check plz

[Mobo]

Quote:

Originally posted by pisycowalnut1@May 3 2005, 07:09 PM
Microsoft cannot download the service pack 2

They say that my cd-key for winxp is invalid.

I don't get it, i use a valid cd-key..
<div align="right">Quoted post</div>

Well I cant ghelp with that one im afraid. As long as you have at least service pack one installed

[Only Registered and Activated Users Can See Links. Click Here To Register...]

[pisycowalnut1]

yes i do hav service pack 1 installed

[Mobo]

Quote:

Originally posted by pisycowalnut1@May 3 2005, 07:14 PM
yes i do hav service pack 1 installed
<div align="right">Quoted post</div>

Try sp2 from a download then install it.
[Only Registered and Activated Users Can See Links. Click Here To Register...]

[pisycowalnut1]

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\mqsvc.exe
C:\WINDOWS\System32\mqtgsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.ex e
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\a2 Free\a2start.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = localhost
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SideWinderTrayV4] C:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.ex e
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\RunOnce: [_UnwiseDMO] cmd.exe /c del C:\WINDOWS\System32\ATPartners.dll
O4 - HKLM\..\RunOnce: [_UnwiseDMO_] cmd.exe /c del C:\WINDOWS\System32\im64.dll
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {3C648A72-C49A-48EF-9F90-68EF13293F97} (Cacher Class) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {9FC5238F-12C4-454F-B1B5-74599A21DE47} (Webshots Photo Uploader) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - [Only Registered and Activated Users Can See Links. Click Here To Register...]
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe


this is 3 mins ago.



excuse me, but do u hav aim? Aol instant messenger

edit*

no the dl didnt work.. same thing.. invalid key.

[Mobo]

Just have hijack fix this entry here '

O4 - HKLM\..\RunOnce: [_UnwiseDMO_] cmd.exe /c del C:\WINDOWS\System32\im64.dll



Also log into my chat room here [Only Registered and Activated Users Can See Links. Click Here To Register...]

[pisycowalnut1]

Quote:

Originally posted by Mobo@May 4 2005, 12:32 AM
Just have hijack fix this entry here '

O4 - HKLM\..\RunOnce: [_UnwiseDMO_] cmd.exe /c del C:\WINDOWS\System32\im64.dll
Also log into my chat room here [Only Registered and Activated Users Can See Links. Click Here To Register...]
<div align="right">Quoted post</div>

ok im in the channel right now.. its 7:47 EASTERn here.. i need help getting rid of optix pro.

[Mobo]

Download TDS-3 trojan scanner from [Only Registered and Activated Users Can See Links. Click Here To Register...]

Then you will need to manually update it so follow the instructions given here
[Only Registered and Activated Users Can See Links. Click Here To Register...]

Now open the program, pasue until its finished its mini test then click system testing / full scan

If anything is found, right click and select delete to each when the scan completes itself.

[pisycowalnut1]

wow dis is amazing.. deleted all the items.. scanned again in 2 hours.. boom there all back. should i just run firewall

i need to know how







srry i wasnt at the channel i was to busy doing this stuff.

[Mobo]

Now please copy this for reference and save it on the desktop.


Reboot into safe mode [Only Registered and Activated Users Can See Links. Click Here To Register...]

Then click start / run regedit
Follow the path " HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\User Shell Folders"
Then delete "olefiles"

Then again open windows explorer as you did earlier and locate " C\windows\system32\olefiles"

Right click and delete the folder.

empty the recycle bin

Reboot normally then run a full system scan here at the symantec scanner [Only Registered and Activated Users Can See Links. Click Here To Register...]

[pisycowalnut1]

ok ill do that as soon at the TDS scan finishes


this is a question i am wondering, why is everything done in safe mode..??