 Smart Sound Quickttracks Plug |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Forum Guidelines
Read this topic before posting a log. DO NOT post a ComboFix log unless requested to. Only members of the HijackThis Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log. When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc. Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.
  |
  Nov 20 2006, 05:10 PM
Post
#1
|
|
|
New Member  Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030  |
Every time I start up the computer the Smart Sound QuicktTracks plug wants to install Could you please check the Highjack log whether you can find any mishaps. I am running McAfee virus checker and Xsoftspy very regularly with running updates at least two times a week. Thanks for your help Logfile of HijackThis v1.99.1 Scan saved at 22:57:51, on 20-11-2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\windows\System32\smss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\System32\Ati2evxx.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\spoolsv.exe C:\Program Files\Executive Software\Diskeeper\DkService.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Eset\nod32krn.exe C:\windows\System32\svchost.exe C:\windows\System32\UAService7.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\windows\system32\Ati2evxx.exe C:\windows\Explorer.EXE C:\windows\System32\sstray.exe C:\windows\System32\carpserv.exe C:\windows\System32\wuauclt.exe C:\windows\CNYHKey.exe C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\WinPortrait\wpctrl.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe C:\windows\System32\WDBtnMgr.exe C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\WinPortrait\floater.exe C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe C:\Program Files\Java\jre1.5.0_05\bin\jucheck.exe C:\Program Files\QuickTime Alternative\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\windows\System32\ctfmon.exe C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe C:\PROGRA~1\SPYWAR~2\swdoctor.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\rundll32.exe C:\Program Files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\Program Files\My Book\WD Backup\uBBMonitor.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe C:\Program Files\MemTurbo\MemTurbo.exe C:\WINDOWS\System32\HPZipm12.exe C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe J:\Down load files\Hijackthis\HijackThis.exe C:\WINDOWS\System32\WISPTIS.EXE C:\Program Files\GrabIt\GrabIt.exe C:\windows\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE J:\Down load files\Hijackthis\hijackthis_sfx.exe C:\Program Files\zabkat\xplorer2_lite\xplorer2.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ilse.nl/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ilse.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - Default URLSearchHook is missing O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - :C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll (file missing) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - :C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (file missing) O2 - BHO: DgnWebIE - {2843DAC1-05EF-11D2-95BA-0060083493D6} - :C:\Program Files\Dragon Systems\NaturallySpeaking\Program\web_ie.dll (file missing) O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\windows\System32\msdxm.ocx O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r O4 - HKLM\..\Run: [CARPService] carpserv.exe O4 - HKLM\..\Run: [CHotkey] :mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [VOBID] C:\Program Files\Pinnacle\InstantCDDVD\InstantDrive\InstantDrive.exe /remount O4 - HKLM\..\Run: [IW ControlCenter] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] :C:\windows\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\WinPortrait\wpctrl.exe" O4 - HKLM\..\Run: [CloneCDElbyCDFL] :"C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL O4 - HKLM\..\Run: [CloneCDTray] :"C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe" O4 - HKLM\..\Run: [XoftSpy] C:\Program Files\XoftSpy\XoftSpy.exe -s O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [WD Button Manager] WDBtnMgr.exe O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\System32\ctfmon.exe O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\launchpd.exe" O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [Spyware Doctor] C:\PROGRA~1\SPYWAR~2\swdoctor.exe /Q O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Google Desktop Search] :"C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKCU\..\Run: [Bandwidth Monitor Pro] "C:\Program Files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe" /minimized O4 - Startup: MemTurbo.lnk = C:\Program Files\MemTurbo\MemTurbo.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: Screen Tinter LITE.lnk = ? O4 - Global Startup: WD Backup Monitor.lnk = C:\Program Files\My Book\WD Backup\uBBMonitor.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Open Link Target in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewlink.html O8 - Extra context menu item: View This Page in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewpage.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} - O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://M:\content\include\XPPatchInstaller.CAB O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://djkoes.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {82CF9738-0BDA-4AAF-AB08-5AC5875FF3BB} (YMultiRecord Class) - http://www2.malmberg.nl/online_lessen/loca.../yrecording.cab O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://M:\Content\include\msSecUcd.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O18 - Protocol: bw+0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcSandraSrv.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\windows\System32\UAService7.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing) |
 |
 
|
|
Dec 2 2006, 04:05 PM
Post
#2
|
|
 Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi Eenwiel20,
Sorry for the delay, the forums are very busy. If you still need help, please run a new HijackThis scan and post that log to a reply here. Also tell me, is this the same computer that Grinler helped you with before, or a different one? Dave |
|
|
|
|
Dec 5 2006, 02:10 PM
Post
#3
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
Dave,
The Smart Sound Quick tracks plugin still wants to install when I am starting the computer up. I have seen once that the program could not find a .dll when it was allowed to continue until it stopped. I have also seen that in the list one file BWPlugProtocol-8876480.dll (register is repeated many times) Could you please review what I can do This is not the same computer Grinler help me with before. (that is running well since the problems were resolved last time.) I have also many processes running automatically when I am starting the comoputer up could you please advise me what I can do about that. (if this falls within the scope of this forum) Thanks for your help Todays Hijack this Logfile of HijackThis v1.99.1 Scan saved at 21:09:32, on 19-2-2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\windows\System32\smss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\System32\Ati2evxx.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\spoolsv.exe C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Network Associates\VirusScan\VsStat.exe C:\Program Files\Eset\nod32krn.exe C:\Program Files\Network Associates\VirusScan\Vshwin32.exe C:\windows\System32\svchost.exe C:\windows\System32\UAService7.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Program Files\Network Associates\VirusScan\Avconsol.exe C:\Program Files\Network Associates\VirusScan\Webscanx.exe C:\Program Files\Common Files\Network Associates\McShield\Mcshield.exe C:\windows\system32\Ati2evxx.exe C:\windows\Explorer.EXE C:\windows\System32\sstray.exe C:\windows\System32\carpserv.exe C:\windows\mHotkey.exe C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\WinPortrait\wpctrl.exe C:\Program Files\WinPortrait\floater.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\windows\System32\ctfmon.exe C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe C:\PROGRA~1\SPYWAR~2\swdoctor.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\WINDOWS\System32\rundll32.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\InterVideo\WinDVD4PR\WinScheduler.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\Program Files\MemTurbo\MemTurbo.exe C:\Program Files\NewsRover\NewsRover.exe C:\Program Files\zabkat\xplorer2_lite\xplorer2.exe C:\windows\system32\NOTEPAD.EXE C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\windows\system32\NOTEPAD.EXE C:\Highjackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.versatel.nl/prive/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.versatel.nl/prive/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - Default URLSearchHook is missing O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DgnWebIE - {2843DAC1-05EF-11D2-95BA-0060083493D6} - C:\Program Files\Dragon Systems\NaturallySpeaking\Program\web_ie.dll O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\Program Files\E-Book Systems\FlipAlbum 5 Pro\FpLaunch.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\windows\System32\msdxm.ocx O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r O4 - HKLM\..\Run: [CARPService] carpserv.exe O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [VOBID] C:\Program Files\Pinnacle\InstantCDDVD\InstantDrive\InstantDrive.exe /remount O4 - HKLM\..\Run: [IW ControlCenter] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\WinPortrait\wpctrl.exe" O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe" O4 - HKLM\..\Run: [XoftSpy] C:\Program Files\XoftSpy\XoftSpy.exe -s O4 - HKLM\..\Run: [QMusic] "C:\Program Files\BenQ\QMusic2\QMAgent.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\System32\ctfmon.exe O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\launchpd.exe" O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [Spyware Doctor] C:\PROGRA~1\SPYWAR~2\swdoctor.exe /Q O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Startup: Ad-watch 3.0.lnk = C:\Program Files\Lavasoft\Ad-aware 6\Ad-watch.exe O4 - Startup: MemTurbo.lnk = C:\Program Files\MemTurbo\MemTurbo.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Album Fast Start.lnk = C:\Program Files\Ulead Systems\Ulead PhotoImpact 5 Bundled Edition\Abmtsr.exe O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe O4 - Global Startup: Event Reminder.lnk = K:\PrintMaster11\PrintMaster\PMremind.exe O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Image Transfer.lnk = ? O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Program Files\InterVideo\WinDVD4PR\WinScheduler.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: Screen Tinter LITE.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Open Link Target in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewlink.html O8 - Extra context menu item: View This Page in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewpage.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} - O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://M:\content\include\XPPatchInstaller.CAB O16 - DPF: {82CF9738-0BDA-4AAF-AB08-5AC5875FF3BB} (YMultiRecord Class) - http://www2.malmberg.nl/online_lessen/loca.../yrecording.cab O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://M:\Content\include\msSecUcd.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: bw+0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {4BBC5CD5-3771-4B8A-9697-8AF400E83FC5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McShield - Unknown owner - C:\Program Files\Common Files\Network Associates\McShield\Mcshield.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcSandraSrv.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\windows\System32\UAService7.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing) |
|
|
|
|
Dec 5 2006, 06:11 PM
Post
#4
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi again eenwiel20,
I think you should start by doing some cleanup. To begin with, you should remove some programs. That .dll you mentioned as repeating many times in HijackThis belongs to Logitech Desktop Messenger. There is a writeup on it here: http://www.pcreview.co.uk/startup/backweb-...20Messenger.php I suggest you use Add/Remove Programs to uninstall it. While you are uninstalling, You have a decision to make. You should have only one Antivirus running on your computer, and I see traces of three in your log:
Computer Associates/McAfee Panda You also have multiple spyware programs running. It is okay to have several antispyware programs on your computer, but only one should be running as a real-time scanner. The others can be used for an occasional system scan but their real-time "guard" or "shield" features should be disabled. Your log shows the following running:
XoftSpy Ad-Aware Ad-Watch Again, pick one of these (I suggest Spyware Doctor if you have a paid up subscription) and disable the real-time scanner features of the others. For Ad-Aware it is called Ad-Watch, I'm not sure what Xoftspy calls theirs. It appears that you have only one firewall, Zone Alarm. That's all you need, firewalls are like Antivirus, only one to a system. You need to update your Java. Earlier versions have serious security vulnerabilities. Click Start, Control Panel, then double click Add/Remove Programs. When the list is populated look for any and all entries starting with J2SE or Java Runtime with the little Java icon (a coffee cup). Remove them all, one by one. Then open your browser and go to this web page to get the latest version. Scroll dow to the middle of the page where you will find Java Runtime Environment (JRE) 5.0 Update 9. Click Download which will take you to the secure download page. At the top, select the Accept License Agreement button. Then look to the first block for the J2SE downloads for the Windows Platform. You can choose either the Online or Offline installation version; unless you have several computers you need to upgrade, I suggest the Online version. Download the file to your desktop, If you have trouble with the Online installation, you can download the big Offline file and install it with your browser closed. Now, having done a little cleanup, let's take care of a few things in your log. Close all windows on your desktop, and also any programs you have minimized in your Taskbar. Now, open HijackThis and run a scan. Note that if you have removed Logitech Desktop Messenger, all those O18s should be gone, and your log should be much shorter. Place a check next to the following lines:
O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} -
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://M:\Content\include\msSecUcd.cab Note whether you get that message offering to install the Smart Sound QuickTracks plugin. If you do, then please tell me -- do you have Adobe Premiere installed on this computer? If not, was it installed at one time? Please run a fresh HJT scan and post the report to a reply here. Also answer my questions and tell me if you had any problems with what I asked you to do -- also what decisions you made about keeping and removing/disabling programs. Dave |
|
|
|
|
Dec 14 2006, 02:46 PM
Post
#5
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
eenwiel20, are you still there?
|
|
|
|
|
Dec 21 2006, 09:30 PM
Post
#6
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Due to lack of feedback, this topic is now closed.
If you need this topic re-opened, please PM me and include the url. This apploes to the original poster only. Everyone else please start a new topic. |
|
|
|
|
Jan 13 2007, 03:53 PM
Post
#7
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
Dear Dave,
Thanks for your patience. Here my e-mail from last time I am very sorry that I have not replied to you before 1 I was waiting for the system to send me a mail that a new post was placed on the system. 2 The first reply took due the large workload on your site a little longer, therefore I donot expect such a quick reply. 3 I have been extremely busy in my work with various foreign trips I hope you donot mind too much. If I need any assistance in the future I will be more pro-active in searching for replies For your information I have include the original posting and your recommendations I have taken the following actions: 1 Removed Logitech Desktop Manager. 2 Antivirus programmes Removed Nod32 Panda, was installed previously and removed. Was not on the computer anymore Computer Associates/McAfee will be continued to be used as the antivirus program. 3 Spyware programmes Removed Spyware docter was very old version that was expired. AdaWare Ad Watch switched off Spy-bot is left unchanged For the time being using Xoftspy will need to investigate whether the program has a real-time scanner (program was recommended 2 years ago by your forum) Will investigate which progrma is to be used best. 4 Java version 5.10 downloaded and installed. I will regularly check for updates. 5 Ref registry keys M:\ is the DVD-rom All O18's have gone. Checked the recommended reg. and closed the programe and restarted the computer. This had no influence on these register entries. Have checked and executed fixed checked and restarted the computer. This resulted that these register entries were removed. 6 Highjack this rerun and attached a little later. 7 When restarting the Smart Sound Quicktracks Plugin doesnot try to start-up anymore 8 Adobe premier is not installed on this computer. It may however have been installed to try the programe and removed subsequently ( I cannot find the program in the software list) I trust that this is sufficient reply to the actions I have taken as you requested at the end of your reply. I think that most of the problems have now been solved. I have two more problems, although i donot know whether this is the correct forum to put the question forward. However may be you know the answer or where I can ask 1 Over time I have lost the boot.ini file from my computer. Do you know how I can restore this file. XP can now not make restore points anymore. I have recently bought Norton Restore program to make proper back up of the C drive 2 I have a lot of programs that start up with the computer. A number I would like not to start up directly but only when requested. Please advise how this can be organised. Thanks very much for your help. I hope that you will be so kind to reply to this mail regards Eenwiel20 Logfile of HijackThis v1.99.1 Scan saved at 21:50:12, on 13-1-2007 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\windows\System32\smss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\System32\Ati2evxx.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\windows\system32\spoolsv.exe C:\Program Files\Executive Software\Diskeeper\DkService.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton Save and Restore\Agent\VProSvc.exe C:\windows\System32\svchost.exe C:\windows\System32\UAService7.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\windows\system32\Ati2evxx.exe C:\windows\Explorer.EXE C:\windows\System32\sstray.exe C:\windows\System32\carpserv.exe C:\windows\CNYHKey.exe C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\WinPortrait\wpctrl.exe C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\WinPortrait\floater.exe C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Norton Save and Restore\Agent\NSRTray.exe C:\windows\System32\ctfmon.exe C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\System32\rundll32.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\My Book\WD Backup\uBBMonitor.exe C:\Program Files\MemTurbo\MemTurbo.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe C:\Program Files\zabkat\xplorer2_lite\xplorer2.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsOrganizer.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsEditor.exe C:\Program Files\Adobe\Adobe Help Center\ahc.exe C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE J:\Down load files\Hijackthis\hijackthis 1.99.1\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ilse.nl/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.versatel.nl/prive/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - :C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll (file missing) O2 - BHO: DgnWebIE - {2843DAC1-05EF-11D2-95BA-0060083493D6} - :C:\Program Files\Dragon Systems\NaturallySpeaking\Program\web_ie.dll (file missing) O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: CmjBrowserHelperObject Object - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\windows\System32\msdxm.ocx O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r O4 - HKLM\..\Run: [CARPService] carpserv.exe O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [VOBID] C:\Program Files\Pinnacle\InstantCDDVD\InstantDrive\InstantDrive.exe /remount O4 - HKLM\..\Run: [IW ControlCenter] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\WinPortrait\wpctrl.exe" O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe" O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [XoftSpy] C:\Program Files\XoftSpy\XoftSpy.exe -s O4 - HKLM\..\Run: [QMusic] "C:\Program Files\BenQ\QMusic2\QMAgent.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Norton Save and Restore] "C:\Program Files\Norton Save and Restore\Agent\NSRTray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe" O4 - HKLM\..\RunOnce: [WMC_RebootCheck] C:\windows\inf\unregmp2.exe /FixUps O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\System32\ctfmon.exe O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\launchpd.exe" O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [MPlayer2_FixUp] C:\windows\inf\unregmp2.exe /Fixups O4 - Startup: MemTurbo.lnk = C:\Program Files\MemTurbo\MemTurbo.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: WD Backup Monitor.lnk = C:\Program Files\My Book\WD Backup\uBBMonitor.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Open Link Target in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewlink.html O8 - Extra context menu item: View This Page in Firefox - file://C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\xm8mmpnt.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewpage.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O9 - Extra button: Send to Mindjet MindManager - {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://djkoes.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - http://www.nick.com/common/groove/gx/GrooveAX27.cab O16 - DPF: {82CF9738-0BDA-4AAF-AB08-5AC5875FF3BB} (YMultiRecord Class) - http://www2.malmberg.nl/online_lessen/loca.../yrecording.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: Norton Save and Restore - Symantec Corporation - C:\Program Files\Norton Save and Restore\Agent\VProSvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005\RpcSandraSrv.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\windows\System32\UAService7.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing) |
|
|
|
|
Jan 13 2007, 07:01 PM
Post
#8
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi Eenwiel20,
I'm glad you posted back. First let's try to solve your Boot.ini problem. When you power up the computer, do you get a message that says (more or less, don't know the exact wording): Invalid or missing boot.ini, booting from C:\Windows If this is the message you are seeing, please do this: Click Start, Run then in the Run box type msconfig. Click OK. When the System Config Utility opens, select the BOOT.INI tab and write down what you see in the text window. You may have to scroll sideways for long lines. Post that text to your next reply. If there is no BOOT.INI tab in Msconfig, let me know that. Dave |
|
|
|
|
Jan 14 2007, 05:30 PM
Post
#9
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
Dave,
There is a tab boot.ini in the msconfig. The text field is empty, Regards Eenwiel20 |
|
|
|
|
Jan 14 2007, 10:00 PM
Post
#10
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi eenwiel20,
Okay. We'll have to create a valid boot.ini file. Which version of Windows XP are you running -- Home, Professional, or Media Center? What is your computer manufacturer and model number? Have you made any modifications -- specifically, have you added any hard drives to this machine or changed the partitioning? (If you don't understand this question, don't worry about it. I'm just trying to make sure that the configuration is standard, i.e. Windows is installed on the first partition of the only hard drive.) Dave |
|
|
|
|
Jan 15 2007, 05:43 PM
Post
#11
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
Dave,
I am running XP-home version service pack 1 When I got the comoputer I have changed the lay-out on the primary hard drive and made a total of 8 partitions. The manufactorer has also included a hidden partition with a back-up of the original installation (I think) Later I have added a second hard drive with two partitions and have a external harddrive as well, which is regularly connected by firewire I am running only one operating system on the computer located on the primary partition of the primary harddrive I have a Targa, german manufacturer who assembles the computers with components of major manufactorers the model number is a 3000+ as far as I know. They give the comouters a name based on the speed of the processor. Hope this helps, have also added the system summary generated by SISoftware (old version) Dave, I will not reply anymore until friday evening (possibly thursday) as I am travelling for my work until thursday Kind Regards Eenwiel20 SiSoftware Sandra system review gives you most llike a better idea fo the system (sorry fot the dutch language in places but I think most is clear anyway) Systeem Processor Model : AMD Athlon™ XP 3000+ Snelheid : 2.12GHz Model Nummer : 3000 (geschat) Prestatie Rating : PR3073 (geschat) Type : Standaard L2 'On-board' Cache : 512kB ECC Synchroon, 'Write-Back', 16-way set, 64 byte line size Moederbord Bus(sen) : AGP PCI USB FireWire/1394 i2c/SMBus MP Ondersteuning : Geen MP APIC : Geen Systeem BIOS : Phoenix Technologies, LTD ASUS A7N8X2.0 ACPI BIOS Rev 1013 AC Systeem : ASUSTeK Computer INC. A7N8X2.0 Moederbord : ASUSTeK Computer INC. A7N8X2.0 Totaal Geheugen : 512MB DDR-SDRAM Chipset 1 Model : ASUSTeK Computer Inc nForce2 AGP Controller 'Front Side Bus' Snelheid : 2x 202MHz (404MHz data rate) Totaal Geheugen : 512MB DDR-SDRAM Geheugen Bus Snelheid : 2x 202MHz (404MHz data rate) Video Systeem Monitor/Panel : Plug en Play-monitor Adapter : ALL-IN-WONDER 9600 SERIES Adapter : ALL-IN-WONDER 9600 SERIES - Secondary 'Image' Apparaat : hp psc 2170 series Fysieke Opslag Apparaten Verwisselbare Schijf : Diskettestation Harde Schijf : Maxtor 6B200P0 (190GB) Harde Schijf : WDC WD1600BB-00DWA0 (149GB) Harde Schijf : HP psc 2175 USB Device Harde Schijf : OPTIX Audio Player USB Device Harde Schijf : SanDisk U3 Cruzer Micro USB Device Harde Schijf : SPRING MultiCard Slot A USB Device Harde Schijf : SPRING MultiCard Slot C USB Device CD-ROM/DVD : TOSHIBA DVD-ROM SD-M1712 CD-ROM/DVD : TOSHIBA DVD-ROM SD-R5112 CD-ROM/DVD : TOSHIBA DVD-ROM SD-R5112 CD-ROM/DVD : Cd-rom-station CD-ROM/DVD : ELBY DVD-ROM SCSI CdRom Device CD-ROM/DVD : VOBID InstantDrive CD SCSI CdRom Device CD-ROM/DVD : SanDisk U3 Cruzer Micro USB Device Logische Opslag Apparaten 1.44MB 3.5" (A:) : Niet Beschikbaar Harde Schijf (C:) : 31GB (4.4GB, 14% Beschikbare Ruimte) (NTFS) Install (D:) : 2.2GB (1.1GB, 51% Beschikbare Ruimte) (FAT32) Multimedia (E:) : 91GB (2.1GB, 2% Beschikbare Ruimte) (NTFS) Data ben (F:) : 2.4GB (1.2GB, 48% Beschikbare Ruimte) (FAT32) Data onno (G:) : 3.9GB (1.2GB, 30% Beschikbare Ruimte) (FAT32) Data kees (H:) : 4.9GB (4.8GB, 98% Beschikbare Ruimte) (FAT32) Data ellen (I:) : 2.4GB (571MB, 23% Beschikbare Ruimte) (FAT32) Data jan (J:) : 5.8GB (467MB, 8% Beschikbare Ruimte) (FAT32) Test (K:) : 160GB (31GB, 19% Beschikbare Ruimte) (NTFS) CD-ROM/DVD (L:) : Niet Beschikbaar Elements (M:) : 520MB (CDFS) U3 system (N:) : 5.5MB (CDFS) CD-ROM/DVD (O:) : Niet Beschikbaar CD-ROM/DVD (P:) : Niet Beschikbaar CD-ROM/DVD (Q:) : Niet Beschikbaar Verwisselbare Schijf (R:) : Niet Beschikbaar Primary 2 (S:) : 30GB (23GB, 78% Beschikbare Ruimte) (NTFS) Verwisselbare Schijf (T:) : Niet Beschikbaar Verwisselbare Schijf (U:) : 493MB (275MB, 56% Beschikbare Ruimte) (FAT32) Verwisselbare Schijf (V:) : 1.9GB (1.2GB, 65% Beschikbare Ruimte) (FAT) Onderdelen Seriële/Paralelle Poort(en) : 2 COM / 1 LPT USB Controller/Hub : Standard OpenHCD USB Host-controller USB Controller/Hub : Standard OpenHCD USB Host-controller USB Controller/Hub : Standard Enhanced PCI naar USB-hostcontroller USB Controller/Hub : USB-hoofdhub USB Controller/Hub : USB-hoofdhub USB Controller/Hub : USB-hoofdhub USB Controller/Hub : Samengesteld USB-apparaat USB Controller/Hub : Ondersteuning voor USB-afdrukken USB Controller/Hub : USB-apparaat voor massaopslag USB Controller/Hub : Generic USB Hub USB Controller/Hub : Samengesteld USB-apparaat USB Controller/Hub : USB-apparaat voor massaopslag USB Controller/Hub : USB-apparaat voor massaopslag USB Controller/Hub : USB-apparaat voor massaopslag FireWire/1394 Controller/Hub : OHCI Compliant IEEE 1394 Host Controller Smart Card Apparaat : SCR33X USB Smart Card Reader Toetsenbord : HID-toetsenbordapparaat Muis : Logitech HID-compliant Cordless Mouse Muis : HID-compliant muis Human Interface : HID-compliant besturingsapparaat van gebruikers Human Interface : HID-compliant besturingsapparaat van gebruikers Human Interface : HID-compliant apparaat Human Interface : HID-compliant apparaat Human Interface : HID-compliant apparaat Human Interface : Logitech Cordless USB Mouse Human Interface : USB-HID Human Interface : USB-HID Human Interface : USB-HID MultiMedia Apparaat Apparaat : NVIDIA® nForce™ Audio Codec Interface Apparaat : NVIDIA® nForce™ MCP Audio Processing Unit (Dolby® Digital) Communicatie Apparaten Apparaat : FM-56PCI-HSFi-AB Printers en Faxen Model : PDF-XChange 3.0 Model : Microsoft Office Document Image Writer Model : hp psc 2170 series Model : Automatisch HP DeskJet 690C op KEES Model : Automatisch AGFA-AccuSet v52.3 op KEES Power Management AC Line Status : 'On-Line' Besturingssysteem Windows Systeem : Microsoft Windows XP/2002 Home Edition (Win32 x86) 5.01.2600 (Service Pack 1) Netwerk 'Services' Adapter : NVIDIA nForce MCP Networking Adapter anufacturs) |
|
|
|
|
Jan 15 2007, 08:13 PM
Post
#12
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi again eenwiel20,
No problem with the delay, I will be away on a business trip of my own later in the week. I probably will not be able to reply to your next post until Saturday or Sunday. Just do this whenever you get around to it: Open Notepad. Copy and paste the following text: CODE [boot loader] timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Windows XP Home Edition" /noexecute=optin /fastdetect Now click Save As, in the Save in box navigate to the root of your C:\ partition. Down at the bottom of the window, in the Save as Type box select All Files. Then type in the file name Boot.ini, and finally click Save. If Windows asks you if you want to replace the old Boot.ini file click Yes. Let me know if that solves the boot.ini error message. Dave |
|
|
|
 Jan 28 2007, 03:59 PM
Post
#13
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
  Dave, The computer now has a boot.ini and the computer starts up from the boot, as it the fault notification has stopped since the new boot.ini has been included on the c-drive Computer is also somewhat faster with starting up. That is very good Ref my second question please note the following in my last longer post When I look under start-up (I hope it is called this in English, I run a Dutch version of XP) of run:msconfig I see 34 programs ticked. this looks quit a lot to me and I see a few that i know I donot need. Such as Itunes help. Can I do something about that I also noted that systemrecovery in XP has been switched of (removed) by the domain manager. However I have my own domain. Do you know how to switch on system recovery. The system recovery tab from my system description (right mouse on my computer) in not present any more?? Hope to hear from you again Regards Eenwiel |
|
|
|
|
Jan 28 2007, 08:37 PM
Post
#14
|
|
|
Bleepin' Grandpa Group: HJT Team Posts: 1,355 Joined: 4-May 06 From: TN USA Member No.: 66,648 |
Hi again,
Glad to hear that your boot.ini problem has been resolved. I found this tip in a search. It seems to describe your problem. Note that the solution tells you to edit the registry. Do not do that. It is safer to create a reg file. Open Notepad. Copy and paste the text in the Quote box: QUOTE Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\SystemRestore "DisableConfig"=- "DisableSR"=- Press <Enter> to add a blank line, then click Save. Change the File type to All Files, type in the name of the file as SRFix.reg and save the file to your desktop. Double click the file icon (looks like a Rubiks cube with some pieces missing) and click Yes to merge the data into the registry. Let me know if that works. The best guide I know of for startups is the Bleeping Computer Startup Database. It contains over 16,000 entries, and a guide on how to use it to trim down your startup processes. There is also a forum -- linked to on the main page -- where you can post questions about particular entries. I would say that 34 is a lot for the Startup tab of MSConfig, I only have 12 in mine. You can probably speed up your system quite a bit by using the Startup Database to disable some unnecessary programs. Good luck, Dave This post has been edited by DaveM59: Jan 28 2007, 08:39 PM |
|
|
|
|
Feb 4 2007, 04:04 PM
Post
#15
|
|
|
New Member Group: Members Posts: 12 Joined: 26-September 04 Member No.: 3,030 |
Dave
I am sorry to note that your proposes solution did not work There are no changes. I will follow your advise and go to the recommended forum to improve my start up. Hope you have an alternative for the system recovery problem Thx Kind Regards eenwiel20 |
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 9th February 2010 - 10:35 AM |
© 2003-2010 All Rights Reserved Bleeping Computer LLC.