1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: Freezing apps.

Discussion in 'Windows XP' started by rubi, Jul 13, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. rubi

    rubi Thread Starter

    Joined:
    May 5, 2006
    Messages:
    36
    For some strange reason my computer freezes, usually after start-up and after I connect to the internet. This can last from between 10 secs. to 2-3 mins. I recently tried uninstalling Windows Messenger, but it still shows a process in Task Manager. Could this be the problem? I've tried checking other possible sources, but am really at a loss to explain this. I've never had problems like this before. Any troubleshooting suggestions will be gratefully received.
    Thanks,
    Rubi:)
     
  2. daddyhominum

    daddyhominum

    Joined:
    Dec 1, 2005
    Messages:
    958
  3. jmatt

    jmatt

    Joined:
    Apr 7, 2000
    Messages:
    844
    More possibles.

    The Messenger service, not to be confused with Microsoft's MSN Messenger chat client, is enabled by default on Windows 2000, NT and XP systems.
    http://www.technobabble.com.au/technobabble/html/tweaks/access.htm
    http://www.technobabble.com.au/technobabble/html/tweaks/tweaking.htm
    TURBO CHARGING your Windows XP Operating System Part 3
    Easily Disable Messenger
    Right click on the logo ( next to the clock ) & click on Exit.
    Go into C:program Files > Messenger.
    Rename the Messenger folder to something like "MessengerOFF" ( right click on Messenger, click on rename, ignore the warning message )
    This does not slow down Outlook or hinder system performance.

    This is a small extract from the links provided.
    http://www.ultratech-llc.com/KB/ASP/FileView.asp?File=/KB/BSOD.TXT
    http://www.ultratech-llc.com/KB/?File=BSOD.TXT
    http://www.microsoft.com/technet/tr...net/prodtechnol/winntas/tips/techrep/bsod.asp
    http://support.microsoft.com/?kbid=325011
    http://windows.about.com/library/weekly/aa030599.htm
    http://windows.about.com/gi/dynamic...crosoft.com/support/kb/articles/q192/4/63.asp
    http://labmice.techtarget.com/windowsxp/TroubleshootingXP/default.htm
    http://labmice.techtarget.com/windowsxp/TroubleshootingXP/error.htm
    http://sft-cyber.com/stoperrors.htm
    http://aumha.org/win5/kbestop.htm
    Troubleshooting Windows STOP Errors (BSOD) and Freezes
    The following issues are easily responsible for 99% of all system instability issues, particularly with Windows:
    • Bad or Flaky RAM
    • High CPU/Case temperatures (Insufficient cooling)
    • Bad Drivers (usually with el-cheapo hardware)
    • Inadequate or Dirty Power
    • Overclocking (some devices cannot run out of spec)
    • Improper Permissions/Rights (results in Access Denied)
    • Dirty Upgrade from Win9x/ME to 2000/XP
    • Virus Infection (can result in a wide variety of problems)
    • Incorrect jumper settings on your hard drive
    • Improperly terminated drivers and controller
    • Disabled or Misconfigured Services
    SYMPTOMS OF COMMON ISSUES
    • Bad Drivers ............ BSOD (Blue Screen of Death) or Spontaneous Reboot
    • Overheating ............ Spontaneous Reboot or System Freeze
    • Bad/Flaky RAM .......... Spontaneous Reboot or System Freeze or Failed Install
    • Dirty Power ............ Spontaneous Reboot or System Generated Errors
    • Inadequate Power ....... BSOD or Spontaneous Reboot or System Freeze
    • Overclocking ........... BSOD or Spontaneous Reboot or System Freeze
    • Improper Permissions ... BSOD or System Generated Errors
    • Dirty upgrade .......... BSOD or System Errors or Slowness or Erratic Behavior
    • Virus Infection ........ Inexplicable slowness or Highly Erratic Behavior
    • Wrong Drive Settings ... Inexplicable slowness or Failed Install or Long Boot times
    • Bad SCSI Termination ... Inexplicable slowness or Failed Install or Long Boot times
    • Disabled Services ...... Poor System Performance or Installation Problems or Limited OS Functionality
    Troubleshooting system lock-up problems
    http://www.pcbuyerbeware.co.uk/SoftwareProblems4.htm
    http://www.pcbuyerbeware.co.uk/Tips2.htm#LOCKUP
    http://www.cwdixon.com/support/win98_support/

    Information about cleaning computer components
    http://www.computerhope.com/cleaning.htm
    http://www.wiscocomputing.com/articles/maintenance.htm
    http://www.librarysupportstaff.com/4compcare.html
    http://www.bleepingcomputer.com/tutorials/tutorial118.html
    Getting The Grunge Out Of Your PC
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=2
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=3
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=4
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=5
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=6
    http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=7
    Fred Langa cleans the dirtiest PC he can find, and along the way shows you how you can easily tackle yours.
     
  4. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    Please do this:

    Click here to download HJTsetup.exe
    • Save HJTsetup.exe to your desktop.
    • Double click on the HJTsetup.exe icon on your desktop.
    • By default it will install to C:\Program Files\Hijack This.
    • Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
    • Put a check by Create a desktop icon then click Next again.
    • Continue to follow the rest of the prompts from there.
    • At the final dialogue box click Finish and it will launch Hijack This.
    • Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
    • Click Save to save the log file and then the log will open in notepad.
    • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    • Come back here to this thread and Paste the log in your next reply.
    • DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
     
  5. rubi

    rubi Thread Starter

    Joined:
    May 5, 2006
    Messages:
    36
    Thanks for the suggestions. I still think the problem might be Windows Messenger. Can I safely delete the file from C:/Program Files? Anyway, if I deleted Messenger, why are there still files and processes running? I checked HJT, nothing unusual.
    Thanks again to all.
     
  6. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    You can stop the process but it will come back the next time you open OE.

    Go to Control Panel - Add/Remove programs and click on the sidebar icon for Add/Remove Windows Components and uncheck the box next to Windows Messenger and click Next.
     
  7. KeyesZX

    KeyesZX

    Joined:
    Aug 1, 2005
    Messages:
    63
    Doesn't SP2 disable the Windows Messenger Service?
     
  8. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    Yes but this is actually MSN Windows Messenger.
     
  9. rubi

    rubi Thread Starter

    Joined:
    May 5, 2006
    Messages:
    36
    I uninstalled MSN Messenger, renamed the Messenger file in C:/Program Files to MessengerOff, removed WGA, yet the problem persisted. In Windows Help and Support I noticed an option to run a network diagnostic, and even though I've never done this before, decided to give it a try. Here is the log-file which I hope will shed some more light on the issue.

    + Default Outlook Express Mail

    mail.013.net.il / mail.013.net.il

    FAILED
    InBoundMailPort = 110
    - InBoundMailServer = mail.013.net.il (FAILED)
    Pinging mail.barak-online.net [212.150.49.3] with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 212.150.49.3:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    InBoundMailType = POP3
    Successfully connected to mail.013.net.il port 110
    OutBoundMailPort = 25
    - OutBoundMailServer = mail.013.net.il (FAILED)
    Pinging mail.barak-online.net [212.150.49.3] with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 212.150.49.3:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    OutBoundMailType = SMTP
    Successfully connected to mail.013.net.il port 25
    Default Outlook Express News

    Not Configured

    Internet Explorer Web Proxy

    Not Configured

    Computer Information
    + Computer System

    RUBI-3C2162260E

    AdminPasswordStatus = 3
    AutomaticResetBootOption = TRUE
    AutomaticResetCapability = TRUE
    BootROMSupported = TRUE
    BootupState = Normal boot
    Caption = RUBI-3C2162260E
    ChassisBootupState = 3
    CreationClassName = Win32_ComputerSystem
    CurrentTimeZone = 300
    DaylightInEffect = TRUE
    Description = AT/AT COMPATIBLE
    Domain = MSHOME
    DomainRole = 0
    EnableDaylightSavingsTime = TRUE
    FrontPanelResetStatus = 3
    InfraredSupported = FALSE
    KeyboardPasswordStatus = 3
    Manufacturer = FUJITSU SIEMENS
    Model = AMILO M7405
    Name = RUBI-3C2162260E
    NetworkServerModeEnabled = TRUE
    NumberOfProcessors = 1
    PartOfDomain = FALSE
    PauseAfterReset = -1
    PowerOnPasswordStatus = 3
    PowerState = 0
    PowerSupplyState = 3
    PrimaryOwnerName = rubi
    ResetCapability = 1
    ResetCount = -1
    ResetLimit = -1
    + Roles
    LM_Workstation
    LM_Server
    NT
    Status = OK
    + SupportContactDescription
    If you have any technical queries or problems concerning your
    new computer, please contact our Hotline/Helpdesk, your sales
    outlet, or one of our service partners.
    (empty)
    (empty)
    Fujitsu Siemens Warranty Help Desk contact details at:
    WWW.Fujitsu-Siemens.COM
    (empty)
    Your Fujitsu Siemens Team
    SystemStartupDelay = 30
    SystemStartupOptions = "Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
    SystemStartupSetting = 0
    SystemType = X86-based PC
    ThermalState = 3
    TotalPhysicalMemory = 519421952
    UserName = RUBI-3C2162260E\rubi
    WakeUpType = 6
    + Operating System

    Microsoft Windows XP Home Edition

    BootDevice = \Device\HarddiskVolume1
    BuildNumber = 2600
    BuildType = Uniprocessor Free
    Caption = Microsoft Windows XP Home Edition
    CodeSet = 1252
    CountryCode = 44
    CreationClassName = Win32_OperatingSystem
    CSCreationClassName = Win32_ComputerSystem
    CSDVersion = Service Pack 2
    CSName = RUBI-3C2162260E
    CurrentTimeZone = 300
    DataExecutionPrevention_32BitApplications = FALSE
    DataExecutionPrevention_Available = FALSE
    DataExecutionPrevention_Drivers = FALSE
    DataExecutionPrevention_SupportPolicy = 2
    Debug = FALSE
    Distributed = FALSE
    EncryptionLevel = 168
    ForegroundApplicationBoost = 2
    FreePhysicalMemory = 150080
    FreeSpaceInPagingFiles = 909796
    FreeVirtualMemory = 2053836
    InstallDate = 08:17:18 22/02/2006
    LargeSystemCache = 0
    LastBootUpTime = 23:20:30 16/07/2006
    LocalDateTime = 23:33:19 16/07/2006
    Locale = 0409
    Manufacturer = Microsoft Corporation
    MaxNumberOfProcesses = -1
    MaxProcessMemorySize = 2097024
    Name = Microsoft Windows XP Home Edition|C:\WINDOWS|\Device\Harddisk0\Partition1
    NumberOfProcesses = 44
    NumberOfUsers = 2
    OSLanguage = 1033
    OSType = 18
    Primary = TRUE
    ProductType = 1
    QuantumLength = 0
    QuantumType = 0
    RegisteredUser = rubi
    SerialNumber = 76477-OEM-0011903-00117
    ServicePackMajorVersion = 2
    ServicePackMinorVersion = 0
    SizeStoredInPagingFiles = 1185820
    Status = OK
    SuiteMask = 784
    SystemDevice = \Device\HarddiskVolume1
    SystemDirectory = C:\WINDOWS\system32
    SystemDrive = C:
    TotalVirtualMemorySize = 2097024
    TotalVisibleMemorySize = 507248
    Version = 5.1.2600
    WindowsDirectory = C:\WINDOWS
    + Version

    5.1.2600

    Version = 5.1.2600
    BuildVersion = 2600.0000
    Modems and Network Adapters
    + Modems

    Smart Link 56K Modem

    AttachedTo = COM3
    BlindOff = X4
    BlindOn = X3
    Caption = Smart Link 56K Modem
    CompressionOff = %C0
    CompressionOn = %C3
    ConfigManagerErrorCode = 0
    ConfigManagerUserConfig = FALSE
    ConfigurationDialog = modemui.dll
    CreationClassName = Win32_PotsModem
    + DCB
    28
    0
    0
    0
    0
    8
    7
    0
    21
    32
    0
    0
    0
    + Default
    60
    0
    0
    0
    0
    0
    0
    0
    0
    0
    Description = Smart Link 56K Modem
    DeviceID = PCI\VEN_8086&DEV_24C6&SUBSYS_106A1734&REV_03\3&267A616A&0&FE
    DeviceType = Internal Modem
    DriverDate = 05:00:00 19/04/2004
    ErrorControlForced = \N2
    ErrorControlOff = \N0
    ErrorControlOn = \N3
    FlowControlHard = &H1
    FlowControlOff = &H0
    InactivityScale = "3c000000"
    InactivityTimeout = 0
    Index = 0
    MaxBaudRateToSerialPort = 115200
    Model = Smart Link 56K Modem
    ModemInfPath = oem3.inf
    ModemInfSection = Modem1
    ModulationCCITT = B0
    Name = Smart Link 56K Modem
    PNPDeviceID = PCI\VEN_8086&DEV_24C6&SUBSYS_106A1734&REV_03\3&267A616A&0&FE
    PortSubClass = "02"
    PowerManagementSupported = FALSE
    Prefix = AT
    + Properties
    0
    1
    0
    0
    255
    0
    0
    0
    255
    0
    0
    0
    7
    0
    0
    0
    ProviderName = Smart Link (www.smlink.com)
    Pulse = P
    Reset = ATZ
    ResponsesKeyName = Smart Link 56K Modem::Smart Link (www.smlink.com)::Smart Link (www.smlink.com)
    SpeakerModeDial = M1
    SpeakerModeOff = M0
    SpeakerModeOn = M2
    SpeakerModeSetup = M3
    SpeakerVolumeHigh = L3
    SpeakerVolumeLow = L1
    SpeakerVolumeMed = L2
    Status = OK
    StatusInfo = 3
    SystemCreationClassName = Win32_ComputerSystem
    SystemName = RUBI-3C2162260E
    Terminator =
    Tone = T
    - Network Adapters


    FAILED
    + [00000001] Realtek RTL8139/810x Family Fast Ethernet NIC (FAILED)
    Caption = [00000001] Realtek RTL8139/810x Family Fast Ethernet NIC
    DatabasePath = %SystemRoot%\System32\drivers\etc
    + DefaultIPGateway = 172.21.192.1(Same Subnet) (PASSED)
    Pinging 172.21.192.1 with 32 bytes of data:
    Reply from 172.21.192.1: bytes=32 time=5ms TTL=5
    Reply from 172.21.192.1: bytes=32 time=7ms TTL=7
    Reply from 172.21.192.1: bytes=32 time=9ms TTL=9
    Reply from 172.21.192.1: bytes=32 time=7ms TTL=7
    Ping statistics for 172.21.192.1:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss)
    Approximate round trip times in milli-seconds:
    Minimum = 5ms, Maximum = 9ms, Average = 7ms
    Description = Realtek RTL8139 Family PCI Fast Ethernet NIC - Packet Scheduler Miniport
    DHCPEnabled = TRUE
    DHCPLeaseExpires = 23:11:07 23/07/2006
    DHCPLeaseObtained = 23:20:57 16/07/2006
    + DHCPServer = 213.57.35.2 (FAILED)
    Pinging 213.57.35.2 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 213.57.35.2:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    DNSEnabledForWINSResolution = FALSE
    DNSHostName = rubi-3c2162260e
    + DNSServerSearchOrder (FAILED)
    + 192.168.101.102 (FAILED)
    Pinging 192.168.101.102 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 192.168.101.102:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    + 192.168.101.101 (FAILED)
    Pinging 192.168.101.101 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 192.168.101.101:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    DomainDNSRegistrationEnabled = FALSE
    FullDNSRegistrationEnabled = TRUE
    GatewayCostMetric = 21
    Index = 1
    + IPAddress = 172.21.220.117 (FAILED)
    Pinging 172.21.220.117 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 172.21.220.117:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    IPConnectionMetric = 20
    IPEnabled = TRUE
    IPFilterSecurityEnabled = FALSE
    IPSecPermitIPProtocols = 0
    IPSecPermitTCPPorts = 0
    IPSecPermitUDPPorts = 0
    IPSubnet = 255.255.224.0
    IPXEnabled = FALSE
    MACAddress = 00:03:0D:27:EE:6B
    ServiceName = RTL8023xp
    SettingID = {56191390-9B91-4453-99D7-A966DA15328F}
    TcpipNetbiosOptions = 0
    WINSEnableLMHostsLookup = TRUE
    + [00589827] WAN Miniport (IP) (FAILED)
    Caption = [00589827] WAN Miniport (IP)
    DatabasePath = %SystemRoot%\System32\drivers\etc
    + DefaultIPGateway = 89.0.12.210(Same Subnet) (FAILED)
    Pinging 89.0.12.210 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 89.0.12.210:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    Description = WAN (PPP/SLIP) Interface
    DHCPEnabled = FALSE
    DNSEnabledForWINSResolution = FALSE
    DNSHostName = rubi-3c2162260e
    + DNSServerSearchOrder (FAILED)
    + 212.150.49.10 (FAILED)
    Pinging 212.150.49.10 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 212.150.49.10:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    + 212.150.48.169 (FAILED)
    Pinging 212.150.48.169 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 212.150.48.169:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    DomainDNSRegistrationEnabled = FALSE
    FullDNSRegistrationEnabled = FALSE
    GatewayCostMetric = 1
    Index = 589827
    + IPAddress = 89.0.12.210 (FAILED)
    Pinging 89.0.12.210 with 32 bytes of data:
    Request timed out.
    Request timed out.
    Request timed out.
    Request timed out.
    Ping statistics for 89.0.12.210:
    Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
    IPConnectionMetric = 50
    IPEnabled = TRUE
    IPFilterSecurityEnabled = FALSE
    IPSubnet = 255.255.255.255
    IPXEnabled = FALSE
    MACAddress = 00:53:45:00:00:00
    ServiceName = NdisWan
    TcpipNetbiosOptions = 2
    WINSEnableLMHostsLookup = TRUE
    + [00000011] Intel(R) PRO/Wireless 2200BG Network Connection
    Caption = [00000011] Intel(R) PRO/Wireless 2200BG Network Connection
    DatabasePath = %SystemRoot%\System32\drivers\etc
    Description = Intel(R) PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
    DHCPEnabled = TRUE
    DHCPLeaseExpires = 03:50:55 13/07/2006
    DHCPLeaseObtained = 23:50:55 12/07/2006
    DNSEnabledForWINSResolution = FALSE
    DNSHostName = rubi-3c2162260e
    DomainDNSRegistrationEnabled = FALSE
    FullDNSRegistrationEnabled = TRUE
    Index = 11
    IPConnectionMetric = 1
    IPEnabled = TRUE
    IPFilterSecurityEnabled = FALSE
    IPSecPermitIPProtocols = 0
    IPSecPermitTCPPorts = 0
    IPSecPermitUDPPorts = 0
    IPXEnabled = FALSE
    MACAddress = 00:0E:35:F5:04:A3
    ServiceName = w22n51
    SettingID = {A1A31405-24DD-46D5-A0ED-3AECBD4C5372}
    TcpipNetbiosOptions = 0
    WINSEnableLMHostsLookup = TRUE
    + [00000013] Check Point Virtual Network Adapter For SSL Network Extender
    Caption = [00000013] Check Point Virtual Network Adapter For SSL Network Extender
    DatabasePath = %SystemRoot%\System32\drivers\etc
    Description = Check Point Virtual Network Adapter For SSL Network Extender - Packet Scheduler Miniport
    DHCPEnabled = TRUE
    DHCPLeaseExpires = 13:38:09 01/07/2006
    DHCPLeaseObtained = 12:38:09 01/07/2006
    DNSEnabledForWINSResolution = FALSE
    DNSHostName = rubi-3c2162260e
    DomainDNSRegistrationEnabled = FALSE
    FullDNSRegistrationEnabled = FALSE
    Index = 13
    IPConnectionMetric = 1
    IPEnabled = TRUE
    IPFilterSecurityEnabled = FALSE
    IPSecPermitIPProtocols = 0
    IPSecPermitTCPPorts = 0
    IPSecPermitUDPPorts = 0
    IPXEnabled = FALSE
    MACAddress = 54:55:43:44:52:0D
    ServiceName = VNA
    SettingID = {B2D60379-C915-40BD-8011-AD2F09507625}
    TcpipNetbiosOptions = 0
    WINSEnableLMHostsLookup = TRUE
    + Network Clients

    Thanks again for helping,
    Rubi:)
     
  10. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    I'll see if I can someone to help you with that.
     
  11. etaf

    etaf Moderator

    Joined:
    Oct 2, 2003
    Messages:
    65,356
    First Name:
    Wayne
    can you answer all points below

    1) would you post the HJT log so that cookiegal can check and make sure theres no spyware on the machine.

    2) Theres two messanger service mentioned above MSN and windows
    This is how you disable/prevent running the windows messenger service
    http://www.microsoft.com/windowsxp/using/security/learnmore/stopspam.mspx
    http://support.microsoft.com/kb/302089/
    http://www.grc.com/stm/shootthemessenger.htm

    3) how long has the problem been going?
    4) can you do a system restore to before you had the problem

    5) If you dont connect to the internet it works fine - correct

    6) How are you connected to the interent ? - can you post make and models of modems - routers - if you connect by USB or LAN or Wireless {implied in the log connected with LAN to directly to a modem - but want to be sure}
    Who is the ISP

    7) can you post an IPCONFIG /all

    TWO Methods to do that - some people have problems with ONE----

    ONE ---------------------------------
    start
    run
    cmd
    ipconfig /all

    rightclick in the box
    select all
    enter
    control key + C key - to copy
    then reply here and
    control key + V to paste

    TWO -----------------------------------------------

    Start, Run, CMD to open a DOS window and type:

    IPCONFIG /ALL >C:\RESULT.TXT

    Open C:\RESULT.TXT with Notepad and copy/paste the entire results here.
     
  12. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    115,240
    Thanks etaf! (y)
     
  13. rubi

    rubi Thread Starter

    Joined:
    May 5, 2006
    Messages:
    36
    Okay, I will try and answer all questions as thoroughly as possible.
    1. I have disabled Messenger in Services and Applications
    2. I have uninstalled MSN Messenger
    3. The problem is fairly recent, only about 2-3 weeks (though sometimes it was okay)
    4. System Restore did not help, I tried!
    5. Correct, it is only once I connect to the Internet via my ISP that the problem starts
    6. I am not sure, which means that I don't know where to look for the info. The connection was installed by the ISP (which is Barak, an Israeli company), and they configured everything for me. IT works on a DSL modem (750, I think)
    7. Here's the text file:

    Windows IP Configuration



    Host Name . . . . . . . . . . . . : rubi-3c2162260e

    Primary Dns Suffix . . . . . . . :

    Node Type . . . . . . . . . . . . : Unknown

    IP Routing Enabled. . . . . . . . : No

    WINS Proxy Enabled. . . . . . . . : No



    Ethernet adapter Wireless Network Connection:



    Media State . . . . . . . . . . . : Media disconnected

    Description . . . . . . . . . . . : Intel(R) PRO/Wireless 2200BG Network Connection

    Physical Address. . . . . . . . . : 00-0E-35-F5-04-A3



    Ethernet adapter Local Area Connection:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC

    Physical Address. . . . . . . . . : 00-03-0D-27-EE-6B

    Dhcp Enabled. . . . . . . . . . . : Yes

    Autoconfiguration Enabled . . . . : Yes

    IP Address. . . . . . . . . . . . : 172.21.220.117

    Subnet Mask . . . . . . . . . . . : 255.255.224.0

    IP Address. . . . . . . . . . . . : fe80::203:dff:fe27:ee6b%5

    Default Gateway . . . . . . . . . : 172.21.192.1

    DHCP Server . . . . . . . . . . . : 213.57.35.2

    DNS Servers . . . . . . . . . . . : 192.168.101.102

    192.168.101.101

    fec0:0:0:ffff::1%3

    fec0:0:0:ffff::2%3

    fec0:0:0:ffff::3%3

    Lease Obtained. . . . . . . . . . : 17 July 2006 18:37:22

    Lease Expires . . . . . . . . . . : 23 July 2006 23:11:10



    Ethernet adapter {B2D60379-C915-40BD-8011-AD2F09507625}:



    Media State . . . . . . . . . . . : Media disconnected

    Description . . . . . . . . . . . : Check Point Virtual Network Adapter For SSL Network Extender - Packet Scheduler Miniport

    Physical Address. . . . . . . . . : 54-55-43-44-52-0D



    PPP adapter Barak013_L2TP:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface

    Physical Address. . . . . . . . . : 00-53-45-00-00-00

    Dhcp Enabled. . . . . . . . . . . : No

    IP Address. . . . . . . . . . . . : 89.0.33.229

    Subnet Mask . . . . . . . . . . . : 255.255.255.255

    Default Gateway . . . . . . . . . : 89.0.33.229

    DNS Servers . . . . . . . . . . . : 212.150.49.10

    212.150.48.169

    NetBIOS over Tcpip. . . . . . . . : Disabled



    Tunnel adapter Teredo Tunneling Pseudo-Interface:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

    Physical Address. . . . . . . . . : 80-00-FA-7E-A6-FF-DE-1A

    Dhcp Enabled. . . . . . . . . . . : No

    IP Address. . . . . . . . . . . . : fe80::5445:5245:444f%7

    Default Gateway . . . . . . . . . :

    NetBIOS over Tcpip. . . . . . . . : Disabled



    Tunnel adapter 6to4 Tunneling Pseudo-Interface:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : 6to4 Tunneling Pseudo-Interface

    Physical Address. . . . . . . . . : 59-00-21-E5

    Dhcp Enabled. . . . . . . . . . . : No

    IP Address. . . . . . . . . . . . : 2002:5900:21e5::5900:21e5

    Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

    fec0:0:0:ffff::2%1

    fec0:0:0:ffff::3%1

    NetBIOS over Tcpip. . . . . . . . : Disabled



    Tunnel adapter Automatic Tunneling Pseudo-Interface:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface

    Physical Address. . . . . . . . . : 59-00-21-E5

    Dhcp Enabled. . . . . . . . . . . : No

    IP Address. . . . . . . . . . . . : fe80::5efe:89.0.33.229%2

    Default Gateway . . . . . . . . . :

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

    fec0:0:0:ffff::2%1

    fec0:0:0:ffff::3%1

    NetBIOS over Tcpip. . . . . . . . : Disabled



    Tunnel adapter Automatic Tunneling Pseudo-Interface:



    Connection-specific DNS Suffix . :

    Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface

    Physical Address. . . . . . . . . : AC-15-DC-75

    Dhcp Enabled. . . . . . . . . . . : No

    IP Address. . . . . . . . . . . . : fe80::5efe:172.21.220.117%2

    Default Gateway . . . . . . . . . :

    DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%3

    fec0:0:0:ffff::2%3

    fec0:0:0:ffff::3%3

    NetBIOS over Tcpip. . . . . . . . : Disabled

    Finally, there's no need to post a HJT log; I know my system is clean of spyware and other assorted nasties (touch wood!).
    Thanks,
    Rubi:)

    Okay, just in case here's the logfile:
    Logfile of HijackThis v1.99.1
    Scan saved at 19:18:13, on 17/07/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\CheckPoint\SSL Network Extender\slimsvc.exe
    C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\WINDOWS\system32\slserv.exe
    C:\WINDOWS\System32\snmp.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\Barak013\Barak013_L2TP\fts.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
    C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
    C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\Program Files\Barak013\Barak013_L2TP\FWPortal.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    E:\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [%FP%Barak013 L2TP fts.exe] "C:\Program Files\Barak013\Barak013_L2TP\fts.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} (SupportSoft SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab
    O16 - DPF: {01012101-5E80-11D8-9E86-0007E96C65AE} (SupportSoft Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1141628019343
    O16 - DPF: {E7D2588A-7FB5-47DC-8830-832605661009} (Live Collaboration) - http://liveca04.rightnowtech.com/7020-b369h/rnl/java/RntX.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F5056D05-EF6A-468C-A81C-3DA447573F26}: NameServer = 212.150.49.10 212.150.48.169
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
    O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
    O23 - Service: Check Point SSL Network Extender (cpextender) - Check Point Software Technologies - C:\Program Files\CheckPoint\SSL Network Extender\slimsvc.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
     
  14. etaf

    etaf Moderator

    Joined:
    Oct 2, 2003
    Messages:
    65,356
    First Name:
    Wayne
    thanks for answering all my questions

    i have seen problems with IPv6 the tunnelling mention in these forums - BUT I DONT KNOW enough about it to make any recommendations here.

    it would be good for cookiegal to give the HJT log a clean bill of health and then look for someone to help out with the tunnelling
     
  15. rubi

    rubi Thread Starter

    Joined:
    May 5, 2006
    Messages:
    36
    Thanks etaf, I really appreciate the effort. I hope cookiegal has some suggestions. Keep up the good work:) (y)
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/482811

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice