Help Please

[Lali]

I've had some problems the last week or so with my browser not working, I get the page can not be found error. This morning then I get on and over half of my desktop is my browser homepage but it's not actually there. There was a message about the "Desktop" and my hubby clicked on something, that's when this started.

I installed hijackthis and ran this scan:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:43:14 AM, on 8/14/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Lexmark X6100 Series\lxbfbmgr.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\Lexmark X6100 Series\lxbfbmon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\CTSvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\PROGRA~1\Yahoo!\YOP\SSDK02.exe
C:\Program Files\Desktop Alert\desktopalert_2347582.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://att.my.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O3 - Toolbar: WeatherBug Browser Bar - powered by MyWebSearch - {8EAB99C9-F9EC-4b64-A4BA-D9BCAE8779C2} - C:\Program Files\MyWebSearchWB\bar\1.bin\W6BAR.DLL
O4 - HKLM\..\Run: [Lexmark X6100 Series] "C:\Program Files\Lexmark X6100 Series\lxbfbmgr.exe"
O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\PROGRA~1\Symantec\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 - Startup: Desktop Alert.lnk = C:\Program Files\Desktop Alert\desktopalert_2347582.exe
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\dtv\EXPLBAR.DLL
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/win...ls/en/x86/client/wuweb_site.cab?1208544254892
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1208622204514
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://cam1.sturgisrallycams.com/activex/AxisCamControl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTSvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\PROGRA~1\Symantec\isPwdSvc.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 7512 bytes


ANY and ALL help is GREATLY appreciated.

Thank you.

 

[Cinders]

Weather Bug, My Web Search, DeskTop Alert all seem to be problems. I'll let a mod drop on in and do the rest with you.

 

[raybay]

The real clue here is missing... and that is what your husband clicked on... to change the configuration. You need to talk in detail about that.
Weather Bug and My Web Search are normal. Do not know Desk Top Alert nor TuneUp DeFrag Service. How long have they been installed?
You may have security software conflicts... as there are AOL, Symantec, Adware, and Spyware Doctor. Spyware Doctor doesn't always play nice with Symantec.
I would turn off Symantec... Jot down all the serial numbers, and product IDs in About, so you can return it to normal.
What part of AOL is installed? Many is the time I have seen AOL mess with browser home pages. I would remove and reinstall AOL... to the extent of going to www.majorgeeks.com to download from the registry section RegCleaner by Juoni Viourno. Once installed, go through the registry it provides to remove every aspect of AOL. You can reinstall AOL when your are through with this exercise, if you need to.
Then I would update to Explorer 7.0 and Adaware 2008, do Microsoft Updates.

There are some fixes at Microsoft under "Restore home page" you should try.

Then reboot.

If things are back to normal, you can reinstall AOL.

Otherwise, I would download and run free scans by MBAM MalwareBytes and SuperAntiSpyware to see if other evils are detected.

 

[Lali]

thank you Raybay. I wasn't in here when he clicked on it. After he'd left for work, I came in the computer room to get on here, that's when I noticed the problem, I called him and I posted EXACTLY what he told me.

Desktop alert is our local t.v. station's pgm, I"ve had it on here for years. I don't know how AOL keeps getting on here, or putting itself on, I don't use AOL.

 

[Lali]

Ok, found the problem with the display. It was just in my setings. Got that fixed. Now I have to figure out why I have a GREEN vertical line about 1/3 of the way across my screen. Teeny, thin line about 1/3 across, one third of the screen is to the left of the line, two thirds of the screen is on the right of the line.

Any ideas there?

 

[SpiritWind]

Programs

Hi :

Your Choices for Security Programs is not that good . In the latest Testing done by
an INDEPENDENT Source, Norton got only a very poor 18% "Prevention rate"' ;
there are FREE antiVIRUS programs that do better than that, namely Avast
( www.avast.com ) and Avira/AntiVir . And currently the experienced "Malware-
Fighters" are recommending "SUPERAntiSpyware" from
www.superantispyware.com, NOT the no longer top quality Ad-Aware .

"Weatherbug" is considered an undesirable Adware program ; would encourage
you to read the Info at www.searchlores.org/weatherbug.htm and consider using
the Removal Guidelines at www.pchell.com/support/weatherbug.shtml .

 

[Lali]

I have, and am using Avast and Super Antispyware. Thanks.

No suggestions on this green line? how to get it off my screen? it annoys me big time.

Thanks again, for any and all help.

 

[raybay]

About 87 percent of the time, the cause is incorrect settings, But it can mean a monitor gone bad, or a defective Flex cable... particularly if the line is really green.
First change your monitor/screen settings to 16 bit, and be sure they are no greater than1024 X 768.
Then play with the settings on down to 800 X 600 to see if you can get it to reset, then slowly move back to 1024 X 768. Do not go higher, unless your monitor/ screen has settings for those higher ratios.

It is usually caused by the user trying to squeeze more resolution or contrast out of the monitor than the screen can handle.

 

[raybay]

After you meddle with it, shut down and let it rest for at least a couple of hours or longer.

 

[Lali]

OMG, ok, thank you Ray. I moved the computers around the day before this green line appeared, could the cable be loose?

the line is VERY green but it's very thin, it's really a beautiful shade of . . . . grass I guess you'd say, vivid bright grass green. It's about the size of . . . if you took a mechanical pencil and drew a line, right down the screen, top to bottom.

The settings are the same as I've had for 5 or 6 years, whenever I got the monitor.

It's a ViewSonic ViewPanel VP230mb monitor.

When I leave the monitor, I always turn it off.

I'll let you know.

thanks again.

 

[Lali]

Hello, me again.

I still can't find a way to get rid of this green line. Any other suggestions?

Thank you for any and all help. It is truly appreciated.

 

[raybay]

Doubt that you will. That is a sign of early failure of the monitor. Time to shop for a new, better mone.