Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

XP Pro Startup


  • Please log in to reply

#1
arky41

arky41

    New Member

  • Member
  • Pip
  • 7 posts
Friend asked help with Malware, Trojans, Virus, and other issues. Cleand as per forum suggestions. Startpage and Downloader.Generic.bun gave me trouble. Not sure if they were completely eliminated. Anyway, System not boots ok in Safe Mode but hangs in Normal. Desktop Icons appear ok and mouse pointer moves ok but Taskbar never unmasks and pointer changes to hourglass when placed into Taskbar. I have performed a repair reinstall of XP Pro and have the same problem. Any assistance is appreciated. Belarc log and Hijack log attached.


--------------------------------------------------------------------------------

The license associated with the Belarc Advisor product allows for free personal use only. Use on multiple computers in a corporate, educational, military or government installation is prohibited. See the license agreement for details. The information on this page was created locally on your computer by the Belarc Advisor. Your computer profile was not sent to a web server. Click here for more info.


--------------------------------------------------------------------------------


About Belarc

System Management Products

Your Privacy



In page Links:

Installed Hotfixes

Software Licenses

Software Versions









System Security Status CIS Benchmark Score


1.88 of 10 (details...)




Virus Protection


Up-to-date




Microsoft Security Updates


22 missing







--------------------------------------------------------------------------------

Computer Profile Summary
Computer Name: Office (in HOME)
Profile Date: Thursday, August 18, 2005 4:45:25 PM
Advisor Version: 7.0t
Windows Logon: Jamie


Click here for Belarc's System Management products, for large and small companies.

Operating System System Model
Windows XP Professional Service Pack 2 (build 2600) No details available
Processor a Main Circuit Board b
1.47 gigahertz AMD Athlon XP No details available
Drives Memory Modules c,d
80.02 Gigabytes Usable Hard Drive Capacity
69.73 Gigabytes Hard Drive Free Space

TDK CDRW5200B [CD-ROM drive]
3.5" format removeable media [Floppy drive]

SCSI Disk Device -- drive 1
WDC WD800JB-00ETA0 [Hard drive] (80.03 GB) -- drive 0, s/n WD-WMAHL1089029, rev 77.07W77, SMART Status: Healthy 512 Megabytes Installed Memory
Local Drive Volumes

c: (NTFS on drive 0) 80.02 GB 69.73 GB free

Network Drives
None detected
Users (mouse over user name for details) Printers
local user accounts last logon
Administrator 08/18/2005 11:34:26 AM (admin)
Jamie 08/18/2005 4:38:32 PM (admin)
local system accounts
Guest 12/27/2003 11:24:04 PM
HelpAssistant never
SUPPORT_388945a0 never


Marks a disabled account; Marks a locked account None detected
Controllers Display
Standard floppy disk controller
Primary IDE Channel [Controller]
Secondary IDE Channel [Controller]
VIA Bus Master IDE Controller RADEON 9000 SERIES [Display adapter]
RADEON 9000 SERIES - Secondary [Display adapter]
Bus Adapters Multimedia
Win XP Promise FastTrak 376 ™ Controller
OPTi 82C861 PCI to USB Open Host Controller
VIA Rev 5 or later USB Universal Host Controller (3x)
VIA USB Enhanced Host Controller Avance AC'97 Audio for VIA ® Audio Controller
Communications Other Devices

Broadcom NetXtreme Gigabit Ethernet
Dhcp Server: 192.168.1.1
Physical Address: 00:E0:18:D2:9B:AD

Networking Dns Servers: 68.87.64.196
68.87.66.196
VIA OHCI Compliant IEEE 1394 Host Controller
Olympus D-400Z/C-900L Digital Camera
Easy Internet Keyboard
PS/2 Compatible Mouse
USB Root Hub (5x)
Virus Protection [Back to Top]
AVG Anti-Virus 7.0.338 Version 7.0.338
Realtime File Scanning On
Norton AntiVirus 2005 Version 2005
Realtime File Scanning Off
ViRobot Expert Ver 4.0 Version VERSION
Realtime File Scanning On

Missing Microsoft Security Hotfixes [Back to Top]
These required security hotfixes (using the 08/09/2005 Microsoft Security Bulletin Summary) were not found installed. Note: CIS benchmarks require that Critical and Important severity security hotfixes must be installed.
Q873333 - Important (details...)
Q873339 - Important (details...)
Q885250 - Critical (details...)
Q885835 - Important (details...)
Q885836 - Important (details...)
Q888113 - Important (details...)
Q888302 - Important (details...)
Q890046 - Moderate (details...)
Q890859 - Important (details...)
Q891781 - Important (details...)
Q893066 - Critical (details...)
Q893086 - Important (details...)
Q893756 - Important (details...)
Q896358 - Critical (details...)
Q896422 - Critical (details...)
Q896423 - Moderate (details...)
Q896428 - Moderate (details...)
Q896727 - Critical (details...)
Q899587 - Moderate (details...)
Q899588 - Important (details...)
Q899591 - Moderate (details...)
Q901214 - Critical (details...)

Installed Microsoft Hotfixes [Back to Top]
DataAccess
Q823718 on 08/21/2003 (details...)
Q832483 on 01/13/2004 (details...)
KB870669 (details...)
Internet Explorer 6
SP1
KB834707-IE6SP1-20040929.091901 on 11/05/2004 (details...)
KB889293-IE6SP1-20041111.235619 on 12/02/2004 (details...)
Internet Explorer
SP2 (SP2)
Windows Media Player
WM817787 (details...)
WM828026 (details...)
SP0
Q828026 on 10/06/2003 (details...)
No details available


Click here to see all available Microsoft security hotfixes for this computer.

Marks a security hotfix (using the 08/09/2005 Microsoft Security Bulletin Summary)
Marks a hotfix that verifies correctly
Marks a hotfix that fails verification (note that failing hotfixes need to be reinstalled)
Unmarked hotfixes lack the data to allow verification


Click here for Belarc's System Management products, for large and small companies.

Software Licenses [Back to Top]

Belarc - Advisor 47bb42f5
Hewlett-Packard - WebReg TWC5200DT0
- Internet Worm Protection 1
Microsoft - Internet Explorer 55274-648-4232127-23081 (Key: DVX26-F8FH8-GQ34W-VMRJ6-2CF2C)
Microsoft - MediaPlayer 69808-408-8726982-04582
Microsoft - Office XP Professional with FrontPage 54185-640-0000025-17946 (Key: FM9FY-TMF7Q-KCKCT-V9T29-TBBBG)
Microsoft - WebFldrs XP 12345-111-1111111-16814
Microsoft - Windows XP Professional 55274-648-4232127-23081 (Key: DVX26-F8FH8-GQ34W-VMRJ6-2CF2C)
Pinnacle Systems - Studio 8 1018454908
Roxio - PhotoSuite4 5555-10000012
- SymNet 1

Software Versions (mouse over * for details, click * for location) [Back to Top]
©HAURI - ViRobot Expert Unsetup(VMS) Version 2004, 8, 18, 1 *
Adobe Reader Version 6.0.0.2003051900 *
Ahead Software AG Karlsbad Germany Phone: ++49-7248-911-800 Fax: ++49-7248-911-888 e-mail: info@nero.com - LANGUAGE_English2 Version 5, 5, 6, 1 *
ahead software gmbh im stoeckmaedle 6 76307 karlsbad, germany e-mail: info@nero.com - NeroImageDrive Version 1, 0, 0, 1 *
ahead software gmbh, karlsbad - Cover Designer Version 2, 1, 0, 6 *
Apple Computer, Inc. - QuickTime QuickTime 6.1c *
ASUSTek Computer Inc. - ASUS Update Version 1, 0, 0, 1 *
ASUSTek Computer Inc. - MyLogo Application Version 2, 1, 0, 0 *
ATI Desktop Component Version 6.14.10.4029 *
ATI External Event Utility for WindowsNT and Windows9X Version 6.14.4067 *
ATI Smart Version 5.13.0005 *
Avance Sound Manager Version 5.0.02 *
AvantGo Connect Version 3.3 Build 864 *
AvantGo Version 3.3 Build 864 *
Avery Wizard Version 1110.210.0005 *
Belarc, Inc. - Advisor Version 7.0t *
blindman.exe *
CCleaner Version 1.22.0142 *
CEADMIN Application Version 1, 0, 0, 1 *
Cinematronics - 3D Pinball Version 5.1.2600.2180 *
CONEST 2000 Application Version 3 *
ConEst Price Update Link Utility Version 1.02 *
ConEst Software Systems, Inc. - LabLevel Version 1.00.0004 *
ConEst Software, Inc. - CEcleanup Version 1.01.0004 *
Create Timer Install Disks *
Download Driver *
Erik Deppe - DriveSpeed Application Version 1, 6, 0, 0 *
Erik Deppe - Nero CD Speed Version 0, 8, 4, 2 *
Eugene Roshal - WinRAR archiver Version 3.30.0.0 *
EVEREST Home Edition *
GRISOFT, s.r.o. - AVG 7.0 Anti-Virus System Version 7.1.0.321 *
GRISOFT, s.r.o. - AVG Anti-Virus System Version 7.1.0.338 *
HAURI - vrmonnt application Version 2004, 9, 6, 1 *
HAURI Inc. - VrRescue Version 2004, 3, 23, 2 *
HAURI Inc. - VrSchedule Version 2003, 5, 9, 2 *
HAURI Inc. - Vrupdate Version 2003, 9, 15, 5 *
HAURI ViRobot Vrmonsvc Version 2004, 7, 19, 1 *
Hewlett-Packard - Ereg Application Version 1, 0, 0, 1 *
Hewlett-Packard Co. - hp digital imaging - hp all-in-one series Version 043.000.120.000 *
Hewlett-Packard Co. - hp officejet d series A.14.01.20 *
Hewlett-Packard Company - HP Printing System for Windows Version 1998.0227.1034 *
Hewlett-Packard Company - S2WEx Version 2,4,0,26 *
Hewlett-Packard hpgs2wnd Version 2,4,0,26 *
Hewlett-Packard hpocon07 Version 2, 0, 1, 2 *
Hpi_Prnt Application Version 3.9.0.0 *
HPI_Run Application Version 3.9.0.0 *
InterMute, Inc. - CWShredder Version 2.12 *
Intuit, Inc. - QuickBooks for Windows Version 13.0D R1 *
Intuit, Inc. - QuickBooks Version 13.0 R1 *
Lavasoft Ad-Aware SE SE 106 *
Logitech Inc. - iTouch Version 2.22.289 *
Macromedia Director Version 7.0 *
Made E-Z Products - LegalSoftware Version 1.00 *
Microsoft ® Windows Script Host Version 5.6.0.8820 * Microsoft ActiveSync Version 3.7.4034 *
Microsoft Application Error Reporting Version 10.0.2609 *
Microsoft Clip Organizer Version 10.0.2625 *
Microsoft Corporation - DirectX 8.0 Sample Version 8.00 *
Microsoft Corporation - Internet Explorer Version 6.00.2900.2180 *
Microsoft Corporation - Messenger Version 4.7.3001 *
Microsoft Corporation - Windows Installer - Unicode Version 3.0.3790.2180 *
Microsoft Corporation - Windows Installer Clean Up Version 2.05.0001 *
Microsoft Corporation - Windows Movie Maker Version 2.1.4026.0 *
Microsoft Corporation - Windows® NetMeeting® Version 3.01 *
Microsoft Corporation - Zone.com Version 1.2.626.1 *
Microsoft Data Access Components Version 3.525.1117.0 *
Microsoft Development Environment Version 7.00.9064.9150 *
Microsoft Office Document Imaging Version 1.03.2349.1 *
Microsoft Office Save My Settings/Profile Wizard Version 10.0.2609 *
Microsoft Office XP Version 10.0.2627 *
Microsoft Outlook Version 10.0.2616 *
Microsoft Photo Editor Version 10.0 *
Microsoft Windows Version 4.00 *
Microsoft® MSN ® Communications System Version 7.02.0011.2700 *
Microsoft® Windows Media Player Version 9.00.00.3250 *
Microsoft® Schedule+ for Windows 95™ Version 7.5 *
Microsoft® Windows Media Services Version 4.1.00.3917 *
MindVision - Installer VISE 2.8.3 Version 2.8.3 *
Panda Antivirus Platinum Version 7 *
Panda Antivirus Version 6.3 *
PepiMK Software - SpyBot-S&D Version 1.2 *
Pinnacle Systems - Studio Version 8.12 *
Pinnacle Systems GmbH - PPE Install Version 1.1.1.0 *
Pinnacle Version Checker Version 1.03 *
PinnacleDriverCheck Version 1.0.0.0 *
Probe V2.18.00 *
Product Registration *
Readiris *
RealNetworks, Inc. - RealPlayer (32-bit) Version 0.1.0.3034 *
RealNetworks, Inc. - RealPlayer (32-bit) Version 6.0.12.872 *
RealNetworks, Inc. - RealPlayer (32-bit) Version 7.0.0.2415 *
Realtek Semiconductor Corp. - RtlRack Application Version 1.0 *
Roxio, Inc. - PhotoSuite 4 Version 4.0.0.1500 *
Roxio, Inc. - PSViewer Application Version 4.0.0.1472 *
Soeperman Enterprises Ltd. - HijackThis Version 1.99.0001 *
SpywareBlaster AutoUpdate Version 3.04 *
SpywareBlaster Version 3.04 *
Steven R. Gould - Windows CleanUp! Version 4.0 *
Sunbelt Software, Inc. - CounterSpy Version 1.00.0029 *
Support.com Scheduler and Command Dispatcher Version 5,5,402,0 *
Support.com, Inc. - ComcastSupport Agent Version 5, 5, 402, 1 *
System Startup Service Version 3, 0, 0, 5 *
TechTools, Inc. - Visual Baler Version 2.0 *
VeNoM386 and SwENSkE - DAEMON Tools Version 3.21.0.0 *
Virtos GmbH - WaveEdit DLL Version 1, 0, 2, 1 *
Vr32w Version 1, 0, 3, 2 *
Zondervan - Pradis Version 5.0.0.0 *

--------------------------------------------------------------------------------

* Click to see where software is installed.
a. Megahertz measurement may be inaccurate if other programs were busy during last analysis.
b. Data may be transferred on the bus at one, two, or four times the Bus Clock rate.
c. Memory slot contents may not add up to Installed Memory if some memory is not recognized by Windows.
d. Memory slot contents is reported by the motherboard BIOS. Contact system vendor if slot contents are wrong.
e. This may be the manufacturer's factory installed product key rather than yours.
Copyright 2000-5, Belarc, Inc. All rights reserved.
Legal notice. U.S. Patents 6085229, 5665951 and Patents pending.

--------------------------------------------------------------------------------

ogfile of HijackThis v1.99.1
Scan saved at 4:46:24 PM, on 08/18/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\PROGRA~1\HEWLET~1\HPSHAR~1\hpgs2wnf.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hijack This\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.bestwebsl...earch.php?qq=%1
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.bestwebsl...earch.php?qq=%1
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.bestwebsl...earch.php?qq=%1
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = http://www.bestwebslinks.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast High-Speed Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
O1 - Hosts: comments (such as these) may be inserted on individual
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O1 - Hosts: 216.130.185.143 www.adwave.com
O1 - Hosts: 216.130.185.143 adwave.com
O1 - Hosts: 216.130.185.143 www.xzoomy.com
O1 - Hosts: 216.130.185.143 xzoomy.com
O1 - Hosts: 216.130.185.143 www.advnt01.com
O1 - Hosts: 216.130.185.143 advnt01.com
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Vrmon] C:\Program Files\ViRobotXP\vrmonnt.exe Main
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\bin\tgcmd.exe" /server
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: HPAiODevice(hp officejet d series) - 2.lnk = C:\Program Files\Hewlett-Packard\AiO\hp officejet d series\Bin\hpoojd07.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .ipp: C:\Program Files\Internet Explorer\Plugins\npimth32.dll
O12 - Plugin for .ipt: C:\Program Files\Internet Explorer\Plugins\npimth32.dll
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefend...can8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft...free/asinst.cab
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing)
O23 - Service: SNDSrvc - Unknown owner - (no file)
O23 - Service: SPBBCSvc - Sony Corporation - (no file)
O23 - Service: System Startup Service (SvcProc) - Unknown owner - c:\windows\SvcProc.exe
O23 - Service: ViRobot Expert Monitoring (vrmonsvc) - HAURI - C:\Program Files\ViRobotXP\vrmonsvc.exe
  • 0

Advertisements


#2
arky41

arky41

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
Problem is moot now. Have slicked harddrive and am reinstalling xp pro. Tx for al the looks. Arky41
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP