Content Type
Profiles
Forums
Events
Everything posted by tal ormanda
-
Friend's Hijackthis log
tal ormanda replied to tal ormanda's topic in Malware Prevention and Security
I take it the links you posted on there are already them? I'll tell him to do this. See I have heard bad things about using Ccleaner from other people saying even if I don't use the registry cleaner and just clean temporary files with it, that it could still break my computer? What's the real deal here? Is that safe to use? -
My friend is having virus trouble and I got him to get this log can any of you check it out? Thanks! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:44:02 PM, on 1/04/09 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash O4 - HKLM\..\Run: [prunnet] "C:\WINDOWS\system32\prunnet.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [prunnet] "C:\WINDOWS\system32\prunnet.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-CA/a-UNO1/GAME_UNO1.cab O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1161123606578 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1161123951281 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe O23 - Service: Pure Networks Platform Service (nmservice) - Pure Networks, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- End of file - 6096 bytes
-
Thank you I knew it was net ___ but your article made me realize I needed to type net start "HERE". The quotes...
-
Why does my external drive not eject the first time
tal ormanda replied to tal ormanda's topic in Windows XP
I will give that a go. -
Can someone tell me how I can stop a service running with the command line. Then another command to start it back up?
-
I updated my nvidia graphics card to the latest drivers on their site and microsoft update wants to install a lower version. How can I stop windows update from spamming me about this or make it go away?
-
Why does my external drive not eject the first time
tal ormanda replied to tal ormanda's topic in Windows XP
As long as I know its common I'm fine. -
I know there is a reg tweak that will open menus faster like in the start menu when you put your mouse over them. So there is a chance that there is. I will try to look for you.
-
I hit eject the first time it says its in use then right after it lets it disconnect.
-
Ok I have a little problem. I have vista installed on my macbook pro here and when I am online playing a game the temperature of the CPU will get to 180F before any sign of a fan will come on. But of course this is when I have the power plan set to high performance. Once I set it to power saver it jumps down from 180 to 140 and stays there. Is there any way to make this temperature stay down? I use a program called speedfan that looks at the temp but it cannot pick up my fans to control them. I also saw a program called input remapper but I didn't think that looked too swell.
-
Difference between Comodo Plus & Pro?
tal ormanda replied to tal ormanda's topic in Malware Prevention and Security
Yeah I can do that too. I put my installation disc in and reinstall the Operating System. -
I can't really afford to buy all these firewalls do I have Comodo firewall pro. What am I missing out that Plus has...? I can't really find a simply straight out comparison anywhere...
-
As long as it won't ruin the volume, I will use partition magic then. What a shame that you can't do this just using administrative tools.
-
A long time ago I split my local disk into two and now I reinstalled XP on here and I deleted the partition to be left with 22.51GB of unallocated space. How can I go about combining them with the main volume?
-
How do you disable the popup when you turn windows update off?
-
Where would I disable trustedinstaller.exe? I didn't see it in "services.msc" It would help a lot if the annoying pop up would just go away when you turn windows update off. I'd keep it off but I can't stand that. Or did it stop annoying you in Vista?
-
These processes are always sorta high like this when I'm not doing anything right when I turn the computer on. WTF? When I just leave the computer sit it goes to like 15% or 11% then jumps to 40% for a bit then back down. Why....
-
Wouldn't download. No update to be found now nevermind... its gone.
-
If the fan was out for some time, I would replace the cooling compound too. Sometimes it’s not working as efficient as it should be... Indeed I did. Some teacher hardly put any on and it went to 140 degrees! So I put it back on and it was back down to 75ish. Stupid teacher. Speedfan is good thanks.
-
Had to put a new CPU fan on because the plastic holder broke. The CPU temp stays at 75ºF in the BIOS but I want to know how hot it gets when in XP so... Any good programs I can use to check the temp in windows xp ?
-
Update: Used Ccleaner and run as admin and the update installed. That's all I did. So it works now.
-
Got that, and I dont know what process monitor is sorry.
-
Sorry to post again but I need help.
-
I will give that a go right now.