Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

System Restore


  • Please log in to reply

#1
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Member
  • PipPipPip
  • 141 posts
I have a Dell Dimension 4700 computer with Windows XP Home Edition, SP2, and IE6, SP2. I am on dialup, and my ISP is AOL.

A few days ago I installed AOL Messenger and had problems with some weather balloon staying in the task bar (do not remember the name of it - I have a 71-year-old brain!). Finally got rid of that, but then the computer was slower. I then installed Windows One Care Live to check for viruses, but it found none. Had problems then with computer freezing, so I uninstalled that, then had to re-install all my anti-spyware, etc. Computer seems slower.

I tried to restore to an earlier date in December, but it would not restore. Then tried all the restore dates I had in December, but none would restore.

A couple of months ago had to reinstall Windows because of an Elvis Presley screen saver I had installed. Hope I do not have to do that again.

My firewall is the Windows one, and the anti-spyware I have are: Ad-Aware, the Windows Security Trojan scanner, Microsoft Anti-spyware, Malicious Software Removal, Spyware Doctor, Spyware Blaster, Also have Ccleaner, cwshredder, hijackguard,, stng259 (a stand-alone anti-virus scanner by McAffee). My anti-virus is the free AVG. I keep them all updated and use them at least every other day (sometimes every day). I do have the full version of McAffee available to me, through AOL. Tried it a couple of times, but that would act up, so I un-installed that.

I do a dskchk about once a week and a defrag, as I roam around the Web so much and download and install a lot.

Anyone know what may be wrong that I cannot restore any restore points? :tazz:

Thanks so much. Merry Christmas!

Anna Ruth


Operating System System Model
Windows XP Home Edition Service Pack 2 (build 2600) Dell Inc. Dimension 4700
System Service Tag: D8NCH71 (support for this PC)
Chassis Serial Number: D8NCH71
Enclosure Type: Mini-Tower
Processor a Main Circuit Board b
3.20 gigahertz Intel Pentium 4
16 kilobyte primary memory cache
1024 kilobyte secondary memory cache Board: Dell Inc. 0M3918
Serial Number: ..CN7082153B0188.
Bus Clock: 800 megahertz
BIOS: Dell Inc. A06 01/10/2005
Drives Memory Modules c,d
79.98 Gigabytes Usable Hard Drive Capacity
70.31 Gigabytes Hard Drive Free Space

SONY CDRW/DVD CRX330E [CD-ROM drive]
3.5" format removeable media [Floppy drive]

Maxtor 6Y080M0 [Hard drive] (80.00 GB) -- drive 0 504 Megabytes Installed Memory

Slot 'CHANNEL A DIMM 0' has 256 MB
Slot 'CHANNEL B DIMM 0' has 256 MB
Slot 'CHANNEL A DIMM 1' is Empty
Slot 'CHANNEL B DIMM 1' is Empty
Local Drive Volumes

c: (NTFS on drive 0) 79.98 GB 70.31 GB free

Network Drives
None detected
Users (mouse over user name for details) Printers
local user accounts last logon
Anna Ruth Baldwin 12/20/2005 5:36:30 PM (admin)
local system accounts
Administrator never (admin)
Guest never
HelpAssistant never
SUPPORT_388945a0 never


Marks a disabled account; Marks a locked account Amyuni PDF Converter 2.07 on LPT1:
Dell Photo AIO Printer 922 on USB001
Microsoft Shared Fax Driver on SHRFAX:

Controllers Display
Standard floppy disk controller
Intel® 82801FB Ultra ATA Storage Controllers - 2651
Intel® 82801FB/FBM Ultra ATA Storage Controllers - 266F
Primary IDE Channel [Controller] (2x) Intel® 82915G/GV/910GL Express Chipset Family [Display adapter] (2x)
DELL E153FP [Monitor] (14.9"vis, s/n Y441353J03TY, March 2005) (3x)
Bus Adapters Multimedia
Intel® 82801FB/FBM USB Universal Host Controller - 2658
Intel® 82801FB/FBM USB Universal Host Controller - 2659
Intel® 82801FB/FBM USB Universal Host Controller - 265A
Intel® 82801FB/FBM USB Universal Host Controller - 265B
Intel® 82801FB/FBM USB2 Enhanced Host Controller - 265C SoundMAX Integrated Digital Audio
Unimodem Half-Duplex Audio Device
Communications Other Devices
Intel® 537EP V9x DF PCI Modem


Intel® PRO/100 VE Network Connection
Dhcp Server: none responded
Physical Address:
WAN (PPP/SLIP) Interface
IP Address:
Gateway:
Physical Address:


P. S. More information


Software Licenses [Back to Top]

Belarc - Advisor dcbdfb3e
Dell - Dell Media Experience
Microsoft - Interactive Training
Microsoft - Internet Explorer
Microsoft - MS Office 97 Professional
Microsoft - WebFldrs XP
Microsoft - Windows XP Home Edition
Sonic Solutions - Sonic DLA
Sonic Solutions - Sonic RecordNow!

Software Versions (mouse over * for details, click * for location) [Back to Top]
ABBYY (BIT Software) - FineReader Version 5.0.0.520 (private) *
Adobe Acrobat Version 7.0.5.2005092300 *
Adobe Photoshop Album Starter Edition Version 3.0.0.49815 *
Adobe Reader Version 7.0.5.2005092300 *
Adobe Systems AdobeDownloadManager Version 2.0 *
AdpBrowser Application Version 1, 0, 0, 49 *
AIO exe Version 1.0.21.0 *
America Online - AOL Connectivity Service Version 3.0.0.1 *
America Online Inc. - AOL Computer Check-Up Version 1, 1, 1, 91 *
America Online Inc. - AOL On Desktop Version 1, 0, 0, 73 *
America Online Inc. - System Information Application Version 1, 0, 0, 0 *
America Online Version 9.02.000 *
America Online, Inc - AOL TopSpeed™ Monitor Version 2, 0, 0, 0 *
Apple Computer, Inc. - QuickTime QuickTime 6.5 *
Banner Blue Software Incorporated - Microsoft Organization Chart Version 2,0,0,1016 *
Belarc, Inc. - Advisor Version 7.0o *
Button Manager Executable Version 1.0.21.0 *
BVRP Software - NetWaiting Version 1.0 *
Carolina Road Software L.L.C. - Jarte Version 2.5 *
CCleaner Version 1.26.0218 *
Choose Simple Start Desktop or Online Edition Version 01,01,0, 0000 *
Corel Clipbook Version 11.2.0.238 *
Corel Common Framework Version 1.0.0.458 *
Corel Corporation - PerfectScript 12 Version 12.0.0.238 *
Corel Corporation - WordPerfect ® Office 12 Version 12.0.0.238 *
Corel Corporation - WordPerfect XML Project Designer Version 12.0.0.238 *
Corel Corporation - WordPerfect® 12 Version 12.0.0.238 *
Corel Corporation Registration Version 10.590 *
CorelDRAW® Version 11.2.0.238 *
cpuid.com - PC Wizard Settings Version 1.03 *
Cyberlink PowerCinema 3.0 Version 3.00.0000 *
Cyberlink PowerDVD 5.0 Version 5.00.0000 *
Dell Communication System Version 1.101.100.0 *
Dell Inc. - Driver Reset Version 1.0 *
Dell Multimedia Experience Version 1.0.1853.25661 *
ERUNT *
ERUNT AutoBackup *
EVEREST Home Edition *
EXPRESS Version 1.0.001 *
FastStone Image Viewer *
Games *
Google Inc. - Picasa Version 2.0.0 *
GRISOFT, s.r.o. - AVG 7.0 Anti-Virus System Version 7.1.0.349 *
GRISOFT, s.r.o. - AVG Anti-Virus System Version 7.1.0.371 *
Gteko Ltd. - Dell Support Version 1, 1, 0, 74 *
hwdunst Version 1.63.51.6 *
Inkjet Printer Version 1.18.85.0 *
Inno Setup Version 51.15.0.0 *
Intel Modem Event Monitor Application Version 0, 1, 0, 10 *
Intel® Network Configuration Services Version 1.6.3.0 *
Intel® Network Configuration Services Version 6.6.10.7 * IrfanView Version 3.97 *
Jasc Paint Shop Photo Album 5 Version 5.1.0 (20040910.00) *
Jasc Paint Shop Photo Album Version 4.0.4 (20031107.11) *
Jasc Software, Inc. - Paint Shop Pro 8 Version 8.10.3 *
Lavasoft Ad-Aware SE SE 106 *
Microsoft ® .NET Framework Version 1.1.4322.2032 *
Microsoft ® Windows Script Host Version 5.6.0.8820 *
Microsoft AntiSpyware (Beta 1) Version 1.00.0701 *
Microsoft Corporation - Clip Gallery 3.0 for Windows Version 3.0 *
Microsoft Corporation - Internet Explorer Version 6.00.2900.2180 *
Microsoft Corporation - MSN Messenger Version 7.5.0322 *
Microsoft Corporation - Plus! Photo Story 2 LE Version 1.1.0.3463 *
Microsoft Corporation - User Profile Hive Cleanup Service Version 1.6.30.0 *
Microsoft Corporation - Windows Installer - Unicode Version 3.1.4000.1823 *
Microsoft Corporation - Windows Movie Maker Version 2.1.4026.0 *
Microsoft Corporation - Windows® NetMeeting® Version 3.01 *
Microsoft Data Access Components Version 3.525.1117.0 *
Microsoft Excel Version 8.0e *
Microsoft Interactive Training Version 3, 5, 0, 117 *
Microsoft Office Binder Version 8.0.3501 *
Microsoft Office Version 8.0 *
Microsoft Outlook Version 8.04 *
Microsoft Photo Editor Version 3.0 *
Microsoft PowerPoint for Windows Version 8.0 *
Microsoft® Windows Media Player Version 10.00.00.3802 *
Microsoft® .NET Framework Version 2.0.50727.42 *
Microsoft® Access Version 8.0.5903 *
Microsoft® Fax Server Version 5.2.1776.0 *
Microsoft® Find Fast Version 8.0 *
Microsoft® Word for Windows® 97 Version 8.0b *
MindVision - Installer VISE 2.8.3 Version 2.8.3 *
Modem Diagnostic Tool *
NTREGOPT *
PC Tools Research Pty Ltd - Registry Mechanic Version 5.00.0144 *
PC Wizard Version 2005, 1, 6, 4 *
PCTools - Spyware Doctor Version 3.1 *
Preclick Photo Organizer Version 2, 6, 0, 23 *
Product_Tour Version 01,00,0, 0000 *
Pure Networks, Inc. - Port Magic Version 1.2.1393.0 *
QBReminderFlash *
RealNetworks, Inc. - RealPlayer (32-bit) Version 6.0.9.584 *
RecordNow Version 7.0.0 *
Serif PhotoPlus Version 6, 0, 0, 3 *
Sonic Solutions - Drive Letter Access Component Version 1.0.0.1 *
Sonic Update Manager Version 1.0.0.1 *
SpywareBlaster AutoUpdate Version 3.04 *
SpywareBlaster Version 3.04 *
Sun Microsystems, Inc. - Java™ 2 Platform Standard Edition 5.0 Update 5 Version 5.0.50.5 *
Wizards to adjust .NET Framework security, assign trust to assemblies, and fix broken .NET applications. Version 1.0.5000.0 *
Yahoo! Inc. - YShortcut Application Version 3, 5, 0, 0 *
Yahoo! Messenger Version 7,0,0,437 *

--------------------------------------------------------------------------------



Networking Dns Server: 205.188.146.145
HID-compliant device
USB Human Interface Device
Dell Photo AIO Printer 922
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
PS/2 Compatible Mouse
USB Composite Device
USB Printing Support
USB Root Hub (5x)
Virus Protection [Back to Top]
AVG Anti-Virus 7.1.371 Version 7.1.371
Realtime File Scanning On

EDITED to remove ip address, physical address, and Product Keys

Edited by Kat, 23 December 2005 - 04:07 PM.

  • 0

Advertisements


#2
STV0726

STV0726

    Member

  • Member
  • PipPip
  • 72 posts
:tazz: Hello, and Merry Christmas to you too!


First of all: Although your anti-virus program didnt' find anything, this sounds like a virus type of problem. Look into taking a Hijack-this log into the Malware section of this forum, then you can here a variety of smart trained voices to help you.


Secondly: It sounds like a couple of things can be done. If your restore isn't working, make sure it is active. There is a way it could be inactive. Can you explain to me more of what the problem is with your restore, and I"ll be able to help you from there.


It also sounds to me like you a have a more tricky virus. Do a google search for "GRISOFT" and download a free AVG anti-virus. If that doesn't find anything, let me know.


Thirdly: If you need any additional help doing anything I recommended above, reply to this thread or E-mail me. It is problems like this that I am best off helping.


Thanks for using GeekstoGo, and being discriptive and patient with your post!

-Stephen V.
  • 0

#3
dsenette

dsenette

    Je suis Napoléon!

  • Administrator
  • 26,019 posts
  • MVP
foxy..you've got a serious group of antispyware tools there....in fact..you may have too many...it's usually best to have one good av program and one good antispyware program...if you have too many they can conflict...especially since most of those have live agents...i suggest you pick the antispy program you like the best...and ditch the others...also...if you have avg...that's good enough for virus scanning...mcaffee will cause issues when run with other programs such as avg...

like i said...any of that software with real time monitoring...will conflict with anything else that has that same capability..
  • 0

#4
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts

:tazz: Hello, and Merry Christmas to you too!
First of all: Although your anti-virus program didnt' find anything, this sounds like a virus type of problem. Look into taking a Hijack-this log into the Malware section of this forum, then you can here a variety of smart trained voices to help you.
Secondly: It sounds like a couple of things can be done. If your restore isn't working, make sure it is active. There is a way it could be inactive. Can you explain to me more of what the problem is with your restore, and I"ll be able to help you from there.
It also sounds to me like you a have a more tricky virus. Do a google search for "GRISOFT" and download a free AVG anti-virus. If that doesn't find anything, let me know.


Thirdly: If you need any additional help doing anything I recommended above, reply to this thread or E-mail me. It is problems like this that I am best off helping.
Thanks for using GeekstoGo, and being discriptive and patient with your post!

-Stephen V.


  • 0

#5
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
Hope I am replying to Stephen. I get confused as to which Quote to use. The one at the bottom of the message or at the top. Well, hope I did the right one.

" Look into taking a Hijack-this log into the Malware section of this forum, then you can here a variety of smart trained voices to help you." Okay, have not done that before. Will look into it.

The only way I can explain about the Restore is that I tried to restore to each restore date in December (I do not have any for November as I had disabled Restore and enabled it again when I had a really good restore point) and I would get a message, on each that I tried to restore, that it could not be restored. The Restore is active, and the slider to set disk space is set to 5%.

I already have AVG, thanks. :tazz:

Anna Ruth
  • 0

#6
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts

foxy..you've got a serious group of antispyware tools there....in fact..you may have too many...it's usually best to have one good av program and one good antispyware program...if you have too many they can conflict...especially since most of those have live agents...i suggest you pick the antispy program you like the best...and ditch the others...also...if you have avg...that's good enough for virus scanning...mcaffee will cause issues when run with other programs such as avg...

like i said...any of that software with real time monitoring...will conflict with anything else that has that same capability..


  • 0

#7
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
Thank you, dsenette. Now, I am more confused (what else is new!) :tazz:

I frequently go to computer-help sites to read the problems and the solutions. Often I have read that one should have just one firewall, one AV, but as many anti-spyware as they want. As one might catch what another one did not. In my case, the only one that does catch anything is Spyware Doctor. That one is on a CD that I had ordered for Registry Mecahnic. But you know better than I, as I am but a puppy in computerland. I know a lot, but so much I do not know. Like the term "live agents". Is that where you can get live help? :) :)
  • 0

#8
dsenette

dsenette

    Je suis Napoléon!

  • Administrator
  • 26,019 posts
  • MVP
hehe..no the Live agents are the parts of the program that activly watch what you install and what changes are made to the system while it's running...if you have more than one of those going...they tend to fight over resources.....
and while it's true that many antispyware software packages detect different things...having them all on at the same time...usually causes conflicts....it's best to have one permanent...then do online scans once a week...like kapersky or trend micro (i sometimes do both)
  • 0

#9
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts

hehe..no the Live agents are the parts of the program that activly watch what you install and what changes are made to the system while it's running...if you have more than one of those going...they tend to fight over resources.....
and while it's true that many antispyware software packages detect different things...having them all on at the same time...usually causes conflicts....it's best to have one permanent...then do online scans once a week...like kapersky or trend micro (i sometimes do both)


  • 0

#10
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
Thank you, dsenette. Now I know one more thng! Will try to go to that hijack place later tonight or tomorrow. Never been there, but it can't be too difficult. Just got home from a long day and tired and hungry. Thanks again.
  • 0

Advertisements


#11
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
I did what I was supposed to. Here is the log (I hope!) :tazz:


Logfile of HijackThis v1.99.1
Scan saved at 11:44:33 PM, on 12/23/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRA~1\COMMON~1\AOL\113484~1\EE\AOLHOS~1.EXE
C:\PROGRA~1\COMMON~1\AOL\113484~1\EE\AOLServiceHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\America Online 9.0\waol.exe
C:\Program Files\America Online 9.0\shellmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Anna Ruth Baldwin\Local Settings\Temporary Internet Files\Content.IE5\OYQCSK6G\HijackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.dogpile.c...orms/search.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.dogpile.c...orms/search.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://us.mcafee.com...close=true&RW=1
O2 - BHO: (no name) - {227B8AA8-DAF2-4892-BD1D-73F568BCB24E} - (no file)
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: AIM Helper - {D70E6A20-7060-4829-B3D7-B6624A1DE7C6} - blank (file missing)
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1134840697\EE\AOLHostManager.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Dogpile Cursor Search - C:\Documents and Settings\All Users\Application Data\Infospace\DogpileToolbar\contextsearch.htm
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.micr...ActiveX/odc.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay10...es/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1130518600781
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1130544246125
O16 - DPF: {78AEEDE8-7345-4FB5-A8FE-4BFF16EF25FC} -
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsec...scan/axscan.cab
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} (Java Plug-in 1.4.2_03) -
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by104fd.bay10...ex/HMAtchmt.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2520C69-1692-410A-998C-F9ACB3AC4C9D}: NameServer = 205.188.146.145
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe
O23 - Service: ZeroSpyware FileDeleter (FileDeleter) - Unknown owner - C:\Documents and Settings\Anna Ruth Baldwin\My Documents\MAINTENANCE\FileDeleter.exe (file missing)
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe


Well, by jove, I think I may have done it! :)
  • 0

#12
Matt.F

Matt.F

    Visiting Staff

  • Visiting Consultant
  • 512 posts
First off, your HijackThis log will have to be posted in the Malware forum for you to be cleared. Sorry about that! You can find that forum by clicking here.

Second, it isn't inherently bad to have multiple anti-spyware programs on your computer. What you have to stay away from is having multiple real-time protection agents running (Spybot's Tea-Timer, Ad-aware's Ad-Watch, ewido's Background Guard, etc.). Having these programs installed is fine. Running periodic (weekly or so) scans with all of them is fine, as there is not a single anti-spyware program out there that picks up everything there is to be found by running multiple programs. It's simply not possible due to the way their scanning engines work. Online scans, as dsenette suggested, are also good because they run from an online database and can't be affected by malware that's already installed on your computer. Using both is a good idea.

So, post your log in the Malware Forum then return here if they give you the all-clear and you are still having problems.

Regards,
Matt
  • 0

#13
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
Uh, Oh! Just read another person's problem and found out my Hijack This was in a Temp folder. So here it is again, corect this time, I hope! :tazz:

Logfile of HijackThis v1.99.1
Scan saved at 12:29:34 AM, on 12/24/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRA~1\COMMON~1\AOL\113484~1\EE\AOLHOS~1.EXE
C:\PROGRA~1\COMMON~1\AOL\113484~1\EE\AOLServiceHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\America Online 9.0\waol.exe
C:\Program Files\America Online 9.0\shellmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\dlbtcoms.exe
C:\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.dogpile.c...orms/search.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.dogpile.c...orms/search.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://us.mcafee.com...close=true&RW=1
O2 - BHO: (no name) - {227B8AA8-DAF2-4892-BD1D-73F568BCB24E} - (no file)
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: AIM Helper - {D70E6A20-7060-4829-B3D7-B6624A1DE7C6} - blank (file missing)
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1134840697\EE\AOLHostManager.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Dogpile Cursor Search - C:\Documents and Settings\All Users\Application Data\Infospace\DogpileToolbar\contextsearch.htm
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.micr...ActiveX/odc.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay10...es/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1130518600781
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1130544246125
O16 - DPF: {78AEEDE8-7345-4FB5-A8FE-4BFF16EF25FC} -
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsec...scan/axscan.cab
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} (Java Plug-in 1.4.2_03) -
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by104fd.bay10...ex/HMAtchmt.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2520C69-1692-410A-998C-F9ACB3AC4C9D}: NameServer = 205.188.146.145
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe
O23 - Service: ZeroSpyware FileDeleter (FileDeleter) - Unknown owner - C:\Documents and Settings\Anna Ruth Baldwin\My Documents\MAINTENANCE\FileDeleter.exe (file missing)
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

By jove, I think I did it! :)
  • 0

#14
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts

First off, your HijackThis log will have to be posted in the Malware forum for you to be cleared. Sorry about that! You can find that forum by clicking here.

Second, it isn't inherently bad to have multiple anti-spyware programs on your computer. What you have to stay away from is having multiple real-time protection agents running (Spybot's Tea-Timer, Ad-aware's Ad-Watch, ewido's Background Guard, etc.). Having these programs installed is fine. Running periodic (weekly or so) scans with all of them is fine, as there is not a single anti-spyware program out there that picks up everything there is to be found by running multiple programs. It's simply not possible due to the way their scanning engines work. Online scans, as dsenette suggested, are also good because they run from an online database and can't be affected by malware that's already installed on your computer. Using both is a good idea.

So, post your log in the Malware Forum then return here if they give you the all-clear and you are still having problems.

Regards,
Matt


  • 0

#15
FOXYGRANDMA

FOXYGRANDMA

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 141 posts
Uh, Oh! Thank you. Thought I read to put it in original message and hit Reply. Thanks. Merry Christmas!
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP