Much more helpful than HJT scan.
Quote:
|
What's up with the " Unknown Owner" entries; I seem to have a lot of them? How can I or do I need to replace the missing .exe files???
|
Quote:
|
O23 - Service: McAfee McShield (McShield) - Unknown owner - C:\Program Files\McAfee\VirusScan Enterprise\mcshield.exe (file missing)
|
S2 McShield;McAfee McShield; C:\Program Files\McAfee\VirusScan Enterprise\mcshield.exe []
Where is the Enterprise edition being run from? A server or your ISP? Navigate that file path and tell me if you see it on your machine.
Quote:
|
O23 - Service: McAfee Framework Service (McAfeeFramework) - Unknown owner - C:\Program Files\McAfee\Common Framework\FrameworkService.exe" /ServiceStart (file missing)
|
The file is there:
R2 McAfeeFramework;McAfee Framework Service; C:\Program Files\McAfee\Common Framework\FrameworkService.exe [2006-11-17 104000]
Quote:
|
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
|
The file is there:
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-05-21 152984]
Quote:
|
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Unknown owner - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (file missing)
|
File isn't being seen at the time of the scan because you are not burning a CD right now:
S3 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe []
==============================
Quote:
Issue 2:
O23 - Service: Lexar JD31 (LxrJD31s) - Unknown owner - C:\WINDOWS\SYSTEM32\LxrJD31s.exe
I have always thought this application was related to a Lexar jumpdrive I used to have. I no longer have the drive, but when I "fix" this entry via HJ This, it doesn't go away. What gives? How to get rid of? And again listed as an Unknown Owner
|
Fixing with HJT does not delete the service, it only attempts to disable it. Open HiJackThis & go to Config>Misc.Tools...>
Delete an NT service...
In the popup box that appears, type in
Lexar JD31 and reboot.
==============================
Quote:
Issue 3:
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
I noticed I had several AutorunsDisabled (no file) entries and got rid of them, but this one keeps popping back up. Is it perhaps related to HJ This or do I need to do something else to get rid of?
|
Now that I don't know. You'd have to ask the author of that tool or search his site for the answer to that one.
==============================
Quote:
Issue 4:
O23 - Service: Softex WinRoute Service (WinRServ) - Unknown owner - C:\Program Files\Softex\winroute\WinRServ.exe
|
The file is there - don't worry about the Unknown Owner 'tag':
R2 WinRServ;Softex WinRoute Service; C:\Program Files\Softex\winroute\WinRServ.exe [2002-07-02 63920]
__________________
Member of ASAP since 2005
Member of UNITE since 2006
"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."