| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 72087 | 2006-08-29 23:22:00 | Virus and or Router | cookiemonster (9463) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 481293 | 2006-08-29 23:22:00 | Logfile of HijackThis v1.99.1 Scan saved at 10:07:23 AM, on 8/30/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\WinAntiVirus Pro 2006\winav.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SpywareGuard\sgmain.exe C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe C:\Program Files\SpywareGuard\sgbhp.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HijackThis 1.99.1\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.xtra.co.nz/ O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O3 - Toolbar: (no name) - {6bfa923a-faf6-4b4d-a180-816a0c7b04fe} - (no file) O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [WinAntiVirusPro2006] C:\Program Files\WinAntiVirus Pro 2006\winav.exe /min O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - zone.msn.com O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - www.pcpitstop.com O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {339234B4-4E14-4280-B8B4-8BAE5AF99063} (Chess Object) - zone.msn.com O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - zone.msn.com O16 - DPF: {54823A9D-6BAE-11D5-B519-0050BA2413EB} (ChkDVDCtl Class) - www.cyberlink.com O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - zone.msn.com O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - file://C:\Documents and Settings\Phil\Local Settings\Temp\EI40_\msxml4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - www.pcpitstop.com O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - cdn2.zone.msn.com O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - zone.msn.com O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - messenger.zone.msn.com O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ewido anti-spyware 4.0 guard - Unknown owner - C:\Program Files\ewido anti-spyware 4.0\guard.exe (file missing) O23 - Service: Firewall service (FWSvc) - WinSoftware, Ltd. - C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe I'm having trouble with IE,so ran HJT just in case a virus has creep in?? Router has been reset to best known restore point,lastest upgrade etc. Dynalink RTA 300 ADSL Router IE homepage/favorites included:This page cant be display ,check internet setting etc.. all history is still displayed,refresh page get same message Page cannot be displayed ...check lan settings etc To overcome this,I've got to reboot the computer,is it my router or a little greamlin :confused: Reboot computa,open IE, horah homepage/favorites are back Any ideas?? C:stare::horrifiedkiem:illogicalnster |
cookiemonster (9463) | ||
| 481294 | 2006-08-30 05:40:00 | Hi You have something i would not put on my pc . . . . spywarewarrior . com/rogue_anti-spyware . htm" target="_blank">www . spywarewarrior . com Go to Start > Run and type cmd and OK . Type the below commands and hit "Enter" after each line sc stop FWSvc sc delete FWSvc Type Exit to close . Run HJT and remove these items and uninstall the folder . . O3 - Toolbar: (no name) - {6bfa923a-faf6-4b4d-a180-816a0c7b04fe} - (no file) O4 - HKLM\ . . \Run: [WinAntiVirusPro2006] C:\Program Files\WinAntiVirus Pro 2006\winav . exe /min O23 - Service: Firewall service (FWSvc) - WinSoftware, Ltd . - C:\Program Files\WinAntiVirus Pro 2006\FWSvc . exe Reboot . . . . . . . . . . . . . . . . . . . . . Post a new HJT log when done . . . . |
Pancake (6359) | ||
| 481295 | 2006-08-30 10:49:00 | Sorry forgot to reboot then rerun hjt Logfile of HijackThis v1 . 99 . 1 Scan saved at 9:50:21 PM, on 8/30/2006 Platform: Windows XP SP2 (WinNT 5 . 01 . 2600) MSIE: Internet Explorer v6 . 00 SP2 (6 . 00 . 2900 . 2180) Running processes: C:\WINDOWS\System32\smss . exe C:\WINDOWS\system32\winlogon . exe C:\WINDOWS\system32\services . exe C:\WINDOWS\system32\lsass . exe C:\WINDOWS\System32\Ati2evxx . exe C:\WINDOWS\system32\svchost . exe C:\WINDOWS\System32\svchost . exe C:\WINDOWS\system32\spoolsv . exe C:\Program Files\Analog Devices\SoundMAX\SMAgent . exe C:\WINDOWS\system32\Ati2evxx . exe C:\WINDOWS\Explorer . EXE C:\Program Files\Analog Devices\SoundMAX\SMax4PNP . exe C:\Program Files\Analog Devices\SoundMAX\Smax4 . exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx . exe C:\Program Files\Java\jre1 . 5 . 0_08\bin\jusched . exe C:\Program Files\iTunes\iTunesHelper . exe C:\Program Files\QuickTime\qttask . exe C:\Program Files\iPod\bin\iPodService . exe C:\Program Files\WinAntiVirus Pro 2006\winav . exe C:\Program Files\Skype\Phone\Skype . exe C:\Program Files\Messenger\msmsgs . exe C:\Program Files\SpywareGuard\sgmain . exe C:\Program Files\SpywareGuard\sgbhp . exe C:\Program Files\HijackThis 1 . 99 . 1\HijackThis . exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www . xtra . co . nz/ O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect . dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1 . 5 . 0_08\bin\ssv . dll O4 - HKLM\ . . \Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP . exe O4 - HKLM\ . . \Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4 . exe" /tray O4 - HKLM\ . . \Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx . exe O4 - HKLM\ . . \Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol . exe O4 - HKLM\ . . \Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1 . 5 . 0_08\bin\jusched . exe" O4 - HKLM\ . . \Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper . exe" O4 - HKLM\ . . \Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask . exe" -atboottime O4 - HKLM\ . . \Run: [WinAntiVirusPro2006] C:\Program Files\WinAntiVirus Pro 2006\winav . exe /min O4 - HKCU\ . . \Run: [Skype] "C:\Program Files\Skype\Phone\Skype . exe" /nosplash /minimized O4 - HKCU\ . . \Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs . exe" /background O4 - Startup: SpywareGuard . lnk = C:\Program Files\SpywareGuard\sgmain . exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1 . 5 . 0_08\bin\ssv . dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1 . 5 . 0_08\bin\ssv . dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs . exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs . exe O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - . msn . com/binFrameWork/v10/StagingUI . cab46479 . cab" target="_blank">zone . msn . com O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - . pcpitstop . com/pcpitstop/PCPitStop . CAB" target="_blank">www . pcpitstop . com O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - . zone . msn . com/binary/MessengerStatsPAClient . cab31267 . cab" target="_blank">messenger . zone . msn . com O16 - DPF: {339234B4-4E14-4280-B8B4-8BAE5AF99063} (Chess Object) - . msn . com/bingame/zpagames/zpa_kqrp . cab46783 . cab" target="_blank">zone . msn . com O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - . msn . com/BinFrameWork/v10/ZBuddy . cab32846 . cab" target="_blank">zone . msn . com O16 - DPF: {54823A9D-6BAE-11D5-B519-0050BA2413EB} (ChkDVDCtl Class) - . cyberlink . com/winxp/CheckDVD . cab" target="_blank">www . cyberlink . com O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - . msn . com/binframework/v10/ZPAChat . cab32846 . cab" target="_blank">zone . msn . com O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4 . 0) - file://C:\Documents and Settings\Phil\Local Settings\Temp\EI40_\msxml4 . cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - . zone . msn . com/binary/MessengerStatsClient . cab31267 . cab" target="_blank">messenger . zone . msn . com O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - . pcpitstop . com/mhLbl . cab" target="_blank">www . pcpitstop . com O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - . zone . msn . com/binFramework/v10/ZIntro . cab34246 . cab" target="_blank">cdn2 . zone . msn . com O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - . msn . com/binframework/v10/StProxy . cab41227 . cab" target="_blank">zone . msn . com O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - . zone . msn . com/binary/SolitaireShowdown . cab31267 . cab" target="_blank">messenger . zone . msn . com O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1 . DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1 . DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon . dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx . exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag . exe O23 - Service: ewido anti-spyware 4 . 0 guard - Unknown owner - C:\Program Files\ewido anti-spyware 4 . 0\guard . exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT . exe O23 - Service: iPodService - Apple Computer, Inc . - C:\Program Files\iPod\bin\iPodService . exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc . - C:\Program Files\Analog Devices\SoundMAX\SMAgent . exe C:blush::lol:kiem:help:nster |
cookiemonster (9463) | ||
| 481296 | 2006-08-31 00:57:00 | Just run HJT and remove this item and that should be it.Are things better now.? O4 - HKLM\..\Run: [WinAntiVirusPro2006] C:\Program Files\WinAntiVirus Pro 2006\winav.exe /min |
Pancake (6359) | ||
| 481297 | 2006-08-31 05:00:00 | No,cant get IE to display: check settings etc etc Posting from another computer,shares same router different port,getting simular issues with this computer as well,but not as bad . Is ther anyway I can get the HJT file from infected computer to this 1 too post the HJT file? C:nerd::groan:kiem:xmouth:nster |
cookiemonster (9463) | ||
| 481298 | 2006-08-31 05:15:00 | If you mean what I think you mean all you can do is to put HJT on a floppy and run it on the other computer and copy the scan back onto the floppy and post it back here via the (good) computer..!!!!!! | Pancake (6359) | ||
| 481299 | 2006-08-31 08:24:00 | Logfile of HijackThis v1.99.1 Scan saved at 7:19:25 PM, on 8/31/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC 2.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe C:\Program Files\HijackThis 1.99.1\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.xtra.co.nz/ O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe O4 - HKLM\..\Run: [EPSON Stylus C61 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC 2.EXE /P23 "EPSON Stylus C61 Series" /O5 "LPT1:" /M "Stylus C61" O4 - HKLM\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - zone.msn.com O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - www.pcpitstop.com O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {339234B4-4E14-4280-B8B4-8BAE5AF99063} (Chess Object) - zone.msn.com O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - zone.msn.com O16 - DPF: {54823A9D-6BAE-11D5-B519-0050BA2413EB} (ChkDVDCtl Class) - www.cyberlink.com O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - zone.msn.com O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - file://C:\Documents and Settings\Phil\Local Settings\Temp\EI40_\msxml4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - www.pcpitstop.com O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - cdn2.zone.msn.com O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - zone.msn.com O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - messenger.zone.msn.com O17 - HKLM\System\CCS\Services\Tcpip\..\{14EE40E3-771C-4B34-B757-9D4403CDB738}: NameServer = 4.2.2.2,4.2.2.3 O17 - HKLM\System\CS1\Services\Tcpip\..\{14EE40E3-771C-4B34-B757-9D4403CDB738}: NameServer = 4.2.2.2,4.2.2.3 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: Firewall service (FWSvc) - WinSoftware, Ltd. - C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:):(kiem:help:nster |
cookiemonster (9463) | ||
| 481300 | 2006-08-31 08:50:00 | To fix this entry O23 - Service: Firewall service (FWSvc) - WinSoftware, Ltd. - C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe Try this Disable the Service Click Start > Run and type services.msc Scroll down to Firewall service and right click on it. Click Properties and under Service Status click Stop, then under Startup Type change it to Disabled. Delete the Service Open HijackThis and click Config -> Misc Tools -> Delete an NT service. In the Delete window, type (FWSvc) and press OK. OK any prompts, close HijackThis, and restart your computer. 3) Start > Control Panell > Add Remove programs and uninstall WinAntiVirus Pro 2. Taken from here (forums.spybot.info) |
Speedy Gonzales (78) | ||
| 481301 | 2006-08-31 09:57:00 | WinAntiVirus Pro 2006 > I got and paid for??got email with password code So know I've no antivirus program,,were can I get a reccommended 1 from? Online << ?? Shop<<?? C:D:xmouth:kiem:badpc:nster |
cookiemonster (9463) | ||
| 481302 | 2006-08-31 10:07:00 | AVG http://free . grisoft . com/ Before using or purchasing any Spyware/Malware protection/removal program, always check the Rogue/Suspect Spyware List . It will save you a lot of grief, as well as money if you are thinking of purchasing . Here is the link: . spywarewarrior . com/rogue_anti-spyware . htm" target="_blank">www . spywarewarrior . com If you want to know just how effective your anti-spyware program is, or how well any of the "rogue" programs listed at the above link work, check this for an independent comparison of several anti-spyware programs: |
Pancake (6359) | ||
| 1 2 | |||||