Posts by DaniWeb4Jim

Great review I am learning a lot. I have removed the ones you mention and will get the file to you. I really owe you a big one. I tried everything to get rid of the virus/malware and just found this site so now I know I can remove the unnecessary ones. Iwas told by my techie friend from our ITHelp desk that AVG and AIR can work together well. I will stop them from loading together but I could not load AVG when I had the VIRUS ALERT! malware and hope I don't need it but maybe it will work when AVG falls.
I use REGCURE and can manage MSCONG so I will disable it.
Thanks again.
JIm

Here is the new file.
Thanks,
Jim

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:08:31 PM, on 10/2/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iolo\System Mechanic Professional 6\PopupBlocker.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Microsoft Office\Office\1033\msoffice.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\PROGRA~1\AVG\AVG8\aAvgApi.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://safesearch.cyberdefender.com/smallsearch.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myidentitydefender.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet …

I read THE QUEEN of THE WEB'S posting and I went to My Computer\Properties and found no FILE SYSTEM TAB in Window XP Pro. I can not find NETWORK SERVER SETTINGS as explained and Floppy Drive Settings also????
Where did it go or where is it? Anyone can help!

Hi DaniWeb4Jim,
As you said in your thread you have covered the steps noted in Dr. Inferno's link.
I would like to see a HJT log though if you don't mind.

Try this portion of the instructions on the link the Dr gave and see if it works.
Click Start, click Control Panel and then double-click Display. Click on the Desktop tab, then click the Customize Desktop button. Click on the Web tab. Under Web Pages you should see a checked entry called Security info or something similar. If it is there, select that entry and click the Delete button. Click Ok then Apply and Ok.
Judy

I checked no checked box or any such entry, just My Current Homepage unchecked. I left it unchecked.
Thanks again.

You are probably infected with antivirus 2009.

Follow this removal guide on GeekPolice:

http://geekpolice.net/malware-removal-guides-f12/how-to-remove-antivirus-2009-removal-guide-t3138.htm

Hi Dr Inferno:
It was Antivirus2009 and then some. I had to work at it but I fixed it using some of yours and jholland1964's help.
I had to fix somethings turned off in the registry (and it is not the 1st time)
HKEY_USERS\S-1-5-21-57989841-152049171-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartMenuMorePrograms. I had to change the value to '0' and my ALL PROGRAMS> is back.

Thanks for your info.
DaniWeb4Jim

Thanks.
I found this site:

http://www.kellys-korner-xp.com/xp_tweaks.htm

It has 400 fixes for the registry.
I tried the one that said "Remove ALL PROGRAMS from the START MENU...UNDO. and we'll see after I reboot.
Good Luck.

Do you have the ALL PROGRAMS> at the bottom of your START MENU? I thank you for all the advice but ....Where Do You Add The ALL PROGRAMS> on the START MENU????
Frustrated JIM

I got the VIRUS ALERT! malware virus twice out of stupidity.
I had my AVG and Zone Alarm turned off to burn a disc that was having trouble copying. Then bang *!@#$% all hell broke loose.
I could not get to AVG's site to reinstall the newest copy. I could not get to any ANTI-VIRUS like site.
Administrative rights or not I could not install any programs.
I lost my C and D drives (I have two hard drives)
ALL PROGRAMS > was and is still missing from the Start Menu.
All Internet Explorer tried to do is go to WWW.ANTI-VIRUS2009.com
It added VIRUS ALERT! to every line item file in the Windows Explorer
I have all fixed between HiJack v.2.02 and MALWAREBYTES' ANTI-MALWARE, a little
Registry deleting and TWEAKUI (TweakUI allowed me to turn on my drives so I could see them).
After the Anti-Malware program I was able to get to the Registry
I still can not see the ALL PROGRAMS> in the START MENU. Where in the REGISTRY do we turn it on?

Sorry Judy I just answered an email from the community saying you answered me and you didn't. I thought you just threw me under the bus or so say fend for yourself. Sorry I misunderstood.
I will try your suggestion. That was easy, see. Today is my first day and I am lost. It is a bad bad virus try not to get it.

I just want my ALL PROGRAMS and the arrow back in my START MENU. This message that you sent to altezza shows you might know which is why I did not think I needed my own group. Do you know YES..... NO.......

I am new to this where do I find out how to do that. In addition thanks for your help.

I had VIRUS ALERT! twice. I reinstalled Windows XP the first time out of frustration.
Now, I used Malwarebytes' Anti Malware and it fixed most of it, but I lost my ALL PROGRAMS link at the bottom of the START MENU in Windows XP. But, not Windows Classic view. In classic view you can read all.
TIP! You must download Tweak UI to enable your hard drive or drives, the C (D also, for me, I have two drives) . You would only want C if you have only one. I hope this helps, but if you find any solution to my problem please let me know.