TechSpot

dont know what to make of this HJT log, I'd like to learn

By jtx
Jul 4, 2005
  1. I would just like to know if my computer is clean or not and I would like to know how to read these things myself, at least the basics.
     
  2. zephead

    zephead TechSpot Paladin Posts: 1,569

    what do you mean by 'clean'? perhaps it is your best interest to run ad-aware or some other spyware scanner and an antivirus software. just make sure they're up to date and you should have the answer soon enough.

    and yes, i glanced at your log and didn't see anything likely to make trouble. but there could be more, i didn't go through it line-by-line...
     
  3. jtx

    jtx TS Rookie Topic Starter

    thanks for looking

    I'm pretty paranoid about whats on my comp so I try to use the "cleaners/preventers/scanners" that most people recommend. I frequently (at the very least once a day, always updated) use ad-aware, spybot S&D, spywareblaster, and run kaspersky antivirus which I run full system scans at least once a week. I also have a NAT router with built in firewall. I will sometimes run CWshredder but have never found anything. I check windows updates a lot. I also sometimes run the ad-aware vx2 cleaner plugin. Occasionaly I will use some online scanners like Panda or SpySweeper. I also check msconfig frequently to make sure nothing new has popped up in start-up programs. I have also used answersthatwork.com to check my running progs.

    I am doing all I know to do to keep my system and connection fast and clean . except analyzing a HJT log of my system. Oh and I use mozilla/firefox. I really appreciate any advice.

    Thanks - jtx
     
  4. RealBlackStuff

    RealBlackStuff TS Rookie Posts: 6,503

    Boot in Safe Mode.
    Switch System restore OFF, see how here.
    Next, run a HJT scan and place a tick-mark in the little square before (if still there):

    ...................................................................................................
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)
    O9 - Extra button: Noble Poker - {B723B1B8-9788-4684-ADA7-D1DB02E1D516} - D:\Games etc\poker\Noble Poker\casino.exe
    O9 - Extra 'Tools' menuitem: Noble Poker - {B723B1B8-9788-4684-ADA7-D1DB02E1D516} - D:\Games etc\poker\Noble Poker\casino.exe
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - blank (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - blank (file missing)
    O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing)
    O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing)
    O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
    O16 - DPF: {0006F063-0000-0000-C000-000000000046} (Microsoft Outlook View Control) - http://activex.microsoft.com/activex/controls/office/outlctlx.CAB
    O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
    O16 - DPF: {2FC9A21E-2069-4E47-8235-36318989DB13} (PPSDKActiveXScanner.MainScreen) - http://ppupdates.ca.com/downloads/scanner/axscanner.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120109780968
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
    ...................................................................................................
    Now click on the Fix Checked button in HJT.

    When done, from between the dotted lines, delete the highlighted bold files.
    When a \directory-name\ is bold, delete everything in it, including that directory itself.
    Delete all files and directories from: C:\Documents and Settings\[username]\Local Settings\Temp
    Repeat this for ALL [usernames].
    Delete all files and directories from: C:\WINDOWS\Temp (except files dated from TODAY).

    O10 - Broken Internet access because of LSP provider 'xfire_lsp_10650.dll' missing
    To fix, see my thread: Broken Internet access with xxx.dll
    and substitute xfire_lsp_8742.dll with "your" missing file name.
    Do NOT delete ANY other files!

    Boot normal. When all OK, switch System Restore back on.
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...