| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 60403 | 2005-07-31 09:10:00 | XP User Accounts - 1 slow 1 fast | Scuba-Steve (8632) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 377072 | 2005-07-31 09:10:00 | Does anyone know if User Accounts in XP can behave differently when it comes to the speed of applications running? I have two user accounts, for myself and my wife. I have no problems with mine which is probably used the most along with the most memory hungry applications (Flash, Photoshop 7 etc). She uses Excel, Word and IE6 and thats about it! I have a Dell, 1.8Ghz, 512Mb RAM PC (if that helps diagnose the problem). Ive done the usual Defrag and Scandisks but still no change in the performance on her login. Ok this is a post that was posted like 2 yrs ago. (but thats not important) THIS IS HAPPENING TO ME AND I DONT KNOW WHAT TO DO! and I REALLY dont want to make a new account can someone PLEASE help me! P.S. ITS NOT THE WAY WE SIGN IN 'N' OUT WE ALWAYS LOG OFF. i am the.....person that is really good with electronics.....in the family and i explaind that that was the reason every1's account was going slow. BUT THIS IS DIFFERENT cause my account practically freezez like.....i go 2 open sumfin AND IT WONT OPEN. (This happend 2 ma sis's account b4 mine.) i no im being a nag BUT! When i go on a site with a search bar (which is nearly ANY site) this thing comes up on the left hand side of the page that i have 2 click off every time i go on a site with a search bar AND IT IS P***ING ME OFF! can sum1 help with that would be a big help! (i would put a pic in 2 show u but i dont no how) Thanx! |
Scuba-Steve (8632) | ||
| 377073 | 2005-07-31 09:20:00 | You could get hijackthis from here www.spywareinfo.com Might be spyware or something. Since whatever it is, is only affecting 1 user. Then create a folder unzip this hijackthis file into it, run it scan and post a log here. Hmm looks like the site for uploading pics has died / times out |
Speedy Gonzales (78) | ||
| 377074 | 2005-07-31 09:22:00 | pressf1.pcworld.co.nz 16 | bartsdadhomer (80) | ||
| 377075 | 2005-07-31 10:33:00 | Logfile of HijackThis v1.99.1 Scan saved at 7:32:54 PM, on 31/07/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\Explorer.EXE C:\Program Files\Simcast Media\Simcast\SimcastAlerts.exe C:\Program Files\Media Gateway\MediaGateway.exe C:\Program Files\Media Access\MediaAccK.exe C:\Program Files\Windows AdStatus\WinStat.exe C:\Program Files\Media Access\MediaAccess.exe C:\Program Files\QuickTime\qttask.exe C:\program files\180searchassistant\salm.exe C:\WINDOWS\system32\lexpps.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\MSMSGS.EXE C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\ViaVoice\Bin\engine.exe C:\Documents and Settings\Guest\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aapt.net.au/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = www.infogrid.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.himarkcomputers.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by AAPT F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Windo ws\System32\wsaupdater.exe, O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\ Yahoo! \Companion\Installs\cpn0\ycomp5_5_7_0. dll O2 - BHO: (no name) - {4C3986A9-D08D-49CB-9C1F-31EF9F46969D} - C:\WINDOWS\System32\odocprop.dll (file missing) O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: prjBHO_New.CBrowserHelpObj - {A2E1AE65-BB68-11D6-B1B2-96787719A248} - C:\Program Files\Simcast Media\Simcast\Simcast.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: NLS UrlCatcher Class - {AEECBFDA-12FA-4881-BDCE-8C3E1CE4B344} - C:\WINDOWS\System32\nvms.dll (file missing) O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-au\msntb.dll O2 - BHO: CB UrlCatcher Class - {CE188402-6EE7-4022-8868-AB25173A3E14} - C:\WINDOWS\System32\mscb.dll (file missing) O2 - BHO: &EliteSideBar - {ED103D9F-3070-4580-AB1E-E5C179C1AE41} - C:\WINDOWS\EliteSideBar\EliteSideBar 08.dll O2 - BHO: ADP UrlCatcher Class - {F4E04583-354E-4076-BE7D-ED6A80FD66DA} - C:\WINDOWS\System32\msbe.dll (file missing) O3 - Toolbar: ninemsn - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-au\msntb.dll O3 - Toolbar: (no name) - {80D2FA71-1E6C-447D-9BA8-FBC6E5E2E787} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\ Yahoo! \Companion\Installs\cpn0\ycomp5_5_7_0. dll O3 - Toolbar: FunBar - {2CA511C5-C677-4e33-A018-EADF07E08299} - C:\PROGRA~1\FUNBAR~1\funbar.dll O3 - Toolbar: YourSiteBar - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - C:\Program Files\YourSiteBar\ysb.dll O4 - HKLM\..\Run: [Simcast] C:\Program Files\Simcast Media\Simcast\SimcastAlerts.exe O4 - HKLM\..\Run: [EasyMessage] "C:\PROGRA~1\ZANGOA~1\ZANGOM~1\em2.exe" -wait O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe O4 - HKLM\..\Run: [Windows AdStatus] C:\Program Files\Windows AdStatus\WinStat.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-au\msnappau.exe" O4 - HKLM\..\Run: [salm] c:\program files\180searchassistant\salm.exe O4 - HKLM\..\Run: [per] C:\WINDOWS\per.exe O4 - HKLM\..\Run: [LexPPS.exe] C:\WINDOWS\system32\lexpps.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [salm] c:\program files\180searchassistant\salm.exe O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe O9 - Extra button: Voiceglo directory - {C9B8ABB6-1CC3-4957-9CA3-053036B2EE3A} - C:\Documents and Settings\All Users\Desktop\Glophone.lnk (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: ConferenceRoom Java Client - vic-chat.bigpond.com O16 - DPF: DigiChat Applet - albany.digi-net.com O16 - DPF: RaptisoftGameLoader - www.miniclip.com O16 - DPF: v3cab - searchmiracle.com O16 - DPF: Yahoo! Chat - us.chat1.yimg.com O16 - DPF: Yahoo! Fleet - download.games.yahoo.com O16 - DPF: Yahoo! Pool 2 - download.games.yahoo.com O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - messenger.zone.msn.com O16 - DPF: {01234567-1234-1234-1234-012345678921} - images.neopets.com O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - www.creative.com O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - static.windupdates.com O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - static.windupdates.com O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - ak.imgfarm.com O16 - DPF: {288451AE-BE24-4216-B946-8600E0498584} (DASWebShop Class) - das.microsoft.com O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - www.miniclip.com O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - messenger.zone.msn.com O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} ( Yahoo! Audio Conferencing) - us.chat1.yimg.com O16 - DPF: {2C0F2AEA-3A9B-46DB-A7BE-80FF329E415D} (PremiumInternacional Class) - www.accesoplugin.com O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} (Installer Class) - www.ysbweb.com O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - by15fd.bay15.hotmail.msn.com O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - software-dl.real.com O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) - www.180searchassistant.com O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - messenger.msn.com O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - messenger.zone.msn.com O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - www.nullsoft.com O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - i.grab.com O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - messenger.zone.msn.com O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} ( Yahoo! Companion) - us.dl1.yimg.com O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - chat.msn.com O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - www.creative.com O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - messenger.zone.msn.com O16 - DPF: {FE8400F2-C848-4379-989F-DF2ED39040BE} (Eyeball Instant Messaging Control) - www.rsvp.com.au O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Maya 6 PLE Documentation Server (mple6docserver) - Unknown owner - C:\Program Files\Alias\Maya 6.0 Personal Learning Edition\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya 6.0 Personal Learning Edition\docs\Wrapper.conf (file missing) |
Scuba-Steve (8632) | ||
| 377076 | 2005-07-31 10:34:00 | but im on guest file there | Scuba-Steve (8632) | ||
| 377077 | 2005-07-31 10:41:00 | you have a lot of spyware running around in there Use the link I gave you to read up Download and run Ad Aware, Spybot, full AV scan etc I've also found this tool to be very good www.ewido.net Make sure you update the definitions for both after installation You will aslo have to run each of these tools in each account, cleaning out one account doesn't remove all nasties from the other accounts at the same time |
bartsdadhomer (80) | ||
| 377078 | 2005-07-31 10:43:00 | by the looks of your (www.hijackthis.de) log file you have some adware/spyware. use adaware (www.lavasoftusa.com) and spybot (www.safer-networking.org) to fix quite a few of these problems. also you dont seem to have a firewall, i recommend you use zonealarm (www.zonelabs.com) | Prescott (11) | ||
| 377079 | 2005-07-31 12:15:00 | you have a few nasty's there that can only be removed by running the removal tools when the pc is in safe mode. run adaware etc then poswt another hijackthis log to see if they missed anything. |
tweak'e (69) | ||
| 377080 | 2005-07-31 18:44:00 | Probably have to risk dumping all restore points as well. Turn off system restore. Then turn it back on and create a new point before you start cleaning |
bartsdadhomer (80) | ||
| 1 | |||||