| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 108856 | 2010-04-14 08:47:00 | Avg 7.5 | Lurking (218) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 876501 | 2010-04-14 08:47:00 | Wife was sick of Avg 7.5 always popping up on her Win98 SE machine and scanning every file she brings up. I used the Avg uninstall file and the add/remove in Windows to clean the title in there. Now we get a series of VXD files blocking the loading if Windows after the Win flash screen. Have used a couple of programs and even on from Grisoft's own site, to no avail. And we thought this was a very good virus software, no more thank god!. Any help on this would be appreciated. Lurking. |
Lurking (218) | ||
| 876502 | 2010-04-14 09:36:00 | Post a HJT log. So, we can see whats in startup / in it. WHAT vxd file messages are coming up? | Speedy Gonzales (78) | ||
| 876503 | 2010-04-14 23:20:00 | Thanks Speedy, will go and get the HJT log and post. Lurks Ps. have downloaded and put avg7.5 back onto her pc and touch wood no long delays on her word docs. Just the long initial boot-up search. lurks. |
Lurking (218) | ||
| 876504 | 2010-04-14 23:29:00 | Hi Speedy, older ver. of HJT on that "old" reliable IBM machine, lol. Lurks. Logfile of HijackThis v1.99.1 Scan saved at 10:27:15 AM, on 15-Apr-10 Platform: Windows 98 SE (Win9x 4.10.2222B) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL\PERSFW.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE C:\WINDOWS\EXPLORER.EXE C:\WINDOWS\TASKMON.EXE C:\WINDOWS\SYSTEM\SYSTRAY.EXE C:\PROGRAM FILES\X3WATCH\X3WATCH.EXE C:\WINDOWS\LOADQM.EXE C:\PROGRAM FILES\GRISOFT\AVG7\AVGAMSVR.EXE C:\WINDOWS\SYSTEM\MONITUSB.EXE C:\PROGRAM FILES\PESTPATROL\PPMEMCHECK.EXE C:\PROGRAM FILES\PESTPATROL\COOKIEPATROL.EXE C:\PROGRAM FILES\GRISOFT\AVG7\AVGCC.EXE C:\WINDOWS\SYSTEM\WMIEXE.EXE C:\PROGRAM FILES\GRISOFT\AVG7\AVGEMC.EXE C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\WINDOWS\SYSTEM\SPOOL32.EXE C:\PROGRAM FILES\HIJACK THIS\HIJACKTHIS.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Clear.net O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\PROGRAM FILES\FLASHGET\FLASHGET\JCCATCH.DLL O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRAM FILES\FLASHGET\FLASHGET\GETFLASH.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRAM FILES\FLASHGET\FLASHGET\FGIEBAR.DLL O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\PROGRAM FILES\CANON\EASY-WEBPRINT\TOOLBAND.DLL (file missing) O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [X3WATCH] C:\PROGRAM FILES\X3WATCH\X3WATCH.exe O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [LoadQM] loadqm.exe O4 - HKLM\..\Run: [AVG7_AMSVR] C:\PROGRA~1\GRISOFT\AVG7\AVGAMSVR.EXE O4 - HKLM\..\Run: [SMI USB Monitor] C:\WINDOWS\SYSTEM\monitusb.exe O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\PESTPA~1\PPMemCheck.exe O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\PESTPA~1\CookiePatrol.exe O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\GRISOFT\AVG7\AVGCC.EXE /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\GRISOFT\AVG7\AVGEMC.EXE O4 - HKLM\..\RunServices: [PersFw] "C:\Program Files\Kerio\Personal Firewall\persfw.exe" /hide O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmwordtrans.html O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html O8 - Extra context menu item: Translate Page into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html O8 - Extra context menu item: Download using FlashGet - C:\PROGRAM FILES\FLASHGET\FLASHGET\jc_link.htm O8 - Extra context menu item: Download All by FlashGet - C:\PROGRAM FILES\FLASHGET\FLASHGET\jc_all.htm O8 - Extra context menu item: Easy-WebPrint Print - res://C:\PROGRAM FILES\CANON\EASY-WEBPRINT\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\PROGRAM FILES\CANON\EASY-WEBPRINT\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\PROGRAM FILES\CANON\EASY-WEBPRINT\Resource.dll/RC_Preview.html O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\PROGRAM FILES\CANON\EASY-WEBPRINT\Resource.dll/RC_AddToList.html O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.6.0_03\BIN\SSV.DLL O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.6.0_03\BIN\SSV.DLL O12 - Plugin for .spop: C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - www.lizardtech.com O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - www-3.ibm.com O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - www.crucial.com |
Lurking (218) | ||
| 876505 | 2010-04-14 23:35:00 | What are the names of these vxd files?? Could be Kerio blocking things. If this is on the net, I would uninstall all versions of java, then update it Do you need this? O4 - HKLM\..\Run: [X3WATCH] C:\PROGRAM FILES\X3WATCH\X3WATCH.exe |
Speedy Gonzales (78) | ||
| 876506 | 2010-04-14 23:53:00 | Hi Speedy, the X3Watch is a kids security program, they are long gone, but we have g/children, bit young for anything suspect. As mentioned we re-installed 7.5 and the VXD files showing under initial boot-up no longer appear, and the Avg search on word docs doesn't appear. The IBM hasn't done any web work and that's the reason for getting rid of AVG. I thought Zone Alarm was bad enough to get rid of !. Kerio was a great firewall and it could probably be taken off now. Regards, Lurks. |
Lurking (218) | ||
| 876507 | 2010-04-15 00:10:00 | Speedy, because you are so helpful, I dived into the rubbish bin and pieced together the note I had taken last night. Here are 2 lines: C:\PROGRAM~1\GRISOFT\AVGFRE~1\AVG7 CORE.VXD C:\PROGRAM~1\GRISOFT\AVGFRE~1\AVG7 RS.VXD Wrote them down quickly so they may not be quite right. Great having you there for us oldies. Thanks again. Lurks. |
Lurking (218) | ||
| 876508 | 2010-04-15 00:18:00 | Did you know that AVG 7.5 stopped being supported quite some time ago? The last virus database update was on 30th April 2009. Please see this thread of the AVG Free Forum : forums.avg.com (Big AL 43 is a moderator for the forum). AVG9 is now the current version. As a side - Personally, I don't think even the latest version of AVG is much cop. I hear much better things about Avira and Microsoft Security Essentials for detection and removal of malware, and both are very lightweight and are also free. I'm not sure if either of them support Win98 though. |
catspyjamas (15614) | ||
| 876509 | 2010-04-15 00:43:00 | Is it saying this ? (en.allexperts.com) a device file that is specified in the SYSTEM.INI file is damaged you may need to run the windows setup program again. if the file is included in another software package, you may need to reinstall the software that uses the file.C:\PROGRAM~1\GRISFT\AVG7\AVG7CORE.VXD Is this connected through a router? If it is, I wouldnt worry about Kerio Or is it on dialup? |
Speedy Gonzales (78) | ||
| 876510 | 2010-04-15 05:00:00 | Did you know that AVG 7 . 5 stopped being supported quite some time ago? The last virus database update was on 30th April 2009 . Please see this thread of the AVG Free Forum : . avg . com/au-en/avg-free-forum?sec=thread&act=show&id=14311" target="_blank">forums . avg . com (Big AL 43 is a moderator for the forum) . AVG9 is now the current version . As a side - Personally, I don't think even the latest version of AVG is much cop . I hear much better things about Avira and Microsoft Security Essentials for detection and removal of malware, and both are very lightweight and are also free . I'm not sure if either of them support Win98 though . Hi catspyjamas, Avg 7 . 5 was on the machine, ( I know AVG is up to ver 9 now), still won't be using it though . Will check out your link, but Speedy's last response shows the problem . My wife just uses the Win 98SE machine to do her card making on as the scanner is a parallel port connection . Thanks, Lurking . |
Lurking (218) | ||
| 1 2 | |||||