Spyware/Adware removal software [CLOSED]
Started by
alandemartino
, Apr 14 2004 02:06 PM
-
This topic is locked
#31
Posted 19 April 2004 - 11:01 AM
ditto
-
- Member
-
- 1,260 posts
- i pwn n00bs -
#32
Posted 19 April 2004 - 02:00 PM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
Logfile of HijackThis v1.97.7
Scan saved at 21:53:46, on 19/04/04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\STARTER.EXE
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE
C:\PROGRAM FILES\ZONE LABS\ZONEALARM\ZLCLIENT.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAM FILES\SMARTPOPUPBLOCKER\SMARTPOPUPBLOCKERTRAY.EXE
C:\WINDOWS\DESKTOP\PROGAMS\HIJACKTHIS\HIJACKTHIS.EXE
F1 - win.ini: run=hpfsched
O2 - BHO: SafeGuard Popup Blocker - {B824E7B0-E8E3-4D75-895E-2C309EA4CC5D} - C:\PROGRAM FILES\SAFEGUARD POPUP BLOCKER PRO\SGPOPUPBLOCKER.DLL
O2 - BHO: (no name) - {0D929918-C804-4756-B0AC-640EF3F061E9} - C:\PROGRAM FILES\SMARTPOPUPBLOCKER\POPUPBLOCKERBHO.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [Popup Blocker Updater] regsvr32 /s C:\WINDOWS\SYSTEM\SFG18B1.DLL
O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\BIN\INSTAN~1.EXE /h
O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\Run: [Norton Auto-Protect] C:\PROGRA~1\NORTON~1\NAVAPW32.EXE /LOADQUIET
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemCheck.exe
O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePatrol.exe
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\AVAST4\ashmaisv.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE
O4 - HKLM\..\RunServices: [avast!] C:\Program Files\Alwil Software\Avast4\ashServ.exe
O4 - HKLM\..\RunServices: [TrueVector] C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE -service
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE10\EXCEL.EXE/3000
O9 - Extra 'Tools' menuitem: Popup Blocker Options (HKLM)
O12 - Plugin for .pdf: C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.ma...ash/swflash.cab
O16 - DPF: {FE5D6722-826F-11D5-A24E-0060B0F1A5AE} (Tukati Launcher) - http://http.gamezone...0.20/tukati.cab
O16 - DPF: {88C51E90-8E9C-4C96-8A45-574D88B63FAF} (Matrix Class) - http://acceso.masmin.../aplicacion.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com...ex/qtplugin.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg...v45/yacscom.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installen...gine/isetup.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macr...director/sw.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/...h/v2/EARTPX.cab
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnote...ad/mnviewer.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupd...8095.9488425926
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivi...n/ravonline.cab
I ran an online antivirus and i found 85 viruses
(worms & trojans) then i deleted them!! But the same problem (that of the window) is still occuring!!! Where did all those virus come from!!!?
Scan saved at 21:53:46, on 19/04/04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\STARTER.EXE
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE
C:\PROGRAM FILES\ZONE LABS\ZONEALARM\ZLCLIENT.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAM FILES\SMARTPOPUPBLOCKER\SMARTPOPUPBLOCKERTRAY.EXE
C:\WINDOWS\DESKTOP\PROGAMS\HIJACKTHIS\HIJACKTHIS.EXE
F1 - win.ini: run=hpfsched
O2 - BHO: SafeGuard Popup Blocker - {B824E7B0-E8E3-4D75-895E-2C309EA4CC5D} - C:\PROGRAM FILES\SAFEGUARD POPUP BLOCKER PRO\SGPOPUPBLOCKER.DLL
O2 - BHO: (no name) - {0D929918-C804-4756-B0AC-640EF3F061E9} - C:\PROGRAM FILES\SMARTPOPUPBLOCKER\POPUPBLOCKERBHO.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [Popup Blocker Updater] regsvr32 /s C:\WINDOWS\SYSTEM\SFG18B1.DLL
O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\BIN\INSTAN~1.EXE /h
O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\Run: [Norton Auto-Protect] C:\PROGRA~1\NORTON~1\NAVAPW32.EXE /LOADQUIET
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\STOMPS~1\SPYWAR~1\PPMemCheck.exe
O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\STOMPS~1\SPYWAR~1\CookiePatrol.exe
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\AVAST4\ashmaisv.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE
O4 - HKLM\..\RunServices: [avast!] C:\Program Files\Alwil Software\Avast4\ashServ.exe
O4 - HKLM\..\RunServices: [TrueVector] C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE -service
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE10\EXCEL.EXE/3000
O9 - Extra 'Tools' menuitem: Popup Blocker Options (HKLM)
O12 - Plugin for .pdf: C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.ma...ash/swflash.cab
O16 - DPF: {FE5D6722-826F-11D5-A24E-0060B0F1A5AE} (Tukati Launcher) - http://http.gamezone...0.20/tukati.cab
O16 - DPF: {88C51E90-8E9C-4C96-8A45-574D88B63FAF} (Matrix Class) - http://acceso.masmin.../aplicacion.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com...ex/qtplugin.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg...v45/yacscom.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installen...gine/isetup.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macr...director/sw.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/...h/v2/EARTPX.cab
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnote...ad/mnviewer.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupd...8095.9488425926
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivi...n/ravonline.cab
I ran an online antivirus and i found 85 viruses
(worms & trojans) then i deleted them!! But the same problem (that of the window) is still occuring!!! Where did all those virus come from!!!?
#33
Posted 20 April 2004 - 09:01 AM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
What can i do?
#34
Posted 20 April 2004 - 10:22 AM
admin
-
- Community Leader
-
- 24,639 posts
Founder Geek
Avast! anti-virus obviously isn't performing very well for you. Why don't you go ahead and uninstall it. Then install AVG's free version from here:
http://www.grisoft.c...s_dwnl_free.php
Next, it sounds like your video driver may be causing your window problems. Why don't you try updating your video driver? If you don't know what kind of video card is installed in your system you can identify it using one of these programs:
http://www.belarc.co...e_download.html
http://www.lavalys.c...=product&view=1
http://www.grisoft.c...s_dwnl_free.php
Next, it sounds like your video driver may be causing your window problems. Why don't you try updating your video driver? If you don't know what kind of video card is installed in your system you can identify it using one of these programs:
http://www.belarc.co...e_download.html
http://www.lavalys.c...=product&view=1
#35
Posted 20 April 2004 - 10:28 AM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
admin,
I'll try AVG then. My video card is not that old! It's the GeForce Mx440!! Do you still think that its the problem? thanks
I'll try AVG then. My video card is not that old! It's the GeForce Mx440!! Do you still think that its the problem? thanks
#37
Posted 21 April 2004 - 01:53 AM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
admin,
I reistalled the Driver from the original disk (that which comes with the graphic card) and rebooted. When the windows was loaded, the resolution was automatically changed from 1024x768 (resolution before installation) to 800x600, and one of the problems was gone (that problem i told you about - the window take long to be minimized all) but the other the other problem was still there (when there are 3-4 windows and you minimize one, the icons...etc of the background do not appear). Then i changed the resolution from 800x600 to 1024x768 and the first problem which was gone, took life again!! What do you suggest? If it is possible i would like to keep the resolution 1024x768. Thank you very much for your interest.
alandemartino
I reistalled the Driver from the original disk (that which comes with the graphic card) and rebooted. When the windows was loaded, the resolution was automatically changed from 1024x768 (resolution before installation) to 800x600, and one of the problems was gone (that problem i told you about - the window take long to be minimized all) but the other the other problem was still there (when there are 3-4 windows and you minimize one, the icons...etc of the background do not appear). Then i changed the resolution from 800x600 to 1024x768 and the first problem which was gone, took life again!! What do you suggest? If it is possible i would like to keep the resolution 1024x768. Thank you very much for your interest.
alandemartino
#38
Posted 21 April 2004 - 01:55 AM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
admin,
By the way I forgot to tell you in the previous reply, that AVG is doing very well!!
Thank you
alandemartino
By the way I forgot to tell you in the previous reply, that AVG is doing very well!!
Thank you
alandemartino
#39
Posted 21 April 2004 - 07:10 AM
admin
-
- Community Leader
-
- 24,639 posts
Founder Geek
Let's try this. Download and run Driver Cleaner. Remove all traces of any previous video drivers from your system. Next, go the device manager and uninstall your video card. Restart your computer, the hardware wizard will find the card and reinstall it. Reboot, and then install the latest WHQL driver from nVidia.com.
Driver Cleaner: http://www.driverheaven.net/cleaner/
nVidia drivers: http://www.nvidia.co...ers/drivers.asp
Driver Cleaner: http://www.driverheaven.net/cleaner/
nVidia drivers: http://www.nvidia.co...ers/drivers.asp
#40
Posted 21 April 2004 - 11:54 PM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
admin,
Which is the latest WHQL? I removed the driver (Driver Cleaner) and then I uninstalled it from the Device Manager, but it only works if you make the resolution 800x600!!
Thanks
alandemartino
Which is the latest WHQL? I removed the driver (Driver Cleaner) and then I uninstalled it from the Device Manager, but it only works if you make the resolution 800x600!!
Thanks
alandemartino
#41
Posted 26 April 2004 - 12:50 PM
alandemartino
- Topic Starter
-
- Member
-
- 147 posts
Member
I would appreciate every comment!! 
#42
Posted 26 April 2004 - 01:46 PM
admin
-
- Community Leader
-
- 24,639 posts
Founder Geek
WHQL (Microsoft Windows Hardware Quality Labs) certification means the drivers or device meets Microsoft's standard for hardware compatibility.
While nVidia releases drivers often, they newest one's don't usually have the WHQL certification, and can sometimes cause problems in certain configurations. WHQL should be more stable and reliable, but maybe not as fast or compatible with as many games as the newest drivers.
Another very real possibility is that a virus or trojan damaged a system file, and Windows may need to be repaired or reinstalled.
While nVidia releases drivers often, they newest one's don't usually have the WHQL certification, and can sometimes cause problems in certain configurations. WHQL should be more stable and reliable, but maybe not as fast or compatible with as many games as the newest drivers.
Another very real possibility is that a virus or trojan damaged a system file, and Windows may need to be repaired or reinstalled.
#43
Posted 03 September 2005 - 12:43 AM
Kat
-
- Retired Staff
-
- 19,711 posts
Retired
Due to lack of feedback, this topic has been closed.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
