| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 66692 | 2006-03-04 11:41:00 | Limewire keeps opening itself | Greven (91) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 435435 | 2006-03-04 11:41:00 | My friend has a problem where limewire opens again after every time he closes it. I got him to run a hijackthis scan, but I'm not too sure on interpreting it. I got him to disable everything in the msconfig startup tab & that stopped it, but I want to properly get rid of it. I think the problems are virtua girl & winupdates. Logfile of HijackThis v1.99.1 Scan saved at 12:23:46 a.m., on 5/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE D:\Program Files\DAEMON Tools\daemon.exe D:\Program Files\Java\jre1.5.0_05\bin\jusched.exe D:\Program Files\winupdates\winupdates.exe D:\Program Files\MSN Messenger\MsnMsgr.Exe D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe D:\Program Files\Vg\VirtuaGirl2.exe D:\Program Files\IPWireless Inc\IPWireless PC Software\UEStatus.exe D:\Program Files\LimeWire\LimeWire.exe C:\Documents and Settings\Darren\Desktop\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.woosh.co.nz/ O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: System Process - {C2EEB4FA-B6D6-41b9-9CFA-ABA87F862BCB} - C:\WINDOWS\system32\navshext1.dll O3 - Toolbar: TextAloud - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - D:\PROGRA~1\TEXTAL~1\TAForIE.dll O4 - HKLM\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [winupdates] D:\Program Files\winupdates\winupdates.exe /auto O4 - HKCU\..\Run: [MsnMsgr] "D:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: VirtuaGirl2.lnk = D:\Program Files\Vg\VirtuaGirl2.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - acs.pandasoftware.com O17 - HKLM\System\CCS\Services\Tcpip\..\{AEBDA232-1BDC-48C1-9268-089BAB42E5C2}: NameServer = 202.74.207.10 202.74.207.100 O17 - HKLM\System\CCS\Services\Tcpip\..\{B1F4C988-59BA-4760-BE9F-8BB6A7096D6A}: NameServer = 192.168.1.2 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe He wasn't running any antivirus software, so I told him to get avast. |
Greven (91) | ||
| 435436 | 2006-03-04 22:01:00 | This is very nasty. O4 - HKLM\..\Run: [winupdates] D:\Program Files\winupdates\winupdates.exe /auto This need fixing. O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing) |
godfather (25) | ||
| 435437 | 2006-03-04 22:08:00 | And these entries. O2 - BHO: System Process - {C2EEB4FA-B6D6-41b9-9CFA-ABA87F862BCB} - C:\WINDOWS\system32\navshext1.dll D:\Program Files\winupdates\winupdates.exe |
Speedy Gonzales (78) | ||
| 435438 | 2006-07-24 21:50:00 | I had the same problem, tried all the recommended fixes, but no good. Here's what did work: Control Panel, Add or Remove Programs, removed entry named to effect of "888 Toolbar". Damn sure wish I'd written it down, sorry about that, but I'm sure about the "888". Next, ran System Restore and restored system to previous day. Problem gone. I'm no computer geek, and dunno which action fixed the problem, but if it's any help, I'm glad. I'd love to hear if this helps anyone! | StrayGoose (9910) | ||
| 435439 | 2006-07-24 22:22:00 | Jeez Greven, it's a bit disappointing that you didn't post feedback. :( I had the same problem, tried all the recommended fixes, but no good. Here's what did work: Control Panel, Add or Remove Programs, removed entry named to effect of "888 Toolbar". Damn sure wish I'd written it down, sorry about that, but I'm sure about the "888". Next, ran System Restore and restored system to previous day. I can't see the sense in using system restore after uninstalling an entry in Add/Remove as system restore would just put it back again. :confused: |
FoxyMX (5) | ||
| 435440 | 2006-07-24 22:47:00 | Jeez Greven, it's a bit disappointing that you didn't post feedback . :( I can't see the sense in using system restore after uninstalling an entry in Add/Remove as system restore would just put it back again . :confused: No, it stayed gone . Best guess I can make at the reason is that this 888 widget struck TODAY, and I pushed the system back to yesterday . Does that make sense? Feel free to email me . I've rebooted to make sure it stayed gone, and it has . Also, Task Manager function returned to normal . Jeez, it's nice to be a "Junior Member" of . . . . well, anything . |
StrayGoose (9910) | ||
| 435441 | 2006-07-25 06:46:00 | Does that make sense? Yep. :thumbs: |
FoxyMX (5) | ||
| 1 | |||||