1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

ide cd-rom cd-rw switched propertys please help

Discussion in 'Hardware' started by Disturbed, Sep 18, 2003.

Thread Status:
Not open for further replies.
Advertisement
  1. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    I don't know how but the propertys to my cd-rom and my cd-rw switched. now when i try to use my teac cd-rw goes to my liton cd-rom and says that I don't have the proper media in it. I have window xp pro. I have switched the drive letters and it doesn't change any thing except the drive letters. The propertys follow. Thanks for the help.
     
  2. dai

    dai

    Joined:
    Mar 6, 2003
    Messages:
    11,198
    do into the device manager and delete both drives then reboot and let windows reinstall
     
  3. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    I tried that already, but tried it two different ways from your advice. It still returned it all back incorrectly. I think someone that new what they were doing got into my computer and did this.

    I wanted to back up my reg history past the day this happened or maybe something with regedit? But I don't know how. Thx much.
     
  4. dai

    dai

    Joined:
    Mar 6, 2003
    Messages:
    11,198
    run spybot and adaware
     
  5. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    ok I ran spybot first and here is the log.
    Advertising.com: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][1].txt

    Advertising.com: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][1].txt

    Avenue A, Inc.: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][2].txt

    BackWeb lite: Autostart item (File, nothing done)
    C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Data LifeGuard.lnk

    BackWeb lite: File extension link (Registry key, nothing done)
    HKEY_CLASSES_ROOT\bwpfile

    BackWeb lite: File extension link (Registry key, nothing done)
    HKEY_CLASSES_ROOT\.bwp

    BackWeb lite: File extension link (Registry key, nothing done)
    HKEY_CLASSES_ROOT\.iad

    BackWeb lite: File extension link (Registry key, nothing done)
    HKEY_CLASSES_ROOT\iadfile

    BackWeb lite: Global settings (Registry key, nothing done)
    HKEY_LOCAL_MACHINE\Software\BackWeb

    BackWeb lite: Interface ( (IBackWebDownloadTimeConstraintCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{0D1F7C84-8123-11D0-B5CA-0000B43698D6}

    BackWeb lite: Interface ( (IBackWebGeneralSettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{12473FC3-61A7-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebCommSettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{12473FC5-61A7-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebSetup)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{12473FC7-61A7-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebStoryFieldCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{1D91D9E0-004B-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebInfoPakDownloadServices)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{2DE07D90-DC04-11D0-A875-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebChannelTableNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{2F523082-5A0B-11D0-9B9C-444553540000}

    BackWeb lite: Interface ( (IBackWebFileAccess)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{3AF78A6E-6F14-11D1-A884-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebInfoPakFile)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{3AF78A74-6F14-11D1-A884-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebDirectoryNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{41CEBDC0-32C1-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebInfoPakNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{4A3666F3-5F2D-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebChannelCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{53FCF35A-5323-11D0-A864-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebStoryField)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{5B1E13A0-004B-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebFileAccessViaDir)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{608FE360-6FB2-11D1-A885-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebAlertSettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{72B62B40-17D1-11D1-96A7-F8E906C10000}

    BackWeb lite: Interface ( (IBackWebPlayer)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{8028B940-4932-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebChannelDownloadServices)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{9132E380-DC21-11D0-A875-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebChannel2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{9647FB70-DC0F-11D0-A875-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebAllStoryCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{9DB46423-FF61-11D0-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebChannelVariableCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{A4BC67F0-6C90-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebCommunications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{BAD37BC0-2231-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebFilterSettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{C8CEEEE0-17D6-11D1-96A7-F8E906C10000}

    BackWeb lite: Interface ( (IBackWebGeneralSettings2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{E01AD640-F87D-11D0-9A50-00AA004812C2}

    BackWeb lite: Interface ( (IBackWebInfoPak)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{EB1FFFC2-5688-11D0-A865-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebChannelVariable)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{FEFCA7F0-6C8E-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebInfoPakCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{EB1FFFC1-5688-11D0-A865-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebApplicationNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{D0894D60-6C6C-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebChannelCollection4)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{BCD0C200-69C1-11D1-8AF8-00609761C47A}

    BackWeb lite: Interface ( (IBackWebChannel4)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{AEE96320-2131-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebStory)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{9DB46424-FF61-11D0-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebStoryCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{9DB46422-FF61-11D0-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebItemDownloadServices)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{93BF8F00-DBE8-11D0-A875-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebAllInfoPakCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{8131F530-649E-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWeb4)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{740904E0-0BFB-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebInfoPak4_2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{610141C2-7701-11D1-B042-004095903824}

    BackWeb lite: Interface ( (IBackWebDirectoryEntryCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{5DF6CE40-0B50-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebChannel)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{53FCF35B-5323-11D0-A864-0000B43699FC}

    BackWeb lite: Interface ( (IBackWeb)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{53FCF355-5323-11D0-A864-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebStoryTableNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{44230BC0-3105-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebOpenInfoPakFile)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{3AF78A77-6F14-11D1-A884-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebInfoPakFilesCollection)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{3AF78A71-6F14-11D1-A884-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebSetup4)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{3667E7B0-4F28-11D1-8ADB-00609761C47A}

    BackWeb lite: Interface ( (IBackWebSetupNotifications)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{2F099AF0-6329-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWeb2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{23F43240-F78D-11D0-9A50-00AA004812C2}

    BackWeb lite: Interface ( (IBackWebDirectory)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{15030BC0-0B52-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebDisplaySettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{12473FC6-61A7-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebDialerSettings)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{12473FC4-61A7-11D0-A866-0000B43699FC}

    BackWeb lite: Interface ( (IBackWebExtension)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{0F4FE440-983F-11D0-9B9C-444553540000}

    BackWeb lite: Interface ( (IBackWebDownloadTimeConstraint)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{0D1F7C83-8123-11D0-B5CA-0000B43698D6}

    BackWeb lite: Interface ( (IBackWebDirectoryEntry)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{0C6E0440-0B50-11D1-9951-444553540000}

    BackWeb lite: Interface ( (IBackWebChannel4_2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{025632A0-BCEC-11D1-8B35-00609761C47A}

    BackWeb lite: Interface ( (IBackWebDisplaySettings4_2)) (Registry key, nothing done)
    HKEY_CLASSES_ROOT\Interface\{001B3F20-D866-11D1-8B4C-00609761C47A}

    BackWeb lite: Main executable (File, nothing done)
    C:\Program Files\Data LifeGuard\8263142\Program\backWeb-8263142.exe

    BackWeb lite: Netscape viewer (Registry value, nothing done)
    HKEY_USERS\S-1-5-21-2025429265-688789844-1343024091-1003\Software\Netscape\Netscape Navigator\Viewers\application/x-iad

    BackWeb lite: Netscape viewer (Registry value, nothing done)
    HKEY_USERS\S-1-5-21-2025429265-688789844-1343024091-1003\Software\Netscape\Netscape Navigator\Viewers\application/x-bwpreview

    BackWeb lite: Program directory (Directory, nothing done)
    C:\Program Files\BackWeb

    DoubleClick: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][1].txt

    HitBox: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][2].txt

    HitBox: Tracking cookie or cookie of tracking site (File, nothing done)
    C:\Documents and Settings\Jeff\Cookies\[email protected][2].txt


    --- Spybot-S&D version: 1.2 ---
    2003-06-24 Includes\Cookies.sbi
    2003-08-31 Includes\Dialer.sbi
    2003-08-31 Includes\Hijackers.sbi
    2003-08-01 Includes\Keyloggers.sbi
    2003-08-31 Includes\Malware.sbi
    2003-03-16 Includes\plugin-ignore.ini
    2003-06-24 Includes\Security.sbi
    2003-08-31 Includes\Spybots.sbi
    2003-08-28 Includes\Temporary.sbi
    2003-08-31 Includes\Tracks.uti
    2003-07-17 Includes\Trojans.sbi

    I got rid of the cookies but not the backweb lite stuff.

    From adaware. I quarantined 21 things. tell me if you would like to see the log. it is large.
    Thanks again. I am going to restart and see if it worked.
     
  6. TheRef310

    TheRef310

    Joined:
    Jun 4, 2003
    Messages:
    141
    definitely post the ad-aware, and then there is another program that could help..."Hijack This", so use that and post that log here too
     
  7. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    omg!!!!!!!!!!!!! the puter god's are smiling on me!!!! It worked. Strange though. I did'nt think that alone would do the trick!.

    BUT, i still have the questions about these logs. Do I have more problems?

    AND, I have XP firewall up. some say it works. how do you feel on that? I need a networking firewall and this is all I have. Thanks, thanks and o yah THANKS!!!!
    It's nice to have my baby back.
     
  8. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    oops I forgot. in the excitement. Here's my highjack this log.
    Logfile of HijackThis v1.95.1
    Scan saved at 6:44:57 PM, on 9/19/2003
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\WINDOWS\System32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\RealVNC\WinVNC\WinVNC.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\PROGRA~1\NORTON~1\navapw32.exe
    C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\WINDOWS\System32\hphmon03.exe
    C:\Program Files\Data LifeGuard\8263142\Program\backWeb-8263142.exe
    D:\Program Files\Logitech\MouseWare\system\em_exec.exe
    C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
    C:\WINDOWS\System32\HPHipm09.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\DOCUME~1\Jeff\LOCALS~1\Temp\Rar$EX00.406\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://motomutz.tripod.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.rr.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Roadrunner
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\System32\blank.htm
    O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\spybot\SDHelper.dll
    O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\RealVNC\WinVNC\WinVNC.exe" -servicehelper
    O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
    O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\System32\hphmon03.exe
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - Global Startup: Data LifeGuard.lnk = C:\Program Files\Data LifeGuard\8263142\Program\backWeb-8263142.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: MySoftware NewsFlash.lnk = C:\RECYCLER\S-1-5-21-2025429265-688789844-1343024091-1006\Dc27.gif
    O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
    O9 - Extra button: RealGuide (HKLM)
    O9 - Extra button: Messenger (HKLM)
    O9 - Extra 'Tools' menuitem: Messenger (HKLM)
    O14 - IERESET.INF: START_PAGE_URL=http://www.rr.com
    O15 - Trusted Zone: http://www.fileplanet.com
    O15 - Trusted Zone: http://Windowsupdate.microsoft.com
    O15 - Trusted Zone: http://Download.Windowsupdate.com
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://active.macromedia.com/director/cabs/sw.cab
    O16 - DPF: {1D95A7C7-3282-4DB7-9A48-7C39CE152A19} (TeamOn Import Object) - https://myemail.t-mobile.com/html/web/client_tools/TOImport.cab
    O16 - DPF: {2A32B14F-4D29-4EA3-AC54-E9B19F436CE7} (Scanner Class) - http://www.trojanscan.com/trojanscan/TDECntrl.CAB
    O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52...le.com/samantha/us/win/QuickTimeInstaller.exe
    O16 - DPF: {486E48B5-ABF2-42BB-A327-2679DF3FB822} - http://akamai.downloadv3.com/binaries/IA/ia_XP.cab
    O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://207.188.7.150/040fc7ec13c67f50f922/netzip/RdxIE2.cab
    O16 - DPF: {597C45C2-2D39-11D5-8D53-0050048383FE} (OPUCatalog Class) - http://office.microsoft.com/productupdates/content/opuc.cab
    O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/software/launch/alaunch.cab
    O16 - DPF: {7A32634B-029C-4836-A023-528983982A49} - http://fdl.msn.com/public/chat/msnchat42.cab
    O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37583.4128125
    O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} - http://download.abacast.com/download/files/abasetup.cab
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/public/chat/msnchat45.cab
     
  9. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
    here is the adware

    Lavasoft Ad-aware Personal Build 6.181
    Logfile created on :Friday, September 19, 2003 5:55:20 PM
    Created with Ad-aware Personal, free for private use.
    Using reference-file :01R217 08.09.2003
    ______________________________________________________

    Ad-aware Settings
    =========================
    Set : Activate in-depth scan (Recommended)
    Set : Safe mode (always request confirmation)
    Set : Scan active processes
    Set : Scan registry
    Set : Deep scan registry


    9-19-2003 5:55:20 PM - Scan started. (Smart mode)

    Listing running processes
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

    #:1 [smss.exe]
    FilePath : \SystemRoot\System32\
    ThreadCreationTime : 9-19-2003 12:16:28 PM
    BasePriority : Normal


    #:2 [winlogon.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ThreadCreationTime : 9-19-2003 12:16:33 PM
    BasePriority : High


    #:3 [services.exe]
    FilePath : C:\WINDOWS\system32\
    ThreadCreationTime : 9-19-2003 12:16:33 PM
    BasePriority : Normal
    FileSize : 99 KB
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    CompanyName : Microsoft Corporation
    FileDescription : Services and Controller app
    InternalName : services.exe
    OriginalFilename : services.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:54 PM
    Last modified : 8/23/2001 12:00:00 PM

    #:4 [lsass.exe]
    FilePath : C:\WINDOWS\system32\
    ThreadCreationTime : 9-19-2003 12:16:33 PM
    BasePriority : Normal
    FileSize : 11 KB
    FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
    ProductVersion : 5.1.2600.1106
    CompanyName : Microsoft Corporation
    FileDescription : LSA Shell (Export Version)
    InternalName : lsass.exe
    OriginalFilename : lsass.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:52 PM
    Last modified : 8/29/2002 10:41:26 AM

    #:5 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ThreadCreationTime : 9-19-2003 12:16:34 PM
    BasePriority : Normal
    FileSize : 12 KB
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    OriginalFilename : svchost.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:54 PM
    Last modified : 8/23/2001 12:00:00 PM

    #:6 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 12:16:34 PM
    BasePriority : Normal
    FileSize : 12 KB
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    OriginalFilename : svchost.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:54 PM
    Last modified : 8/23/2001 12:00:00 PM

    #:7 [spoolsv.exe]
    FilePath : C:\WINDOWS\system32\
    ThreadCreationTime : 9-19-2003 12:16:35 PM
    BasePriority : Normal
    FileSize : 50 KB
    FileVersion : 5.1.2600.0 (XPClient.010817-1148)
    ProductVersion : 5.1.2600.0
    CompanyName : Microsoft Corporation
    FileDescription : Spooler SubSystem App
    InternalName : spoolsv.exe
    OriginalFilename : spoolsv.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:54 PM
    Last modified : 8/23/2001 12:00:00 PM

    #:8 [navapsvc.exe]
    FilePath : C:\Program Files\Norton AntiVirus\
    ThreadCreationTime : 9-19-2003 12:16:45 PM
    BasePriority : Normal
    FileSize : 113 KB
    FileVersion : 8.07.17
    ProductVersion : 8.07.17
    Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
    CompanyName : Symantec Corporation
    FileDescription : Norton AntiVirus Auto-Protect Service
    InternalName : NAVAPSVC
    OriginalFilename : NAVAPSVC.EXE
    ProductName : Norton AntiVirus
    Created on : 10/2/2002 12:22:26 AM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 2/27/2002 4:29:26 PM

    #:9 [nvsvc32.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 12:16:45 PM
    BasePriority : Normal
    FileSize : 68 KB
    FileVersion : 6.14.10.4403
    ProductVersion : 6.14.10.4403
    Copyright : (C) NVIDIA Corporation. All rights reserved.
    CompanyName : NVIDIA Corporation
    FileDescription : NVIDIA Driver Helper Service, Version 44.03
    InternalName : NVSVC
    OriginalFilename : nvsvc32.exe
    ProductName : NVIDIA Driver Helper Service, Version 44.03
    Created on : 5/2/2003 8:19:00 PM
    Last accessed : 9/19/2003 10:45:53 PM
    Last modified : 5/2/2003 8:19:00 PM

    #:10 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 12:16:45 PM
    BasePriority : Normal
    FileSize : 12 KB
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    OriginalFilename : svchost.exe
    ProductName : Microsoft
    Created on : 8/23/2001 12:00:00 PM
    Last accessed : 9/19/2003 10:45:54 PM
    Last modified : 8/23/2001 12:00:00 PM

    #:11 [winvnc.exe]
    FilePath : C:\Program Files\RealVNC\WinVNC\
    ThreadCreationTime : 9-19-2003 12:16:45 PM
    BasePriority : Normal
    FileSize : 328 KB
    FileVersion : 3, 3, 7, 0
    ProductVersion : 3, 3, 7, 0
    Copyright : Copyright RealVNC Ltd.
    CompanyName : RealVNC Ltd.
    FileDescription : VNC server for Win32
    InternalName : WinVNC
    OriginalFilename : WinVNC.exe
    ProductName : RealVNC Ltd. - WinVNC
    Created on : 3/5/2003 6:49:00 PM
    Last accessed : 9/19/2003 10:47:11 PM
    Last modified : 3/5/2003 6:49:00 PM

    #:12 [hphipm09.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 12:17:03 PM
    BasePriority : Normal
    FileSize : 76 KB
    FileVersion : 4, 5, 0, 770
    ProductVersion : 4, 5, 0, 770
    Copyright : Copyright
    CompanyName : HP
    FileDescription : PML Driver
    InternalName : PmlDrv
    OriginalFilename : PmlDrv.exe
    ProductName : HP PML
    Created on : 1/30/2003 11:55:44 PM
    Last accessed : 9/19/2003 10:45:51 PM
    Last modified : 1/30/2003 11:55:44 PM

    #:13 [explorer.exe]
    FilePath : C:\WINDOWS\
    ThreadCreationTime : 9-19-2003 9:12:16 PM
    BasePriority : Normal
    FileSize : 980 KB
    FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
    ProductVersion : 6.00.2800.1106
    CompanyName : Microsoft Corporation
    FileDescription : Windows Explorer
    InternalName : explorer
    OriginalFilename : EXPLORER.EXE
    ProductName : Microsoft
    Created on : 7/6/2003 6:09:27 AM
    Last accessed : 9/19/2003 10:46:08 PM
    Last modified : 8/29/2002 10:41:24 AM

    #:14 [qttask.exe]
    FilePath : C:\Program Files\QuickTime\
    ThreadCreationTime : 9-19-2003 9:12:18 PM
    BasePriority : Normal
    FileSize : 76 KB
    FileVersion : 6.0.2
    ProductVersion : QuickTime 6.0.2
    CompanyName : Apple Computer, Inc.
    InternalName : QuickTime Task
    OriginalFilename : QTTask.exe
    ProductName : QuickTime
    Created on : 9/30/2002 4:11:05 AM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 9/30/2002 4:11:05 AM

    #:15 [navapw32.exe]
    FilePath : C:\PROGRA~1\NORTON~1\
    ThreadCreationTime : 9-19-2003 9:12:18 PM
    BasePriority : Normal
    FileSize : 73 KB
    FileVersion : 8.07.17
    ProductVersion : 8.07.17
    Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
    CompanyName : Symantec Corporation
    FileDescription : Norton AntiVirus Agent
    InternalName : NAVAPW32
    OriginalFilename : NAVAPW32.EXE
    ProductName : Norton AntiVirus
    Created on : 10/2/2002 12:22:27 AM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 2/27/2002 4:27:58 PM

    #:16 [hpztsb04.exe]
    FilePath : C:\WINDOWS\System32\spool\drivers\w32x86\3\
    ThreadCreationTime : 9-19-2003 9:12:19 PM
    BasePriority : Normal
    FileSize : 192 KB
    FileVersion : 2,80,0,0
    ProductVersion : 2,80,0,0
    Copyright : Copyright (c) Hewlett-Packard Company 1999-2001
    CompanyName : HP
    ProductName : HP DeskJet
    Created on : 9/29/2002 3:45:10 PM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 10/25/2001 7:55:02 PM

    #:17 [realsched.exe]
    FilePath : C:\Program Files\Common Files\Real\Update_OB\
    ThreadCreationTime : 9-19-2003 9:12:19 PM
    BasePriority : Normal
    FileSize : 148 KB
    FileVersion : 0.1.0.1622
    ProductVersion : 0.1.0.1622
    Copyright : Copyright
    CompanyName : RealNetworks, Inc.
    FileDescription : RealNetworks Scheduler
    InternalName : schedapp
    OriginalFilename : realsched.exe
    ProductName : RealOne Player (32-bit)
    Created on : 10/4/2002 10:39:53 PM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 4/6/2003 10:04:30 PM

    #:18 [hphmon03.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 9:12:19 PM
    BasePriority : Normal
    FileSize : 304 KB
    FileVersion : 3,5,11
    ProductVersion : 3,5,11
    Copyright : Copyright (C) 2001
    CompanyName : Hewlett-Packard
    FileDescription : HPHa3mon
    InternalName : HPHa3mon
    OriginalFilename : HPHa3mon.exe
    ProductName : hp photosmart
    Created on : 1/30/2003 11:55:46 PM
    Last accessed : 9/19/2003 10:45:51 PM
    Last modified : 1/30/2003 11:55:46 PM

    #:19 [backweb-8263142.exe]
    FilePath : C:\Program Files\Data LifeGuard\8263142\Program\
    ThreadCreationTime : 9-19-2003 9:12:20 PM
    BasePriority : Normal
    FileSize : 16 KB
    Created on : 8/15/2002 9:51:36 AM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 8/15/2002 9:51:31 AM

    #:20 [olfsnt40.exe]
    FilePath : C:\Program Files\Microsoft Office\Office\1033\
    ThreadCreationTime : 9-19-2003 9:12:20 PM
    BasePriority : Normal
    FileSize : 44 KB
    FileVersion : 9.0.98.0105
    ProductVersion : 9.0.98.0105
    Copyright : Copyright (C) Symantec Corp. 1990-1998
    CompanyName : Microsoft Corporation
    FileDescription : Symantec Fax Starter Edition Port Launcher
    InternalName : OLFSNT40.DLL
    OriginalFilename : OLFSNT40.DLL
    ProductName : Symantec Fax Starter Edition Printer Driver
    Created on : 12/23/1998 1:51:54 PM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 12/23/1998 1:51:54 PM

    #:21 [em_exec.exe]
    FilePath : D:\Program Files\Logitech\MouseWare\system\
    ThreadCreationTime : 9-19-2003 9:12:21 PM
    BasePriority : Normal
    FileSize : 37 KB
    FileVersion : 9.78.034
    ProductVersion : 9.78.034
    Copyright : (C) 1987-2003 Logitech. All rights reserved.
    CompanyName : Logitech Inc.
    FileDescription : Logitech Events Handler Application
    InternalName : Em_Exec
    OriginalFilename : Em_Exec.exe
    ProductName : MouseWare
    Created on : 9/1/2003 1:09:15 PM
    Last accessed : 9/19/2003 10:55:20 PM
    Last modified : 7/7/2003 2:50:00 PM

    #:22 [wisptis.exe]
    FilePath : C:\WINDOWS\System32\
    ThreadCreationTime : 9-19-2003 9:23:09 PM
    BasePriority : High
    FileSize : 190 KB
    FileVersion : 1.0.2201.0 (xpsp1.020828-1920)
    ProductVersion : 1.0.2201.0
    Copyright : Copyright
    CompanyName : Microsoft Corporation
    FileDescription : Microsoft Tablet PC Platform Component
    InternalName : WISPTIS.EXE
    OriginalFilename : WISPTIS.EXE
    ProductName : Microsoft
    Created on : 8/29/2002 9:41:28 AM
    Last accessed : 9/19/2003 10:45:56 PM
    Last modified : 8/29/2002 9:41:28 AM

    #:23 [ad-aware.exe]
    FilePath : D:\Program Files\Lavasoft\Ad-aware 6\
    ThreadCreationTime : 9-19-2003 10:55:09 PM
    BasePriority : Normal
    FileSize : 668 KB
    FileVersion : 6.0.1.181
    ProductVersion : 6.0.0.0
    Copyright : Copyright
    CompanyName : Lavasoft Sweden
    FileDescription : Ad-aware 6 core application
    InternalName : Ad-aware.exe
    OriginalFilename : Ad-aware.exe
    ProductName : Lavasoft Ad-aware Plus
    Created on : 9/19/2003 10:55:01 PM
    Last accessed : 9/19/2003 10:55:01 PM
    Last modified : 7/13/2003 3:00:20 AM

    Memory scan result :
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
    New objects : 0
    Objects found so far: 0


    Started registry scan
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

    Holystic-Dialer Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : CLSID\{03C543A1-C090-418F-A1D0-FB96380D601D}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : CLSID\{2ABE804B-4D3A-41BF-A172-304627874B45}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : CLSID\{94742E3F-D9A1-4780-9A87-2FFA43655DA2}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : EGDHTML.EGDialHTML


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : EGDHTML.EGDialHTML.1


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : EGDialObject.EGDial


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : EGDialObject.EGDial.1


    Holystic-Dialer Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : HOL_PRELOAD.FULL.1


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : Interface\{2F668A6D-2EC7-4E3A-A485-819E210738D6}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : Interface\{901166A5-F137-4B27-BC4C-CA611DEBDCED}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CURRENT_USER
    Object : Software\EGDHTML


    Holystic-Dialer Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CURRENT_USER
    Object : software\holistyc


    Holystic-Dialer Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{03C543A1-C090-418F-A1D0-FB96380D601D}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{94742E3F-D9A1-4780-9A87-2FFA43655DA2}


    Dialer Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E21AE2D7-972C-4D23-BEE7-A902122841E6}


    Alexa Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}


    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_CLASSES_ROOT
    Object : TypeLib\{83F0D6AA-CD15-46B5-AA4E-BDB506B4AE53}


    Registry scan result :
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
    New objects : 17
    Objects found so far: 17


    Started deep registry scan
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

    e-Group Object recognized!
    Type : RegKey
    Data :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : Software\microsoft\windows\currentversion\moduleusage\C:/WINDOWS/System32/EGDial.dll


    e-Group Object recognized!
    Type : File
    Data : egdial.dll
    Object : c:\windows\system32\
    FileSize : 11 KB
    FileVersion : 1, 0, 0, 6
    ProductVersion : 1, 0, 0, 6
    Copyright : Copyright
    CompanyName : E-Group
    FileDescription : EGDial
    InternalName : EGDial
    OriginalFilename : EGDial.dll
    ProductName : E-Group EGDial
    Created on : 6/19/2003 12:32:48 AM
    Last accessed : 9/19/2003 10:44:38 PM
    Last modified : 6/19/2003 12:32:48 AM



    e-Group Object recognized!
    Type : RegValue
    Data : c:\windows\system32\egdial.dll
    Rootkey : HKEY_LOCAL_MACHINE
    Object : Software\Microsoft\Windows\CurrentVersion\SharedDLLs
    Value : C:\WINDOWS\System32\EGDial.dll


    Deep registry scan result :
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
    New objects : 2
    Objects found so far: 20


    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

    Tracking Cookie Object recognized!
    Type : File
    Data : [email protected][2].txt
    Object : C:\Documents and Settings\Jeff\Cookies\

    Created on : 9/19/2003 10:45:59 PM
    Last accessed : 9/19/2003 10:45:59 PM
    Last modified : 9/19/2003 10:45:59 PM



    Tracking Cookie Object recognized!
    Type : File
    Data : [email protected][2].txt
    Object : C:\Documents and Settings\Jeff\Cookies\

    Created on : 9/17/2003 5:48:48 AM
    Last accessed : 9/19/2003 10:44:09 PM
    Last modified : 9/17/2003 5:48:48 AM



    Tracking Cookie Object recognized!
    Type : File
    Data : [email protected][1].txt
    Object : C:\Documents and Settings\Jeff\Cookies\

    Created on : 9/17/2003 5:48:48 AM
    Last accessed : 9/19/2003 10:44:09 PM
    Last modified : 9/19/2003 10:44:09 PM



    Tracking Cookie Object recognized!
    Type : File
    Data : [email protected][1].txt
    Object : C:\Documents and Settings\Jeff\Cookies\

    Created on : 9/19/2003 10:45:59 PM
    Last accessed : 9/19/2003 10:45:59 PM
    Last modified : 9/19/2003 10:45:59 PM


    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯


    Deep scanning and examining files (C:)
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯


    Performing conditional scans..
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

    Holystic-Dialer Object recognized!
    Type : File
    Data : preload.ocx
    Object : c:\windows\system32\
    FileSize : 13 KB
    FileVersion : 1.0.391102
    ProductVersion : 1.0
    CompanyName : Holistyc Limited
    FileDescription : preload plugin
    InternalName : preload
    OriginalFilename : preload.ocx
    ProductName : preload
    Created on : 6/13/2003 2:34:12 AM
    Last accessed : 9/19/2003 10:55:25 PM
    Last modified : 6/13/2003 2:34:12 AM



    Holystic-Dialer Object recognized!
    Type : File
    Data : preload.inf
    Object : c:\windows\downloaded program files\

    Created on : 6/13/2003 2:34:06 AM
    Last accessed : 9/19/2003 10:56:15 PM
    Last modified : 6/13/2003 2:34:06 AM



    Holystic-Dialer Object recognized!
    Type : File
    Data : hol46203796.exe
    Object : c:\
    FileSize : 107 KB
    Created on : 6/30/2003 9:45:53 PM
    Last accessed : 9/19/2003 10:56:15 PM
    Last modified : 6/30/2003 9:45:53 PM



    e-Group Object recognized!
    Type : Folder
    Object : c:\program files\Instant Access


    e-Group Object recognized!
    Type : File
    Data : p2e
    Object : c:\program files\instant access\

    Created on : 9/6/2003 7:32:46 AM
    Last accessed : 9/10/2003 1:34:04 AM
    Last modified : 9/6/2003 5:52:03 PM



    e-Group Object recognized!
    Type : File
    Data : egdhtml_1020.dll
    Object : c:\windows\system32\
    FileSize : 62 KB
    FileVersion : 1, 0, 2, 0
    ProductVersion : 1, 0, 2, 0
    Copyright : Copyright 2003
    FileDescription : EGDHTML Module
    InternalName : EGDHTML
    OriginalFilename : EGDHTML_1020.DLL
    ProductName : EGDHTML Module
    Created on : 8/29/2003 6:57:48 PM
    Last accessed : 9/19/2003 10:44:38 PM
    Last modified : 8/29/2003 6:57:48 PM



    e-Group Object recognized!
    Type : File
    Data : egdhtml_pack.inf
    Object : c:\windows\downloaded program files\

    Created on : 8/22/2003 8:41:44 PM
    Last accessed : 9/19/2003 10:56:15 PM
    Last modified : 8/22/2003 8:41:44 PM



    Conditional scan result:
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
    New objects : 7
    Objects found so far: 31


    5:56:16 PM Scan complete

    Summary of this scan
    ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
    Total scanning time :00:00:55:875
    Objects scanned :39003
    Objects identified :31
    Objects ignored :0
    New objects :31
     
  10. dai

    dai

    Joined:
    Mar 6, 2003
    Messages:
    11,198
    looks to have picked everything up,but i am not that good with hijack.
    run adaware and spybot on a regular basis
    your firewall keeps hackers out the unwanted guests come in when you visit a site and d/l with these hidden in the d/l
     
  11. TheRef310

    TheRef310

    Joined:
    Jun 4, 2003
    Messages:
    141
    Seems like you got everything.

    I think that having more than one spy/ad - ware program isn't overkill, just playing it safe. I personally have Pop-up stopper, ad - aware, spy sweeper, and X-Cleaner, and Sygate free Firewall, (If I wasn't poor, I'd go for the full version, but alas, it wasn't meant to be!)
     
  12. TheRef310

    TheRef310

    Joined:
    Jun 4, 2003
    Messages:
    141
    Remember, you can NEVER be too paranoid ; )
     
  13. Disturbed

    Disturbed Thread Starter

    Joined:
    Jul 17, 2003
    Messages:
    17
  14. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - switched propertys please
  1. brady5999
    Replies:
    2
    Views:
    143
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/165832

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice