - c:\windows\iexplorr22.dll
O2 - BHO: IExplorr23.clsIS - {4CEBBC6B-5CEE-4644-80CF-38980BAE93F6} - c:\windows\iexplorr23.dll
O2 - BHO: IExplorr24.clsIS - {6B12DABB-0B7C-44FA-B0B3-4BAFF3790256} - c:\windows\iexplorr24.dll
O2 - BHO: IExplorr11.clsIS - {BC0D2038-2DE5-4A6F-92BC-B18A3E0DE32A} - c:\windows\iexplorr11.dll
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Fun Web Products Installer Start) - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab
Close all browsers and other windows except for HijackThis!, and click "Fix checked".
Navigate to and delete the following files, if present:
c:\windows\iexplorr11.dll
c:\windows\iexplorr24.dll
c:\windows\iexplorr23.dll
c:\windows\iexplorr22.dll
- In Safe Mode, load AVG Anti-Spyware and click on the Scanner tab at the top and then click on Complete System Scan. This scan can take quite a while to run, so be prepared.
- AVG Anti-Spyware will list any infections found on the left hand side. When the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG Anti-Spyware will display "All actions have been applied" on the right hand side.
- Click on "Save Report", then "Save Report As". This will create a text file. Make sure you know where to find this file again (like on the Desktop).
- Restart back into Normal Mode.
In your reply, please post the report from AVG and a new HijackThis log. Please also let me know how your computer is running. :)
Thanks,
tea
Pardon the interruption, but I want to answer your NOD32 question.
You'll find the official NOD32 forums here: http://www.wilderssecurity.com/forumdisplay.php?f=15
Complete instructions on setting up NOD32 can be found in this topic: http://www.wilderssecurity.com/showthread.php?t=37509
You'll find the official NOD32 forums here: http://www.wilderssecurity.com/forumdisplay.php?f=15
Complete instructions on setting up NOD32 can be found in this topic: http://www.wilderssecurity.com/showthread.php?t=37509
QUOTE (LoPhatPhuud @ Apr 1 2007, 10:42 PM) 
Pardon the interruption, but I want to answer your NOD32 question.
You'll find the official NOD32 forums here: http://www.wilderssecurity.com/forumdisplay.php?f=15
Complete instructions on setting up NOD32 can be found in this topic: http://www.wilderssecurity.com/showthread.php?t=37509
You'll find the official NOD32 forums here: http://www.wilderssecurity.com/forumdisplay.php?f=15
Complete instructions on setting up NOD32 can be found in this topic: http://www.wilderssecurity.com/showthread.php?t=37509
Thanks guys for your help! 
When I scanned using ags it found 56 traces of infections all medium risk and one high risk.. I quarantened them but Im not sure what to do from there.. Maybe I didLont do something right!? :uhm:gfile of HijackThis v1.99.1
Scan saved at 8:51:42 PM, on 4/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\WLANSTA.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE
C:\WINDOWS\system32\carpserv.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Register Morpheus Upgrade Suite3.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Linksys\Wireless-G Notebook Adapter\OdHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HJT\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us4nb.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us4nb.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &My Way Speedbar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [QT4HPOT] C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE
O4 - HKLM\..\Run: [WLANSTA.EXE] WLANSTA.EXE START
O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62"
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
O4 - Global Startup: Register Morpheus Upgrade Suite3.exe
O4 - Global Startup: Wireless-G Notebook Adapter.lnk = C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webiqonline.com/WebIQ/bin/WebIQ.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Black Box Installer (BlackBoxInstallerService) - Unknown owner - C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: M-Audio USB Installer (MAudioUSBService) - M-Audio - C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: M-Audio Ozone Installer (OzoneInstallerService) - Nemesis - C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: M-Audio Transit Installer (TransitInstallerService) - M-Audio - C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
When I scanned using ags it found 56 traces of infections all medium risk and one high risk.. I quarantened them but Im not sure what to do from there.. Maybe I didLont do something right!? :uhm:gfile of HijackThis v1.99.1Scan saved at 8:51:42 PM, on 4/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\WLANSTA.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE
C:\WINDOWS\system32\carpserv.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Register Morpheus Upgrade Suite3.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Linksys\Wireless-G Notebook Adapter\OdHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HJT\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us4nb.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us4nb.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &My Way Speedbar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [QT4HPOT] C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE
O4 - HKLM\..\Run: [WLANSTA.EXE] WLANSTA.EXE START
O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S0BIC1.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62"
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
O4 - Global Startup: Register Morpheus Upgrade Suite3.exe
O4 - Global Startup: Wireless-G Notebook Adapter.lnk = C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webiqonline.com/WebIQ/bin/WebIQ.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Black Box Installer (BlackBoxInstallerService) - Unknown owner - C:\Program Files\M-Audio\Black Box\Install\BlackBoxInst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: M-Audio USB Installer (MAudioUSBService) - M-Audio - C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: M-Audio Ozone Installer (OzoneInstallerService) - Nemesis - C:\Program Files\M-Audio\Ozone\Install\ozinst.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: M-Audio Transit Installer (TransitInstallerService) - M-Audio - C:\Program Files\M-Audio\Transit\Install\TUSBInst.exe
Hello,
Could I please see the report from AVG AntiSpyware? :)
Could I please see the report from AVG AntiSpyware? :)
yes Maam- sorry
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 7:14:41 PM 4/2/2007
+ Scan result:
HKLM\SOFTWARE\Classes\IExplorr11.clsDW -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsDW\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsIS -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsIS\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsDW -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsDW\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsIS -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsIS\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_106800.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_107400.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_111600.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_152400.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_155300.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_164100.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_449200.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_449600.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_454300.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Cydoor -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Queue -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Status -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Status\cd_htm -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0\Seqn_1068 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0\Seqn_1074 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4492 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4496 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4543 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1116 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1524 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1553 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1641 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_3 -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035544.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035545.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035546.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035547.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr24.clsDW -> Adware.InetSpeak : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr24.clsDW\Clsid -> Adware.InetSpeak : Cleaned with backup (quarantined).
C:\Program Files\Save -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\ReadMe.txt -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.htm -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\store.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Adware\BSaveInst.exe/Save.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Adware\BSaveInst.exe/SaveUninst.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveNow -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners\WUSV -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\JVM46EE.tmp/GetAccess.class -> Downloader.OpenConnection.aj : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\JVM46EE.tmp/Installer.class -> Downloader.OpenConnection.aj : Cleaned with backup (quarantined).
::Report end
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 7:14:41 PM 4/2/2007
+ Scan result:
HKLM\SOFTWARE\Classes\IExplorr11.clsDW -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsDW\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsIS -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr11.clsIS\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsDW -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsDW\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsIS -> Adware.AdBlaster : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr22.clsIS\Clsid -> Adware.AdBlaster : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_106800.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_107400.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_111600.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_152400.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_155300.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_164100.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_449200.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_449600.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\AdCache\B_454300.HTM -> Adware.Cydoor : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Cydoor -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Queue -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Status -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor Services\Status\cd_htm -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0\Seqn_1068 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_0\Seqn_1074 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_0\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4492 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4496 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_0\Seqn_4543 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_1\Level_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1116 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1524 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1553 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_0\Seqn_1641 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_1 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_2 -> Adware.Cydoor : Cleaned with backup (quarantined).
HKU\S-1-5-21-4185920030-1231429635-1418429872-1003\Software\Cydoor\Adwr_291\Loct_2\Level_3 -> Adware.Cydoor : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035544.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035545.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035546.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{68DCCD3E-2073-4915-A5DC-A445A55876AD}\RP361\A0035547.dll -> Adware.GoWebSite : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr24.clsDW -> Adware.InetSpeak : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\IExplorr24.clsDW\Clsid -> Adware.InetSpeak : Cleaned with backup (quarantined).
C:\Program Files\Save -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\ReadMe.txt -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.htm -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\store.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Adware\BSaveInst.exe/Save.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Adware\BSaveInst.exe/SaveUninst.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveNow -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners\WUSV -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\JVM46EE.tmp/GetAccess.class -> Downloader.OpenConnection.aj : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\JVM46EE.tmp/Installer.class -> Downloader.OpenConnection.aj : Cleaned with backup (quarantined).
::Report end
Hello,
No need to be sorry. ;)
Please download ATF Cleaner by Atribune.
For Technical Support, double-click the e-mail address located at the bottom of each menu.
SpySweeper is excellent at finding and cleaning registry traces. It is the trial version, so you can uninstall it when we're through.
Download the trial version of Spy Sweeper from
Here
Install it using the Standard Install option. (You will be asked for your e-mail address, it is safe to give it. If you receive alerts from your firewall, allow all activities for Spy Sweeper)
You will be prompted to check for updated definitions, please do so.
(This may take several minutes)
Click on Options > Sweep Options and check Sweep all Folders on Selected drives. Check Local Disc C. Under What to Sweep, check every box.
Click on Sweep and allow it to fully scan your system.
When the sweep has finished, click Remove. Click Select All and then Next
From 'Results', select the Session Log tab. Click Save to File and save the log somewhere convenient.
Exit Spy Sweeper.
Restart your computer, and then please copy and paste the SpySweeper log into this thread. How is it running now?
Thanks,
tea
No need to be sorry. ;)
Please download ATF Cleaner by Atribune.
- Double-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.
- Click Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
- Click Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
For Technical Support, double-click the e-mail address located at the bottom of each menu.
SpySweeper is excellent at finding and cleaning registry traces. It is the trial version, so you can uninstall it when we're through.
Download the trial version of Spy Sweeper from
Here
Install it using the Standard Install option. (You will be asked for your e-mail address, it is safe to give it. If you receive alerts from your firewall, allow all activities for Spy Sweeper)
You will be prompted to check for updated definitions, please do so.
(This may take several minutes)
Click on Options > Sweep Options and check Sweep all Folders on Selected drives. Check Local Disc C. Under What to Sweep, check every box.
Click on Sweep and allow it to fully scan your system.
When the sweep has finished, click Remove. Click Select All and then Next
From 'Results', select the Session Log tab. Click Save to File and save the log somewhere convenient.
Exit Spy Sweeper.
Restart your computer, and then please copy and paste the SpySweeper log into this thread. How is it running now?
Thanks,
tea
Hi Tea,Here is the Spy Sweeper session1:51 PM: None
1:51 PM: Traces Found: 0
1:51 PM: Sweep Canceled
1:51 PM: Start Full Sweep
1:51 PM: Sweep initiated using definitions version 866
1:49 PM: Access to Hosts file allowed for C:\PROGRAM FILES\GRISOFT\AVG ANTI-SPYWARE 7.5\AVGAS.EXE
Keylogger: Off
BHO Shield: On
IE Security Shield: On
Alternate Data Stream (ADS) Execution Shield: On
Startup Shield: On
Common Ad Sites: Off
Hosts File Shield: On
Internet Communication Shield: On
ActiveX Shield: On
Windows Messenger Service Shield: On
IE Favorites Shield: On
Spy Installation Shield: On
Memory Shield: Off
IE Hijack Shield: On
IE Tracking Cookies Shield: Off
1:43 PM: Shield States
1:42 PM: Spyware Definitions: 866
1:40 PM: Spy Sweeper 5.3.2.2361 started
1:40 PM: Spy Sweeper 5.3.2.2361 started
1:40 PM: | Start of Session, Saturday, April 07, 2007 |
***************
1:31 PM: ApplicationMinimized - EXIT
1:31 PM: ApplicationMinimized - ENTER
1:30 PM: ApplicationMinimized - EXIT
1:30 PM: ApplicationMinimized - EXIT
1:30 PM: ApplicationMinimized - ENTER
1:30 PM: ApplicationMinimized - ENTER
1:29 PM: ApplicationMinimized - EXIT
1:29 PM: ApplicationMinimized - EXIT
1:29 PM: ApplicationMinimized - ENTER
1:29 PM: ApplicationMinimized - ENTER
1:29 PM: Deletion from quarantine completed. Elapsed time 00:00:00
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Processing: esd adware
1:29 PM: Deletion from quarantine initiated
1:27 PM: Removal process completed. Elapsed time 00:00:39
1:27 PM: Quarantining All Traces: esd adware
1:26 PM: Removal process initiated
1:26 PM: Traces Found: 36
1:26 PM: Full Sweep has completed. Elapsed time 00:30:49
1:25 PM: File Sweep Complete, Elapsed Time: 00:20:04
1:22 PM: Warning: SweepDirectories: Cannot find directory "d:". This directory was not added to the list of paths to be scanned.
1:05 PM: Starting File Sweep
1:05 PM: Cookie Sweep Complete, Elapsed Time: 00:00:00
1:05 PM: Starting Cookie Sweep
1:05 PM: Registry Sweep Complete, Elapsed Time:00:00:45
1:05 PM: HKLM\software\classes\typelib\{b224aff4-0561-4b35-a91a-6f339152a482}\ (ID = 1873922)
1:05 PM: HKLM\software\classes\clsid\{eb6d8baa-704a-415b-bc0a-3468bfae924e}\ (ID = 1873900)
1:05 PM: HKLM\software\classes\typelib\{d6862a20-1dd6-11d3-bb7c-444553540000}\ (ID = 135233)
1:05 PM: HKCR\typelib\{1620d17d-f2b5-43be-8ed4-6b22e321d2a3}\ (ID = 128646)
1:05 PM: HKCR\typelib\{22cbcb4c-e9df-4d25-86bc-ffda4df8fc06}\ (ID = 128645)
1:05 PM: HKLM\software\classes\typelib\{1620d17d-f2b5-43be-8ed4-6b22e321d2a3}\ (ID = 128629)
1:05 PM: HKLM\software\classes\typelib\{22cbcb4c-e9df-4d25-86bc-ffda4df8fc06}\ (ID = 128628)
1:05 PM: HKLM\software\classes\interface\{fc385f81-0109-4fa8-aad0-53b4a9a5dd2b}\ (ID = 128627)
1:05 PM: HKLM\software\classes\interface\{e41774f1-63e7-44ed-a03a-ff8422f9aff0}\ (ID = 128626)
1:05 PM: HKLM\software\classes\interface\{cbd7e8be-0e1e-441d-b133-e26f5636cccf}\ (ID = 128624)
1:05 PM: HKLM\software\classes\interface\{b4450075-9717-43b1-ba10-4b9fd7325fd5}\ (ID = 128623)
1:05 PM: HKLM\software\classes\interface\{338f1d89-a419-4c40-96e3-c29c978a7df6}\ (ID = 128620)
1:05 PM: HKLM\software\classes\interface\{22eb8f60-f99b-4e29-8376-e8bc417148fd}\ (ID = 128618)
1:05 PM: HKLM\software\classes\iexplorr24.clsis\ (ID = 128615)
1:05 PM: HKLM\software\classes\iexplorr23.clsis\ (ID = 128613)
1:05 PM: HKLM\software\classes\iexplorr23.clsdw\ (ID = 128612)
1:05 PM: HKLM\software\classes\clsid\{da3609d1-3e96-4726-a17f-30f46ae89726}\ (ID = 128610)
1:05 PM: HKLM\software\classes\clsid\{a76066c9-941b-4209-9d96-0ac80501100d}\ (ID = 128607)
1:05 PM: HKLM\software\classes\clsid\{43e2dbe5-8c8a-4519-9684-8cd7f39a5147}\ (ID = 128602)
1:05 PM: HKCR\interface\{fc385f81-0109-4fa8-aad0-53b4a9a5dd2b}\ (ID = 128598)
1:05 PM: HKCR\interface\{e41774f1-63e7-44ed-a03a-ff8422f9aff0}\ (ID = 128597)
1:05 PM: HKCR\interface\{cbd7e8be-0e1e-441d-b133-e26f5636cccf}\ (ID = 128595)
1:05 PM: HKCR\interface\{b4450075-9717-43b1-ba10-4b9fd7325fd5}\ (ID = 128594)
1:05 PM: HKCR\interface\{338f1d89-a419-4c40-96e3-c29c978a7df6}\ (ID = 128591)
1:05 PM: HKCR\interface\{22eb8f60-f99b-4e29-8376-e8bc417148fd}\ (ID = 128589)
1:05 PM: HKCR\iexplorr24.clsis\ (ID = 128586)
1:05 PM: HKCR\iexplorr23.clsis\ (ID = 128584)
1:05 PM: HKCR\iexplorr23.clsdw\ (ID = 128583)
1:05 PM: HKCR\clsid\{da3609d1-3e96-4726-a17f-30f46ae89726}\ (ID = 128581)
1:05 PM: HKCR\clsid\{a76066c9-941b-4209-9d96-0ac80501100d}\ (ID = 128578)
1:05 PM: HKCR\clsid\{43e2dbe5-8c8a-4519-9684-8cd7f39a5147}\ (ID = 128573)
1:05 PM: HKCR\typelib\{d6862a20-1dd6-11d3-bb7c-444553540000}\ (ID = 102675)
1:05 PM: HKCR\typelib\{b224aff4-0561-4b35-a91a-6f339152a482}\ (ID = 102674)
1:05 PM: HKCR\interface\{7fb04de1-4340-4002-9d9e-3b6913ae6953}\ (ID = 102658)
1:05 PM: HKCR\interface\{0b60cef5-2431-4f92-82cf-03fee5bdc762}\ (ID = 102656)
1:05 PM: HKCR\clsid\{eb6d8baa-704a-415b-bc0a-3468bfae924e}\ (ID = 102651)
1:05 PM: Found Adware: esd adware
1:05 PM: Starting Registry Sweep
1:04 PM: Memory Sweep Complete, Elapsed Time: 00:09:44
12:55 PM: Starting Memory Sweep
12:55 PM: Start Full Sweep
12:55 PM: Sweep initiated using definitions version 866
12:47 PM: None
12:47 PM: Traces Found: 0
12:47 PM: Sweep Canceled
12:46 PM: Start Full Sweep
12:46 PM: Sweep initiated using definitions version 866
12:45 PM: None
12:45 PM: Traces Found: 0
12:45 PM: Memory Sweep Complete, Elapsed Time: 00:01:22
12:45 PM: Sweep Canceled
12:44 PM: Starting Memory Sweep
12:44 PM: Start Full Sweep
12:44 PM: Sweep initiated using definitions version 866
12:38 PM: ApplicationMinimized - EXIT
12:38 PM: ApplicationMinimized - EXIT
12:38 PM: ApplicationMinimized - ENTER
12:38 PM: ApplicationMinimized - ENTER
12:37 PM: Access to Hosts file allowed for C:\PROGRAM FILES\GRISOFT\AVG ANTI-SPYWARE 7.5\AVGAS.EXE
Keylogger: Off
BHO Shield: On
IE Security Shield: On
Alternate Data Stream (ADS) Execution Shield: On
Startup Shield: On
Common Ad Sites: Off
Hosts File Shield: On
Internet Communication Shield: On
ActiveX Shield: On
Windows Messenger Service Shield: On
IE Favorites Shield: On
Spy Installation Shield: On
Memory Shield: Off
IE Hijack Shield: On
IE Tracking Cookies Shield: Off
12:30 PM: Shield States
12:29 PM: Spyware Definitions: 866
12:26 PM: Spy Sweeper 5.3.2.2361 started
12:26 PM: Spy Sweeper 5.3.2.2361 started
12:26 PM: | Start of Session, Saturday, April 07, 2007 |
***************
s log....
- Computer still slow!! And sometimes the screen flashes green.. sometimes it stays green.?? :( any ideas?
Hello,
How old is your monitor?
Since it's been a few days I'd like to see a new HijackThis log and an uninstall list.
Open HijackThis, click Config, click Misc Tools
Click "Open Uninstall Manager"
Click "Save List" (generates uninstall_list.txt)
Click Save, copy and paste the results in your next post.
Thanks,
tea
How old is your monitor?
Since it's been a few days I'd like to see a new HijackThis log and an uninstall list.
Open HijackThis, click Config, click Misc Tools
Click "Open Uninstall Manager"
Click "Save List" (generates uninstall_list.txt)
Click Save, copy and paste the results in your next post.
Thanks,
tea
Hi Tea!
Thanks for your help! :thumbup: I think my monitor is 4yrs. old not sure though.. but here is my uninstall---
Ad-aware 6 Personal
Adobe Acrobat 5.0
Adobe Flash Player 9 ActiveX
ArcSoft Software Suite
ASIO4ALL
ATI Display Driver
Audiophile USB 1.5.4.15
AVG Anti-Spyware 7.5
Black Box
Conexant 56K ACLink Modem
Conexant 56K ACLink Modem
Conexant AC-Link Audio
Desktop Zoom
DSound GT Player Express
Easy Internet Sign-up
EPSON Printer Software
Fast Track Pro
Google Toolbar for Internet Explorer
HijackThis 1.99.1
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
HP Wireless LAN
Hpsetup
Inactive HP Printer Drivers (Remove only)
InterVideo WinDVD
iTunes
Kazaa Media Desktop 2.1
KhalSetup
Lernout & Hauspie TruVoice American English TTS Engine
Linksys EasyLink Advisor 1.5 (1010)
Live 5.0.4
LiveReg (Symantec Corporation)
LiveUpdate 1.80 (Symantec Corporation)
Logitech SetPoint
Microsoft .NET Framework (English)
Microsoft .NET Framework (English) v1.0.3705
Microsoft .NET Framework 1.0 Hotfix (KB886906)
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Music Visualizer Library 1.4.00
My Way Speedbar
Net MD Simple Burner
NOD32 antivirus system
Notebook Utilities
Odyssey Client
One-Touch Buttons
OpenMG Limited Patch 3.2-03-02-21-08
OpenMG Limited Patch 3.2-03-04-14-02
OpenMG Limited Patch 3.2-03-04-17-02
OpenMG Secure Module 3.2
Ozone
Photodex Presenter
Pinnacle Studio LINX
Quicken 2003 New User Edition
QuickTime
Registry Cleaner 32 version 1.1
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
SonicStage 1.5.53
Spy Sweeper
Studio
Synaptics TouchPad
Transit
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB929338)
Update for Windows XP (KB931836)
WebIQ Client Software
Windows Backup Utility
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Service Pack 2
WinMX
Wireless-G Notebook Adapter
WordPerfect Productivity Pack
WordPerfect Productivity Pack
Sure have a lot of security updates..?
Thanks for your help! :thumbup: I think my monitor is 4yrs. old not sure though.. but here is my uninstall---
Ad-aware 6 Personal
Adobe Acrobat 5.0
Adobe Flash Player 9 ActiveX
ArcSoft Software Suite
ASIO4ALL
ATI Display Driver
Audiophile USB 1.5.4.15
AVG Anti-Spyware 7.5
Black Box
Conexant 56K ACLink Modem
Conexant 56K ACLink Modem
Conexant AC-Link Audio
Desktop Zoom
DSound GT Player Express
Easy Internet Sign-up
EPSON Printer Software
Fast Track Pro
Google Toolbar for Internet Explorer
HijackThis 1.99.1
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
HP Wireless LAN
Hpsetup
Inactive HP Printer Drivers (Remove only)
InterVideo WinDVD
iTunes
Kazaa Media Desktop 2.1
KhalSetup
Lernout & Hauspie TruVoice American English TTS Engine
Linksys EasyLink Advisor 1.5 (1010)
Live 5.0.4
LiveReg (Symantec Corporation)
LiveUpdate 1.80 (Symantec Corporation)
Logitech SetPoint
Microsoft .NET Framework (English)
Microsoft .NET Framework (English) v1.0.3705
Microsoft .NET Framework 1.0 Hotfix (KB886906)
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Music Visualizer Library 1.4.00
My Way Speedbar
Net MD Simple Burner
NOD32 antivirus system
Notebook Utilities
Odyssey Client
One-Touch Buttons
OpenMG Limited Patch 3.2-03-02-21-08
OpenMG Limited Patch 3.2-03-04-14-02
OpenMG Limited Patch 3.2-03-04-17-02
OpenMG Secure Module 3.2
Ozone
Photodex Presenter
Pinnacle Studio LINX
Quicken 2003 New User Edition
QuickTime
Registry Cleaner 32 version 1.1
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
SonicStage 1.5.53
Spy Sweeper
Studio
Synaptics TouchPad
Transit
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB929338)
Update for Windows XP (KB931836)
WebIQ Client Software
Windows Backup Utility
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Service Pack 2
WinMX
Wireless-G Notebook Adapter
WordPerfect Productivity Pack
WordPerfect Productivity Pack
Sure have a lot of security updates..?
Hello,
Yes, you're supposed to have that many security updates. I do too. :)
Uninstall these via Add/Remove Programs :
LiveReg (Symantec Corporation)
LiveUpdate 1.80 (Symantec Corporation)
Reboot and let me know if it's any faster.
If you have a CRT monitor, then try this : Unplug it and stand it upside down overnight. I know it sounds farfetched, but it was suggested to me once by a tech, and it worked. Otherwise, you may be in for a new monitor purchase. :(
Yes, you're supposed to have that many security updates. I do too. :)
Uninstall these via Add/Remove Programs :
LiveReg (Symantec Corporation)
LiveUpdate 1.80 (Symantec Corporation)
Reboot and let me know if it's any faster.
If you have a CRT monitor, then try this : Unplug it and stand it upside down overnight. I know it sounds farfetched, but it was suggested to me once by a tech, and it worked. Otherwise, you may be in for a new monitor purchase. :(
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.