Jump to content
Sign in to follow this  
1984

Lordoftheweb Log - 01

Recommended Posts

Hello,

My computer screen freezes in the middle of applications fairly often. I use zonealarm, avg antivirus, spywareguard, spywareblaster, spybot, ad-aware, and keep them all up to date and run them at least once a week. I also defrag, and use ccleaner and Cleanup! to keep things smooth. I have also cleaned the registry since this started, but it didnt help.

I have a Pentium 4, 2000 mhz, 40g hard drive, 250g external hard drive, 768 ram, and the computer has been doing this for about a month or so. The computer is 4 years old.

For whatever reason, when i hit the power button manually on the computer and shut it (the computer) down, but not all the way (i dont hold the button down, just press it quickly once-I believe its called "stand by mode") the computer goes into "hibernation mode" and then i press it again, and it comes back on and works fine again.

I have cleaned out the inside carefully for dust, and it is in a cool place. i have also run all anti spyware and antivirus programs before this post.

Any help with this problem would be appreciated. Thank you.

Here is my HijackThis Log:

Logfile of HijackThis v1.99.1

Scan saved at 6:08:50 AM, on 9/27/2005

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\brsvc01a.exe

C:\WINDOWS\system32\brss01a.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\WINDOWS\system32\Brmfrmps.exe

C:\WINDOWS\System32\NMSSvc.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\SpywareGuard\sgmain.exe

C:\Program Files\SpywareGuard\sgbhp.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\ROBERT LOWER\Desktop\Neat Stuff\HijackThis.exe

C:\Program Files\Real\RealPlayer\RealPlay.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\Program Files\Common Files\Microsoft Shared\Stationery\Blank.htm

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\RunServicesOnce: [washindex] C:\Program Files\Washer\washidx.exe "ROBERT LOWER"

O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe

O4 - HKCU\..\RunServicesOnce: [washindex] C:\Program Files\Washer\washidx.exe

O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyviewer.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: PCPitstop-Tracks-Checker - http://pcpitstop.com/privacy/PCPTracks.cab

O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com/pcpitstop/PCPitStop.CAB

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {68EA624F-619A-11D6-99CF-006094235084} (IbmEgathDetectCtl Class) - https://www-3.ibm.com/pc/support/access/sdc...EgathDetect.cab

O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - file://C:\PROGRA~1\Support.com\bin\IBMACC~1\common\install\ibmegath.cab

O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - http://pcpitstop.com/mhLbl.cab

O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.0 Control) - http://www.photolab.ca/en/Photo/ImageUploader3.cab

O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/public/chat/msnchat45.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{170C7C54-0701-42FD-8640-195A39978078}: NameServer = 142.161.130.155 142.161.2.155

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)

O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

I forgot to add that I also ran Microsoft anti-spyware.

As well, is there anything else I can delete to speed things up?

Thanks all.

Share this post


Link to post
Share on other sites

Hi Tarun,

I ran (after finally figuring it all out ;) ) the windows memory diagnostics a couple of times and it didnt find any problems. Any other suggestions?

And is there anything I can remove from my log to make things faster and more efficient?

As well (sorry for all the questions), when i start my computer quicktime and Microsoft anti spyware both load, but they arent in my startup list (msconfig thing that i check). Why would that be?

Thank you. :D

;) sorry, I should have read the heading and posted this as:

Lordoftheweb HijackThislog - 01.

;);):):):):):):):)

Oh, the link on the announcement part of hijackthislogs is page not found.

Share this post


Link to post
Share on other sites

Well, I hit the link you gave me and there was a download link. I downloaded it and saved it to disk. I read the instructions, and basically I understood (hopefully correctly) to turn off computer, put disk (floppy) in A drive and then turn computer on. It then "booted" the disk and started running the tests automatically. It ran 6 tests and then started again. The instructions state that if it doesnt find anything the first run through, it wont find anything, and I can either turn computer off or press X to stop test. Since it didnt find anything, I turned the computer off, and here I am.

Problem persists. Did I do everything correctly?

Hey, did you change the name of my thread, and did you delete some stuff from the first post? Not that i care, as i kind of assumed that i didnt get a response because i didnt follow the hijackthislog instructions and posted the wrong thread name. :( We live and learn. :D

Share this post


Link to post
Share on other sites

Wow that was fast! LOL! I ran all of the anti malware package.

Microsoft anti spyware, spywareblaster, spywareguard,avg, spybot, adaware, cwshredder, ccleaner, cleanup!, diskcleaner, diskdefragmenter.

everything is up to date, and my windows xp is a legitimate version with sp2 and i always upgrade all of my programs.

Share this post


Link to post
Share on other sites

Generated by Tarun's HijackThis Converter v0.43 Beta.

Changed registry value. Safe to remove:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\Program Files\Common Files\Microsoft Shared\Stationery\Blank.htm

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

Enumeration of suspicious auto-loading registry entries. Safe to remove:

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\RunServicesOnce: [washindex] C:\Program Files\Washer\washidx.exe "ROBERT LOWER"

O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe

O4 - HKCU\..\RunServicesOnce: [washindex] C:\Program Files\Washer\washidx.exe

O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

Extra IE context menu items. Safe to remove:

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

Extra "Tools" menu items and buttons. Safe to remove:

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyviewer.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

Downloaded Program Files item. Safe to remove:

O16 - DPF: PCPitstop-Tracks-Checker - http://pcpitstop.com/privacy/PCPTracks.cab

O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com/pcpitstop/PCPitStop.CAB

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {68EA624F-619A-11D6-99CF-006094235084} (IbmEgathDetectCtl Class) - https://www-3.ibm.com/pc/support/access/sdc...EgathDetect.cab

O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - file://C:\PROGRA~1\Support.com\bin\IBMACC~1\common\install\ibmegath.cab

O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - http://pcpitstop.com/mhLbl.cab

O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.0 Control) - http://www.photolab.ca/en/Photo/ImageUploader3.cab

O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/public/chat/msnchat45.cab

Share this post


Link to post
Share on other sites

Ok, here is the deal. I ran trend micro anti virus-no problem, and avg-no problem, and then symantec found :

C:\WINDOWS\tqp.exe.

I also reran everything and it all looks clean. Here is my new hijack this log:

Logfile of HijackThis v1.99.1

Scan saved at 10:38:36 AM, on 10/2/2005

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\brsvc01a.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\brss01a.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\WINDOWS\system32\Brmfrmps.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\ROBERT LOWER\Desktop\Neat Stuff\HijackThis.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{170C7C54-0701-42FD-8640-195A39978078}: NameServer = 142.161.130.155 142.161.2.155

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)

O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Share this post


Link to post
Share on other sites

Looks clean to me.

If tqp.exe still exists, do the following:

Start > Run > cmd

Next enter this:

del C:\WINDOWS\tqp.exe

It will ask you if you want to delete the file, simply say yes. :D

Share this post


Link to post
Share on other sites

alrighty! i did what you said and a thing popped up saying it couldnt find 'del'. I removed that word and retyped the rest of the line and up popped an avg window saying a virus was in the file. i deleted it (as it gave me that option).

any idea what that thing was? i have to wait awhile to see if that was my problem or just something else. will keep you updated.

and thank you for all of your help. :D :)

Share this post


Link to post
Share on other sites

as i was going to another site things froze again and i had to go to standby mode and back to get it working again. Arrrrrghghgh! things seem to be a bit faster though. :D

Share this post


Link to post
Share on other sites

del is the standard for delete via a command prompt (The cmd window).

Do you have the latest software drivers for things like your graphics card, etc. Also, is Windows up-to-date?

Share this post


Link to post
Share on other sites

My windows is up to date and my video card is the one that came with my computer which i have never updated. I am not sure what else to do.

I dont know if this helps or not:

here is my belarc advisor printout:

Computer Profile Summary

Computer Name: XXXXXX (in MSHOME)

Profile Date: Sunday, October 02, 2005 4:10:55 PM

Advisor Version: 7.0l

Windows Logon: XXXXXXXXXXXX

Click here for Belarc's System Management products, for large and small companies.

Operating System System Model

Windows XP Home Edition Service Pack 2 (build 2600) IBM 831127U

System Serial Number: XXXXXXXX

Asset Tag: ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ

Enclosure Type: Mini-Tower

Processor a Main Circuit Board b

2.00 gigahertz Intel Pentium 4

8 kilobyte primary memory cache

512 kilobyte secondary memory cache Board: IBM IBM

Bus Clock: 100 megahertz

BIOS: IBM 24KT25AUS 08/08/2002

Drives Memory Modules c,d

288.58 Gigabytes Usable Hard Drive Capacity

57.10 Gigabytes Hard Drive Free Space

Generic DVD-ROM SCSI CdRom Device [CD-ROM drive]

Generic DVD-ROM SCSI CdRom Device [CD-ROM drive]

Generic DVD-ROM SCSI CdRom Device [CD-ROM drive]

Generic DVD-ROM SCSI CdRom Device [CD-ROM drive]

HL-DT-ST CD-RW GCE-8400B [CD-ROM drive]

HL-DT-ST DVD-ROM GDR8160B [CD-ROM drive]

3.5" format removeable media [Floppy drive]

Brother MFC-210C USB Device [Hard drive] -- drive 2

ST340016A [Hard drive] (40.02 GB) -- drive 0, s/n 3HS8FBFY, rev 3.19, SMART Status: Healthy

WDC WD25 00JB-00GVA0 USB Device [Hard drive] (250.06 GB) -- drive 1 768 Megabytes Installed Memory

Slot 'J6J1' has 256 MB

Slot 'J6J2' has 512 MB

Local Drive Volumes

c: (NTFS on drive 0) 38.53 GB 17.98 GB free

g: (NTFS on drive 1) 250.06 GB 39.12 GB free

Network Drives

None detected

Users (mouse over user name for details) Printers

local user accounts last logon

Administrator 2/5/2005 6:42:09 PM (admin)

XXXXXXXXXXX 2/24/2005 10:05:55 PM (admin)

XXXXXXXXXXX 10/2/2005 4:07:21 PM (admin)

local system accounts

ASPNET never

Guest never

HelpAssistant never

SUPPORT_388945a0 never

Marks a disabled account; Marks a locked account Brother MFC-210C USB Printer on USB002

Brother PC-FAX on USB002

Lexmark Z25-Z35 on USB001

PaperPort Color Printer Driver on BIPORT

PaperPort Mono Printer Driver on BIPORT

Controllers Display

Standard floppy disk controller

Intel® 82801DB Ultra ATA Storage Controller - 24CB

Primary IDE Channel [Controller]

Secondary IDE Channel [Controller] NVIDIA GeForce4 MX 420 [Display adapter]

IBM E74 [Monitor] (15.7"vis, s/n 88-30449, July 2002)

Bus Adapters Multimedia

D347PRT SCSI Controller

Intel PCI to USB Enhanced Host Controller

Intel® 82801DB/DBM USB Universal Host Controller - 24C2

Intel® 82801DB/DBM USB Universal Host Controller - 24C4

Intel® 82801DB/DBM USB Universal Host Controller - 24C7 CMI8738/C3DX PCI Audio Device

SoundMAX Integrated Digital Audio

Standard Game Port

Unimodem Half-Duplex Audio Device

Communications Other Devices

PCI SoftV92 Modem

Intel® PRO/100 VE Network Connection

primary IP Address: XXXXXXXXXX

Physical Address: XXXXXXXXXXX

WAN (PPP/SLIP) Interface

IP Address: XXXXXXXXXXX

Gateway: XXXXXXXXXXXXX

Physical Address: XXXXXXXXX

Networking Dns Servers: 142.161.130.155

142.161.2.155

IBM ScrollPoint III (HID)

Brother MFC-210C USB

Logitech ClickSmart 310

Logitech ClickSmart 310 (Digital Camera)

Standard 101/102-Key or Microsoft Natural PS/2 Keyboard

HID-compliant mouse

PS/2 Compatible Mouse

Generic USB Hub

Logitech USB Camera (ClickSmart 310)

USB 2.0 Root Hub

USB Composite Device

USB Mass Storage Device (2x)

USB Printing Support

USB Root Hub (3x)

Virus Protection [back to Top]

No details available

Missing Microsoft Security Hotfixes [back to Top]

All required security hotfixes (using the 08/09/2005 Microsoft Security Bulletin Summary) have been installed.

Installed Microsoft Hotfixes [back to Top]

.NETFramework

1.1

S867460 on 1/30/2005 (details...)

M886903 on 2/9/2005 (details...)

DataAccess

Q823718 on 8/22/2003 (details...)

Q832483 on 1/17/2004 (details...)

KB870669 (details...)

DirectX

DX9

SP1:

KB839643-DIRECTX9 on 1/30/2005 (details...)

Internet Explorer 6

SP1

KB889293-IE6SP1-20041111.235619 on 1/30/2005 (details...)

Internet Explorer

SP2 (SP2)

Step By Step Interactive Training

SP2

KB898458 on 6/16/2005 (details...)

Windows Media Player

WM817787 (details...)

WM828026 (details...)

SP0

Q828026 on 1/18/2004 (details...)

Windows XP

SP2

KB811113[sP] on 1/30/2005 (details...)

SP3

KB834707 on 2/1/2005 (details...)

KB867282 on 2/10/2005 (details...)

KB873333 on 2/10/2005 (details...)

KB873339 on 1/30/2005 (details...)

KB883939 on 6/16/2005 (details...)

Windows XP

SP3 (continued)

KB885250 on 2/10/2005 (details...)

KB885835 on 1/30/2005 (details...)

KB885836 on 1/30/2005 (details...)

KB885884 on 2/1/2005 (details...)

KB886185 on 2/1/2005 (details...)

KB887472 on 2/10/2005 (details...)

KB887742 on 2/25/2005 (details...)

KB888113 on 2/10/2005 (details...)

KB888302 on 2/10/2005 (details...)

KB890046 on 6/16/2005 (details...)

KB890047 on 2/10/2005 (details...)

KB890175 on 1/30/2005 (details...)

KB890859 on 4/13/2005 (details...)

KB890923 on 4/13/2005 (details...)

KB891781 on 2/10/2005 (details...)

KB893066 on 4/13/2005 (details...)

KB893086 on 4/13/2005 (details...)

KB893756 on 8/10/2005 (details...)

KB893803 on 4/13/2005 (details...)

KB893803V2 on 5/18/2005 (details...)

KB894391 on 8/10/2005 (details...)

KB896358 on 6/16/2005 (details...)

KB896422 on 6/16/2005 (details...)

KB896423 on 8/10/2005 (details...)

KB896428 on 6/16/2005 (details...)

KB896727 on 8/10/2005 (details...)

KB898461 on 6/30/2005 (details...)

KB899587 on 8/10/2005 (details...)

KB899588 on 8/10/2005 (details...)

KB899591 on 8/10/2005 (details...)

KB901214 on 7/12/2005 (details...)

KB903235 on 7/12/2005 (details...)

Click here to see all available Microsoft security hotfixes for this computer.

Marks a security hotfix (using the 08/09/2005 Microsoft Security Bulletin Summary)

Marks a hotfix that verifies correctly

Marks a hotfix that fails verification (note that failing hotfixes need to be reinstalled)

Unmarked hotfixes lack the data to allow verification

Click here for Belarc's System Management products, for large and small companies.

Software Licenses [back to Top]

ACCPAC International - Simply Accounting v9.0XXXXXXXXXXXXXX

Belarc - Advisor f2d66252

Brother - Printer Vid_04f9&Pid_0161

Microsoft - Interactive Training 27502-OEM-0000007-00000 (Key: TM66R-2Q86K-HXPBD-CQ9TR-9WTQY)e

Microsoft - Internet Explorer 55277-OEM-0011903-00107 (Key: DMY26-78CX9-Q89DP-Q8QK8-VF2B8)e

Microsoft - Money 2002 55234-OEM-0300506-00000 (Key: F9BWH-4V82D-3KDY7-WJXFM-BD37M)e

Microsoft - Office Professional Edition 2003 73931-640-0000106-57835 (Key: XXXXXXXXXXXXXXXX)

Microsoft - Picture It! Photo 2002 27502-OEM-0000007-00000 (Key: TM66R-2Q86K-HXPBD-CQ9TR-9WTQY)e

Microsoft - Streets and Trips 2002 55058-OEM-0000007-00000

Microsoft - WebFldrs XP 12345-111-1111111-69220

Microsoft - Windows XP Home Edition 55277-OEM-0011903-00107 (Key: XXXXXXXXXXXXXXXXXXXXXX)e

Microsoft - Works 6.0 27502-OEM-0000007-00000 (Key: TM66R-2Q86K-HXPBD-CQ9TR-9WTQY)e

Microsoft - Works Suite 2002 53602-442-0267922-18109

Symantec Corporation - Norton Internet Security 1

Software Versions (mouse over * for details, click * for location) [back to Top]

3ivx.com - 3ivx D4 4.5.1 Pro Version 4, 5, 1, 30 *

ACCPAC International, Inc. - CustRep Version 1.00 *

ACCPAC International, Inc. - Simply Accounting Version 9.0 *

ACD Systems, Ltd. - FotoCanvas Lite Version 1, 1, 1, 1 *

ACDSee Version 4, 0, 2, 0664 *

AdminC Application Version 1, 0, 0, 1 *

Adobe Acrobat Version 7.0.0.0 *

Adobe Reader Version 7.0.2.2005060200 *

Adobe Systems AdobeDownloadManager Version 2.0 *

ADOBE.EXE *

AGENTIX Software - SystemReport Utility Version 0.93b *

Analog Devices, Inc. - DLSLoader Application Version 3, 0, 209, 0 *

Analog Devices, Inc. - SoundMAX service agent Version 3, 2, 3, 0 *

Apple Computer, Inc. - QuickTime QuickTime 6.5.2 *

ArcSoft - Panorama Maker Version 3.5.0.80 *

AvantGo Connect Version 3.3 Build 864 *

AvantGo Version 3.3 Build 864 *

AVI Movie Player *

Belarc, Inc. - Advisor Version 7.0L *

Bitrate Calculator *

Brother Address Book Version 1.00 *

Brother Industories, Ltd. - Brolink0 Version 1, 0, 0, 0 *

brother Industries Ltd brsvc01a Version 1, 0, 0, 3 *

Brother Industries Ltd. - Scanner Utility Version 1, 9, 1, 5 *

Brother Industries, Ltd. - ControlCenter2.0 Version 2, 0, 8, 0 *

Brother Industries, Ltd. - Installation Diagnostics Version 1, 1, 0, 3 *

Brother Industries, Ltd. - Rms2Csv Application Version 1.14 *

Brother Industries, Ltd. - Status Monitor Version 1, 0, 5, 4 *

Brother Industries, Ltd. - TWAIN Switcher Version 1, 0, 2, 3 *

Brother MFL Pro Version 1.45.11.403 *

Brother PC-FAX Setup Application Version 1.00 *

C-Media Electronic Inc. - AudioRack Version 1.07b *

C-Media Electronics Inc. - Multi-Channel Audio Demo Version 4, 0, 0, 1 *

CableNut Adjuster Version 4.02.0016 *

Callisto Corporation - PhotoParade Player Version 3, 0, 0, 1 *

CCleaner Version 1.23.0160 *

ChriSoft - SpeedXP Version 1.00.0329 *

Cinematronics - 3D Pinball Version 5.1.2600.2180 *

Codec Tweak Tool Setup *

Convert *

CyberLink Corp. - CLDMA Version 1, 0, 0, 2502 *

CyberLink Corp. - PowerDVD Version 5.00.0611 *

DAEMON Tools Version 3.47.0.0 *

DH Driver Cleaner Professional Edition Version 1.02.0027 *

DH Driver Cleaner Professional Edition Version 1.02.0027 *

DivX Player Pro *

DSVideoConfig *

Electronic Arts (Canada), Inc. - 3DSetup Application Version 2.36 *

Electronic Arts - EasyInfo 2 Version 2,0,2,5 *

Electronic Arts Inc. - EA Uninstall Version 1.3.0.335 *

Electronic Arts Inc. - EReg Version 1, 0, 0, 59 *

Electronic Arts System Information Version 2, 1, 0, 5 *

Electronic Arts, Inc. - EA Uninstall Version 1.2.0.226 *

Electronic Arts, Inc. - EReg Version 1, 0, 0, 54 *

eMule LinkCreator Version 0.3.0.0 *

FourCC Code Changer *

Foxit Reader Version 1, 3, 0, 501 *

Gabest - Media Player Classic Version 6, 4, 8, 4 *

Gas Powered Games Dungeon Siege v1.11.1 *

Gas Powered Games Dungeon Siege v1.5 *

Google Earth Version 3.0.548.0 *

GRISOFT, s.r.o. - AVG 7.0 Anti-Virus System Version 7.1.0.321 *

GRISOFT, s.r.o. - AVG Anti-Virus System Version 7.1.0.338 *

GSpot Codec Information Appliance Version 2, 5, 2, 1 *

Hewlett-Packard - HP Software Update Client Version 3, 0, 2, 32 *

Hewlett-Packard Co. - hp digital imaging - hp all-in-one series Version 005.031.000.147 *

Hewlett-Packard Co. - hp digital imaging - hp all-in-one series Version 005.035.000.051 *

Hewlett-Packard Co. - hp system diagnostics Version 1.4.0.0 *

Hewlett-Packard Company - HP Photo Video Solutions Version 2.0.588.1728 *

HP Image Zone Version 5.35.0.046 *

HP Instant Share Setup Version 3.5.0.0 *

HpqPhUnl Application Version 3.5.0.143 *

http://www.emule-project.net - eMule Version 0.45.1 Unicode *

IBM Registration\Register *

IBM Update Connector *

Inno Setup Version 51.42.0.0 *

Intel Corporation - NMS Version 2.2.9.0 *

Internation Business Machines Corporation - Access ThinkPad Version 3.552 *

InterVideo WinDVD Version 3.2.41.148 *

Jordan Russell - Inno Setup Uninstaller Version 51.5.0.0 *

KsL Software - Registry First Aid Version 4.1.0.708 *

Lavasoft Ad-Aware SE SE 106 * Lexmark International, Inc. - MarkVision for Windows (32 bit) Version 7.4 *

Lexmark Z25-Z35 Series ColorFine Printer Version 1.0.6.8 *

Lexmark Z25-Z35 Version 1.0.6.0 *

LimeWire Version 1, 0, 0, 2 *

Logitech Desktop Messenger Version 1.2.9 *

Logitech ImageStudio Version 7.3.0.1113 *

Microsoft ® .NET Framework Version 1.1.4322.2032 *

Microsoft ® Windows Media Encoder Version 7.01.00.3055 *

Microsoft ® Windows Script Host Version 5.6.0.8820 *

Microsoft ActiveSync Version 3.7.3083 *

Microsoft AntiSpyware (Beta 1) Version 1.00.0615 *

Microsoft Application Error Reporting Version 11.0.5515 *

Microsoft Clip Gallery Version 5.2.01.0223 *

Microsoft Clip Organizer Version 11.0.5510 *

Microsoft Corporation - DirectShow Version 9.04.78.0000 *

Microsoft Corporation - Encarta Encyclopedia Version 11.0.0.0813 *

Microsoft Corporation - Internet Explorer Version 6.00.2900.2180 *

Microsoft Corporation - MSN Messenger Version 7.0.0777 *

Microsoft Corporation - Office Source Engine Version 11.0.5525 *

Microsoft Corporation - SelfCert Version 11.0.5510 *

Microsoft Corporation - Windows Installer - Unicode Version 3.1.4000.1823 *

Microsoft Corporation - Windows Movie Maker Version 2.1.4026.0 *

Microsoft Corporation - Windows® NetMeeting® Version 3.01 *

Microsoft Corporation - Zone.com Version 1.2.626.1 *

Microsoft Data Access Components Version 3.525.1117.0 *

Microsoft Interactive Training Version 3, 5, 0, 117 *

Microsoft Money Version 10.00.0809 *

Microsoft Office 2003 Version 11.0.5614 *

Microsoft Office Document Imaging Version 11.0.1897.0 *

Microsoft Office InfoPath Version 11.0.5531 *

Microsoft Office Outlook Version 11.0.5510 *

Microsoft Office Picture Manager Version 11.0.5510 *

Microsoft Office Save My Settings/Profile Wizard Version 11.0.5510 *

Microsoft Streets & Trips 2001 Version 09.00.16.2001 *

Microsoft® MSN ® Communications System Version 7.02.0011.2700 *

Microsoft® Windows Media Player Version 10.00.00.3646 *

Microsoft® Works 6.0 Version 6.00.3221.2 *

Mozilla - Firefox Version 1.7.10: 2005072104 *

Need For Speed Underground *

Need for Speed Underground 2 *

NTREGOPT *

NVIDIA Driver Helper Service, Version 65.73 Version 6.14.10.6573 *

Panicware, Inc. - Pop-Up Stopper Free Edition Version 1, 0, 0, 1 *

PC-Doctor For Windows 3.0 Version 3.0 *

piolch Module Version 1, 0, 0, 1 *

Process RAR, ZIP and other archive formats *

RealNetworks, Inc. - RealPlayer (32-bit) Version 0.1.0.3292 *

RealNetworks, Inc. - RealPlayer (32-bit) Version 6.0.12.1212 *

RealNetworks, Inc. - RealPlayer (32-bit) Version 7.0.0.2639 *

RegCleaner The same as the FileVersion *

REGSCRUBXP Application Version 3.25 *

Remove CableNut *

Safer Networking Limited - Spybot - Search & Destroy Version 1, 4, 0, 3 *

Safer Networking Limited - SpyBot-S&D Version 1, 4, 0, 3 *

ScanSoft, Inc. - PaperPort Version 9.0 *

Sherlock *

sie - AVI Fixed v2.0B1 Version 2.0 Beta1 *

Soeperman Enterprises Ltd. - HijackThis Version 1.99.0001 *

Soeperman Enterprises Ltd. - StartupList Version 1.52.0001 *

SpywareBlaster AutoUpdate Version 3.04 *

SpywareBlaster Version 3.04 *

SpywareGuard LiveUpdate Version 2.02.0001 *

SpywareGuard Version 2.02.0001 *

StatsReader Version 2, 1, 0, 0 *

Steven R. Gould - Windows CleanUp! Version 4.0 *

Sun Microsystems, Inc. - Java 2 Platform Standard Edition 5.0 Update 4 Version 5.0.40.5 *

Sun Microsystems, Inc. - Java 2 Platform Standard Edition 5.0 Version 1.5.0.0 *

Sun Microsystems, Inc. - Java 2 Platform Standard Edition Version 1.5.0.0 *

Symantec Corporation - Client and Host Security Platform Version 103.0.3.8 *

ToniArts - EasyCleaner Version 2.0.6 *

UpdateIPR.exe *

VERITAS Software Corporation - RecordNow Version 3.55 *

VERITAS Software, Inc. - Direct Access Component Version 1.0.0.1 *

VobSubStrip *

Webroot Software, Inc - Window Washer Netscape 6 Profile Scanner Version 1.0.0.0 *

Webroot Software, Inc. - Window Washer Version 4.7 *

Wizards to adjust .NET Framework security, assign trust to assemblies, and fix broken .NET applications. Version 1.0.5000.0 *

Zone Labs Client Version 6.0.667.000 *

Zone Labs Uninstaller Version 6.0.667.0 *

Zone Labs, LLC - Internet Access Monitor Version 6.0.667.000 *

Zone Labs, LLC - TrueVector Service Version 6.0.667.000 *

--------------------------------------------------------------------------------

Here is my Startuplist log:

StartupList report, 10/2/2005, 4:17:23 PM

StartupList version: 1.52

Started from : C:\Documents and Settings\XXXXXXXXXXXX\Desktop\Neat Stuff\StartupList.EXE

Detected: Windows XP SP2 (WinNT 5.01.2600)

Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)

* Using default options

==================================================

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\brsvc01a.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\brss01a.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\WINDOWS\system32\Brmfrmps.exe

C:\WINDOWS\System32\NMSSvc.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\XXXXXXXX\Desktop\Neat Stuff\StartupList.exe

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

UserInit = C:\WINDOWS\system32\userinit.exe,

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

AVG7_CC = C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

AVG7_EMC = C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

gcasServ = "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"

NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

Zone Labs Client = C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

Microsoft Works Update Detection = c:\Program Files\Microsoft Works\WkDetect.exe

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*

SCRNSAVE.EXE=*INI section not found*

drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe

SCRNSAVE.EXE=C:\WINDOWS\System32\ssbezier.scr

drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry key not found*

HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Enumerating Browser Helper Objects:

(no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}

(no name) - C:\Program Files\SpywareGuard\dlprotect.dll - {4A368E80-174F-4872-96B5-0B27DDD11DB2}

(no name) - C:\PROGRA~1\SPYBOT~1\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F}

--------------------------------------------------

Enumerating Task Scheduler jobs:

Symantec NetDetect.job

WebReg 20041225165856.job

{6471F7ED-D025-484E-9403-661C5A96CB91}_.job

{A17A0887-CE57-46ED-BBBC-5CB562DEB3E9}_.job

{B4A53CB3-2893-4732-A8C0-4CDC5B1C632D}_.job

--------------------------------------------------

Enumerating Download Program Files:

[Windows Genuine Advantage Validation Tool]

InProcServer32 = C:\WINDOWS\system32\LegitCheckControl.DLL

CODEBASE = http://go.microsoft.com/fwlink/?linkid=39204

[symantec AntiVirus scanner]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\avsniff.dll

CODEBASE = http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab

[{3334504D-9980-0010-8000-00AA00389B71}]

CODEBASE = http://download.microsoft.com/download/0/C...C4D/mp43dmo.CAB

[symantec RuFSI Utility Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\rufsi.dll

CODEBASE = http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

[HouseCall Control]

InProcServer32 = C:\WINDOWS\DOWNLO~1\xscan53.ocx

CODEBASE = http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab

[shockwave Flash Object]

InProcServer32 = C:\WINDOWS\System32\macromed\flash\Flash.ocx

CODEBASE = http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll

CDBurn: C:\WINDOWS\system32\SHELL32.dll

WebCheck: C:\WINDOWS\System32\webcheck.dll

SysTray: C:\WINDOWS\System32\stobject.dll

--------------------------------------------------

End of report, 5,530 bytes

Report generated in 0.047 seconds

Command line options:

/verbose - to add additional info on each section

/complete - to include empty sections and unsuspicious data

/full - to include several rarely-important sections

/force9x - to include Win9x-only startups even if running on WinNT

/forcent - to include WinNT-only startups even if running on Win9x

/forceall - to include all Win9x and WinNT startups, regardless of platform

/history - to list version history only

Share this post


Link to post
Share on other sites

Its a NVIDIA GeForce4 MX 420.

Graphics type 2D/3D

Video Ram std/max: 64 MB/64 MB

Video Ram type DDR SDRAM

Graphics bus interface: AGP 4X

I dont know what any of that means, but thats what i got on the papers from IBM when I purchased it.

:D

Share this post


Link to post
Share on other sites

Its a NVIDIA GeForce4 MX 420. 

Graphics type 2D/3D

Video Ram std/max: 64 MB/64 MB

Video Ram type DDR SDRAM

Graphics bus interface: AGP 4X

I dont know what any of that means, but thats what i got on the papers from IBM when I purchased it.

  :D

http://www.nvidia.com/content/drivers/drivers.asp

Graphics Drivers > GeForce and TNT2 > Windows XP / 2000

Share this post


Link to post
Share on other sites

alright, i downloaded that. problem persists. anymore suggestions on what i can do? :(

heres a new hijacklog:

Logfile of HijackThis v1.99.1

Scan saved at 9:00:36 PM, on 10/2/2005

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\brsvc01a.exe

C:\WINDOWS\system32\brss01a.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\WINDOWS\system32\Brmfrmps.exe

C:\WINDOWS\System32\NMSSvc.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{170C7C54-0701-42FD-8640-195A39978078}: NameServer = 142.161.130.155 142.161.2.155

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)

O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: Intel® NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Share this post


Link to post
Share on other sites

thats a great question. i only use IE. I will switch to firefox for today and see what happens.

Well, I tried virtually everything I could think of. I finally had a buddy come over and he reformated my computer. Got rid of all the junk and it now runs real smooth and fast. Thanks for all the help everyone. :D

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×
×
  • Create New...