Microsofts regedit.exe i Dont use registry cleaners i just edit the registry directly....I do NOT reccomend people do this...I have been trained to use registry editor !!
Member
Microsofts regedit.exe i Dont use registry cleaners i just edit the registry directly....I do NOT reccomend people do this...I have been trained to use registry editor !!
Windows XP Pro w/SP3
AMD Phenom II X4 955 B.E. (C2) OC'd to 3.8Ghz
ASUS M4N82 Deluxe 980a SLI Mobo
EVGA GeForce GTX 580 1536MB
Corsair CM2X2048-8500C5D Dual Channel
SATA WD 300GB Velociraptor
WD 1TB Caviar Black
LG GH22LS30 CD/DVD Burner
PC Power & Cooling Silencer 750W
ViewSonic G90FB 19" CRT Monitor
Harmon Kardon Speakers (3)
Coolermaster ATCS 840 Full Tower
3x230mm, 1x120mm, Optional: 3x Scythe S-Flex SFF21G 120mm
ZALMAN CNPS 10X Extreme CPU Cooler
Steelseries 6GV2 Keyboard
Member
Ok here is the next LOCO log I have bolded the things I think should be removed....I've googled them to no help....
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:13:52 PM, on 7/29/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\James\Desktop\HijackThis.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762# # (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\SysWOW64\ZoneLabs\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 5416 bytes
Ok now I need expert help....I WANT to remove the bolded entries from his system...but googling them gives no positive results so I'll ask here. He uses no Apple Products or services and has no Windows Live account and doesnt want one> Help on the bolded items would be appreciated
IF they are not necessary to Win 7 OS then I will remove them...But sincce I can't find any reliable info on the bolded items....I've posted them here. Please remember...he only has a ONE Mb/s connection shared between two comps....my "mission" is to remove anything that EVER tries to use any of his connection bandwidth.
EDIT: Ok, I just found out that for HIS particular system Windows Live Writer is useless...so that can go...all that leaves is the bonjour thingy...he uses no Apple or Mac devices and will never use them or iTunes....so...axe bonjour also?
DISCLAIMER:
This is ONLY posted for a particular person with a particular comp with particular needs...DO NOT attempt to do the things I have done. Ask a professional on this site FIRST.
Last edited by Ghot; 07-29-2010 at 11:14 PM.
Windows XP Pro w/SP3
AMD Phenom II X4 955 B.E. (C2) OC'd to 3.8Ghz
ASUS M4N82 Deluxe 980a SLI Mobo
EVGA GeForce GTX 580 1536MB
Corsair CM2X2048-8500C5D Dual Channel
SATA WD 300GB Velociraptor
WD 1TB Caviar Black
LG GH22LS30 CD/DVD Burner
PC Power & Cooling Silencer 750W
ViewSonic G90FB 19" CRT Monitor
Harmon Kardon Speakers (3)
Coolermaster ATCS 840 Full Tower
3x230mm, 1x120mm, Optional: 3x Scythe S-Flex SFF21G 120mm
ZALMAN CNPS 10X Extreme CPU Cooler
Steelseries 6GV2 Keyboard
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote