handspring visor edge software download

Name: handspring visor edge software download
Category: Soft
Published: prescongeka1973
Language: English

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

* Double click SDFix.exe and it will extract the files to %systemdrive% (Drive that contains the Windows Directory, typically C:\SDFix)
Microsoft Windows XP [razliźica 5.1.2600]
SopAdver.exe;C:\Documents and Settings\TD\Application Data\SopCast\adv;Adware.Sopcast;Incurable.Moved.; 00008047.exe;C:\RECYCLER\NPROTECT;Adware.Altnet;Incurable.Moved.; 00008062.DLL;C:\RECYCLER\NPROTECT;Adware.Altnet;Incurable.Moved.; 00008064.dll;C:\RECYCLER\NPROTECT;Adware.Altnet;Incurable.Moved.; 00008068.EXE;C:\RECYCLER\NPROTECT;Adware.Altnet;Incurable.Moved.; Process.exe;C:\SDFix\apps;Tool.Prockill;Incurable.Moved.; * Log from SDFix.
Logfile of HijackThis v1.99.1 Scan saved at 7:09:34 PM, on 03/28/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sygate\SPF\smc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\DynDNS Updater\DynDNS.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\WINDOWS\Explorer.EXE C:\PROGRA.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "C:\\WINDOWS\\java\\explorer.exe"="C:\\WINDOWS\\java\\explorer.exe:*:Enabled:Explorer" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
Malware Response Team 19,420 posts OFFLINE Gender: Female Location: Belgium Local time: 07:46 PM.
1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [UltraMon] "C:\Program Files\UltraMon\UltraMon.exe" /auto O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [BloglinesNotifier] C:\Program Files\Bloglines Notifier\Notifier.exe O9 - Extra button: (no name) - - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - - %windir%\bdoscandel.exe (file missing) O9 - Extra button: PartyPoker.com - - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O9 - Extra 'Tools' menuitem: PartyPoker.com - - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O16 - DPF: (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab O16 - DPF: (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co. b?1114789454140 O16 - DPF: - http://toolbar.google.com/data/sl/big/1.1. g/GoogleNav.cab O18 - Protocol: livecall - - C:\PROGRA.
* Download SDFix and save it to your Desktop.
#3 Tayy.
1\Sygate\SPF\smc.exe -startgui O4 - HKLM\..\Run: [avast!] C:\PROGRA.
Here's my HijackThis log:
Safe Mode: Checking Services:
Checking For Files with Hidden Attributes :
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverr >O2 - BHO: AcroIEHlprObj Class - - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - - C:\PROGRA.
At first I have to thank you for being so kind and trying to help me out with my problems. I did everything by your instructions. Below are the 3 log files you told me to post them:
1\SDHelper.dll O2 - BHO: SSVHelper Class - - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: (no name) - - (no file) O2 - BHO: Windows Live Sign-in Helper - - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [SmcService] C:\PROGRA.
C:\WINDOWS\java\explorer.exe Delete failed.
C:\Documents and Settings\TD\Application Data\Install.dat - Deleted C:\WINDOWS\system32\drivers\etc\hosts.bho - Deleted.
Running From: C:\SDFix.
Delete next file:

Backups Folder: - C:\SDFix\backups\backups.zip.
Run by TD - 03/28/2007 - 18:26:39.45.
Restoring Windows Registry Entries Restoring Default Hosts File.
I have a felling that my computer is running slower as usual in the last few days. I did some anti- virus, malware, adware. scans. Some trojans were found and mostly executed. BitDefender Online Scanner found 2 Trojan.Munk.XA entries. One of them failed to be deleted.
It's better to print out the next instructions or save it in notepad, because you also have to work in safe mode without networking support, so this page wouldn't be available then. It is also important you don't miss a step and perform everything in the right order!!
C:\WINDOWS\system32\directx.exe Infected with: Trojan.Munk.XA.
SDFix: Version 1.75.
1.EXE:*:Enabled:Share Streaming" "C:\\Program Files\\fe "C:\\Program Files\\PPLive\\Setup.exe remove\\PPLive.exe"="C:\\Program Files\\PPLive\\Setup.exe remove\\PPLive.exe:*:Enabled:PPLive" "C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update" "C:\\Program Files\\RevConnect\\DCPlusPlus.exe"="C:\\Program Files\\RevConnect\\DCPlusPlus.exe:*:Enabled:DC++" "C:\\Program Files\\tvants\\Tvants.exe"="C:\\Program Files\\tvants\\Tvants.exe:*:Enabled:TVAnts" "C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox" "C:\\Program Files\\RssBandit\\RSSBandit.exe"="C:\\Program Files\\RssBandit\\RSSBandit.exe:*:Enabled:RSS Bandit" "C:\\Program Files\\PPMate\\PPMate\\ppmate.exe"="C:\\Program Files\\PPMate\\PPMate\\ppmate.exe:*:Enabled:PPMate" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "C:\\Program Files\\TVU Player\\TVUPlayer.exe"="C:\\Program Files\\TVU Player\\TVUPlayer.exe:*:Enabled:TVUPlayer" "C:\\Program Files\\SopCast\\SopCast.exe"="C:\\Program Files\\SopCast\\SopCast.exe:*:Enabled:SopCast" "C:\\Documents and Settings\\TD\\Application Data\\SopCast\\adv\\SopAdver.exe"="C:\\Documents and Settings\\TD\\Application Data\\SopCast\\adv\\SopAdver.exe:*:Enabled:SopAdver" "C:\\Program Files\\Attensa\\AttensaEngine.exe"="C:\\Program Files\\Attensa\\AttensaEngine.exe:*:Enabled:AttensaEngine" "C:\\Program Files\\Port Detective\\PBDClient.exe"="C:\\Program Files\\Port Detective\\PBDClient.exe:*:Enabled:PBDClient" "C:\\Program Files\\TVUPlayer\\TVUPlayer.exe"="C:\\Program Files\\TVUPlayer\\TVUPlayer.exe:*:Enabled:TVU Player Component" "C:\\WINDOWS\\java\\explorer.exe"="C:\\WINDOWS\\java\\explorer.exe:*:Enabled:Explorer" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\WINDOWS\\PCHealth\\HelpCtr\\Binaries\\helpctr.exe"="C:\\WINDOWS\\PCHealth\\HelpCtr\\Binaries\\helpctr.exe:*:Enabled:Oddaljena pomoc – Windows Messenger in Voice" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
1\Avast4\ashDisp.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\UltraMon\UltraMon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe C:\Program Files\Bloglines Notifier\Notifier.exe C:\Program Files\UltraMon\UltraMonTaskbar.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\java\explorer.exe C:\WINDOWS\system32\LVComsX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\ssflwbox.scr C:\Program Files\HijackThis\HijackThis.exe.
Authorized Application Key Export:
2.EXE:*:Enabled:Share Streaming" "C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe:*:Enabled:Share Streaming" "C:\\PROGRA.
Malware Killer Dog.
Below files will be copied to Backups folder then removed:
BC AdBot (Login to Remove)
* Log from DrWeb CureIt.
Logfile of HijackThis v1.99.1 Scan saved at 8:52:58 PM, on 03/25/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Don't Know What's Wrong.
C:\WINDOWS\system32 No streams found.
* Click on Fix Checked when finished and exit HijackThis. Make sure your Internet Explorer is closed when you click Fix Checked!
#1 Tayy.
* Log from DrWeb CureIt * Log from SDFix * New HijackThislog.
C:\WINDOWS\java\explorer.exe Infected with: Trojan.Munk.XA.
Do NOT delete explorer.exe present in your Windows-folder. Doubleclick the drweb-cureit.exe , Click Start and Allow to run the express scan. This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan. It could be possible it displays a popup to buy it in between, to buy or 50% discount. Just close that popup again. Once the short scan has finished, Click Options > Change settings Choose the "Scan"-tab, remove the mark at "Heuristic analysis". Back at the main window, mark the drives that you want to scan. Select all drives. A red dot shows which drives have been chosen. Click the green arrow at the right, and the scan will start. Click 'Yes to all' if it asks if you want to cure/move the file. When the scan has finished, look if you can click next icon next to the files found: If so, click it and then click the next icon right below and select Move incurable as you'll see in next image: This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured. (this in case if we need samples) After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list Save the report to your desktop. The report will be called DrWeb.csv Close Dr.Web Cureit. ------------------------- Open the extracted SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. Press any Key and it will restart the PC. When the PC restarts the Fixtool will run again and complete the removal process then display Finished , press any key to end the script and load your desktop icons. Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt (Report.txt will also be copied to Clipboard ready for posting back on the forum). Post the following logs in your next reply:
C:\Documents and Settings\TD\My Documents\S4ever\MyMsgs\15.10._datoteke\www.egreetings.com&params[1] C:\Documents and Settings\TD\My Documents\S4ever\MyMsgs\16.11._datoteke\www.egreetings.com&params[1] C:\Documents and Settings\TD\My Documents\S4ever\MyMsgs\20.10._datoteke\www.egreetings.com&params[1] C:\Program Files\eRightSoft\SUPER\mencoder\14_43260.dll C:\Program Files\eRightSoft\SUPER\mencoder\28_83260.dll C:\Program Files\eRightSoft\SUPER\mencoder\atrc3260.dll C:\Program Files\eRightSoft\SUPER\mencoder\cook3260.dll C:\Program Files\eRightSoft\SUPER\mencoder\dnet3260.dll C:\Program Files\eRightSoft\SUPER\mencoder\drv23260.dll C:\Program Files\eRightSoft\SUPER\mencoder\drv33260.dll C:\Program Files\eRightSoft\SUPER\mencoder\drv43260.dll C:\Program Files\eRightSoft\SUPER\mencoder\ivvideo.dll C:\Program Files\eRightSoft\SUPER\mencoder\qtmlClient.dll C:\Program Files\eRightSoft\SUPER\mencoder\raac.dll C:\Program Files\eRightSoft\SUPER\mencoder\sipr3260.dll C:\Program Files\IAS_3_0\rf32sa.dll C:\WINDOWS\system32\avisynth.dll C:\WINDOWS\system32\AVSredirect.dll C:\WINDOWS\system32\cygwin1.dll C:\WINDOWS\system32\cygz.dll C:\WINDOWS\system32\i420vfw.dll C:\WINDOWS\system32\Smab.dll C:\WINDOWS\system32\yv12vfw.dll C:\Program Files\Common Files\Adobe\ESD\DLMCleanup.exe C:\Program Files\eRightSoft\SUPER\Setup.exe C:\WINDOWS\meta4.exe C:\WINDOWS\MOTA113.exe C:\WINDOWS\x2.64.exe C:\WINDOWS\system32\x.264.exe C:\Documents and Settings\TD\My Documents\My Files\Word\
Any help would be appreciated.
* Start HijackThis, close all open windows leaving only HijackThis running. Place a check against each of the following if still present (some entries won't be present anymore):
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - - (no file) O23 - Service: DirectX Service (DirectHylh) - Unknown owner - C:\WINDOWS\system32\directx.exe (file missing)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\CoolStreaming\\cool.exe"="C:\\Program Files\\CoolStreaming\\cool.exe:*:Enabled:cool" "C:\\Program Files\\WM Recorder 10\\WMR90.exe"="C:\\Program Files\\WM Recorder 10\\WMR90.exe:*:Enabled:Windows Media ™ Stream Recorder" "C:\\Program Files\\ABC\\abc.exe"="C:\\Program Files\\ABC\\abc.exe:*:Enabled:abc" "C:\\Program Files\\PPLive\\PPLive.exe"="C:\\Program Files\\PPLive\\PPLive.exe:*:Enabled:PPLive" "C:\\Program Files\\mIRC\\mirc.exe"="C:\\Program Files\\mIRC\\mirc.exe:*:Enabled:mIRC" "C:\\Program Files\\Real\\RealOne Player\\realplay.exe"="C:\\Program Files\\Real\\RealOne Player\\realplay.exe:*:Enabled:RealPlayer" "C:\\Program Files\\ppStream\\ppStream.exe"="C:\\Program Files\\ppStream\\ppStream.exe:*:Enabled:ppStream P2P Streaming Player" "C:\\Program Files\\Common Files\\Synacast\\SynaLive\\PE.exe"="C:\\Program Files\\Common Files\\Synacast\\SynaLive\\PE.exe:*:Enabled:PE" "C:\\Documents and Settings\\TD\\Desktop\\SopCast_060\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\TD\\Desktop\\SopCast_060\\SopCast\\SopCast.exe:*:Enabled:SoP Client" "C:\\Program Files\\QQLive\\QQLive.exe"="C:\\Program Files\\QQLive\\QQLive.exe:*:Enabled:QQLive Microsoft . " "C:\\Program Files\\Tencent\\QQLive\\QQLive.exe"="C:\\Program Files\\Tencent\\QQLive\\QQLive.exe:*:Enabled:QQ. " "C:\\Program Files\\SopCast_060\\SopCast\\SopCast.exe"="C:\\Program Files\\SopCast_060\\SopCast\\SopCast.exe:*:Enabled:SoP Client" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\backWeb-8876480.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\backWeb-8876480.exe:*:Enabled:Logitech Desktop Messenger" "C:\\Program Files\\Shareaza\\Shareaza.exe"="C:\\Program Files\\Shareaza\\Shareaza.exe:*:Enabled:Shareaza" "C:\\Documents and Settings\\TD\\Desktop\\utorrent.exe"="C:\\Documents and Settings\\TD\\Desktop\\utorrent.exe:*:Enabled:utorrent" "C:\\Documents and Settings\\TD\\Start Menu\\Programs\\P2P\\utorrent.exe"="C:\\Documents and Settings\\TD\\Start Menu\\Programs\\P2P\\utorrent.exe:*:Enabled:µTorrent" "C:\\PROGRA.
* Reboot into Safe Mode` : ( without networking support !) °To get into the Windows Safe Mode, restart your computer and, just before Windows starts to load, tap the F8 key a few times. Choose Safe Mode from the menu that will appear and press Enter.
BleepingComputer.com Register to remove ads.
1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\ O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: DirectX Service (DirectHylh) - Unknown owner - C:\WINDOWS\system32\directx.exe (file missing) O23 - Service: DynDNS Updater Service (DynDNS_Updater_Service) - Kana Solution - C:\Program Files\DynDNS Updater\DynDNS.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: PostgreSQL Database Server 8.2 (pgsql-8.2) - Unknown owner - C:\Program Files\PostgreSQL\8.2\bin\pg_ctl.exe" runservice -N "pgsql-8.2" -D "C:\Program Files\PostgreSQL\8.2\data\ (file missing) O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe.
Normal Mode: Checking Files:
#2 miekiemoes.
http://gastcascesa1971.eklablog.com/discuz-x-2-english-download-a17...