Hi! I'm only partially computer literate and have been having several problems with my computer. I've been told knowledgeable folk might be able to help me if they see my Hijack This! log, so here it is:

Logfile of HijackThis v1.99.1
Scan saved at 10:59:11 PM, on 3/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\System32\DSentry.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Netscape Internet Service\NSClient.exe
C:\Program Files\Common Files\ISPCOMP\InstallService.exe
C:\Program Files\Common Files\ISPCOMP\SystemTrayIcon.exe
C:\Program Files\Netscape Internet Service\_NSWatchman.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Marshall\My Documents\Software Setups\Standalone Software\HijackThis 1.99.1\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/yco...search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: IE7pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IE7pro\IE7pro.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Program Files\Netscape Internet Service\Netscape Web Accelerator\pbhelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [Netscape] C:\Program Files\Common Files\ISPCOMP\InstallService.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\PROGRA~1\SPYWAR~2\SpywareTerminatorShield. exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Copy Location - C:\WINDOWS\WEB\graburl.htm
O9 - Extra button: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7pro\IE7pro.dll
O9 - Extra 'Tools' menuitem: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7pro\IE7pro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: (no name) - {B06300D0-CCDE-11d2-92D3-0000F87A4A55} - C:\WINDOWS\system32\webzone.dll
O9 - Extra 'Tools' menuitem: Add to R&estricted Zone - {B06300D0-CCDE-11d2-92D3-0000F87A4A55} - C:\WINDOWS\system32\webzone.dll
O9 - Extra button: (no name) - {BF80219A-CCDD-11d2-92D3-0000F87A4A55} - C:\WINDOWS\system32\webzone.dll
O9 - Extra 'Tools' menuitem: Add to Tr&usted Zone - {BF80219A-CCDD-11d2-92D3-0000F87A4A55} - C:\WINDOWS\system32\webzone.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Offline - {FC09D8A3-C85A-11d2-92D0-0000F87A4A55} - C:\WINDOWS\system32\oline.dll
O11 - Options group: [INTERNATIONAL] International*
O17 - HKLM\System\CCS\Services\Tcpip\..\{D892334E-B99A-4B12-9D54-6F2BF3C58C9E}: NameServer = 205.188.146.145
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: O&O Defrag 2000 (OOD2000) - O&O Software GmbH - C:\WINDOWS\SYSTEM32\OOD2000.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

Have I got any problems that you can see? If I do, do you know of any ways to fix them?

Thanks!

There have been questions on SPYWARETERMINATOR - it is not a common tool of choice:

http://www.spywarewarrior.com/rogue_anti-spyware.htm


There may be possible incompatibilities with 'Windows Defender'. Certainly something was at issue:

O4 - HKLM\..\Run: [KERNELFAULTCHECK] %systemroot%\system32\dumprep 0 -k

Consider uninstalling one of the above tools - likely SPYWARETERMINATOR and/or provide more details on issues that you have been noticing.

VopThis,

I couldn't figure out how to insert your quote from my HijackThis! log into my reply, but, in any event, I haven't the slightest idea what "KERNALFAULTCHECK" and all the rest of that line even means!

The one question I DO have is why you think that Spyware Terminator might be a culprit of some sort (all it said in the link you provided is that it hadn't been tested as of 2005), as it was highly rated in "Gizmo's Support Alerts". I'm also not sure how it could have any conflict with Windows Defender, as only Spyware Terminator is running in "real time", whereas Windows Defender is set to be used only "on demand".

My main computer problem at the moment is between Firefox and eBay (eBay no longer functions correctly since the last two updates to Firefox, and shows up frequently in Firefox's "Error Console"). Another problem I have is with Yahoo! Mail being unable to connect to anyone who has a NetZero Email address.

These problems (as well as a few other minor ones) made me begin to wonder if I had other problems with my computer, as well--hence my request to review Hijack This!.

If you truly think that removing Spyware Terminator would be of some advantage to me, I will be glad to, and just go back to Windows Defender.

Please let me know your thoughts on the matter, and--if possible--please explain to me what kind of problem the line in your quote box refers to!

Thank you for your help!

MARSHALL

Info on KERNALFAULTCHECK:
http://groups.google.fr/group/micros...d8d636a65d7203

Dumprep.exe = Windows Error Reporting Dump Reporting Tool
...
If you have other, serious problems, then dumprep 0-k is automatically
enabled.

If you have Error Reporting enabled, this entry may show up for the first
time after your PC has experienced a Windows XP dump crash, or an Office
XP or Internet Explorer 6 crash where you were prompted about sending the crash results to Microsoft.

KERNALFAULTCHECK does not appear on the majority of HJT logs - it occurs when the the PC experiences an apparent problem that Microsoft should probably be made aware of. This should be of ongoing concern if such alerts appear fairly regularly - possibly for the same type of issue(s).

Spyware Terminator and Windows Defender should be OK as long as both are not running in real-time at the same time. You need to think back when your issues first appeared - was anything new loaded or updated at the time. I would look for any possible incompatibility issues between security tools - does AOL Spyware Protection Service components run in real-time.


FIREFOX Issues:
Whatever your issues, it is possible that this could be affecting the loading or updating of various applications. Suggest you download a fresh copy of FIREFOX and then disable or end running processes on the above named security tools. Thereafter, uninstall FIREFOX and then do a fresh install.



Yahoo! Mail NetZero incompatible??
http://forums.techguy.org/web-email/...ose-yahoo.html
http://www.google.ca/search?hl=en&q=...G=Search&meta=


Let us know it that helps.

VopThis: My DumpRep tool appears to already be currently disabled via My Computer > Properties > etc. (HOW, I don't know!). As for the offending Hijack This entry you found, I checked its box on the HT Scan Only list, and then clicked on the "Fix Checked" button--although I really haven't a clue as to whether this was a good thing for me to do or not (I get desperate!)!

AOL Spyware Protection service is not even installed on my machine. I downloaded its .exe installer but have never installed the program, as it refuses to install unless I remove every other anti-virus program! The only reason I have the installer still sitting on my machine, is that some tech folks seem to consider it to be a better anti-virus program than the Avast! I currently have installed, and I've been debating whether to switch.

As for my Firefox/eBay and Email problems, I'll keep working on them, and let you know if any of your suggestions and links help!

Thanks!

MARSHALL

As for the offending Hijack This entry you found, I checked its box on the HT Scan Only list, and then clicked on the "Fix Checked" button--although I really haven't a clue as to whether this was a good thing for me to do or not (I get desperate!)!

That entry was providing clues as to the nature and timing of your issues and was not specifically singled out for removal. Desparation is not a good strategy and can easily get you into trouble.

Vincent,

I realize that "desperation is not a good strategy", but, sadly, I have a serious case of Obsessive-Compulsive Disorder (ever see AS GOOD AS IT GETS with Jack Nicholson, or the TV Show MONK?) and go NUTS whenever I don't understand--or know how to fix--anything.

Not to "tell tales" on myself, but the last time time I ran into serious problems with an earlier computer of mine (thanks to one of Microsoft's Indian "technicians", whose advice completely wiped-out my entire operating system!), I literally smashed my computer, monitor, and keyboard (overkill!) to pieces with a hammer (losing all the money I paid for them, of course). Such are the consequences of having a basically incurable mental disorder!

I sincerely hope that I have not brought disaster upon myself again by deleting the suspect entry you found in Hijack This. In addition, I have just reenabled my "Error Reporting" capability, while still leaving DumpRep disabled. Naturally, I have no idea if THESE moves are a good idea, either!

I imagine that you are now having "second doubts" about giving advice to a "nut"--and understand if I don't hear from you again. In any event, I thank you profusely for all the help you've give me so far!

MARSHALL