Home Messages Index
[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index

Re: Windows media player

  • Subject: Re: Windows media player
  • From: "Martin Dawson" <mmd@martin1.worldonline.co.uk>
  • Date: Fri, 3 Dec 2004 21:19:21 +0000 (UTC)
  • Injector-info: news.mailgate.org; posting-host=lb1.onspeed.com; posting-account=23959; posting-date=1102090450
  • Newsgroups: uk.comp.misc
  • Organization: Mailgate.ORG Server - http://www.Mailgate.ORG
  • References: <1a7b1011aea26945407874261e94d60c.23959@mygate.mailgate.org> <cofgtn$2g2c$1@godfrey.mcc.ac.uk> <9f199393d66811f5e10ed13b5c6f8da2.23959@mygate.mailgate.org> <coh7e3$pid$1@godfrey.mcc.ac.uk> <c2489eadebee763fae9bf4f47452c205.23959@mygate.mailgate.org> <xn0dqdjvb10k7o001@news.individual.net> <971a6a07bda92b0a0008e295800bc431.23959@mygate.mailgate.org> <xn0dqhqoq36bmr002@news.individual.net> <7eb030ddcfb7942d13684a5d63c1acc9.23959@mygate.mailgate.org> <slrncqsbk5.340.spam@neutron.nukesoft.co.uk> <f8a7a46ee91af968cacb48a5b73e76ad.23959@mygate.mailgate.org> <slrncquk2b.368.spam@neutron.nukesoft.co.uk> <2e39bb2fc6b7bde4eac912bf41ae141c.23959@mygate.mailgate.org> <slrncr1kva.4k.spam@neutron.nukesoft.co.uk>
  • User-agent: Mailgate Web Server
  • Xref: news.mcc.ac.uk uk.comp.misc:53969
"Marcus Houlden" <spam@nukesoft.co.uk> wrote in message
slrncr1kva.4k.spam@neutron.nukesoft.co.uk">news:slrncr1kva.4k.spam@neutron.nukesoft.co.uk

> On Thu, 2 Dec 2004 21:37:48 +0000 (UTC), Martin Dawson <mmd@martin1.worldonline.co.uk>
> wrote the following to uk.comp.misc:
> Logfile of HijackThis v1.97.7
Scan saved at 19:26:37, on 03/12/2004
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG6\avgserv.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE
C:\Program Files\ONSPEED\onspeed.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Martin\Local Settings\Temp\Temporary Directory
1 for hjt.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.findit.co.uk/cars/kitcar.htm
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} -
C:\Program Files\ONSPEED\PBHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:\PROGRA~1\SPYBOT~1\SDHelper.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} -
C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] C:\Program Files\Adaptec\Easy CD
Creator 5\DirectCD\DirectCD.exe
O4 - HKCU\..\Run: [monitor] monitor.exe
O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /A
"C:\WINDOWS\System32\E_S20.tmp"
O4 - Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft
Office\Office\FINDFAST.EXE
O4 - Startup: Office Startup.lnk = C:\Program Files\Microsoft
Office\Office\OSA.EXE
O4 - Global Startup: ONSPEED.lnk = C:\Program Files\ONSPEED\onspeed.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program
Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions
present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel
present
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Messenger (HKLM)
O10 - Unknown file in Winsock LSP: c:\progra~1\onspeed\sliplsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\onspeed\sliplsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\onspeed\sliplsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\onspeed\sliplsp.dll
O12 - Plugin for .spop: C:\Program Files\Internet
Explorer\Plugins\NPDocBox.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

 
> Did you remember to select the text before you copied it? (Thanks.)Here it is


I downloaded a programme called STARTER which looks at what's going on
at startup and the windows media player symbol is show in the rgistry at
HK USER under RUN and is called MONITOR EXE, I disabled this but when
re-booted the player didn't load so it stopped the player coming up.
Do you think I'm on the right track?
Thanks, Martin.




-- 
Posted via Mailgate.ORG Server - http://www.Mailgate.ORG

[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index