Computer Help Thread v4.0

Mixah · August 7, 2007, 6:50am

good choices in everything except the processor in my opinion…

and that harddrive…

go seagate, and if you go AMD, go 5400+ or higher.

other than that, it’s a decent mid-line system at best.

and that m-audio is sexy shit.

VRViperII · August 7, 2007, 11:10am

hey I got infected with some spyware/trojan, that’s giving me pop ups from sites such as DriveCleaners. My Internet Explorer also freezes a lot easier than before. I’ve already scanned with AdAware and Spybot, in normal mode and safe mode. I’ve also scanned with BitDefender. Is anyone good with HiJackThis logs? Here is mine:

Logfile of HijackThis v1.99.1
Scan saved at 3:07:10 AM, on 8/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\SYSTEM32\odbcasvc.EXE
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.172\HijackThis.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {36deb7a0-bd7c-4009-ae2d-93b6db01ed9a} - C:\WINDOWS\system32\msexapi.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: WebAssist - {85589B5D-D53D-4237-A677-46B82EA275F3} - C:\WINDOWS\WebAssist.dll
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\Net Transport\NTIEHelper.dll
O3 - Toolbar: ALiBaBar - {0A1375E1-56C2-11D6-8E45-8933A0FB5235} - C:\PROGRA~1\ALiBaBar\ALiBaBar.dll
O4 - HKLM…\Run: [IMJPMIG8.1] “C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE” /Spoil /RemAdvDef /Migration32
O4 - HKLM…\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM…\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM…\Run: [SkyTel] SkyTel.EXE
O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [nwiz] nwiz.exe /install
O4 - HKLM…\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM…\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
O4 - HKLM…\Run: [DAEMON Tools-1033] “C:\Program Files\D-Tools\daemon.exe” -lang 1033
O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM…\Run: [VTTimer] VTTimer.exe
O4 - HKLM…\Run: [S3Trayp] S3trayp.exe
O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM…\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM…\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM…\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKCU…\Run: [MsnMsgr] “C:\Program Files\MSN Messenger\MsnMsgr.Exe” /background
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Clipboard: Simp > Trad Chinese - res://C:\Program Files\ALiBaBar\ALiBaBar.dll/RT_HTML/ClipToTrad
O8 - Extra context menu item: Clipboard: Trad > Simp Chinese - res://C:\Program Files\ALiBaBar\ALiBaBar.dll/RT_HTML/ClipToSim
O8 - Extra context menu item: Display: Simplified Chinese - res://C:\Program Files\ALiBaBar\ALiBaBar.dll/RT_HTML/PageToSim
O8 - Extra context menu item: Display: Traditional Chinese - res://C:\Program Files\ALiBaBar\ALiBaBar.dll/RT_HTML/PageToTrad
O8 - Extra context menu item: Download all by Net Transport - C:\PROGRA~1\Xi\NETTRA~1\NTAddList.html
O8 - Extra context menu item: Download by Net Transport - C:\PROGRA~1\Xi\NETTRA~1\NTAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msexapi.dll
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msexapi.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra ‘Tools’ menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v8.cab
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} (DownloadManager Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.1.6.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: c:\windows\system32\pmkjihg.dll
O20 - Winlogon Notify: msexapi - C:\WINDOWS\SYSTEM32\msexapi.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe

Thanks

donaldducktm · August 7, 2007, 11:21am

Sorry for the late reply, but my computer is still infected with pop ups even though i used adaware and spybot.

also, my computer slows down a LOT…again i just reformatted my computer (possibly an illegal copy? cough) and when go to Task Manager, my explorer.exe is being used 50% and i have over 40 processes going (this is after 2 days use of new reformatted computer). Thanks SRK.

kev_the_bev · August 7, 2007, 11:38am

let me bring this unsolved question back.

VRViperII · August 7, 2007, 10:06pm

I keep getting pop-ups from WinAntiVirusPro and drivercleaner.com

Anyone know how to get rid of them besides formatting? I’ve ran AdAware, Spybot and AVG Virus Scan already.

werepig · August 7, 2007, 10:34pm

[COLOR=White]kev_the_bev,
try opening up the device manager and uninstalling the drivers under mouse, and just plug it in without installing the software on the cd.
[/COLOR]

donaldducktm · August 7, 2007, 11:17pm

word. same problem here.

Valaris · August 7, 2007, 11:20pm

urgh I require SRK’s help yet again. I was burning a cd when my screen went dead and I had to reboot (driver problems with my graphics card I thought) but when I rebooted it wont connect to the internet anymore. I rebooted the route and modem. Im even using the same cable on this laptop and as you can see it works fine. Any ideas?

werepig · August 7, 2007, 11:42pm

http://www.xp-vista.com/spyware-removal/winantivirus-pro-2007-removal-instructions

apparantly for the drivercleaner.com popup, you can use
http://www.admuncher.com/
to get rid of it.

try going into ‘my network places’ and click ‘view network connections’. try disabling and re enabling them. and try repair connection if its available.

VRViperII · August 8, 2007, 2:38am

thanks erikstanton

Should I scan in safe mode or normal mode?

werepig · August 8, 2007, 2:53am

it really shouldnt matter, but try both. just as long as it works

VRViperII · August 8, 2007, 4:11am

[quote=“erikstanton, post:349, topic:25366”]

http://www.xp-vista.com/spyware-removal/winantivirus-pro-2007-removal-instructions

apparantly for the drivercleaner.com popup, you can use
http://www.admuncher.com/
to get rid of it.

QUOTE]

I downloaded spyhunter in the first link but it only tells me where the registries are, because I gotta buy the full product to remove it. So I just went to regedit to delete the registries listed in there.

Can you actually “remove” with admuncher? It just seems to block it and not really remove it, from the description anyways.

werepig · August 8, 2007, 4:49am

[quote=“VRViperII”]

just realized that the muncher thing is retarded.

http://research.sunbelt-software.com/threatdisplay.aspx?name=DriveCleaner&threatid=44533

on the bottom it shows a list of where the .exe is, so see if you can delete those, if not, try deleting them in safemode.

Valaris · August 8, 2007, 7:33am

Erik, I tried that with no luck.

Edit: Turns out my network adapter had been nudged slightly out of place or something. thanks for the help :tup:

MadGaffler · August 8, 2007, 8:36am

Hard Drive Questions

Ok guys got a problem, I just bought a Dell Dimension e521and I want to add a new hard drive. When I opened the case I noticed that it only has the cables for SATA, including the SATA power cable. The hard drive comes with an IDE cable, I need to know if having two different hard drives creates some conflict and is there some type of converter or extension (forgot to mention that the power cable connected to the dvd drive has a extra extension it’s just not long enough to reach the bottom of the case, if it can be used at all) for the existing power cable?

Green · August 8, 2007, 8:41am

No, IDE and SATA drives can coexist just fine. Off the top of my head I don’t know if there are converters for data cables, but there are for power cables.

piponaz · August 8, 2007, 9:17am

^^ yup, there are converters for data cables. hit em up at your local computer shop.

Chozen1 · August 8, 2007, 9:30am

u can use both w/o error however stick to serial ata drives, much better and you won’t notice much of a difference unless of course it’s a perpendicular drive (which I’d recommend you get by seagate as a SATA drive) IDE are ok, just use as a back up.

Slartibartfast · August 8, 2007, 9:40am

If he already has the IDE drive no reason to get another one. SATA are just faster.

Tone_1 · August 8, 2007, 12:25pm

SRK, HELP

Laptop fan is making this really loud noise. Like, really loud. As if someones starting a mini-car engine. This isnt mine, but this is basically what im going through here: http://youtube.com/watch?v=cFmHa5rpUw0

I’ve been told that I need to buy a replacement fan, and then I was told that I just need to open it up and clean it… Either way, my warranty is dead and I can’t afford to take it to a repair shop and its fucking annoying as hell since its so loud whenever the fan comes on… :\