Hijack This Log

I am experiencing a few weird problems, and am in hope that someone can help me! My flash player stopped working about a week ago. I have uninstalled using Adobe's uninstaller, then reinstalled with no luck. I have made www.adobe.com a trusted site and I followed instructions on Microsoft.com to delete two .ocx files and stop the update that effects Flash. My security setting are set to allow Actice X controls, but I still get the little bar sometimes...NOT always!

Also, whenever I try to search on any search site, IE Google, MSN, Alta Vista etc, I can type in the info I want to search for, hit search, or enter, and all of my IE pages shut down...just poof, gone! I can search using Google's advanced search features, just not from thier main page....not even from the Gmail page! Weird, huh?

Thanks, in advance for any and all help you guys can give me! My hubby cannot access his Redskins page without Flash and he is getting a lil ill with me!!

Logfile of HijackThis v1.99.1
Scan saved at 10:15:00 PM, on 8/14/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Softex\OmniPass\Omniserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Softex\OmniPass\OPXPApp.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\hphmon05.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb02.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Superhunter\NetSpeeder\NetSpeeder.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Documents and Settings\Owner\My Documents\My Download Files\mpk\mpk.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
J:\Hijack This\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us9.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msnbc.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us9.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us9.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: 198.63.50.86 www.fish4fun.com #0
O1 - Hosts: 208.62.120.155 www.commercialappeal.com #0
O1 - Hosts: 216.92.114.140 www.crossword-puzzles.co.uk #0
O1 - Hosts: 193.162.142.150 www.euobserver.com #0
O1 - Hosts: 12.13.175.178 www.alpharubicon.com #0
O1 - Hosts: 207.241.148.80 autorepair.about.com #0
O1 - Hosts: 65.254.250.110 www.deagle.co.uk #0
O1 - Hosts: 69.61.74.99 www.ford-trucks.com #0
O1 - Hosts: 66.218.83.117 f2.pg.photos.yahoo.com #0
O1 - Hosts: 66.218.89.147 restored-classic.com #0
O1 - Hosts: 64.62.185.168 blueovaltruckparts.com #0
O1 - Hosts: 69.61.74.100 www.motorhaven.com #0
O1 - Hosts: 66.241.240.201 www.carolina-classics.com #0
O1 - Hosts: 65.213.146.39 www.hemmings.com #0
O1 - Hosts: 64.182.87.188 www.classictruckshop.com #0
O1 - Hosts: 168.143.185.242 ctw.truckmoxie.com #0
O1 - Hosts: 12.154.96.68 www.cgfordparts.com #0
O1 - Hosts: 129.33.210.85 www.eastwoodco.com #0
O1 - Hosts: 209.157.71.50 www.mongrelmotorsports.homestead.com #0
O1 - Hosts: 209.123.114.10 www.rockauto.com #0
O1 - Hosts: 216.39.57.101 www.oldcarmanual.com #0
O1 - Hosts: 205.188.221.70 images.auctionworks.com #0
O1 - Hosts: 63.166.208.205 www.countryclassiccars.com #0
O1 - Hosts: 166.82.119.172 www.dennis-carpenter.com #0
O1 - Hosts: 65.123.139.228 www.lmctruck.com #0
O1 - Hosts: 216.73.113.186 www.johnsf100.com #0
O1 - Hosts: 63.236.66.7 mysearch.myway.com #0
O1 - Hosts: 65.54.134.158 groups.msn.com #0
O1 - Hosts: 66.218.77.68 geocities.com #0
O1 - Hosts: 209.132.97.214 j.webring.com #0
O1 - Hosts: 205.234.240.121 www.1966ford.com #0
O1 - Hosts: 216.122.144.60 www.replacementautoparts.com #0
O1 - Hosts: 205.234.240.121 1966ford.com #0
O1 - Hosts: 216.109.117.136 rds.yahoo.com #0
O1 - Hosts: 64.34.166.138 www.hotcom.net #0
O1 - Hosts: 66.70.179.32 cars.masterautoparts.com #0
O1 - Hosts: 64.34.203.94 fordfzone.com #0
O1 - Hosts: 64.136.24.165 www.f100.1965.8m.com #0
O1 - Hosts: 65.108.164.111 www.fordsix.com #0
O1 - Hosts: 72.51.36.169 bossap.com #0
O1 - Hosts: 216.227.209.172 www.fordification.com #0
O1 - Hosts: 72.22.71.38 www.fordtruk.com #0
O1 - Hosts: 64.233.167.147 www.google.com #0
O1 - Hosts: 66.218.77.68 www.geocities.com #0
O1 - Hosts: 216.109.149.50 www.getusedparts.com #0
O1 - Hosts: 66.235.193.233 www.vintagepartsaz.com #0
O1 - Hosts: 65.254.46.212 f100.jjmoss.net #0
O1 - Hosts: 216.73.113.186 www.f100.com #0
O1 - Hosts: 65.209.1.124 www.macsautoparts.com #0
O1 - Hosts: 66.218.89.192 www.mtsalvage.com #0
O2 - BHO: IeControler Class - {9AFD91F9-6B03-4D22-A1E1-67D224CB7AB1} - C:\Program Files\Superhunter\NetSpeeder\IEMate.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb02.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [AutoTKit] C:\hp\bin\AUTOTKIT.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [NetSpeeder] "C:\Program Files\Superhunter\NetSpeeder\NetSpeeder.exe" hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [eTrustPPAP] "J:\Program Files\eTrust PestPatrol Anti-Spyware\PPActiveDetection.exe "
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [eTrust PestPatrol Active Protection] none
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [MyPopupKiller] C:\Documents and Settings\Owner\My Documents\My Download Files\mpk\mpk.exe
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: (no name) - {AFC3FA82-AD07-45cd-8B57-983435B9899E} - (no file)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [!ANetSpeeder] NetSpeeder
O15 - Trusted Zone: www.adobe.com
O15 - Trusted Zone: *.mmohsix.com
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
O16 - DPF: ppctlcab - http://www.pestscan.com/scanner/ppctlcab.cab
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} - https://www.windowsonecare.com/install/cli/0.8.0794.44/WinSSWebAgent.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} (PSFormX Control) - http://home3.ca.com/PestPatrol/uniblue/pestscan/pestscan.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52...pple.com/mickey/us/win/QuickTimeInstaller.exe
O16 - DPF: {8EDAD21C-3584-4E66-A8AB-EB0E5584767D} - http://toolbar.google.com/data/GoogleActivate.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zan...1ec2c0131351:385273dc2e6f89dc47f4f636ade56825
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://clubgames.pogo.com/online2/pogop/chuzzle/popcaploader_v6.cab
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} - http://download.abacast.com/download/files/abasetup132.cab
O18 - Filter: text/html - {2DE94081-9FE6-4227-BC59-B7A80CC8308C} - C:\WINDOWS\System32\mshmpd.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: OPXPGina - C:\Program Files\Softex\OmniPass\opxpgina.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Softex OmniPass Service (omniserv) - Unknown owner - C:\Program Files\Softex\OmniPass\Omniserv.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

 

He and welcome to WindowsBBS forums.

I'm not seeing anything in your log file to indicate malware. Have you run any registry or temp file folders recently?

I have a problem each time I run CCleaner, my flash\shockwave players won't work!! I have to uninstall, re-install em. I changed to a diff cleaner and now it seems ok.

Have you made any changes in your 'advanced settings' in IE? Make sure everything is set to default.

Did the problem coincide with any Windows updates or any other software\hardware additions? Any other system problems?

Let us know so we can try and figure it out.