Luke7_23 Posted January 3, 2005 Report Share Posted January 3, 2005 Logfile of HijackThis v1.99.0Scan saved at 11:26:31 PM, on 1/2/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\LEXBCES.EXEC:\WINDOWS\system32\LEXPPS.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Zone Labs\ZoneAlarm\zlclient.exeC:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exeC:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exeC:\WINDOWS\system32\CTHELPER.EXEC:\Program Files\Lexmark X1100 Series\lxbkbmgr.exeC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Program Files\XP Tools\xptools.exeC:\Program Files\Lexmark X1100 Series\lxbkbmon.exeC:\Program Files\XP Tools\xptools.exeC:\Program Files\SpywareGuard\sgmain.exeC:\Program Files\SpywareGuard\sgbhp.exeC:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exeC:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exeC:\WINDOWS\system32\CTsvcCDA.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\ZONELABS\vsmon.exeC:\WINDOWS\system32\MsPMSPSv.exeC:\Program Files\Internet Explorer\iexplore.exeC:\WINDOWS\explorer.exeC:\Program Files\Messenger\msmsgs.exeC:\HJT\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.bellsouth.net/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\YAHOO!\COMPAN~1\INSTALLS\cpn\ycomp5_5_7_0.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\YAHOO!\COMPAN~1\INSTALLS\cpn\ycomp5_5_7_0.dllO4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUPO4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exeO4 - HKLM\..\Run: [CTHelper] CTHELPER.EXEO4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXEO4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe"O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKCU\..\Run: [XP Tools] C:\Program Files\XP Tools\xptools.exe /minO4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quietO4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeO8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htmO8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htmO8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htmO9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dllO16 - DPF: {FA3662C3-B8E8-11D6-A667-0010B556D978} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/_media/dalaillama/ampx.cabO23 - Service: AVG7 Alert Manager Server - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exeO23 - Service: AVG7 Update Service - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exeO23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exeO23 - Service: LexBce Server - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXEO23 - Service: TrueVector Internet Monitor - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exeSorry for not posting right place while ago. Link to post Share on other sites
Dan Posted January 3, 2005 Report Share Posted January 3, 2005 It's Ok.Before anyone gets to your log, are you sure it's not your providers fault....??? Link to post Share on other sites
Luke7_23 Posted January 3, 2005 Author Report Share Posted January 3, 2005 What ways could I check this? I've looked at the home page for the system status and there are no updates/alerts right now. I don't know why I hadn't thought of emailing them to check more in depth. Guess I just always assume it's some software/hardware issue on my side being what I went through when I first got this computer from a friend. Loooong story.I'll post something here when I find out. Tomorrow, I'm sure. Link to post Share on other sites
Dan Posted January 3, 2005 Report Share Posted January 3, 2005 Ok, you can try calling them too. Link to post Share on other sites
Luke7_23 Posted January 3, 2005 Author Report Share Posted January 3, 2005 Call? That's so....personal. HA Seriously though, I'm going to bed right now. I've found a program (HelpCenter) that they have to help with DSL connections. Don't know if it matters or you noticed, but I'm using BellSouth by the way. I'll be back tomorrow evening and post what's happened. Thanks for pointing out the obvious. Sometimes, often for me, they are the most overlooked solutions.Thanks so far for your time and help.God bless. Link to post Share on other sites
Dan Posted January 3, 2005 Report Share Posted January 3, 2005 No problem!!Good nite, and a happy new year to you!dk Link to post Share on other sites
Luke7_23 Posted January 3, 2005 Author Report Share Posted January 3, 2005 Ok, I'm pretty sure I found the problem this morning. ZoneAlarm had blocked a generic host process from happening (launchmodem). I am assuming that this command takes place each time I go from an idle to active state or something such as that. The dialog box for this being blocked was up when I got up this morning, I just don't know why it didn't appear any time earlier. Anyway, I guess this problem is solved as I was able to reconnect without having to reboot. If the problem occurs again, I'll check back. Thanks again for your time and patience with my stupidity. But to make an excuse for myself, this is the first time I've ever had to use or ever have used a firewall.God bless you all for the services that you are providing. Link to post Share on other sites
Luke7_23 Posted January 3, 2005 Author Report Share Posted January 3, 2005 Well, it did it again. But it's just something I'll have to configure somehow in my firewall. I just haven't found it yet. I can fix it with the HelpCenter app by releasing and renewing my IP. It's something with my firewall though. I'll play around with it tonight. Oh, I'll let you know what all happened just in case someone else comes through with this same or similiar problem. Link to post Share on other sites
Dan Posted January 4, 2005 Report Share Posted January 4, 2005 It's ok. This is Besttechie.net forums. We are here to help. Thanks for telling me what had happend. I hope that your problem will be fixed soon.dk Link to post Share on other sites
Recommended Posts