Jump to content

Recommended Posts

Posted

im sure that you are going crazy right now trying to figure out your new computer but can you be more specific in whats going on? those processes are taking a lot of resource. good thing you have 2gigs of RAM.

reading "crappy new computer going wacko" made me laugh...sorry

Posted

im sure that you are going crazy right now trying to figure out your new computer but can you be more specific in whats going on? those processes are taking a lot of resource. good thing you have 2gigs of RAM.

reading "crappy new computer going wacko" made me laugh...sorry

<{POST_SNAPBACK}>

It's a little bit of everything going on. Remember? I said i kept hearing my firewall pop on and off? Well I didn't switch and now i guess I am gonna pay for it. My shutdown freezes cold. I can't burn a movie or a cd. I says it's done as soon as it starts and ruins my disc. ummmmmm The "safely remove hardware" icon is in my taskbar. I have nothing plugged in or in the drives. On startup as soon as that little icon pops up, a few weird lines pop through my screen for about a half of a second. Somethin's up.

I guess i will start googling my processes, maybe that will turn up something.

Posted

im starting to do the same on my end, kind a drag since i cant cut n paste anything from the image.

if possible. post another HJt log.

<{POST_SNAPBACK}>

Should I post it here?

I found this but I am not even sure if i have it. here

Posted

And here's my log. Tarun said it was good though. Just 1 entry I removed that didn't help.

Logfile of HijackThis v1.99.1

Scan saved at 8:03:54 PM, on 2/25/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\DISC\DiscUpdateMgr.exe

C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe

C:\WINDOWS\arservice.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\ewido anti-malware\ewidoguard.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

C:\HP\KBD\KBD.EXE

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\RTHDCPL.EXE

c:\windows\system\hpsysdrv.exe

C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

C:\WINDOWS\system32\svchost.exe

C:\Documents and Settings\HP_Administrator\Desktop\Desktop\Anti-Malware Pro\HijackThis.exe

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [DiscUpdateManager] C:\Program Files\DISC\DiscUpdateMgr.exe

O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run

O4 - HKLM\..\Run: [CaISSDT] "C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe"

O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe"

O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe"

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [spySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1140050844843

O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll

O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll

O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

Posted

post the log here since it will be related to the issues at hand.

<{POST_SNAPBACK}>

Ok I will next Look at the second line on this.

ojngua.jpg

<{POST_SNAPBACK}>

Well s***. Take a look at the first line.

Posted

Ok I have spent a lot of time reading up on this now, without actually learning much except for the fact that everyone who seems to have that IadHide5.dll in that folder does not have anything bad showing up with all the malware scanners.

Considering that it is in a temp folder then I would suggest doing the following:

Go to C:\Documents and Settings\HP_Administrator\Local Settings\Temp, and select everything in that folder and delete it (but do not delete the temp folder itself).

If this does not work in normal mode then try again in safe mode.

Posted

It is okay. I needed a back up of all my data anyway. I am using Nero BackItUp to back up my data. I am going to restore since it is new and I don't have much on here. Nero is really easy to use, if you use double layer dvd's. I have all the junk on here from my linksys set up that I don't need anymore. So I am gonna start over.

Edit: I did delete that file manually in safe mode and it came back.

Posted

Lol just back-up all your data, reformat your drive, reinstall all anti-viruses, windows defender firewalls etc, and your set.

<{POST_SNAPBACK}>

that can be a pain tho.

I like that task manager you have Sickchick, whered you get it?

ima download it

)corjello(

Posted

Lol just back-up all your data, reformat your drive, reinstall all anti-viruses, windows defender firewalls etc, and your set.

<{POST_SNAPBACK}>

that can be a pain tho.

I like that task manager you have Sickchick, whered you get it?

ima download it

)corjello(

<{POST_SNAPBACK}>

it's called taskmanagersecurity.exe. I would stay away from it.

  • Administrator
Posted

It's shareware and it's really crap. I used it at the college once and some of it was good, but the rest was terrible.

Posted

aww, well i thought it would be a nice addition. Any alternatives?

)corjello(

<{POST_SNAPBACK}>

Ermm, yeah, what alternatives are out there as I've downloaded it.

Cheers :P

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...