Solve : Anti Spyware download problems.?

1.	Solve : Anti Spyware download problems.?
Answer» Hello, Mad-Friend here, my computer is a MEDIAN, about 5 or 6 years old. It uses windows XP. I do regular downloads of microsoft updates. Apart from the fact Quicktime has never worked my PC goes okay. I use AVG Antivirus. Ewido Anti spyware (which is over 2 years old). I also ran Ad-aware SE. No long able to obtain updates I uninstalled it and installed Ad-aware 2007. it took over 2 hours ( I have only dialup) and I don't think it downloaded properly, it hasn't worked right since I installed it. After running a scan it doesn't give me the option to remove the infections. Sometimes it says it can't remove them until I reboot (and then the infections are still there when I restart my PC.) Fedup with it (Ad-aware 2007) I decided to try another Anti spyware. Read through PC Advice recommendations and installed spyware terminator. Spyware terminator scanned 130 cookies but although it appeared to remove them they weren't quarantined. So I also installed Windows Defender. By now my PC was crawling along as if catatonic. Practically crashing. I didn't know what to do so I uninstalled both. Please can you advise me how to get my PC working at a resonable pace again? I have read your instructions about which Anti Spyware you recommend but before I go through the proceedure I need to know I am not going to make things worse. I have SPS2 installed. I also have ATF Cleaner (2006) hijackthis (2006) fixwelch.zip old. fixbalst.zip old. Please ask if you need anything else to help you make an assessment. Thankyou, Mad-Friend Is your AVG updated, and do you scan regularly? It looks as if at one time or another you had 3 maybe 4 anti-spyware, ad ware programs running at the same time. Ewido, ad aware, Spy Ware Terminator and It looks to me like you had 3 or 4 Anti-Spyware programs running at the same time. Ad-aware, Spyware Terminator, Ewido, and SPS2 that in itself could create a problem. Regarding Super Anti Spyware there are no guaranties but it is a very good program. I would not recommend anything however if it were me I would remove all those programs except AVG and download Super Anti Spyware, but then that's just me. Good luck with what ever you do. Quote I also have ATF Cleaner (2006) <--This is a powerful cleaner and not recommended as a daily drive cleaner. This could be part of the slowdown problems. Use CCleaner Slim instead. hijackthis (2006) <-- Not antispyware If AVG is playing up then I would suggest using Avast! Home Free For anti spyware cryhelp was spot on in suggesting SuperAntiSpyware I would also suggest using SpywareBlaster 4.0. It uses no resources, you just need to update it every other week or so. You could also post a Hijackthis log so we can see what all is running and help you get it trimmed down to size. Hello cryhelp & evilfantasy, AVG is working well, it updates daily but I must admit I don't run it regularly: it takes about 50 minutes to do a scan. Ad-Aware 2007 was the problem. The new version didn't work properly as I feel it didn't fully download. Up until this week I persivered with it and used Ewido Antispyware. I only installed Spyware Terminator & Windows Defender this week, then had to uninstall them when my PC went terminally slow. I will try to post results from Hijackthis so you can see what is going on. Thankyou both for your advice, it is much appreciated. I will download Superantispyware once you give the all-clear on the Hijackthis results. In appreciation, Mad-FriendLogfile of HijackThis v1.99.1 Scan saved at 12:01:11, on 03/05/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: INTERNET Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\Program Files\QuickTime\qttask.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\Program Files\Tesconet\Tesconet.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Microsoft Money\System\urlmap.exe C:\DOCUME~1\trish\LOCALS~1\Temp\Temporary Directory 10 for hijackthis.zip\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=677 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.tesco.net R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by WHSmithnet O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_1.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google TOOLBAR Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O6 "USB001" /M "Stylus C84" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O9 - Extra button: Money Viewer - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://www.tesco.net O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {4E544C53-6967-6E02-BBAD-233AD71832A8} (NTLSignup1 Class) - https://tesco.autoregister.net/tesco/NTLSignup.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1151075279500 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{130E35C2-9F50-49DC-9AC2-B670A46D45A8}: NameServer = 194.168.4.100 194.168.8.100 O17 - HKLM\System\CS1\Services\Tcpip\..\{130E35C2-9F50-49DC-9AC2-B670A46D45A8}: NameServer = 194.168.4.100 194.168.8.100 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe Have hijackthis fix these entries. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) Keeping AVG is fine, but you may want to try using the two other proframs I mentioned in Reply #2 instead of Spyware Terminator.Hello evilfantasy, thankyou for your reply and advice. I'll do that now then download the two Anti-spywares you recommend. Thankyou again, it really is appreciated. Yours SINCERELY, Mad-Friend.Hello evilfantasy & cryhelp, I downloaded superantispyware SUCCESSFULLY and it worked beautifully: detected and removed 86 infections. I downloaded SpywareBlaster 4.0, it too worked well, though I assume it just works on its own: scans automatically, and I need to update manually. Hijack successfully removed the 2 entries you listed. All I need to say now is a big THANKYOU your brilliant advice was spot-on. Cheers guys. Best wishes Mad-Friend. That's great news, glad everything is working well for you and thanks for posting back with the results. Good Luck to you. Quote I downloaded SpywareBlaster 4.0, it too worked well, though I assume it just works on its own: scans automatically, and I need to update manually. Yes it sets restrictions on the browser to block unwanted activities so it doesn't actually run. You will need to manually check for updates every other week or so.

Answer»

Hello, Mad-Friend here,
my computer is a MEDIAN, about 5 or 6 years old. It uses windows XP.
I do regular downloads of microsoft updates. Apart from the fact Quicktime has never worked my PC goes okay.
I use AVG Antivirus.
Ewido Anti spyware (which is over 2 years old).
I also ran Ad-aware SE.
No long able to obtain updates I uninstalled it and installed Ad-aware 2007.
it took over 2 hours ( I have only dialup) and I don't think it downloaded properly, it hasn't worked right since I installed it. After running a scan it doesn't give me the option to remove the infections. Sometimes it says it can't remove them until I reboot (and then the infections are still there when I restart my PC.)
Fedup with it (Ad-aware 2007) I decided to try another Anti spyware. Read through PC Advice recommendations and installed spyware terminator.
Spyware terminator scanned 130 cookies but although it appeared to remove them they weren't quarantined. So I also installed Windows Defender. By now my PC was crawling along as if catatonic. Practically crashing.
I didn't know what to do so I uninstalled both.
Please can you advise me how to get my PC working at a resonable pace again?
I have read your instructions about which Anti Spyware you recommend but before I go through the proceedure I need to know I am not going to make things worse.
I have SPS2 installed.
I also have ATF Cleaner (2006)
hijackthis (2006)
fixwelch.zip old.
fixbalst.zip old.
Please ask if you need anything else to help you make an assessment.
Thankyou, Mad-Friend
Is your AVG updated, and do you scan regularly? It looks as if at one time or another you had 3 maybe 4 anti-spyware, ad ware programs running at the same time. Ewido, ad aware, Spy Ware Terminator and

It looks to me like you had 3 or 4 Anti-Spyware programs running at the same time. Ad-aware, Spyware Terminator, Ewido, and SPS2 that in itself could create a problem. Regarding Super Anti Spyware there are no guaranties but it is a very good program. I would not recommend anything however if it were me I would remove all those programs except AVG and download Super Anti Spyware, but then that's just me. Good luck with what ever you do.

Quote

I also have ATF Cleaner (2006) <--This is a powerful cleaner and not recommended as a daily drive cleaner. This could be part of the slowdown problems. Use CCleaner Slim instead.
hijackthis (2006) <-- Not antispyware

If AVG is playing up then I would suggest using Avast! Home Free

For anti spyware cryhelp was spot on in suggesting SuperAntiSpyware

I would also suggest using SpywareBlaster 4.0. It uses no resources, you just need to update it every other week or so.

You could also post a Hijackthis log so we can see what all is running and help you get it trimmed down to size.

Hello cryhelp & evilfantasy,
AVG is working well, it updates daily but I must admit I don't run it regularly: it takes about 50 minutes to do a scan.
Ad-Aware 2007 was the problem. The new version didn't work properly as I feel it didn't fully download.

Up until this week I persivered with it and used Ewido Antispyware. I only installed Spyware Terminator & Windows Defender this week, then had to uninstall them when my PC went terminally slow.

I will try to post results from Hijackthis so you can see what is going on.

Thankyou both for your advice, it is much appreciated.

I will download Superantispyware once you give the all-clear on the Hijackthis results.

In appreciation, Mad-FriendLogfile of HijackThis v1.99.1
Scan saved at 12:01:11, on 03/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: INTERNET Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Tesconet\Tesconet.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Microsoft Money\System\urlmap.exe
C:\DOCUME~1\trish\LOCALS~1\Temp\Temporary Directory 10 for hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=677
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.tesco.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by WHSmithnet
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_1.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google TOOLBAR Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O6 "USB001" /M "Stylus C84"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: Money Viewer - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.tesco.net
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4E544C53-6967-6E02-BBAD-233AD71832A8} (NTLSignup1 Class) - https://tesco.autoregister.net/tesco/NTLSignup.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1151075279500
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{130E35C2-9F50-49DC-9AC2-B670A46D45A8}: NameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CS1\Services\Tcpip\..\{130E35C2-9F50-49DC-9AC2-B670A46D45A8}: NameServer = 194.168.4.100 194.168.8.100
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

Have hijackthis fix these entries.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Keeping AVG is fine, but you may want to try using the two other proframs I mentioned in Reply #2 instead of Spyware Terminator.Hello evilfantasy,
thankyou for your reply and advice. I'll do that now then download the two Anti-spywares you recommend.

Thankyou again, it really is appreciated.
Yours SINCERELY, Mad-Friend.Hello evilfantasy & cryhelp,

I downloaded superantispyware SUCCESSFULLY and it worked beautifully: detected and removed 86 infections.

I downloaded SpywareBlaster 4.0, it too worked well, though I assume it just works on its own: scans automatically, and I need to update manually.

Hijack successfully removed the 2 entries you listed.

All I need to say now is a big THANKYOU
your brilliant advice was spot-on.

Cheers guys.
Best wishes Mad-Friend. That's great news, glad everything is working well for you and thanks for posting back with the results. Good Luck to you. Quote

I downloaded SpywareBlaster 4.0, it too worked well, though I assume it just works on its own: scans automatically, and I need to update manually.

Yes it sets restrictions on the browser to block unwanted activities so it doesn't actually run. You will need to manually check for updates every other week or so.

Solve : Anti Spyware download problems.?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment