Soba

Yeah, the 'autocrab' is a digital VCA effect. It would be possible to make a regular fader do it but it would be a permanant mod, no switching back and forth. Are you sure that's what he's using? And yeah, you can just rotate those switches.

Yeah, sorted. Reading the new HijackThis results i pretty much know what everything does, which must be a good sign. Thanks so much for all your help, if theres anything i can ever do for you don't hesitate to ask.

Just fixed those problem files in HijackThis and rebooted, scanned and they're gone! Awesome! Just saw your post... trying now

Ewido log: --------------------------------------------------------- ewido anti-malware - Scan report --------------------------------------------------------- + Created on: 2:50:18 AM, 4/29/2006 + Report-Checksum: 7F796C73 + Scan result: [604] C:\WINDOWS\system32\xtcqwvol.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup [1220] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Cleaned with backup [2692] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2708] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2716] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2724] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2776] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2832] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning [2916] C:\WINDOWS\System32\MSIEHelper.dll -> Trojan.Agent.fd : Error during cleaning C:\Documents and Settings\Stan\Desktop\hijizzle\backups\backup-20060425-205905-240.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\choaqcte.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\confools.exe -> Backdoor.PPdoor.bv : Cleaned with backup C:\WINDOWS\system32\dcwaaaaa.exe -> Proxy.Loser.a : Cleaned with backup C:\WINDOWS\system32\dpvsc_os.dll -> Backdoor.PPdoor.bc : Cleaned with backup C:\WINDOWS\system32\ectjhdyj.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\fhswpceb.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\fjiqwsol.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\fjterjno.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\ftlmrauo.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\getui.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\gssvgael.exe -> Backdoor.Small.kw : Cleaned with backup C:\WINDOWS\system32\hnwgvwjx.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\IEFilter.dll -> Trojan.Iespy : Cleaned with backup C:\WINDOWS\system32\iivcuuts.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\jhmcchwv.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\jnxlsguq.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\luombqfi.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\mbortwac.exe -> Downloader.Small.crx : Cleaned with backup C:\WINDOWS\system32\MSIEHelper.dll -> Trojan.Agent.fd : Cleaned with backup C:\WINDOWS\system32\mvapdyei.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\oddytfgi.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\puupagov.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\ripwucju.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\rxhhbtws.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\Service.exe -> Proxy.800 : Cleaned with backup C:\WINDOWS\system32\spycgouq.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\vlxyotuc.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\wirgbace.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\xnarbbqt.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\xtcqwvol.dll -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\system32\ycdelqoi.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\system32\yqeiyajc.dll -> Adware.Virtumonde : Cleaned with backup C:\WINDOWS\Temp\1.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\2.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\3.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\4.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\5.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\6.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\7.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\8.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\9.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\A.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\B.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\C.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup C:\WINDOWS\Temp\D.tmp -> Not-A-Virus.SpamTool.Win32.Agent.f : Cleaned with backup ::Report End HijackThis log: Logfile of HijackThis v1.99.1 Scan saved at 3:02:54 AM, on 4/29/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\Service.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Trillian\trillian.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\Documents and Settings\Stan\Desktop\hijizzle\HijackThis.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [FIREBOX] C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O20 - Winlogon Notify: fhswpceb - fhswpceb.dll (file missing) O20 - Winlogon Notify: hnwgvwjx - hnwgvwjx.dll (file missing) O20 - Winlogon Notify: jhmcchwv - jhmcchwv.dll (file missing) O20 - Winlogon Notify: jnxlsguq - jnxlsguq.dll (file missing) O20 - Winlogon Notify: luombqfi - luombqfi.dll (file missing) O20 - Winlogon Notify: spycgouq - spycgouq.dll (file missing) O20 - Winlogon Notify: xnarbbqt - xnarbbqt.dll (file missing) O20 - Winlogon Notify: xtcqwvol - xtcqwvol.dll (file missing) O21 - SSODL: IEFilter - {28EC41B9-E6DE-4315-BAEF-750195FD0235} - C:\WINDOWS\system32\IEFilter.dll (file missing) O23 - Service: .NET Runtime Optimization Service v1.000.3.1434 - Unknown owner - C:\WINDOWS\System32\dcwaaaaa.exe (file missing) O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

Cool, i'll try that now. The only firewall running is Windows stock onre, but this computer hasn't been connected to the net for the duration of your help (been using my laptop for that)

Ok, that wasn't very successful. After fixing those files with HijackThis, they don't seem to be fixed... still there if you run another scan directly afterwards. Only one file was succesfully sorted in the dos-type interface, one other couldn't be found and the rest gave this error message: (dll file) was loaded, but the DllUnregisterServer entry point was not found. This file can not be registered. None of the files could be deleted from the system32 folder either because they were 'in use'. I had no other windows open and no unneccessary processes running. HijackThis log looks exactly the same except dkmyruyf.dll is gone.

When i'm entering that ish at the dos-style interface, it tells me the caracter "/" is invalid after every line. Is this normal?

Here we go... those dll files still seem to be present. Logfile of HijackThis v1.99.1 Scan saved at 9:07:24 PM, on 4/25/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\dcwaaaaa.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Trillian\trillian.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Stan\Desktop\hijizzle\HijackThis.exe O2 - BHO: CIEPl Object - {0612F71E-934B-4D92-B8E8-2E29EA78EB03} - C:\WINDOWS\System32\getui.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [FIREBOX] C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O20 - Winlogon Notify: dkmyruyf - dkmyruyf.dll (file missing) O20 - Winlogon Notify: fhswpceb - C:\WINDOWS\SYSTEM32\fhswpceb.dll O20 - Winlogon Notify: getui - C:\WINDOWS\SYSTEM32\getui.dll O20 - Winlogon Notify: hnwgvwjx - C:\WINDOWS\SYSTEM32\hnwgvwjx.dll O20 - Winlogon Notify: jhmcchwv - C:\WINDOWS\SYSTEM32\jhmcchwv.dll O20 - Winlogon Notify: jnxlsguq - C:\WINDOWS\SYSTEM32\jnxlsguq.dll O20 - Winlogon Notify: luombqfi - C:\WINDOWS\SYSTEM32\luombqfi.dll O20 - Winlogon Notify: spycgouq - C:\WINDOWS\SYSTEM32\spycgouq.dll O20 - Winlogon Notify: xnarbbqt - C:\WINDOWS\SYSTEM32\xnarbbqt.dll O20 - Winlogon Notify: xtcqwvol - C:\WINDOWS\SYSTEM32\xtcqwvol.dll O21 - SSODL: IEFilter - {E0F81745-CD0C-45A0-80ED-094DAB7DAD36} - C:\WINDOWS\system32\IEFilter.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

Ok, got it going. Here's the log post-Ewido: Logfile of HijackThis v1.99.1 Scan saved at 7:01:11 PM, on 4/25/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\dcwaaaaa.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\System32\confools.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\System32\gssvgael.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\Documents and Settings\Stan\Desktop\hijizzle\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer F2 - REG:system.ini: Shell=explorer.exe,confools.exe F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDOWS\System32\confools.exe O2 - BHO: CIEPl Object - {0612F71E-934B-4D92-B8E8-2E29EA78EB03} - C:\WINDOWS\System32\getui.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: (no name) - {86A2C29F-A61A-4FF5-A892-F87E47B3D814} - C:\WINDOWS\System32\ycdelqoi.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe O4 - HKLM\..\Run: [FIREBOX] C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [internet ] C:\WINDOWS\System32\confools.exe O4 - HKLM\..\Run: [gssvgael] C:\WINDOWS\System32\gssvgael.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [internet ] C:\WINDOWS\System32\confools.exe O4 - HKCU\..\Run: [gssvgael] C:\WINDOWS\System32\gssvgael.exe O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O20 - Winlogon Notify: dkmyruyf - C:\WINDOWS\SYSTEM32\dkmyruyf.dll O20 - Winlogon Notify: fhswpceb - C:\WINDOWS\SYSTEM32\fhswpceb.dll O20 - Winlogon Notify: getui - C:\WINDOWS\SYSTEM32\getui.dll O20 - Winlogon Notify: hnwgvwjx - C:\WINDOWS\SYSTEM32\hnwgvwjx.dll O20 - Winlogon Notify: jhmcchwv - C:\WINDOWS\SYSTEM32\jhmcchwv.dll O20 - Winlogon Notify: jnxlsguq - C:\WINDOWS\SYSTEM32\jnxlsguq.dll O20 - Winlogon Notify: luombqfi - C:\WINDOWS\SYSTEM32\luombqfi.dll O20 - Winlogon Notify: spycgouq - C:\WINDOWS\SYSTEM32\spycgouq.dll O20 - Winlogon Notify: xnarbbqt - C:\WINDOWS\SYSTEM32\xnarbbqt.dll O20 - Winlogon Notify: xtcqwvol - C:\WINDOWS\SYSTEM32\xtcqwvol.dll O21 - SSODL: IEFilter - {1CBDB365-DB57-4317-AA16-F436E71FE2A4} - C:\WINDOWS\system32\IEFilter.dll O21 - SSODL: Security Protocol - {EE8B9D9D-C986-41AD-B3B6-C2916B79C839} - C:\WINDOWS\System32\dpvsc_os.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

Thanks for the help. A kinda sideeffect of all this is that internet on that PC is ridiculously slow... i downloaded Ewido on my laptop and copied it over but basically i can't update the definitions, it doesn't get all the way through without timing out. Is there any way to d/l the update and copy it over?

I'd very much appreciate it if you could have a look through this Sigma .... my desktop has some serious issues atm. Cheers! Logfile of HijackThis v1.99.1 Scan saved at 1:34:13 PM, on 4/25/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\System32\gssvgael.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\System32\nvsvc32.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\WINDOWS\System32\taskmgr.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe C:\DOCUME~1\Stan\LOCALS~1\Temp\Rar$EX00.218\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer F2 - REG:system.ini: Shell=explorer.exe,confools.exe F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\System32\confools.exe O2 - BHO: CIEPl Object - {0612F71E-934B-4D92-B8E8-2E29EA78EB03} - C:\WINDOWS\System32\getui.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: (no name) - {86A2C29F-A61A-4FF5-A892-F87E47B3D814} - C:\WINDOWS\System32\ycdelqoi.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [ssAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe O4 - HKLM\..\Run: [FIREBOX] C:\Program Files\PreSonus\1394AudioDriver_FIREBox\FIREBOX Control.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [internet ] C:\WINDOWS\System32\confools.exe O4 - HKLM\..\Run: [gssvgael] C:\WINDOWS\System32\gssvgael.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [internet ] C:\WINDOWS\System32\confools.exe O4 - HKCU\..\Run: [gssvgael] C:\WINDOWS\System32\gssvgael.exe O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O20 - Winlogon Notify: dkmyruyf - C:\WINDOWS\SYSTEM32\dkmyruyf.dll O20 - Winlogon Notify: fhswpceb - C:\WINDOWS\SYSTEM32\fhswpceb.dll O20 - Winlogon Notify: getui - C:\WINDOWS\SYSTEM32\getui.dll O20 - Winlogon Notify: hnwgvwjx - C:\WINDOWS\SYSTEM32\hnwgvwjx.dll O20 - Winlogon Notify: jhmcchwv - C:\WINDOWS\SYSTEM32\jhmcchwv.dll O20 - Winlogon Notify: jnxlsguq - C:\WINDOWS\SYSTEM32\jnxlsguq.dll O20 - Winlogon Notify: luombqfi - C:\WINDOWS\SYSTEM32\luombqfi.dll O20 - Winlogon Notify: spycgouq - C:\WINDOWS\SYSTEM32\spycgouq.dll O20 - Winlogon Notify: xnarbbqt - C:\WINDOWS\SYSTEM32\xnarbbqt.dll O20 - Winlogon Notify: xtcqwvol - C:\WINDOWS\SYSTEM32\xtcqwvol.dll O21 - SSODL: IEFilter - {1CBDB365-DB57-4317-AA16-F436E71FE2A4} - C:\WINDOWS\system32\IEFilter.dll O21 - SSODL: Security Protocol - {EE8B9D9D-C986-41AD-B3B6-C2916B79C839} - C:\WINDOWS\System32\dpvsc_os.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

Well, they're the same frequency, same key on a key board. So the difference lies in the context, ie if you're coming from G it'll naturally sound like a sharp, and from an A it'll sound like a flat. Trick question really.

*shudder, vomit* <{POST_SNAPBACK}> Yeah, but it works. They can still hear your beat, and if they're yelling your name its all advertising.

Word, i have an SA-8 and the OS2s annoyed the hell out of me...i wouldn't knock them by cutting but was always brushing them with my hand or knocking them when i was on the upfaders. So i took them out and it's never been an issue again. I'm not a fan of the crossfader click either but i washermodded a tiny cut-in on mine anyway so that took care of it. And my knobs got switched for Vestax ones pretty quickly. All that sorted, i love my mixer. My only actual complaint about it is the cue fader has an annoying volume dip in the centre.

They're both good mixers, you should test them out and see which one you prefer. My money's on the SA-5 for straight scratch use and the 707 if you're doing a bit of mixing as well, mainly due to the rotary EQ and effects loop.