Windows Vista Think something is wrong with registry...

  • Thread starter Thread starter brad72
  • Start date Start date
B

brad72

Guest
Not sure what is going on but I have been having some strange things
occuring with-in my Vista system. 1st thing is when I open Internet
Explorer it asks me to install add-ons which I click no and it still
acts normal. Here is a post of what Hijackthis found, not that
comfortable yet with Vista to do editing without others confirming what
needs to go...

Thanks in advance for any insight and here is the copy of my log...


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:54:28 PM, on 2/21/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = 'Live
Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL
= 'Live Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 'Live
Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName
=
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper -
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -
C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files
(x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog
Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files
(x86)\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe
oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Policies\Explorer\Run: [System Patcher] BTCPatcher.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files
(x86)\Java\jre1.6.0_03\bin\ssv.dll
O13 - Gopher Prefix:
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher
Control) -
http://www.pogo.com/cdl/launcher/PogoWebLauncherInstaller.CAB
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) -
http://www.adobe.com/products/acrobat/nos/gp.cab
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown
owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner -
C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -
C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:\Program Files
(x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -
C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -
Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner -
C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner -
C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300
(ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file
missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -
Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown
owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown
owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -
Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) -
Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program
Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program
Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -
Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown
owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown
owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv)
- Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media
Player\wmpnetwk.exe (file missing)
--
End of file - 5489 bytes


--
brad72
 
Re: Think something is wrong with registry...

brad72 wrote:
> Not sure what is going on but I have been having some strange things
> occuring with-in my Vista system. 1st thing is when I open Internet
> Explorer it asks me to install add-ons which I click no and it still
> acts normal. Here is a post of what Hijackthis found, not that
> comfortable yet with Vista to do editing without others confirming what
> needs to go...
>
> Thanks in advance for any insight and here is the copy of my log...
>
>
> Logfile of Trend Micro HijackThis v2.0.2
> Scan saved at 1:54:28 PM, on 2/21/2008

> Platform: Windows Vista SP1 (WinNT 6.00.1905)

Oops. You're a beta tester?

Alias
 
Re: Think something is wrong with registry...

brad72 wrote:

>
> Not sure what is going on but I have been having some strange things
> occuring with-in my Vista system. 1st thing is when I open Internet
> Explorer it asks me to install add-ons which I click no and it still
> acts normal. Here is a post of what Hijackthis found, not that
> comfortable yet with Vista to do editing without others confirming what
> needs to go...
>
> Thanks in advance for any insight and here is the copy of my log...

(snip HJT log)

We don't analyze HijackThis logs here in the MS newsgroups. It takes a great
deal of time and expertise to work with HJT logs and there are privacy
issues as well. You will not get the attention you need here.

Register at one of the specialty forums listed below in no particular order
to get guided help with your issue:

http://aumha.org/downloads/hijackthis.zip
http://www.aumha.org/a/hjttutor.htm - HijackThis tutorial by Merijn
http://www.bleepingcomputer.com/forums/index.php?showtutorial=42 - another
tutorial
http://aumha.net/ - Click on the HijackThis forum. Read the announcement and
the stickies *first*.
http://www.atribune.org/forums/index.php?showforum=9
http://aumha.net/viewforum.php?f=30
http://www.bleepingcomputer.com/forums/forum22.html
http://castlecops.com/forum67.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html

Malke
--
MS-MVP
Elephant Boy Computers
www.elephantboycomputers.com
Don't Panic!
 
Re: Think something is wrong with registry...


Thanks for your reply I will look into a few of these links you
sent....Thanks for the links...


--
brad72
 
Re: Think something is wrong with registry...

The homepage you are trying to access whenever IE opens probably has an
activeX control or some such that it asks you to load. Either don't visit
that page (change homepage) or install the control if you trust the location
or continue to decline it. What you describe is not necessarily a registry
issue.


"brad72" <brad72.355db0@no-mx.forums.net> wrote in message
news:brad72.355db0@no-mx.forums.net...
>
> Not sure what is going on but I have been having some strange things
> occuring with-in my Vista system. 1st thing is when I open Internet
> Explorer it asks me to install add-ons which I click no and it still
> acts normal. Here is a post of what Hijackthis found, not that
> comfortable yet with Vista to do editing without others confirming what
> needs to go...
>
> Thanks in advance for any insight and here is the copy of my log...
>
>
> Logfile of Trend Micro HijackThis v2.0.2
> Scan saved at 1:54:28 PM, on 2/21/2008
> Platform: Windows Vista SP1 (WinNT 6.00.1905)
> MSIE: Internet Explorer v7.00 (7.00.6001.18000)
> Boot mode: Normal
> Running processes:
> C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
> C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
> C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
> C:\Windows\SysWOW64\DllHost.exe
> R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = 'Live
> Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
> R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
> 'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
> R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
> 'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
> R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL
> = 'Live Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
> R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 'Live
> Search' (http://go.microsoft.com/fwlink/?LinkId=54896)
> R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
> 'MSN.com' (http://go.microsoft.com/fwlink/?LinkId=69157)
> R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
>
> R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
>
> R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
> Settings,ProxyOverride = localhost
> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName
> =
> F2 - REG:system.ini: UserInit=userinit.exe
> O1 - Hosts: ::1 localhost
> O2 - BHO: Adobe PDF Reader Link Helper -
> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common
> Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
> O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -
> C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
> O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files
> (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
> O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog
> Devices\Core\smax4pnp.exe
> O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files
> (x86)\Java\jre1.6.0_03\bin\jusched.exe"
> O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe
> oobefldr.dll,ShowWelcomeCenter
> O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
> O4 - HKCU\..\Policies\Explorer\Run: [System Patcher] BTCPatcher.exe
> O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
> C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
> O9 - Extra 'Tools' menuitem: Sun Java Console -
> {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files
> (x86)\Java\jre1.6.0_03\bin\ssv.dll
> O13 - Gopher Prefix:
> O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher
> Control) -
> http://www.pogo.com/cdl/launcher/PogoWebLauncherInstaller.CAB
> O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) -
> http://www.adobe.com/products/acrobat/nos/gp.cab
> O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown
> owner - C:\Windows\System32\alg.exe (file missing)
> O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner -
> C:\Windows\system32\DFSR.exe (file missing)
> O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -
> C:\Windows\system32\lsass.exe (file missing)
> O23 - Service: LightScribeService Direct Disc Labeling Service
> (LightScribeService) - Hewlett-Packard Company - C:\Program Files
> (x86)\Common Files\LightScribe\LSSrvc.exe
> O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -
> C:\Windows\System32\msdtc.exe (file missing)
> O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -
> Unknown owner - C:\Windows\system32\lsass.exe (file missing)
> O23 - Service: PnkBstrA - Unknown owner -
> C:\Windows\system32\PnkBstrA.exe
> O23 - Service: PnkBstrB - Unknown owner -
> C:\Windows\system32\PnkBstrB.exe
> O23 - Service: @%systemroot%\system32\psbase.dll,-300
> (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file
> missing)
> O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -
> Unknown owner - C:\Windows\system32\locator.exe (file missing)
> O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown
> owner - C:\Windows\system32\lsass.exe (file missing)
> O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown
> owner - C:\Windows\system32\SLsvc.exe (file missing)
> O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -
> Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
> O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) -
> Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
> O23 - Service: Steam Client Service - Valve Corporation - C:\Program
> Files (x86)\Common Files\Steam\SteamService.exe
> O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program
> Files (x86)\Common Files\SureThing Shared\stllssvr.exe
> O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -
> Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
> O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown
> owner - C:\Windows\System32\vds.exe (file missing)
> O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown
> owner - C:\Windows\system32\vssvc.exe (file missing)
> O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv)
> - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
> O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101
> (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media
> Player\wmpnetwk.exe (file missing)
> --
> End of file - 5489 bytes
>
>
> --
> brad72
 
Re: Think something is wrong with registry...

