Results 1 to 2 of 2

Thread: security centre does not recognise AVG anti-virus.

  1. 03-15-2008, 04:22 AM #1
    premsudhir
    premsudhir is offline Junior Member
    Join Date
    Mar 2008
    Posts
    1

    security centre does not recognise AVG anti-virus.

    Dear sirs,

    My security centre of windows xp 64-bit stoped recognising AVG anti-virus after I scanned my compuuter with spy-bot search & destroy .

    plase help.
    I want my security centre to recognise AVG -anti virus like before - I scanned it with spy bot

    hijack this log file is as below;

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 2:32:44 PM, on 3/15/2008
    Platform: Windows 2003 SP2 (WinNT 5.02.3790)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
    C:\Program Files (x86)\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
    C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
    C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
    C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    C:\Program Files (x86)\Common Files\Bentley Shared\IEG\IEGLCS\IEGLicSrv.exe
    C:\Program Files (x86)\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
    C:\Program Files (x86)\Raxco\PerfectDisk\PDAgent.exe
    C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
    C:\Program Files (x86)\SiteAdvisor\6253\SAService.exe
    D:\Tally\tallylicserver.exe
    D:\Tally\Tally72.exe
    C:\Program Files (x86)\Raxco\PerfectDisk\PDEngine.exe
    C:\WINDOWS\SysWOW64\ctfmon.exe
    C:\PROGRA~2\Grisoft\AVG7\avgcc.exe
    C:\Program Files (x86)\SiteAdvisor\6253\SiteAdv.exe
    C:\Program Files (x86)\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\iPod\bin\iPodService.exe
    C:\PROGRA~2\MOZILL~1\FIREFOX.EXE
    C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

    http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

    http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

    http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

    http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride =

    *.local
    F2 - REG:system.ini: UserInit=userinit
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -

    C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files

    (x86)\SiteAdvisor\6253\SiteAdv.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -

    C:\PROGRA~2\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files

    (x86)\Java\jre1.6.0_01\bin\ssv.dll
    O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program

    Files (x86)\SiteAdvisor\6253\SiteAdv.dll
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft

    Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [SiteAdvisor] "C:\Program Files (x86)\SiteAdvisor\6253\SiteAdv.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files (x86)\Grisoft\AVG Anti-Spyware

    7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader

    8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe"

    -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [XPRepairPro2007] C:\Program Files (x86)\XP Repair Pro

    2007\XPRepairPro.exe /r
    O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User

    'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User

    'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User

    'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User

    'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User

    'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User

    'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User

    'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User

    'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common

    Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files

    (x86)\Microsoft Office\Office12\ONENOTEM.EXE
    O4 - Global Startup: Service Manager.lnk = C:\Program Files (x86)\Microsoft SQL

    Server\80\Tools\Binn\sqlmangr.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel -

    res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files

    (x86)\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -

    C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} -

    C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} -

    C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -

    C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program

    Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} -

    C:\Program Files\Messenger\msmsgs.exe
    O15 - ESC Trusted Zone: http://runonce.msn.com
    O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) -

    https://support.microsoft.com/OAS/ActiveX/MSDcode.cab
    O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
    O17 - HKLM\System\CCS\Services\Tcpip\..\{2820B1E8-932D-4C40-BDF1-C31F3BEC1E47}:

    NameServer = 59.144.127.16,59.144.127.17
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} -

    C:\PROGRA~2\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common

    Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common

    Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: Autodesk Network Licensing Service - Autodesk, Inc. - C:\Program Files

    (x86)\Common Files\Autodesk Shared\Service\AdskNetSrv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files

    (x86)\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. -

    C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. -

    C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
    O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. -

    C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files

    (x86)\Bonjour\mDNSResponder.exe
    O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner -

    C:\WINDOWS\System32\dmadmin.exe (file missing)
    O23 - Service: Event Log (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe

    (file missing)
    O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C:\WINDOWS\System32\lsass.exe

    (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation -

    C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Bentley License Client (IEGLicSrv) - Bentley Systems Inc. - C:\Program

    Files (x86)\Common Files\Bentley Shared\IEG\IEGLCS\IEGLicSrv.exe
    O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner -

    C:\WINDOWS\system32\imapi.exe (file missing)
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files

    (x86)\iPod\bin\iPodService.exe
    O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner -

    C:\WINDOWS\system32\msdtc.exe (file missing)
    O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero

    BackItUp\NBService.exe
    O23 - Service: Net Logon (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file

    missing)
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common

    Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: NT LM Security Support Provider (NtLmSsp) - Unknown owner -

    C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files

    (x86)\Raxco\PerfectDisk\PDAgent.exe
    O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files

    (x86)\Raxco\PerfectDisk\PDEngine.exe
    O23 - Service: Plug and Play (PlugPlay) - Unknown owner -

    C:\WINDOWS\system32\services.exe (file missing)
    O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner -

    C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner -

    C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner -

    C:\WINDOWS\system32\sessmgr.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program

    Files (x86)\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: Security Accounts Manager (SamSs) - Unknown owner -

    C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files

    (x86)\SiteAdvisor\6253\SAService.exe
    O23 - Service: Tally License Server (NT) (Tally License Server) - Unknown owner -

    D:\Tally\tallylicserver.exe
    O23 - Service: Virtual Disk Service (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe

    (file missing)
    O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

    (file missing)
    O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner -

    C:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing)

    --
    End of file - 10076 bytes
    Reply With Quote Reply With Quote
  2. 03-15-2008, 09:11 AM #2
    jholland1964's Avatar
    jholland1964
    jholland1964 is offline Administrator
    Join Date
    Aug 2006
    Location
    The Middle
    Age
    80
    Posts
    4,079
    Follow all the steps given here
    Post back with all requested logs.
    We are somewhat short handed here this weekend as two of us will be away until Sunday evening but we will get back with you on those logs as soon as possible.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules