Friday, July 31, 2009

Can anyone tell me what?

i can safely delete from this hijackthis log.i tried a few forums but they seem to be unavailable.my computer has had tons of spyware and viruses(since the kids snuck on).





Logfile of Trend Micro HijackThis v2.0.0 (BETA)


Scan saved at 7:36:44 PM, on 3/1/2008


Platform: Windows XP SP2 (WinNT 5.01.2600)


Boot mode: Normal





Running processes:


C:\WINDOWS\System32\smss.exe


C:\WINDOWS\system32\winlogon.exe


C:\WINDOWS\system32\services.exe


C:\WINDOWS\system32\lsass.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\System32\svchost.exe


C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe


C:\Program Files\Alwil Software\Avast4\ashServ.exe


C:\WINDOWS\system32\mgmrwmrv.exe


C:\WINDOWS\Explorer.EXE


C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe


C:\windows\system\hpsysdrv.exe


C:\WINDOWS\system32\hkcmd.exe


C:\WINDOWS\system32\hphmon06.exe


C:\HP\KBD\KBD.EXE


C:\Program Files\iTunes\iTunesHelper.exe


C:\WINDOWS\AGRSMMSG.exe


C:\WINDOWS\ALCXMNTR.EXE


C:\WINDOWS\system32\igfxtray.exe


C:\Program Files\QuickTime\qttask.exe


C:\Program Files\Common Files\Real\Update_OB\realsched.exe


C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.ex...


C:\PROGRA~1\LEXMAR~1\ACMonitor_X73.exe


C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X73.exe


C:\WINDOWS\system32\regsvr32.exe


C:\WINDOWS\system32\ctfmon.exe


C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe


C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe


C:\WINDOWS\system32\spoolsv.exe


C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE


C:\WINDOWS\system32\svchost.exe


C:\Program Files\iPod\bin\iPodService.exe


C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe


C:\Program Files\Alwil Software\Avast4\ashWebSv.exe


C:\Program Files\Internet Explorer\IEXPLORE.EXE


C:\Program Files\Windows Defender\MsMpEng.exe


C:\Program Files\Windows Defender\MSASCui.exe


C:\Documents and Settings\HP_Owner\Desktop\HiJackThis_v2....





R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=6...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=5...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=5...


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=6...


R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.ex...


O1 - Hosts: 202.67.220.239 win.mail.ru


O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)


O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)


O2 - BHO: %26amp;Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)


O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx


O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)


O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)


O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)


O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)


O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplu...


O2 - BHO: (no name) - {4c8c03f4-1dd2-11b2-a384-b58436937e0f} - C:\WINDOWS\pcvgfidw.dll


O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)


O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)


O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)


O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)


O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)


O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll


O2 - BHO: (no name) - {79D0393B-5F37-45A1-962A-32E4D4FEC707} - C:\WINDOWS\system32\borlndm.dll


O2 - BHO: (no name) - {8746E46A-7415-4223-A709-BEDA260B7DED} - C:\WINDOWS\system32\vtstq.dll


O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)


O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)


O2 - BHO: (no name) - {ACF92699-B3B6-4126-AE02-FAAA922FF90E} - C:\Program Files\Windows Media Player\safepC:\DOCUME~1\HP_Owner\LOCALS~... (file missing)


O2 - BHO: (no name) - {B07BE832-8D3F-4B9C-8EEA-3E8AD646BCC7} - (no file)


O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)


O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)


O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)


O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)


O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)


O2 - BHO: (no name) - {C7EB2A3D-AD12-4A63-A65E-692C6C518C00} - C:\WINDOWS\repair\gvauala.dll (file missing)


O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)


O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)


O2 - BHO: (no name) - {E08DE81E-7E47-4777-84C5-C45DA13BCF91} - C:\WINDOWS\system32\qommlij.dll


O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)


O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)


O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll


O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"


O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe


O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe


O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C...


O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe


O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE


O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe


O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE


O4 - HKLM\..\Run: [VTTimer] VTTimer.exe


O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe


O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe


O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE


O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe


O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime


O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART


O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot


O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe


O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86...


O4 - HKLM\..\Run: [Lexmark X73 Button Monitor] C:\PROGRA~1\LEXMAR~1\ACMonitor_X73.exe


O4 - HKLM\..\Run: [Lexmark X73 Button Manager] C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X73.exe


O4 - HKLM\..\Run: [ubermdkj] regsvr32 /u "C:\Documents and Settings\All Users\Application Data\ubermdkj.dll"


O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide


O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe


O4 - Startup: .protected


O4 - Global Startup: .protected


O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe


O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe


O8 - Extra context menu item: %26amp;Search - http://edits.mywebsearch.com/toolbaredit...


O8 - Extra context menu item: %26amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O8 - Extra context menu item: E%26amp;xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCE...


O8 - Extra context menu item: Yahoo! %26amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! %26amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll


O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll


O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll


O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll


O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.D...


O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll


O15 - Trusted Zone: http://locator1.cdn.imagesrvr.com


O15 - Trusted IP range: http://202.67.220.225


O15 - Trusted IP range: http://59.148.220.121


O15 - Trusted IP range: http://62.4.84.53


O15 - Trusted IP range: http://82.98.235.58


O15 - Trusted IP range: http://85.12.25.90


O16 - DPF: {1B30282C-970F-4DCC-97D1-1714277525C1} - http://profile.homescanonline.com/hso/bi...


O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -


O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - http://www.pogo.com/cdl/launcher/PogoWeb...


O16 - DPF: {41D1977F-4161-4720-800F-EA4903983A38} (Jigsaw Genius Control) - http://www.worldwinner.com/games/v42/jig...


O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUp...


O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/...


O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v1...


O16 - DPF: {B8E71371-F7F7-11D2-A2CE-0060B0FB9D0D} (CDToolCtrl Class) - http://free.aol.com/tryaolfree/cdt175/ao...


O16 - DPF: {C86FF4B0-AA1D-46D4-8612-025FB86583C7} (AstoundLauncher Control) - http://zone.msn.com/bingame/jobo/default...


O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://zone.msn.com/bingame/feed/default...


O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/bingame/popcaploader...


O16 - DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} (CPlayFirstSweetopiaControl Object) - http://zone.msn.com/bingame/swet/default...


O20 - Winlogon Notify: qommlij - C:\WINDOWS\SYSTEM32\qommlij.dll


O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll


O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll


O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe


O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe


O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe


O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe


O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe


O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe


O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe





--


End of file - 13132 bytes

Can anyone tell me what?
HijackThis is a powerful tool and self-help guides, automated analysers and unqualified 'help' is a pretty sure way to screw your computer even worse.





It looks like you've got a few problems on there and the best advice I can offer is to get assistance from a trained analyst at a specialist malware-removal forum, e.g.





http://www.malwareremoval.com/forum/


http://www.bleepingcomputer.com/forums/


http://forums.whatthetech.com/forums.htm...


http://www.spywarewarrior.com/index.php





These guys (and girls) are all volunteers and are all pretty busy, so expect to wait a day or two for a reply.





Before you submit your HJT log to a specialist forum it would be a good idea to download a good anti-spyware program, such as AVG Anti-Spyware or SuperAntiSpyware, and remove whatever crap is found.





They'll also advise you to update Java and Adobe Reader, or to uninstall Adobe and use Foxit Reader. It's about 1/10th the size and faster to open.





It looks like you've also got RealPlayer and QuickTime, you need to make sure they are up-to-date too. All these four programs, and Flash player, have had vulnerabilities maliciously exploited recently, which is why there are updated versions.





You need to keep *all* your software up-to-date with the latest security patches. The easiest way is to use Secunia PSI. This is a great little freebie which scans your software and informs you when security patches are available. It also provides info and links to the official download sites.





Secunia PSI:


https://psi.secunia.com/


AVG free anti-spyware:


http://free.grisoft.com/doc/download-fre...


SuperAntiSpyware free:


http://www.superantispyware.com/


Foxit Reader:


http://www.foxitsoftware.com/pdf/rd_intr...





I didn't notice Flash player on your pc but if you have got it, here's a link to the special Adobe uninstaller:


http://kb.adobe.com/selfservice/viewCont...
Reply:Password-protect your admin account and set the kids up with a limited-user account. They won't be able to install anything (including accidental malware installs) or mess with the essential operating system files. Report It

Reply:I would suggest that you leave manual deleting as a last resort. Before doing so, instead follow my malware removal guide here: http://prometechus.blogspot.com/2007/09/...





You may also want to try HijackReader to make more sense of your log. Best of luck
Reply:Google AD-Aware and get the free download then update it and do a deep scan it will help you. Good luck

birthday flowers
Posted by at No comments:

Impossible chemistry questions :(?

1. Which of the following is not an example of a model?


A. a floor lamp


B. a globe


C. a road map


D. a wind tunnel





2. A 1-g sample of the compound hydrogen chloride was analyzed and found to be 2.74 percent hydrogen and 97.3 percent chlorine. What percentage of hydrogen is present in a 2-g sample of hydrogen chloride?


A. 1.37%


B. 2.74%


C. 5.48%


D. 97.3%





3. The atomic number of an element whose atoms have 9 electrons and 1 neutrons is?


A. 9


B. 19


C. 1


D. 18





4.One isotope of carbon has 6 protons and 6 neutrons. The number of protons and neutrons of a second isotope of carbon would be?


A. 7 and 6


B. 6 and 7


C. 7 and 7


D. 6 and 6





5. If 9.0 g of water contain 1.0 g of hydrogen, what mass of oxygen is contained in 36 g of water?


A. 4.0 g


B. 8.0 g


C. 10.0


D. 32 g

Impossible chemistry questions :(?
1. Which of the following is not an example of a model?


A. a floor lamp





2. A 1-g sample of the compound hydrogen chloride was analyzed and found to be 2.74 percent hydrogen and 97.3 percent chlorine. What percentage of hydrogen is present in a 2-g sample of hydrogen chloride?


B. 2.74%





3. The atomic number of an element whose atoms have 9 electrons and 1 neutrons is?


A. 9





4.One isotope of carbon has 6 protons and 6 neutrons. The number of protons and neutrons of a second isotope of carbon would be?


B. 6 and 7


or


D. 6 and 6





5. If 9.0 g of water contain 1.0 g of hydrogen, what mass of oxygen is contained in 36 g of water?


D. 32 g
Reply:1. A. A floor lamp does not allow you to imagine characteristics of a system


2. B.


3. You have to assume it is electronically neutral, then: A.


4. A.


5. A.


Posted by at No comments:

So i ran hijackthis but i dont know what is good and what is bad can someone help me?

Logfile of Trend Micro HijackThis v2.0.0 (BETA)


Scan saved at 2:38:36 PM, on 5/8/2007


Platform: Windows XP SP2 (WinNT 5.01.2600)


Boot mode: Normal





Running processes:


C:\WINDOWS\System32\smss.exe


C:\WINDOWS\system32\csrss.exe


C:\WINDOWS\system32\winlogon.exe


C:\WINDOWS\system32\services.exe


C:\WINDOWS\system32\lsass.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\System32\svchost.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\system32\svchost.exe


C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


C:\WINDOWS\system32\LEXBCES.EXE


C:\WINDOWS\system32\LEXPPS.EXE


C:\WINDOWS\system32\spoolsv.exe


C:\WINDOWS\Explorer.EXE


C:\WINDOWS\ehome\ehtray.exe


C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe


C:\WINDOWS\system32\Rundll32.exe


C:\Program Files\Common Files\InstallShield\UpdateService\issch....


C:\WINDOWS\system32\dla\tfswctrl.exe


C:\WINDOWS\system32\hkcmd.exe


C:\WINDOWS\system32\igfxpers.exe


C:\Program Files\Common Files\Symantec Shared\ccApp.exe


C:\Program Files\Spyware Doctor\SDTrayApp.exe


C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe


C:\WINDOWS\system32\ctfmon.exe


C:\Program Files\Creative\MediaSource\Detector\CTDe...


C:\WINDOWS\system32\CTsvcCDA.EXE


C:\WINDOWS\eHome\ehRecvr.exe


C:\WINDOWS\eHome\ehSched.exe


C:\WINDOWS\System32\GEARSec.exe


c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe


C:\DOCUME~1\Zack\LOCALS~1\Temp\clclean...


C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT...


C:\Program Files\Spyware Doctor\svcntaux.exe


C:\Program Files\Spyware Doctor\swdsvc.exe


C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1...


c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe


c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\system32\svchost.exe


C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


C:\WINDOWS\ehome\mcrdsvc.exe


C:\WINDOWS\system32\dllhost.exe


C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe


C:\WINDOWS\System32\alg.exe


C:\WINDOWS\eHome\ehmsas.exe


C:\WINDOWS\system32\taskmgr.exe


C:\Program Files\Mozilla Firefox\firefox.exe


C:\Documents and Settings\Zack\Desktop\HiJackThis_v2.exe


C:\WINDOWS\system32\wbem\wmiprvse.exe





R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/d...


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=5...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=5...


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway


R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/d...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!


R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt....


O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt....


O2 - BHO: (no name) - {03CC2C13-666E-43FE-AED2-571D2BDA83A7} - (no file)


O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll


O2 - BHO: (no name) - {1EEF5A08-0D34-C6FC-BBEA-0483FAD30CAF} - (no file)


O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll


O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt....


O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe


O4 - HKLM\..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe


O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon


O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE


O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm... -startup


O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.... -start


O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe


O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe


O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe


O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe


O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"


O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"


O4 - HKCU\..\Run: [SetDefaultMIDI] MIDIDef.exe


O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8... "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"


O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe


O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDe... /R


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [SetDefaultMIDI] MIDIDef.exe (User 'Administrator')


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDe... /R (User 'Administrator')


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [Creative MediaSource Go] "C:\Program Files\Creative\MediaSource\Go\CTCMSGo.ex... /SCB (User 'Administrator')


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup (User 'Administrator')


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'Administrator')


O4 - HKUS\S-1-5-21-419463822-2287653063-78825... [SetDefaultMIDI] MIDIDef.exe (User 'Guest')


O8 - Extra context menu item: %26amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O8 - Extra context menu item: E%26amp;xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCE...


O8 - Extra context menu item: Yahoo! %26amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! %26amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm


O8 - Extra context menu item: Yahoo! %26amp;SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.D...


O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll


O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/S...


O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/c...


O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll


O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by20fd.bay20.hotmail.msn.com/reso...


O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdat...


O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Share...


O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupd...


O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab


O16 - DPF: {E504EE6E-47C6-11D5-B8AB-00D0B78F3D48} (Yahoo! Webcam Viewer Wrapper) - http://chat.yahoo.com/cab/yvwrctl.cab


O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll


O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll


O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe


O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe


O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe


O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE


O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe


O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe


O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE


O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc....


O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe


O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.E...


O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files\Spyware Doctor\svcntaux.exe


O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe


O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\N...


O23 - Service: Sprint PCS v3 Utility Service - Sprint Spectrum, L.L.C - C:\Program Files\Sprint\Sprint PCS Connection Manager\CMSPCSUtilSvc.exe


O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe





--


End of file - 11880 bytes

So i ran hijackthis but i dont know what is good and what is bad can someone help me?
O2 - BHO: (no name) - {03CC2C13-666E-43FE-AED2-571D2... - (no file)


O2 - BHO: (no name) - {1EEF5A08-0D34-C6FC-BBEA-0483F... - (no file)





Everything seems to be OK.
Reply:you need to update your java and use a firewall (unless you are using the windows one)
Reply:OK, I can give you the answer on this. What you need to do is to post this log to the following website:





http://forums.spywareinfo.com/





They will give you an **extremely** rapid analysis of your HiJackThis log.
Reply:wow... first off... most of which i would leave on there. HiJackThis should not be messed with unless you know what your looking at. I could go through one by one and tell you which ones i would turn off, but my suggestion? Dont remove anything.
Reply:If you still have question or problems let the experts take a look at whats happening on your computer.Visit the HijackThis Logs and Analysis forum.


http://www.bleepingcomputer.com/forums/i...


Posted by at No comments:

Do you think, if i answer this, you will best answer me?

Well, I'm a The Sims addict,





The Sims PS2 Bustin' Out:





Unlock all Objects: L2 R2 UP TRIANGLE L3


UNLOCK ALL LOCATION: R2 R3 L3 L2 R1 L1


FILL ALL MOTIVES: L2 RI LEFT CIRCLE UP


ALL SOCIAL OPTIONS: L1 R1 DOWN X L3 R3


MONEY CHEAT: LI R2 LEFT SQUARE L3


GNOME: R2 NL1 R1 L2 LEFT CIRCLE





note: unlock first the "gnome" if u want to use the fill all motives and money cheat%26gt;





THE SIMS PS2 (ORIGINAL):





Midas Mode


Enter "MIDAS" at the cheat menu. Begin a game in Get A Life mode, get into the hot tub with the girl, then pause the game. Select "Quit", followed by "Just Quit". This mode unlock all two- player games, all locked objects, and all locked skins.





Invisible Head


Enable the "First person view" code. Hold Up, Down, Left, or Right while in first person view and you will see your Sim with no head. If your Sim wears glasses, you will see them floating.





Change Clothes Faster


When a Sim puts up the curtain to change, press L1 to pause game play. They will change, but time will freeze.





Place Wallpaper Or Carpets Faster


Hold L1 or R1, then press Square at the same time.





Unlock The Play The Sims Mode


Press L1 + R1 + L2 + R2 then enter SIMS To Unlock the Play The Sims mode without going through the Get A Life dream house. This is useful for players without memory cards, who would otherwise need to play through the Dream Douse each time.





Person View


Press L1 + R1 + L2 + R2 then enter FISH EYES %26amp; Make sure you put in a space. Enter the game and remove the walls, then press the wall toggle button again, and it'll change to a 1st person view!





Party


Press L1 + R1 + L2 + R2 then enter PARTY M %26amp; Make sure you put in a space to Unlock Party Motel two-player game.





Free Mode


At the cheat code menu type in "FREEALL". This code will allow you to buy anything without paying for it(but you have to have enough simoleans to purchase the item). This does not work on bills, food, etc. It may also cause problems with saved games.





Opens Up The Two Player Mode


At the start screen, hold R1, R2, L1, L2 all at once. Type MIDAS in the cheat box then press done.





when you delete walls%26lt; don"t let go THEN press the button rapidly





THE SIMS URBZ PS2:





GNOME CHEAT: CIRCLE L1 L2 R2 R1


ALL SOCIALS: L2 R2 UP TRIANGLE L3 X


POWER SOCIAL: TRIANGLE R2 L1 X SQUARE


TEAM PHOTOS: UP DOWN CIRCLE UP DOWN


AQUIRE SKILL: L1 R2 RIGHT SQUARE L3


PHYSICAL SKILL: L1 R2 DOWN X L3


MENTAL SKILL: L1 R1 X CIRCLE UP


ARTISTIC SKILL: L3 R3 R1 R2 CIRCLE





note: r3 and l3 are both the analog sticks, just press it.





THE SIMS ORIGINAL P.C.:





PRESS CTRL+C FIRST





EDIT MAPS: map_edit on/map_edit off





CAN PUT WATER: water_tool





SELF EXPLANATORY: route_baloon on/off





LETS YOU CHANGE PERSONALITIES: interests





VALUES 0-100 ON HOW MUCH SIMS THINK ON OWN: autonomy





SETS SPEED: v. 1-1000-/1-1000+





SETS HOUR: v. 1-24





Can put objects anywhere and can edit objects that cannot be edited like your sims or the mailbox:


move_objects on/off





ENTER klapaucius FOR 1000.00 AND THEN ENTER !j for more money( enter as many as you can because !j means repeats last cheatcode entered).

Do you think, if i answer this, you will best answer me?
okay, sure
Reply:Zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz
Reply:[everybody sing with me]





wake me up when your blah-ing ends....
Reply:I'm a HUGE Sims fan----wish I could help give an answer, but I can't seem to locate a question??!
Reply:I'm already asleep. It's too long...zzzzzzzzzzzzzzz...........
Reply:What the hell? Idk!
Reply:Lifes way too short!
Reply:no
Reply:2 long 2 read.......................
Reply:Yeah the Sims rock !


Posted by at No comments:

Can u look at my hijack log and tell me if I'm infected with spyware and what to do?

Logfile of HijackThis v1.99.1


Scan saved at 11:03:40 PM, on 9/30/2006


Platform: Windows XP SP2 (WinNT 5.01.2600)


MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)





Running processes:


C:\WINDOWS\System32\smss.exe


C:\WINDOWS\system32\winlogon.exe


C:\WINDOWS\system32\services.exe


C:\WINDOWS\system32\lsass.exe


C:\WINDOWS\system32\svchost.exe


C:\Program Files\Windows Defender\MsMpEng.exe


C:\WINDOWS\System32\svchost.exe


C:\WINDOWS\Explorer.EXE


C:\WINDOWS\system32\spoolsv.exe


C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.e...


C:\Program Files\Common Files\AOL\1159668734\ee\services\safetyC...


C:\PROGRA~1\mcafee.com\ANTIVI~1\mcshie...


C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE


C:\Program Files\mcafee.com\personal firewall\MPFService.exe


C:\PROGRA~1\mcafee.com\ANTIVI~1\OasCln...


C:\WINDOWS\System32\PAStiSvc.exe


C:\WINDOWS\system32\svchost.exe


C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe


C:\windows\system\hpsysdrv.exe


C:\WINDOWS\AGRSMMSG.exe


C:\HP\KBD\KBD.EXE


C:\Program Files\Common Files\Real\Update_OB\realsched.exe


C:\Program Files\iTunes\iTunesHelper.exe


C:\Program Files\iPod\bin\iPodService.exe


C:\Program Files\Common Files\AOL\ACS\AOLDial.exe


C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLS... Scheduler.exe


C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL....


C:\Program Files\QuickTime\qttask.exe


C:\WINDOWS\ALCXMNTR.EXE


C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemo...


C:\Program Files\Windows Defender\MSASCui.exe


C:\Program Files\Common Files\AOL\1159668734\ee\AOLSoftware.exe


C:\Program Files\Common Files\AOL\1159668734\ee\services\safetyC... Scheduler.exe


C:\Program Files\mcafee.com\antivirus\mcvsescn.exe


C:\Program Files\mcafee.com\personal firewall\MPfTray.exe


C:\WINDOWS\system32\ctfmon.exe


C:\Program Files\Common Files\AOL\1159668734\ee\SSCEvtHdlr.exe


C:\Program Files\Common Files\AOL\1159668734\ee\aolsoftware.exe


C:\WINDOWS\system32\wuauclt.exe


c:\program files\common files\aol\1159668734\ee\aolssc.exe


C:\Program Files\Yahoo!\Messenger\YahooMessenger.ex...


C:\Program Files\Internet Explorer\iexplore.exe


C:\Documents and Settings\Compaq_Owner\Desktop\HijackThis...





R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defa...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defa...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defa...


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/


R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =


R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt....


O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCA... (file missing)


O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt....


O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll


O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll


O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll


O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll


O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll


O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)


O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)


O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll


O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt....


O3 - Toolbar: %26amp;Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll


O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe


O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe


O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe


O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE


O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot


O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe


O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE


O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe


O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher...


O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe


O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"


O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.e... -Run


O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe


O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.ex...


O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime


O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE


O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k


O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide


O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1159668734\ee\AOLSoftware.exe


O4 - HKLM\..\Run: [AOLSPScheduler] C:\Program Files\Common Files\AOL\1159668734\ee\services\safetyC... Scheduler.exe


O4 - HKLM\..\Run: [sscRun] C:\Program Files\Common Files\AOL\1159668734\ee\SSCRun.exe


O4 - HKLM\..\Run: [OASClnt] C:\Program Files\mcafee.com\antivirus\oasclnt.exe


O4 - HKLM\..\Run: [EmailScan] C:\Program Files\mcafee.com\antivirus\mcvsescn.exe


O4 - HKLM\..\Run: [MPFExe] C:\Program Files\mcafee.com\personal firewall\MPfTray.exe


O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe


O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.ex... -quiet


O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe


O8 - Extra context menu item: %26amp;AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML


O8 - Extra context menu item: %26amp;Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch...


O8 - Extra context menu item: %26amp;Search - http://bar.mywebsearch.com/menusearch.ht...


O8 - Extra context menu item: %26amp;Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtr...


O8 - Extra context menu item: %26amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbackli...


O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache....


O8 - Extra context menu item: E%26amp;xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCE...


O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimila...


O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans....


O8 - Extra context menu item: Yahoo! %26amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! %26amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm


O8 - Extra context menu item: Yahoo! %26amp;SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll


O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)


O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)


O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.D...


O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/Sta...


O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=3...


O16 - DPF: {1A781DED-C22D-4153-3213-A3211E29DF13} (GameDesire Card Games) - http://67.15.101.3/g_bin/eng/cards_2_0_0...


O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/fun...


O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll


O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/BinFrameWork/v10/ZBu...


O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - https://objects.aol.com/mcafee/molbin/sh...


O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/re...


O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPA...


O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - http://www.vzwpix.com/activex/VerizonWir...


O16 - DPF: {A4110378-789B-455F-AE86-3A1BFC402853} (ZPA_SHVL Object) - http://zone.msn.com/bingame/zpagames/zpa...


O16 - DPF: {A9FDC7FD-FE81-4910-8CF2-FA59EEFE11EC} (ZooInstaller Class) - http://www.zoo-games.com/ClientSite/ZooI...


O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIn...


O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - https://objects.aol.com/mcafee/molbin/sh...


O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/binframework/v10/StP...


O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartb...


O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.c...


O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/...


O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)


O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll


O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe


O23 - Service: AOL Antivirus Update Service (aolavupd) - AOL LLC - C:\Program Files\Common Files\AOL\1159668734\ee\services\safetyC...


O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe


O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:\PROGRA~1\mcafee.com\ANTIVI~1\mcshield...


O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Networks Associates Technology, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.ex...


O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\Program Files\mcafee.com\personal firewall\MPFService.exe


O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Can u look at my hijack log and tell me if I'm infected with spyware and what to do?
Post your hijack log Here http://www.castlecops.com/forums.html and let the experts help you.
Reply:I believe websearch is adware.


Adware.Websearch is an adware component that modifies Internet Explorer's default home page and search settings. It adds a toolbar to Internet Explorer and a number of icons to the system tray. It also sends user information to a predetermined Web site, including keywords from searches.

florist delivery
Posted by at No comments:

Sharm el sheikh street maps?

trying to fine st george three corners on a map so can c exactly where it is how far main street and beach plus ammities going 22 july this year any help welcome thanx

Sharm el sheikh street maps?
hmmm you too i know someone else who is looking for the same info and is going about the same time. i went to sharm and i think its outside the town of sharm and narma bay, but why not re-word your question asking where the hotel itself is in the main part of the question. you might get a better response.
Reply:Google Maps is always good


Posted by at No comments:

Spyware pro!!! AM I SUPPOSE TO DELETE something from here???

Logfile of HijackThis v1.99.1


Scan saved at 10:18:06 AM, on 8/21/2007


Platform: Windows XP SP2 (WinNT 5.01.2600)


MSIE: Internet Explorer v7.00 (7.00.6000.16512)





Running processes:


C:\WINDOWS\System32\smss.exe


C:\WINDOWS\system32\csrss.exe


C:\WINDOWS\system32\winlogon.exe


C:\WINDOWS\system32\services.exe


C:\WINDOWS\system32\lsass.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\system32\svchost.exe


C:\WINDOWS\System32\svchost.exe


C:\WINDOWS\System32\svchost.exe


C:\WINDOWS\System32\svchost.exe


c:\program files\mcafee.com\agent\mcdetect.exe


c:\PROGRA~1\mcafee.com\agent\mctskshd....


C:\WINDOWS\System32\nvsvc32.exe


C:\WINDOWS\System32\snmp.exe


C:\WINDOWS\System32\svchost.exe


C:\WINDOWS\System32\alg.exe


C:\WINDOWS\Explorer.EXE


C:\WINDOWS\AGRSMMSG.exe


C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe


C:\WINDOWS\System32\ezSP_Px.exe


C:\Program Files\McAfee.com\VSO\mcvsshld.exe


C:\PROGRA~1\mcafee.com\agent\mcagent.e...


C:\Program Files\QuickTime\qttask.exe


c:\progra~1\mcafee.com\vso\mcvsescn.ex...


D:\Program Files\iTunes\iTunesHelper.exe


D:\Program Files\VideoraiPodConverter\VideoraiPodCo...


D:\Program Files\NoAds\NoAds.exe


C:\WINDOWS\system32\ctfmon.exe


C:\Program Files\MSN Messenger\MsnMsgr.Exe


C:\PROGRA~1\COMMON~1\MBOLS~1\userinit....


D:\Program Files\Webroot\Washer\Webroot\Washer\wwDi...


C:\Program Files\iPod\bin\iPodService.exe


C:\Program Files\Sony\USBSircs\usbsircs.exe


C:\ScanPanel\ScnPanel.exe


c:\progra~1\mcafee.com\vso\mcvsftsn.ex...


C:\Program Files\Internet Explorer\IEXPLORE.EXE


C:\WINDOWS\system32\??crosoft\m?dtc.ex...


C:\WINDOWS\system32\rundll32.exe


C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter.exe


C:\WINDOWS\system32\spoolsv.exe


C:\Documents and Settings\Julio Franco\Local Settings\Temporary Internet Files\Content.IE5\S641B8T3\aswclnr[1].ex...


C:\Documents and Settings\Julio Franco\Local Settings\Temporary Internet Files\Content.IE5\S641B8T3\aswclnr[1].tm...


C:\WINDOWS\system32\rundll32.exe


C:\Documents and Settings\Julio Franco\Local Settings\Temporary Internet Files\Content.IE5\3AQNDW61\HijackThis[1]...





R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=6...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=6...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=5...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/yessential...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=5...


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=6...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer presented by Comcast


R1 - HKCU\Software\Microsoft\Windows\CurrentV... Settings,ProxyOverride = cdn


R3 - URLSearchHook: IncrediFindBHO Class - {5D60FF48-95BE-4956-B4C6-6BB168A70310} - C:\PROGRA~1\INCRED~1\BHO\INCFIN~1.DLL (file missing)


R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


F3 - REG:win.ini: load=


O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O2 - BHO: IncrediFindBHO Class - {5D60FF48-95BE-4956-B4C6-6BB168A70310} - C:\PROGRA~1\INCRED~1\BHO\INCFIN~1.DLL (file missing)


O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll


O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)


O2 - BHO: IEHooks Class - {947E6D5A-4B9F-4CF4-91B3-562CA8D03313} - C:\Program Files\ClearSearch\IE_ClrSch.DLL (file missing)


O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (file missing)


O2 - BHO: (no name) - {B4757738-B5DD-C82F-89DD-E1ABD87750B1} - C:\WINDOWS\system32\nnetbido.dll


O2 - BHO: (no name) - {F195A1A9-4033-4E5B-B85C-848C3E31A83A} - c:\syslibie.dll (file missing)


O2 - BHO: (no name) - {FD3A6AB4-5527-4B52-90AF-F90CD3270861} - C:\WINDOWS\system32\inetconnect.dll (file missing)


O3 - Toolbar: (no name) - {FE6BC4EF-5676-484B-88AE-883323913256} - (no file)


O3 - Toolbar: PowerSearch - {4E7BD74F-2B8D-469E-D3FA-F27BA787AD2D} - C:\PROGRA~1\POWERS~1\Toolbar\pwrswmda.dl... (file missing)


O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)


O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll


O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt....


O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup


O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet


O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe


O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe


O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe


O4 - HKLM\..\Run: [MSUpdate] c:\CriticalUpdate.exe


O4 - HKLM\..\Run: [RegistryMonitor] c:\registry.pif


O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"


O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe


O4 - HKLM\..\Run: [VAIO Recovery] C:\WINDOWS\Sonysys\VAIO Recovery\PartSeal.exe


O4 - HKLM\..\Run: [UpdateStats] C:\Program Files\Media\Media\UpdateStats.exe


O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe


O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe


O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe


O4 - HKLM\..\Run: [4X@95ME57C5BM8] C:\WINDOWS\System32\SzfpW5ln.exe


O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe... /checktask


O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe


O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe


O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.ex...


O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe


O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime


O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"


O4 - HKLM\..\Run: [VideoraiPodConverter] D:\Program Files\VideoraiPodConverter\VideoraiPodCo... -t


O4 - HKLM\..\Run: [Srv32Win] D:\Documents and Settings\Julio Franco\My Documents\Spytech Software\Spytech SpyAgent\SpyAgent4.exe


O4 - HKLM\..\Run: [runner1] C:\WINDOWS\retadpu11.exe 61A847B5BBF72813338B2B27128065E9C0843201...


O4 - HKLM\..\Run: [Salestart] "C:\Program Files\Common Files\SystemDoctor\dcpasmon.exe"


O4 - HKLM\..\Run: [SpyHunter] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter.exe -scan


O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u


O4 - HKCU\..\Run: [NoAds] "D:\Program Files\NoAds\NoAds.exe"


O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe


O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background


O4 - HKCU\..\Run: [Iinl] "C:\PROGRA~1\COMMON~1\MBOLS~1\userinit.e... -vt yazb


O4 - HKCU\..\Run: [Gtxtp] C:\WINDOWS\system32\??crosoft\m?dtc.exe


O4 - HKCU\..\Run: [Window Washer] D:\Program Files\Webroot\Washer\Webroot\Washer\wwDi...


O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe


O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE


O4 - Global Startup: Remocon Driver.lnk = ?


O4 - Global Startup: ScanPanel.lnk = C:\ScanPanel\ScnPanel.exe


O8 - Extra context menu item: %26amp;Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch...


O8 - Extra context menu item: %26amp;Search - http://edits.mywebsearch.com/toolbaredit...


O8 - Extra context menu item: %26amp;Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtr...


O8 - Extra context menu item: %26amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbackli...


O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache....


O8 - Extra context menu item: E%26amp;xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office10\EXCE...


O8 - Extra context menu item: Image Converter 2 ??? - D:\Documents and Settings\Julio Franco\My Documents\New Folder\New Software\ImageConverter2installed\menu.h...


O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimila...


O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans....


O8 - Extra context menu item: Yahoo! %26amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! %26amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm


O8 - Extra context menu item: Yahoo! %26amp;SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll


O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll


O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)


O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)


O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)


O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Julio Franco\Start Menu\Programs\avatar\Run IMVU.lnk


O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)


O11 - Options group: [INTERNATIONAL] International*


O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiop...


O15 - Trusted Zone: *.stumbleupon.com


O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.ca...


O16 - DPF: {13197ACE-6851-45C3-A7FF-C281324D5489} - http://www.2nd-thought.com/files/install...


O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=3...


O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache...


O16 - DPF: {1F1FCE08-9279-4F21-8929-9291CEA05168} - http://www.emarketfocus.com/trialware/Mo...


O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll


O16 - DPF: {66E79B75-F711-4A88-9C6D-10BCA64F3306} (DriveCamPlayer Class) - http://www.drivecam.com/videos/DriveCamE...


O16 - DPF: {A7798D6C-C6B5-4F26-9363-F7CDBBFFA607} (download Class) - http://www.gamedaily.com/ActiveX/vxpspee...


O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL


O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL


O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll


O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll


O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe


O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe


O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)


O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe


O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe


O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe


O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.ex...


O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.ex...


O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)


O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe


O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Spti...


O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (file missing)


O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer... - Unknown owner - C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-A... /DisplayName="VAIO Media Music Server (file missing)


O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-H... /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)


O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe


O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer... - Sony Corporation - C:\Program Files\Sony\Photo Server\appsrv\PhotoAppSrv.exe


O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-H... /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)


O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe


O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer... - Unknown owner - C:\Program Files\Sony\Giga Pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-A... /DisplayName="VAIO Media Video Server (file missing)


O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-H... /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)


O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe

Spyware pro!!! AM I SUPPOSE TO DELETE something from here???
Lets see if any of these online scans get rid of that file, if they don't we will delete it.








Please run both of these online virus scans:


Housecall%26lt;%26lt;%26lt;Put on 'Autoclean' and delete what it can't clean.


Panda ActiveScan%26lt;%26lt;%26lt;Accept default settings





Next run this online trojan scan: Trojanscan





After running the scans, reboot.








Run HijackThis and place checks beside each of the following:


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =


O3 - Toolbar: ninemsn - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-au\msntb.dll (file missing)


O4 - HKLM\..\Run: [lauchsrv] C:\WINDOWS\lauchsrv.exe i





After you check these items, close all browsers and windows, except for HijackThis, then click on the Fix Checked button on HijackThis.








Next:


Reconfigure Windows XP to show hidden files:


Click Start. Open My Computer.


Select the Tools menu and click Folder Options. Select the View Tab.





Under the Hidden files and folders heading select "Show hidden files and folders".


Uncheck the "Hide protected operating system files (recommended)" option.


Uncheck the "Hide file extensions for known file types" option.


Click Yes to confirm. Click OK.








Next use Windows Explorer to navigate to this location and delete the file in bold if it is still there:


C:\WINDOWS\lauchsrv.exe








Run HijackThis again and post another log. Also post any files the online scans could not clean, quarantine, or delete.
Reply:you need to post this over at a forum that does hijack logs.


i personally don't see anything that needs deleted.


i do however see numerous spyware apps that could cause conflicts with each other. you also have a ton of things running so if your wondering why your speeds are slow that is why.





http://aresforum.net/modules.php?name=Fo...


an easy to understand step by step tut i wrote on how to remove a virus properly, no matter what anti v you use.


Posted by at No comments:

A question about flying over the Antarctic on a passenger plane?

If I was to fly from CapeTown, South Africa, to Auckland, New Zealand, could I fly over the Antarctic or would I have to go around it? Why?





Please see the following maps:


Cape Town, South Africa:http://cache.eb.com/eb/image?id=64762%26amp;re...


Auckland, New Zealand: http://www.hirecar.co.nz/images/sect-nz-...


World Map: http://upload.wikimedia.org/wikipedia/co...





If you know of an article or document dealing with this, could you please give me the link?


All help with this would be greatly appreciated.


If you have a globe, please use it!


Thank you so much in advance.

A question about flying over the Antarctic on a passenger plane?
No, because the only available flights to New Zealand are via. Perth and Sydney, thus you will not fly over the antartic.





Your routing will be JNB-SYD via. PER and from SYD connecting to CHC/AKL


Posted by at No comments:

My computer boots and runs slow. I scanned with hijack. can you check if it has a virus.?

Running processes:


C:\WINDOWS\System32\smss.exe


C:\WINDOWS\system32\winlogon.exe


C:\WINDOWS\system32\services.exe


C:\WINDOWS\system32\lsass.exe


C:\WINDOWS\system32\svchost.exe


C:\Program Files\Windows Defender\MsMpEng.exe


C:\WINDOWS\System32\svchost.exe


C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe


C:\WINDOWS\system32\spoolsv.exe


C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe


C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSv...


C:\Program Files\Bonjour\mDNSResponder.exe


c:\Program Files\Common Files\LightScribe\LSSrvc.exe


C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE


C:\Program Files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe


C:\WINDOWS\system32\ScsiAccess.EXE


C:\WINDOWS\system32\svchost.exe


C:\Program Files\iPod\bin\iPodService.exe


C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe


C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv4.exe


C:\WINDOWS\Explorer.EXE


C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe


C:\windows\system\hpsysdrv.exe


C:\WINDOWS\system32\hkcmd.exe


C:\WINDOWS\system32\hphmon06.exe


C:\WINDOWS\AGRSMMSG.exe


C:\WINDOWS\SOUNDMAN.EXE


C:\WINDOWS\ALCWZRD.EXE


C:\hp\drivers\hplsbwatcher\lsburnwatch...


C:\Program Files\Yahoo!\browser\ybrwicon.exe


C:\Program Files\HP\HP Software Update\HPWuSchd2.exe


C:\Program Files\Common Files\Symantec Shared\ccApp.exe


C:\Program Files\Windows Defender\MSASCui.exe


C:\Program Files\Common Files\InstallShield\UpdateService\issch....


C:\HP\KBD\KBD.EXE


C:\PROGRA~1\Yahoo!\browser\ycommon.exe


C:\Program Files\2Wire\2PortalMon.exe


C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\InfoMyCa.exe


C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemChe...


C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPContro...


C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePa...


C:\Program Files\iTunes\iTunesHelper.exe


C:\Program Files\QuickTime\qttask.exe


C:\WINDOWS\system32\ctfmon.exe


C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware....


C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe


C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe


C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe


C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe


C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe


C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe


C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe


C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray...


C:\Program Files\Internet Explorer\iexplore.exe


C:\Program Files\Trend Micro\HijackThis\HijackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customiz...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customiz...


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/customiz...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customiz...


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customiz...


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl


R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customiz...


R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3...


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!


R1 - HKCU\Software\Microsoft\Windows\CurrentV... Settings,ProxyOverride = *.local


R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cp...


O2 - BHO: %26amp;Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cp...


O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper...


O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cp...


O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe


O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe


O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe


O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C...


O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe


O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r


O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot


O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE


O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe


O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE


O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE


O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher...


O4 - HKLM\..\Run: [YBrowser] C:\Program Files\Yahoo!\browser\ybrwicon.exe


O4 - HKLM\..\Run: [IPInSightMonitor 01] "C:\Program Files\SBC Yahoo!\Connection Manager\IP InSight\IPMon32.exe"


O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe


O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"


O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"


O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide


O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\I... -startup


O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.... -start


O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE


O4 - HKLM\..\Run: [WUSB54Gv4] C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\InvokeSvc3.exe


O4 - HKLM\..\Run: [2wSysTray] C:\Program Files\2Wire\2PortalMon.exe


O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F22... /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F22...


O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemCheck...


O4 - HKLM\..\Run: [Spyware X-terminator Control Center] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPControl....


O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePatr...


O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"


O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"


O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime


O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EX... -quiet


O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe


O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO


O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware....


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'GM')


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'GM')


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [PPMemCheck] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemCheck... (User 'GM')


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [Spyware X-terminator Control Center] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPControl.... (User 'GM')


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [CookiePatrol] C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePatr... (User 'GM')


O4 - HKUS\S-1-5-21-3816270988-1695259228-2485... [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'PM')


O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig... -t (User 'SYSTEM')


O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig... -t (User 'Default user')


O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe


O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe


O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe


O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe


O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe


O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe


O8 - Extra context menu item: %26amp;Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O8 - Extra context menu item: E%26amp;xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCE...


O8 - Extra context menu item: Yahoo! %26amp;Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! %26amp;Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm


O8 - Extra context menu item: Yahoo! %26amp;SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm


O8 - Extra context menu item: Yahoo! Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm


O8 - Extra context menu item: Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03....


O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03....


O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll


O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.D...


O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\HP_Owner\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)


O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe


O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe


O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe


O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Share...


O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll


O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resourc...


O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdat...


O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Share...


O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsof...


O16 - DPF: {D18F962A-3722-4B59-B08D-28BB9EB2281E} (PhotosCtrl Class) - http://photos.yahoo.com/ocx/us/yexplorer...


O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll


O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe


O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSv...


O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe


O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe


O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe


O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Common Files\LightScribe\LSSrvc.exe


O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.E...


O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe


O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F22...


O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe


O23 - Service: ScsiAccess - Unknown owner - C:\WINDOWS\system32\ScsiAccess.EXE


O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe


O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService....


O23 - Service: WUSB54Gv4SVC - GEMTEKS - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe

My computer boots and runs slow. I scanned with hijack. can you check if it has a virus.?
Why is my computer slow? I bet you have asked yourself that very question time and time again. And for the most part, you probably just can not figure it out. Ask the guy next to you, and they probably don’t have the foggiest idea either. I mean, you may get the “spyware,virus” answer, but this most likely is not the case.





The first place I check when my computer starts to run slower is the registry. Yes, the registry. Most people don’t even know what, or where the registry is, and especially don’t understand how this can slow a computer down. Let me explain.





Basically, the registry files contain information and settings for all of the software, hardware, operating system software, and anything else running on your computer. Mess any of these files up, and the computer does not know how to function. The computer goes to start up the software, looks for the registry files, and either can not find it or finds something that does not look like it is suppose to look like. It then just sits there: it does not know what to do next. This is where the “hanging” or “locking up” of your computer comes from. These files will need to be fixed.





To fix the registry files, find a good quality registry repair software called registry cleaner and run it on your computer.Top 5 registry cleaners can be found in here:


http://www.make-pc-fast.com .It will tell you how many files are corrupted and need to be fixed. Just tell the software to fix it and it restores all of the registry files to their correct configuration. It is really that simple. It may take only about 5 minutes to perform this check. And then as a maintenance item for your computer, I would recommend performing this registry fix at least once a week. This will always ensure your registry files are good, and keep your computer running with no slow,freezing and errors. So if you find yourself asking why is my computer slow, I would check the registry files first.





Now you can check out


http://www.make-pc-fast.com/ ,there are reviews of top rated registry cleaners and a clear guide to tell you how to speed up your computer.And from there you also can get a free scan to fix any problems such as computers slow,computer freezing, computer errors and getting the blue death screen.


Hope that can help you.
Reply:dam dude toooo much prog try to reformat it cause u have many things working
Reply:get a life
Reply:Check http://www.pc-optimizer-pro.com


With pc optimizer pro you can safely clean, repair and optimize your computer.


It will help improve your system performance without expensive hardware upgrades.


Good luck!
Reply:first go get CCleaner , run it ,then a reg cleaner if you got one, then run an anti spy check, then defrag it
Reply:These are some things that may help:


1) Try a better anti-virus like Kapersky


2) Increase your RAM


3) try PC bug doctor it fix all errors


4) End some processes in the task manager


5) Format your computer
Reply:C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemChe.....


C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPContro...


C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePa...





these are somewhat suspicious.








C:\Program Files\Bonjour\mDNSResponder.ex... (unsure, not familiar with Bonjour)








the reason you are running slow is most likely lack of ram, i mean holy crap thats alot of processes to run.
Reply:Maybe you need to clean it up.


Run malware scans.Keep your startup list as trim as possible and also have only stuff that you need. See if your drive is running out of free space and whether its fragmented. High levels of fragmentation are like a disease which affects the performance of the drive, leading to slow loading times, file access etc. Finally you should add more RAM if needed.
Reply:whatever, we charge for this service...
Reply:First Scan your computer with AVG or Mcafee or norton. Then scan it with Hitman Pro. Once that is done defrag it.
Reply:Learn how to clean up your computer and speed it up here:


%26lt;---http://fix-slow-computer.remove-junk.com


Good luck!
Reply:try scanning for spy ware-there are some free programs out there that work well. Erase Internet history, erase cookies.Set defaults to 1 day to remember web sites visited.You probably have a bunch of extraneous programs trying to run when you open.Also try reducing the number of icons on your opening page.
Reply:DUDE, REFORMAT YOUR PC FOR CHRIST SAKE!

wreath
Posted by at No comments:
Subscribe to: Posts (Atom)