1. Home
  2. Forums Index
  3. WebmasterWorld / Webmaster General 6:20 am May 22, 2026

Forum Moderators: phranque

Message Too Old, No Replies

i cant make changes to my registry

registry

         

slackers 854

2:23 am on Jul 16, 2005 (gmt 0)



hi, can anyone help me about my problem? my registry is acting strange, i used the command regedit to manualy edit some entries from of my registry (win98/win200 and winxp prof)local machine/software/microsoft/windows/currentversion/run and the run services. everytime i made a changes, it will automatically recreated. ive already used hijackthis to spot some unknown application, and this is what ive got:

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Apache Group\Apache2\bin\Apache.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
D:\Program Files\NetSupport Manager\Gateway32.exe
D:\Program Files\Apache Group\Apache2\bin\Apache.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\VMware\VMware Workstation\vmware-authd.exe
D:\WINDOWS\system32\vmnat.exe
D:\WINDOWS\system32\vmnetdhcp.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\Mixer.exe
D:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe
D:\Program Files\QuickTime\qttask.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\Apache Group\Apache2\bin\ApacheMonitor.exe
D:\Program Files\MySQL\MySQL Administrator 1.0\MySQLSystemTrayMonitor.exe
D:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
D:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\Chikka\chikka.exe
D:\Program Files\Yahoo!\Messenger\YPager.exe
D:\Program Files\Opera75\opera.exe
D:\WINDOWS\system32\cmd.exe
D:\WINDOWS\regedit.exe
F:\000Security\Hijackthis\hijackthis\HijackThis.exe
D:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [yahoo.com...]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [red.clientapps.yahoo.com...]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [red.clientapps.yahoo.com...]
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [AWMON] "D:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] D:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [ccRegVfy] D:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\j2re1.4.2_01\bin\jusched.exe
O4 - HKLM\..\Run: [Advanced Tools Check] D:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [SmcService] D:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: McAfee Personal Firewall Plus.lnk = D:\Program Files\McAfee.com\Personal Firewall\MpfConsole.exe
O4 - Startup: MySQL System Tray Monitor.lnk = D:\Program Files\MySQL\MySQL Administrator 1.0\MySQLSystemTrayMonitor.exe
O4 - Global Startup: Monitor Apache Servers.lnk = D:\Program Files\Apache Group\Apache2\bin\ApacheMonitor.exe
O10 - Broken Internet access because of LSP provider 'netlock.dll' missing
O12 - Plugin for .mid: D:\Program Files\Internet Explorer\PLUGINS\npqtplugin2.dll
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O12 - Plugin for .wav: D:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{345BF2AF-ABF0-47FE-99B1-D82508F62D80}: NameServer = 202.78.97.2,202.78.97.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{39791570-72A2-4257-B9FD-A20048F3A693}: NameServer = 202.78.97.2,202.78.97.3
O23 - Service: Apache2 - Unknown owner - D:\Program Files\Apache Group\Apache2\bin\Apache.exe" -k runservice (file missing)
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - D:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Gateway32 (PCIGateway) - NetSupport Ltd - D:\Program Files\NetSupport Manager\Gateway32.exe
O23 - Service: PRTG 4 Service - Paessler Router Traffic Grapher (PRTG4Service) - Unknown owner - D:\Program Files\PRTG Traffic Grapher 4\prtg4.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - D:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware NAT Service - VMware, Inc. - D:\WINDOWS\system32\vmnat.exe

any help would be very much appreciated. thank you.

outrun

2:56 am on Jul 16, 2005 (gmt 0)

10+ Year Member



Without looking at what you posted, Firstly stop all processes that aren't needed, There is a process running that is monitoring the registry and will recreate the entries if you remove them. To stop processes just hit Ctrl + Alt + Delete, select the process tab and End processes there. Then delete the registry entries.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. WebmasterWorld / Webmaster General 6:20 am May 22, 2026