advice please

sol

Joined
Jul 13, 2007
Messages
108
Reaction score
0
ime not 100 per cent but ime sure theres something on my pc,i had a virus wipe my hard drive before & i dont want it happening again.last time i used spybot s&d & ad-aware but none of them came up with anything even though there was indeed a virus.can anyone recommend anything that will check it but that a novice like me can use,would like to use HJT but unsure.pc specs are
windows xp home sp2
virgin pc guard
all windows are up to date,firewall etc
windows defender
IBM 247mb
intel pentium 4ht
intel(r)pentium(r)4cpu 2.80GHZ
intel(r)82865G graphics controller
modem 56k

i hope i have done this right & given you the correct info.any help would be more than welcome.thankyou
 
i only have the windows antivirus & the pc guard one & i am the only one who uses this pc so there should only be myself & admin account if that makes any difference, i did the HJT & heres the results-thankyou for your support it really is appreciated.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:26:01 PM, on 7/19/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virgin Broadband\PCguard\fws.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Command Software\dvpapi.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe
C:\Program Files\Virgin Broadband\PCguard\Rps.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Virgin Broadband\PCguard\PrtlAgt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O2 - BHO: Pop-Up Blocker BHO - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\Virgin Broadband\PCguard\pkR.dll
O2 - BHO: Form Filler BHO - {56071E0D-C61B-11D3-B41C-00E02927A304} - C:\Program Files\Virgin Broadband\PCguard\FBHR.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Broadbandadvisor.exe] "C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe" /AUTORUN
O4 - HKLM\..\Run: [PCguard] "C:\Program Files\Virgin Broadband\PCguard\Rps.exe"
O4 - HKLM\..\Run: [MP10_EnsureFileVer] C:\WINDOWS\inf\unregmp2.exe /EnsureFileVersions
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\RunOnce: [IndexCleaner] "C:\Program Files\Virgin Broadband\PCguard\IdxClnR.exe"
O4 - HKCU\..\RunOnce: [IndexCleaner] "C:\Program Files\Virgin Broadband\PCguard\IdxClnR.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - http://solwitch66.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1183011603640
O23 - Service: DvpApi (dvpapi) - Authentium, Inc. - C:\Program Files\Common Files\Command Software\dvpapi.exe
O23 - Service: PCguard Firewall (RP_FWS) - Radialpoint Inc. - C:\Program Files\Virgin Broadband\PCguard\fws.exe

--
End of file - 3794 bytes
 
i only have the windows antivirus & the pc guard ...
Huh! Sorry, Windows does NOT have antivirus, and I wouldn't give you tuppence for ANY "security" program from ANY ISP.

Your HJT log confirms no AV running nor does it "see" a Firewall, although I see Virgin's attempt is being loaded ... surprisingly, it is clean of any nasties, although there are a couple of unnecessary entries that I would fix.


You can get HJT to fix ...
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
Unnecessary (deactivated) entry that can be fixed

O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
Not dangerous, but unnecessary. It will be available, if needed, via Start/Settings/Control Panel

O4 - HKLM\..\Run: [Broadbandadvisor.exe] "C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe" /AUTORUN
Not dangerous, but unnecessary. It will be available, if needed, via its own folder.


Bottom line is ... it is up to you ... if/do you "trust" the offering from Virgin, or would you rather have a better solution. SybotS&D & Adaware are NOT Antivirus programs, but good at detecting other 'nasties' that may infect your PC. Run 'em once a week, or if you suspect something.

We ALL need a software Firewall, Windows' offering don't cut it ... not even the one used in Vista.


user.gif
 
ok thanks for your help & support it is appreciated as ime a total novice when it comes to technicalities with computers,would i be better buying an antivirus & if so could you recommend one please,everyone else i know seems to use AVG
 
sol said:
ok thanks for your help & support it is appreciated as ime a total novice when it comes to technicalities with computers, would i be better buying an antivirus & if so could you recommend one please, everyone else i know seems to use AVG
AVG would be #5 on my list ... if you want free, then it would be at #3

I can/will only recommend "Kaspersky Internet Security" and no, I don't work for them. ;)

You can Trial it out for 30 days HERE ... if you don't like it, try something else.

KIS is an all-in-one security solution, that is, you won't need any other software to compliment it, it has its own Firewall too :thumb: ... I would go as far and say, even SBS&D & Adaware become obsolete. :eek: :p

You WILL need to uninstall any other AV programs, such as your Virgin's, but can leave the likes of SBS&D installed.

You will, initially, get a lot of popups from KIS, as by default it is installed in "training" mode, these will reduce as you "tell" it what is OK ... if you get confused, ask away, I will be only too pleased to help.


:user:
 
Back
Top