|
-
May 8th, 2006, 07:24 PM
#11
Win 95 Spyware and other issues
Hello Crunchie!
I finished searching all those files on Jotti...they were all "OK" !
My IE screen isn't being hijacked anymore, but my Icons still don't look right (windows flags with a line through them).
Also, none of this has seemed to help my system speed at all...don't suppose there is much I can do about that? I did use Ccleanup to get rid of all unused items and cache...but that didn't improve anything either.
Could you give me some advice on the AVG anti-virus issue I posted in the other posting? I've tried to re-download the .com package required and then reinstall AVG...again....the files say they unzip but yet AVG still says I need those files before it can install the new version. Would it matter that I don't have winzip on this PC?
Here is the new log-file from HJT after I deleted the items you suggested...and rebooted my system. Did I miss anything?
Helen
Logfile of HijackThis v1.99.1
Scan saved at 5:18:43 PM, on 5/8/06
Platform: Windows 95 (Win9x 4.00.0950)
MSIE: Internet Explorer v5.50 (5.50.4134.0600)
Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\CPIEXE.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
H:\AVGSERV9.EXE
C:\WINDOWS\EXPLORER.EXE
C:\DMI\SIA\BIN\CSERVICE.EXE
C:\WINDOWS\SYSTEM\LOADWC.EXE
C:\DMI\sia\bin\os_ac.exe
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\DMI\sia\bin\pnp_ac.exe
H:\AVGCC32.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROL.EXE
C:\DMI\sia\bin\swi_ac.exe
C:\DMI\sia\bin\dmib_ac.exe
C:\DMI\sia\bin\logic_ac.exe
C:\DMI\sia\bin\sprof_ac.exe
C:\PROGRAM FILES\ONLINE SERVICES\MSN50\MSNDC.EXE
C:\DMI\win16\bin\WINSL.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\WINDOWS\SYSTEM\tapiexe.exe
C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://msnmember.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.netscape.com/home/winsearch200.html
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by MSN
F1 - win.ini: load=srsapp.exe
F1 - win.ini: run=cservice.exe
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [BrowserWebCheck] loadwc.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [AVG_CC] H:\avgcc32.exe /startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [WinPatrol] "C:\PROGRA~1\BILLPS~1\WINPAT~1\WinPatrol.exe"
O4 - HKLM\..\RunServices: [HC Reminder] hc.exe
O4 - HKLM\..\RunServices: [Avgserv9.exe] H:\Avgserv9.exe
O4 - HKLM\..\RunOnce: [0000 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win9x_me] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win9x_me"
O4 - HKLM\..\RunOnce: [0001 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_nt] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_nt"
O4 - HKLM\..\RunOnce: [0002 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_2k] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_2k"
O4 - HKLM\..\RunOnce: [0003 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers"
O4 - HKLM\..\RunOnce: [0004 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu"
O4 - HKLM\..\RunOnce: [0005 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\util] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\util"
O4 - HKLM\..\RunOnce: [0006 - C:\WINDOWS\Start Menu\Programs\Hewlett-Packard] C:\WINDOWS\command.com /c rmdir "C:\WINDOWS\Start Menu\Programs\Hewlett-Packard"
O4 - HKLM\..\RunOnce: [0007 - C:\Program Files\hp deskjet 940c series\images] C:\WINDOWS\command.com /c rmdir "C:\Program Files\hp deskjet 940c series\images"
O4 - HKLM\..\RunOnce: [0008 - C:\Program Files\hp deskjet 940c series\ir documentation] C:\WINDOWS\command.com /c rmdir "C:\Program Files\hp deskjet 940c series\ir documentation"
O4 - HKLM\..\RunOnce: [0009 - C:\Program Files\hp deskjet 940c series] C:\WINDOWS\command.com /c rmdir "C:\Program Files\hp deskjet 940c series"
O4 - HKLM\..\RunOnce: [0010 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win9x_me] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win9x_me"
O4 - HKLM\..\RunOnce: [0011 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_nt] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_nt"
O4 - HKLM\..\RunOnce: [0012 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_2k] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers\win_2k"
O4 - HKLM\..\RunOnce: [0013 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu\drivers"
O4 - HKLM\..\RunOnce: [0014 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\enu"
O4 - HKLM\..\RunOnce: [0015 - C:\Program Files\Hewlett-Packard\HPZ\GLUE\util] C:\WINDOWS\command.com /c rmdir "C:\Program Files\Hewlett-Packard\HPZ\GLUE\util"
O4 - HKCU\..\Run: [Microsoft Works Update Detection] \WkDetect.exe
O4 - Startup: PowerReg Scheduler.exe
O4 - Startup: MSN Quick View.lnk = C:\Program Files\Online Services\MSN50\MSNDC.EXE
O15 - Trusted Zone: http://*.msn.com (HKLM)
O16 - DPF: {C0B4D721-15FA-11D2-B838-00C04FA3426D} (MSNChatHistoryCtl) - http://fdl.msn.com/public/chat/ChatCtls.Cab
O16 - DPF: {4E330863-6A11-11D0-BFD8-006097237877} (InstallFromTheWeb ActiveX Control) - http://www.installfromtheweb.com/install/iftwclix.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://riverbelle.microgaming.com/r...le/FlashAX.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://cs5.chat.sc5.yahoo.com/v43/yacscom.cab
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {E87A6788-1D0F-4444-8898-1D25829B6755} (MSN Chat Control 4.0) - http://sc.communities.msn.com/contro...t/msnchat4.cab
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