Alias wrote:
> brad72 wrote:
>
>> Not sure what is going on but I have been having some strange things
>> occuring with-in my Vista system. 1st thing is when I open Internet
>> Explorer it asks me to install add-ons which I click no and it still
>> acts normal. Here is a post of what Hijackthis found, not that
>> comfortable yet with Vista to do editing without others confirming what
>> needs to go...
>>
>> Thanks in advance for any insight and here is the copy of my log...
>>
>>
>> Logfile of Trend Micro HijackThis v2.0.2
>> Scan saved at 1:54:28 PM, on 2/21/2008
>
>
>> Platform: Windows Vista SP1 (WinNT 6.00.1905)
>
>
> Oops. You're a beta tester?
>
> Alias

Oops you're an idiot!
Frank
 
Oops

Oops


"Alias" <iamalias@removethisgmail.com> wrote in message
news:%23tV3QdMdIHA.4844@TK2MSFTNGP04.phx.gbl...
> brad72 wrote:
>> Not sure what is going on but I have been having some strange things
>> occuring with-in my Vista system. 1st thing is when I open Internet
>> Explorer it asks me to install add-ons which I click no and it still
>> acts normal. Here is a post of what Hijackthis found, not that
>> comfortable yet with Vista to do editing without others confirming what
>> needs to go...
>>
>> Thanks in advance for any insight and here is the copy of my log...
>>
>>
>> Logfile of Trend Micro HijackThis v2.0.2
>> Scan saved at 1:54:28 PM, on 2/21/2008
>
>> Platform: Windows Vista SP1 (WinNT 6.00.1905)
>
> Oops. You're a beta tester?
>
> Alias

Oops - You Are An Idiot - Just FYI
 
Re: Oops

Re: Oops

Kevpan815@nospam.hotmale.com wrote:

>
> "Alias" <iamalias@removethisgmail.com> wrote in message
> news:%23tV3QdMdIHA.4844@TK2MSFTNGP04.phx.gbl...
>> brad72 wrote:
>>> Not sure what is going on but I have been having some strange things
>>> occuring with-in my Vista system. 1st thing is when I open Internet
>>> Explorer it asks me to install add-ons which I click no and it still
>>> acts normal. Here is a post of what Hijackthis found, not that
>>> comfortable yet with Vista to do editing without others confirming what
>>> needs to go...
>>>
>>> Thanks in advance for any insight and here is the copy of my log...
>>>
>>>
>>> Logfile of Trend Micro HijackThis v2.0.2
>>> Scan saved at 1:54:28 PM, on 2/21/2008
>>
>>> Platform: Windows Vista SP1 (WinNT 6.00.1905)
>>
>> Oops. You're a beta tester?
>>
>> Alias
>
> Oops - You Are An Idiot - Just FYI

No, dimwit, idiots capitalize every word in a sentence. Just FYI.

Cheers.

--
The three Rs of Microsoft support: Retry, Reboot, Reinstall.

Proprietary Software: a 20th Century software business model.

Q: What OS is built for lusers?
A: Which one requires running lusermgr.msc to create them?

Frank, hard at work on his Vista computer all day:
http://redwing.hutman.net/~mreed/warriorshtm/compost.htm
 

Similar threads

D
BSOD Winserver 2008 R2
Replies
0
Views
290
DeLaRefe
D
A
WAS service unable to start with the error 'the data is invalid'
Replies
0
Views
266
ashfana
A
P
Windows 10 Can anyone tell me if it's normal to have sys files fail in a normal boot?
Replies
0
Views
363
Pauljb789
P
N
The data is invalid error
Replies
0
Views
295
Nedim
N
J
Windows 10 Any idea how to solve this issue AppHangB1?
Replies
0
Views
131
Johnny Poh
J
Back
Top