Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

check on this log plz, ty =)[resolved]

Started by inite , Mar 23 2005 09:05 AM

  • This topic is locked This topic is locked

#16
inite
Posted 24 March 2005 - 11:09 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
oic... could u let me know how would a driver be corrupted? through the downloading/installations of files?

btw, hows my hijackthis log looks? safe and c00l? =)
  • 0

Advertisements

#17
Guest_thatman_*
Posted 24 March 2005 - 11:43 AM

Guest_thatman_*
  • Guest
Hi inite

Your log is clean, there are many ways the files can be corrupted, incompatible system drivers can cause problems, bad downloads, driver conflicts ect, ect.

You can check > control panel> Administrative tools> component services> event viewer (Local)> Applications this will list the problems your system is having. By clicking on the (i)Information for more info.

Try that post back if you find what is causing you problems.



Kc :tazz:
  • 0

#18
inite
Posted 24 March 2005 - 11:50 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
oic...

wuauclt (2036) The database engine stopped.

wuaueng.dll (2036) SUS20ClientDataStore: The database engine stopped the instance (0).

these are the other 2 common errors i received over the last few times it restarted according to the time. Does that mean anything?


Could these be the problems? i was told by a friend...

"This is a classic sign the either the powersupply or motherboard if going bad."

The motherboard is just about 6 months old =.= and if the power supply were bad, it doesnt seem right when it hasnt restarted in the last 2 hours. Could the proxy stuffs be the problem? Cos since i deleted it, nothing seems to be going wrong, just atm.
  • 0

#19
Guest_thatman_*
Posted 24 March 2005 - 11:58 AM

Guest_thatman_*
  • Guest
Hi inite

check this link out: http://forums.susser....php?t3830.html
get what info you can then we will take it from there.

Kc :tazz:
  • 0

#20
inite
Posted 24 March 2005 - 08:22 PM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
A method that seems to help with my computer is this:

turn off auto updates for windows in security centre and control panel - admin tools - services - stopped automatic updates from running and then turned it to manual startup.

OK method for anyone who doesnt know what this means and or doesnt know how to do it:

a) go to security centre in control panel and turn off auto updates.

start -> control panel -> admin tools -> services

c) on the list of services on the right, right click "Automatic Updates" and click 'Properties'

d) Click the STOP button

e) now on the menu that says "Startup type:" select Manual

f) click apply and ok - and its done

as i said - it seems to work for me, if it stoooops working some time, i'll come repost about it

Cyassoon!

Hope this calms you all down, as it seems to have me





Thats taken from the site. Seems like many are encounting this problem. And the only solution i found is there. Im unsure if its unsafe to use that method? Stopping any updates? wont that be bad?

If not, i'll give it a go. I've had my comp turned on the whole nite btw, and it didnt restart once...
  • 0

#21
Guest_thatman_*
Posted 25 March 2005 - 05:22 AM

Guest_thatman_*
  • Guest
Hi inite

Download the ccleaner
I use this Program and is setup like this all boxs are check. Then chose Auto start.
Now run the ccleaner

Clean out all temp files in Mozilla, Internet Explorer.
Internet Explorer: Tools/ Internet Options/ General/ Temporary internet files/ Delete Files (NOTE, that this may take very long!). You can also set the memory limit to about 80 MB at the Settings.

Mozilla: Edit/ Options/ Extended/ Cache/ Clear Cache

Turn of system restore
Disabling or enabling Windows XP System Restore

Defrag your hard drive turn system restore back on and create a new restore point.

Congratulations! Your system is CLEAN :tazz:

How do you prevent spyware from being installed again? We strongly recommend installing SpywareBlaster (it's free for personal use). Click Here
QUOTE
Prevent the installation of ActiveX-based spyware, adware, browser hijackers, dialers, and other potentially unwanted pests.
Block spyware/tracking cookies in Internet Explorer and Mozilla/Firefox.
Restrict the actions of potentially dangerous sites in Internet Explorer.
Consumes no system resources.

Download, run, check for updates, download updates, select all, protect against checked. All done. Check for updates every couple of weeks. If you have any errors running the program like a missing file see the link at the bottom of the javacool page.

It's also very important to keep your system up to date to avoid unnecessary security risks. Click Here http://windowsupdate.microsoft.com/ to make sure that you have the latest patches for Windows.

These next two steps are optional, but will provide the greatest protection.
1. Use ANY browser besides Internet Explorer, almost every exploit is crafted to take advantage of an IE weakness. We usually recommend FireFox user posted image.
2. Install Sun's Java. It's much more secure than Microsoft's Java Virtual Machine .

After doing all these, your system will be thoroughly protected from future threats. ;)

Kc ;)
  • 0

#22
inite
Posted 25 March 2005 - 05:48 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
yay, sounds great, i'll do that in a while. BTW, it isnt the fault of my heatsink or the graphic card ya? =x

Also, i believe mine isnt the original version of windows xp, would it be safe to get an windowsupdate? I heard if i were caught, theres a huge penalty isnt?

Doubt the technician would have given me an original one. =/
  • 0

#23
Guest_thatman_*
Posted 25 March 2005 - 06:29 AM

Guest_thatman_*
  • Guest
Hi inite

It is allways best to have the legal copy off any Windows Software.

Kc :tazz:
  • 0

#24
inite
Posted 25 March 2005 - 10:42 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
I just made a system restore, so right now i need another quick check on my log... thx =)


Logfile of HijackThis v1.99.1
Scan saved at 12:40:36 AM, on 3/26/2005
Platform: Windows XP SP2, v.2055 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2055)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Documents and Settings\User X\Desktop\cracked_d2jsp.47.45\autod2jsp.exe
D:\Diablo II\Diablo II.exe
D:\Diablo II\Diablo II.exe
D:\PROGRA~2\firefox.exe
C:\Documents and Settings\User X\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.qzfojosxl...IPpwfG9OG_X.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewe.../default_tc.asp
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - D:\Program Files\AIM\aim.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1100382220755
O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C} (Loader2 Control) - http://static.topcon...vex/loader2.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner) - http://download.zone...ctor/WebAAS.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: ZESOFT - Unknown owner - C:\WINDOWS\zeta.exe (file missing)
  • 0

#25
coachwife6
Posted 25 March 2005 - 10:44 AM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
Didn't we just get you cleaned up? Why did you do a system restore?
  • 0

Advertisements

#26
inite
Posted 25 March 2005 - 10:51 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
sorry, i just followed the last post, now i need to reboot comp and i'll paste a new one. I made a system restore becos my comp has some problem. It restarts itself, without any virus detected. Just happened 2 days ago. Never had this problem, so i made a system restore to last week, in a hope that everything will be fine =)
  • 0

#27
coachwife6
Posted 25 March 2005 - 10:54 AM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
I merged it back with the original post, since it's for the same computer. Please do not open any more topics in regards to this problem. Keep all posts in this topic. :tazz:
  • 0

#28
inite
Posted 25 March 2005 - 10:56 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
oic, so i can actually just post here whenever i need one? I'll be like posting one every 1 to 2 weeks to be sure i've a clean log, sorry for the trouble =/

Heres the new log...


Logfile of HijackThis v1.99.1
Scan saved at 12:54:07 AM, on 3/26/2005
Platform: Windows XP SP2, v.2055 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2055)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Documents and Settings\User X\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - D:\Program Files\AIM\aim.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1100382220755
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner) - http://download.zone...ctor/WebAAS.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
  • 0

#29
inite
Posted 25 March 2005 - 10:58 AM

inite

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 409 posts
oh btw, can we not have the [resolved] on the topic? lest the mods wouldnt be looking at this since its named that way...
  • 0

#30
coachwife6
Posted 25 March 2005 - 11:01 AM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts

I'll be like posting one every 1 to 2 weeks


If you get it cleaned up and you use the tools we give you, you shouldn't have any trouble. I will take the resolved off the topic title.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP