Results 1 to 19 of 19
Hybrid View
-
21st June 2007 15:03 #1Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
( 3-4 ), "Search" 30 ... , - . . .
-
21st June 2007 15:55 #2
. , .. . spyware? event log-a ?
24/7|Rampage IV Extreme BE|Xeon 1680v2@4.7GHz 1.45V|88GB DDR3 Crucial Ballistix @2230MHz 9-9-10-33 @1.45v|rx580 @1450/2100|NVMe SP 256GB + 1TB Kingston A2000 + 2x1TB F1 + 2TB Toshiba|Corsair RM850|HAF 932|Water Cooled - Thermochil PA120.3 + Alphacool NexXxoS Monsta 480 + EK Supremacy EVO + MCP655
-
21st June 2007 18:56 #3Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
-
21st June 2007 23:03 #4Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
XP, , 4 . .
?
-
22nd June 2007 00:44 #5Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
http://www.kellys-korner-xp.com/xp_s.htm
Search - Doesn't Work.
.
-
22nd June 2007 09:25 #6Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
.
. . . .
Edit:
... , Shortcut , exe ( )... . windows- 4 , ( , , bsplayer, sony vegas, googleearth, autocad, demon tools, , dremweaver, nero, ACE mega pack, photoshop, AVG antivirus, Sygate firewall) The Matrix - Path of Neo. , . .
ilko !Last edited by tir256; 22nd June 2007 at 09:48.
-
22nd June 2007 13:16 #7Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
Google desktop ?
indexing service , .
-
22nd June 2007 18:19 #8Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
Google desktop .
indexing service?
-
22nd June 2007 21:45 #9Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
start->run
services.msc
indexing service , properties , search- a startup type- automatic. stop search- a startup type disabled.
search- a srchasst.inf ? ?
zip - , , .
-
22nd June 2007 23:03 #10Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
indexing service .
search-a :
...
-
22nd June 2007 23:14 #11Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
"" search assistant:
http://www.kellys-korner-xp.com/regs...ldSearchOn.reg
log off - on.
, , , ?
HiJackThis .
- safe mode ?
- my computer ctrl + F ?Last edited by ilko; 22nd June 2007 at 23:20.
-
23rd June 2007 12:28 #12Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
repair- Windows-a
http://www.rwkdesign.com/public/Wind...44-x86-enu.exe
CPU useg-a 50%
search-a CPU useg 50% ...
-
23rd June 2007 13:09 #13Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
, windows scripting host, , .
HiJackThis, Do a system scan and save a log file .
Process Explorer , . Google.
-
23rd June 2007 13:46 #14Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
. ... ... , .
Edit:
Logfile of HijackThis v1.99.1
Scan saved at 13:46:36, on 23.6.2007 ?.
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
don`t send. .Code:Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sygate\SPF\smc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\Datecs\Flex2K.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Avant Browser\avant.exe C:\Program Files\Winamp\winamp.exe C:\Documents and Settings\tir256\Desktop\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://data.bg/ R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file) O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file) O2 - BHO: (no name) - {38DFDADF-BA43-4C43-7890-ACAF12375911} - (no file) O2 - BHO: (no name) - {38DFDADF-BA43-4C43-7890-ADE6777666BB} - (no file) O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.19.dll O2 - BHO: (no name) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - (no file) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Global Startup: FlexType 2K.lnk = ? O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: Add to AD Black List - C:\Program Files\Avant Browser\AddToADBlackList.htm O8 - Extra context menu item: Block All Images from the Same Server - C:\Program Files\Avant Browser\AddAllToADBlackList.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Highlight - C:\Program Files\Avant Browser\Highlight.htm O8 - Extra context menu item: Open All Links in This Page... - C:\Program Files\Avant Browser\OpenAllLinks.htm O8 - Extra context menu item: Open In New Avant Browser - C:\Program Files\Avant Browser\OpenInNewBrowser.htm O8 - Extra context menu item: Search - C:\Program Files\Avant Browser\Search.htm O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} - http://www.albatross18.com/season2/cabs/A18X.ocx O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shoc...sh/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{C8DBFF76-9DBB-45D6-8AA0-4C22082E7143}: NameServer = 87.120.41.237,212.36.24.3 O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
: ... .
-
23rd June 2007 14:00 #15Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
FIX NOW internet windows explorer. , .O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: (no name) - {38DFDADF-BA43-4C43-7890-ACAF12375911} - (no file)
O2 - BHO: (no name) - {38DFDADF-BA43-4C43-7890-ADE6777666BB} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.1 9.dll
O2 - BHO: (no name) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
Process Explorer , , task manager , HP ?
, , Kaspersky.com , , .
start->run eventvwr.msc system applications .
-
23rd June 2007 14:06 #16Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
. .
Process Explorer. task manager-a ... - 20Code:Logfile of HijackThis v1.99.1 Scan saved at 14:04:07, on 23.6.2007 ?. Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sygate\SPF\smc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\Datecs\Flex2K.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Winamp\winamp.exe C:\Program Files\Avant Browser\avant.exe D:\Archive 1\progs\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://data.bg/ R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Global Startup: FlexType 2K.lnk = ? O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: Add to AD Black List - C:\Program Files\Avant Browser\AddToADBlackList.htm O8 - Extra context menu item: Block All Images from the Same Server - C:\Program Files\Avant Browser\AddAllToADBlackList.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Highlight - C:\Program Files\Avant Browser\Highlight.htm O8 - Extra context menu item: Open All Links in This Page... - C:\Program Files\Avant Browser\OpenAllLinks.htm O8 - Extra context menu item: Open In New Avant Browser - C:\Program Files\Avant Browser\OpenInNewBrowser.htm O8 - Extra context menu item: Search - C:\Program Files\Avant Browser\Search.htm O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} - http://www.albatross18.com/season2/cabs/A18X.ocx O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{C8DBFF76-9DBB-45D6-8AA0-4C22082E7143}: NameServer = 87.120.41.237,212.36.24.3 O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
. !
Edit: . system , applications - warning. screenshot-?
: , . AVG.
:
... ... CPU Usage-a 2% : ...
fire-walla . AVG Sygate. -?
Last edited by tir256; 23rd June 2007 at 18:46.
-
24th June 2007 00:12 #17Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
, windows

, event viewer, - , . 1-2 , , - AVG ActiveVirusShield, .
-
24th June 2007 01:24 #18Registered User
Join Date: Jan:2007
Location: Bulgaria
Posts: 49
3 3-4 1 : .
ilko.
.
!
-
24th June 2007 13:42 #19Registered User
Join Date: Dec:2005
Location: yvr
Posts: 5,167
,




Reply With Quote
R9 280,
7th May 2023, 21:28 in