| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 95284 | 2008-12-01 04:53:00 | Files changing their type & Com Freezing up. | gza (13233) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 724654 | 2008-12-01 09:25:00 | Tick the entries in post #17 then tick fix checked. If TR didnt detect / pick anything up it's probably clean Select all options under utilities in TR as well I would also do a scan with Malwarebytes its below |
Speedy Gonzales (78) | ||
| 724655 | 2008-12-02 10:59:00 | The Malwarebytes Anti-Malware scan log.:::Sorry about the wait for it. I only did a quick scan, presumably it is of 'c' drive, nor did I use the " FileAssassin " tool. can do full scan with FileAssassin & post that in should you think it necessary. I also click-fixed the 3 infections. Malwarebytes' Anti-Malware 1.30 Database version: 1445 Windows 5.1.2600 Service Pack 2 12/2/2008 10:36:04 PM mbam-log-2008-12-02 (22-35-54).txt Scan type: Quick Scan Objects scanned: 64866 Time elapsed: 8 minute(s), 17 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 2 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\rightonadz (Adware.BHO) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\HID_Layer (Malware.Trace) -> No action taken. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\system32\rightonadz-uninst.exe (Adware.BHO) -> No action taken. footnote::: I don't usually have SpyBot S&D with Tea Timer running while I'm on com/net. Use it solo to do scans twice a week @ the least. I will go into System Config Utility and stop S&D loading at Startup, along with a few other un-necessary startup items. 57 of them is probably 45 to many. I performed the actions asked per the HJT scan. I have not as yet Disabled Google Desktop. I don't think I even use it or if it's running silently in the background, but I'll root it out & disable it. All for now. Oh, two things else,, Comodo Registry Cleaner, I've downloaded it as it's in your sig and wondering if I should use it. I'm wary of Reg Cleaners, but as it is from Comodo and its in your sig I give it credibilty. Let me know on that one please. feersumendjinn:: The repair discs are diskettes that I made when I installed current OS into computer. Compaq Presario's come shipped with a built in System Restore partition on Primary Drive, as you know, but I tried to use that shortly after I bought the com & it committed Hari-Kari-I said that in one of my very early posts. I think that the installed OS was not the OEM version installed when prior owner of com bough it. In fact I'm sure of this because somehow/somewhere I managed to find amongst internal vaults of the com a product registration no. which was not the same as the one on the License key no. stuck atop the com tower. Nor was I given any type of Recovery Discs when I bought the com. I tried to make the set of 5 (or 6) recovery CD's which was an option, but for some reason given that I can't recall, except that the message that came on screen had something to do with " cannot create MS-Dos CD ".Having failed to allow the making the first CD; didn't bother going after the second etc.. I have used the Backup-Recovery Diskettes once about a year back, to fix up a screwed MBR bought about by my resizing drives using Norton Partition Magic 8. Apparently I'd screwed the boot sector resizing 'C' drive. Anyway, I'm waffaling again. Shame PCW Forums is not an IM service. I'd be well away into my 'Elementals'. :> Ciao & latter guys. gza Cheers guys |
gza (13233) | ||
| 724656 | 2008-12-02 11:18:00 | Umm comodo registry cleaner is ok. It does a deeper reg scan than ccleaner. Pretty similar to it. Disable teatimer in the log (tick it), or if you have ccleaner delete it in startup Actually if you dont want to tick the entries I posted using HJT, tick them in ccleaner then delete them |
Speedy Gonzales (78) | ||
| 724657 | 2008-12-03 12:00:00 | I'll agree ,,,mmmm...reg cleaners I steer clear of. ha ha, I got / had enough seizyres as it is/was. I did have CCleaner on the com year or so back but removed it. used it warily, twice and as I didn't really know what it was doing ( like me :), made a bit of space for a new toy. When I updated Spybot S&D I didn't want to D-load the Tea Timer option because I recalled reading in one of your replies to another persons HJT log that it isn't really a good thing to have, it can act as Spyware, or something on that line. May not have been in one of your replies to another member's query, but all that aside, I'll disable the thing. The com seems to have returned to a trouble free state. I'm well happy about that. One thing that I have noticed is, whenever I open a program,using my desktop shortcuts, I am again being led through all of the initial setups/allow-denies that Comodo takes one through when installing a new program, or update, etc...Can be annoying because its already been done. I'll put up with it. Re: the Recovery discs....feersumendjinn; i'm chuckling here at the mo because, when I performed a format/fresh install of OS, drivers , programs etc to this computer 12-15 months back due to it freezing up -( which I think was bought about by my having installed a version of WXP PRO with Intergrated SP3,prior to the official release of SP3;::about which I recall posting here @ PCW Forums )-, I made a ' System Recovery Console' to choose from at boot-up. I see it every time I boot-up the com......never had reason to use it, so I haven't. Ya got ta laugh, eh... Hmmm,.... now, do I use it, or what??? I'm not using that version of WXP Pro+SP3 Integrated now. It was a headache. Dunno why I installed XP Pro MCE + SP2, probably because I knew it no problem, but I don't use MCE;::my Graphics card hasn't got the stamina for it. Thanks guys, you have been most helpful. Wait till you see my next post, which I'm putting up in a minute. It's a ripper :p ciao :punk |
gza (13233) | ||
| 724658 | 2008-12-03 12:08:00 | ps:.. Speedy. I did tick and click Fix per all the items that you suggested re: the HJT scan log I posted. Sweet as |
gza (13233) | ||
| 1 2 3 | |||||