Solved: Freezing apps.

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

rubi

Thread Starter
Joined
May 5, 2006
Messages
36
For some strange reason my computer freezes, usually after start-up and after I connect to the internet. This can last from between 10 secs. to 2-3 mins. I recently tried uninstalling Windows Messenger, but it still shows a process in Task Manager. Could this be the problem? I've tried checking other possible sources, but am really at a loss to explain this. I've never had problems like this before. Any troubleshooting suggestions will be gratefully received.
Thanks,
Rubi:)
 
Joined
Apr 7, 2000
Messages
844
More possibles.

The Messenger service, not to be confused with Microsoft's MSN Messenger chat client, is enabled by default on Windows 2000, NT and XP systems.
http://www.technobabble.com.au/technobabble/html/tweaks/access.htm
http://www.technobabble.com.au/technobabble/html/tweaks/tweaking.htm
TURBO CHARGING your Windows XP Operating System Part 3
Easily Disable Messenger
Right click on the logo ( next to the clock ) & click on Exit.
Go into C:program Files > Messenger.
Rename the Messenger folder to something like "MessengerOFF" ( right click on Messenger, click on rename, ignore the warning message )
This does not slow down Outlook or hinder system performance.

This is a small extract from the links provided.
http://www.ultratech-llc.com/KB/ASP/FileView.asp?File=/KB/BSOD.TXT
http://www.ultratech-llc.com/KB/?File=BSOD.TXT
http://www.microsoft.com/technet/tr...net/prodtechnol/winntas/tips/techrep/bsod.asp
http://support.microsoft.com/?kbid=325011
http://windows.about.com/library/weekly/aa030599.htm
http://windows.about.com/gi/dynamic...crosoft.com/support/kb/articles/q192/4/63.asp
http://labmice.techtarget.com/windowsxp/TroubleshootingXP/default.htm
http://labmice.techtarget.com/windowsxp/TroubleshootingXP/error.htm
http://sft-cyber.com/stoperrors.htm
http://aumha.org/win5/kbestop.htm
Troubleshooting Windows STOP Errors (BSOD) and Freezes
The following issues are easily responsible for 99% of all system instability issues, particularly with Windows:
• Bad or Flaky RAM
• High CPU/Case temperatures (Insufficient cooling)
• Bad Drivers (usually with el-cheapo hardware)
• Inadequate or Dirty Power
• Overclocking (some devices cannot run out of spec)
• Improper Permissions/Rights (results in Access Denied)
• Dirty Upgrade from Win9x/ME to 2000/XP
• Virus Infection (can result in a wide variety of problems)
• Incorrect jumper settings on your hard drive
• Improperly terminated drivers and controller
• Disabled or Misconfigured Services
SYMPTOMS OF COMMON ISSUES
• Bad Drivers ............ BSOD (Blue Screen of Death) or Spontaneous Reboot
• Overheating ............ Spontaneous Reboot or System Freeze
• Bad/Flaky RAM .......... Spontaneous Reboot or System Freeze or Failed Install
• Dirty Power ............ Spontaneous Reboot or System Generated Errors
• Inadequate Power ....... BSOD or Spontaneous Reboot or System Freeze
• Overclocking ........... BSOD or Spontaneous Reboot or System Freeze
• Improper Permissions ... BSOD or System Generated Errors
• Dirty upgrade .......... BSOD or System Errors or Slowness or Erratic Behavior
• Virus Infection ........ Inexplicable slowness or Highly Erratic Behavior
• Wrong Drive Settings ... Inexplicable slowness or Failed Install or Long Boot times
• Bad SCSI Termination ... Inexplicable slowness or Failed Install or Long Boot times
• Disabled Services ...... Poor System Performance or Installation Problems or Limited OS Functionality
Troubleshooting system lock-up problems
http://www.pcbuyerbeware.co.uk/SoftwareProblems4.htm
http://www.pcbuyerbeware.co.uk/Tips2.htm#LOCKUP
http://www.cwdixon.com/support/win98_support/

Information about cleaning computer components
http://www.computerhope.com/cleaning.htm
http://www.wiscocomputing.com/articles/maintenance.htm
http://www.librarysupportstaff.com/4compcare.html
http://www.bleepingcomputer.com/tutorials/tutorial118.html
Getting The Grunge Out Of Your PC
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=2
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=3
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=4
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=5
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=6
http://www.informationweek.com/story/showArticle.jhtml?articleID=60403472&pgno=7
Fred Langa cleans the dirtiest PC he can find, and along the way shows you how you can easily tackle yours.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,068
Please do this:

Click here to download HJTsetup.exe
  • Save HJTsetup.exe to your desktop.
  • Double click on the HJTsetup.exe icon on your desktop.
  • By default it will install to C:\Program Files\Hijack This.
  • Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
  • Put a check by Create a desktop icon then click Next again.
  • Continue to follow the rest of the prompts from there.
  • At the final dialogue box click Finish and it will launch Hijack This.
  • Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
  • Click Save to save the log file and then the log will open in notepad.
  • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
 

rubi

Thread Starter
Joined
May 5, 2006
Messages
36
Thanks for the suggestions. I still think the problem might be Windows Messenger. Can I safely delete the file from C:/Program Files? Anyway, if I deleted Messenger, why are there still files and processes running? I checked HJT, nothing unusual.
Thanks again to all.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,068
You can stop the process but it will come back the next time you open OE.

Go to Control Panel - Add/Remove programs and click on the sidebar icon for Add/Remove Windows Components and uncheck the box next to Windows Messenger and click Next.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,068
Yes but this is actually MSN Windows Messenger.
 

rubi

Thread Starter
Joined
May 5, 2006
Messages
36
I uninstalled MSN Messenger, renamed the Messenger file in C:/Program Files to MessengerOff, removed WGA, yet the problem persisted. In Windows Help and Support I noticed an option to run a network diagnostic, and even though I've never done this before, decided to give it a try. Here is the log-file which I hope will shed some more light on the issue.

+ Default Outlook Express Mail

mail.013.net.il / mail.013.net.il

FAILED
InBoundMailPort = 110
- InBoundMailServer = mail.013.net.il (FAILED)
Pinging mail.barak-online.net [212.150.49.3] with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 212.150.49.3:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
InBoundMailType = POP3
Successfully connected to mail.013.net.il port 110
OutBoundMailPort = 25
- OutBoundMailServer = mail.013.net.il (FAILED)
Pinging mail.barak-online.net [212.150.49.3] with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 212.150.49.3:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
OutBoundMailType = SMTP
Successfully connected to mail.013.net.il port 25
Default Outlook Express News

Not Configured

Internet Explorer Web Proxy

Not Configured

Computer Information
+ Computer System

RUBI-3C2162260E

AdminPasswordStatus = 3
AutomaticResetBootOption = TRUE
AutomaticResetCapability = TRUE
BootROMSupported = TRUE
BootupState = Normal boot
Caption = RUBI-3C2162260E
ChassisBootupState = 3
CreationClassName = Win32_ComputerSystem
CurrentTimeZone = 300
DaylightInEffect = TRUE
Description = AT/AT COMPATIBLE
Domain = MSHOME
DomainRole = 0
EnableDaylightSavingsTime = TRUE
FrontPanelResetStatus = 3
InfraredSupported = FALSE
KeyboardPasswordStatus = 3
Manufacturer = FUJITSU SIEMENS
Model = AMILO M7405
Name = RUBI-3C2162260E
NetworkServerModeEnabled = TRUE
NumberOfProcessors = 1
PartOfDomain = FALSE
PauseAfterReset = -1
PowerOnPasswordStatus = 3
PowerState = 0
PowerSupplyState = 3
PrimaryOwnerName = rubi
ResetCapability = 1
ResetCount = -1
ResetLimit = -1
+ Roles
LM_Workstation
LM_Server
NT
Status = OK
+ SupportContactDescription
If you have any technical queries or problems concerning your
new computer, please contact our Hotline/Helpdesk, your sales
outlet, or one of our service partners.
(empty)
(empty)
Fujitsu Siemens Warranty Help Desk contact details at:
WWW.Fujitsu-Siemens.COM
(empty)
Your Fujitsu Siemens Team
SystemStartupDelay = 30
SystemStartupOptions = "Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
SystemStartupSetting = 0
SystemType = X86-based PC
ThermalState = 3
TotalPhysicalMemory = 519421952
UserName = RUBI-3C2162260E\rubi
WakeUpType = 6
+ Operating System

Microsoft Windows XP Home Edition

BootDevice = \Device\HarddiskVolume1
BuildNumber = 2600
BuildType = Uniprocessor Free
Caption = Microsoft Windows XP Home Edition
CodeSet = 1252
CountryCode = 44
CreationClassName = Win32_OperatingSystem
CSCreationClassName = Win32_ComputerSystem
CSDVersion = Service Pack 2
CSName = RUBI-3C2162260E
CurrentTimeZone = 300
DataExecutionPrevention_32BitApplications = FALSE
DataExecutionPrevention_Available = FALSE
DataExecutionPrevention_Drivers = FALSE
DataExecutionPrevention_SupportPolicy = 2
Debug = FALSE
Distributed = FALSE
EncryptionLevel = 168
ForegroundApplicationBoost = 2
FreePhysicalMemory = 150080
FreeSpaceInPagingFiles = 909796
FreeVirtualMemory = 2053836
InstallDate = 08:17:18 22/02/2006
LargeSystemCache = 0
LastBootUpTime = 23:20:30 16/07/2006
LocalDateTime = 23:33:19 16/07/2006
Locale = 0409
Manufacturer = Microsoft Corporation
MaxNumberOfProcesses = -1
MaxProcessMemorySize = 2097024
Name = Microsoft Windows XP Home Edition|C:\WINDOWS|\Device\Harddisk0\Partition1
NumberOfProcesses = 44
NumberOfUsers = 2
OSLanguage = 1033
OSType = 18
Primary = TRUE
ProductType = 1
QuantumLength = 0
QuantumType = 0
RegisteredUser = rubi
SerialNumber = 76477-OEM-0011903-00117
ServicePackMajorVersion = 2
ServicePackMinorVersion = 0
SizeStoredInPagingFiles = 1185820
Status = OK
SuiteMask = 784
SystemDevice = \Device\HarddiskVolume1
SystemDirectory = C:\WINDOWS\system32
SystemDrive = C:
TotalVirtualMemorySize = 2097024
TotalVisibleMemorySize = 507248
Version = 5.1.2600
WindowsDirectory = C:\WINDOWS
+ Version

5.1.2600

Version = 5.1.2600
BuildVersion = 2600.0000
Modems and Network Adapters
+ Modems

Smart Link 56K Modem

AttachedTo = COM3
BlindOff = X4
BlindOn = X3
Caption = Smart Link 56K Modem
CompressionOff = %C0
CompressionOn = %C3
ConfigManagerErrorCode = 0
ConfigManagerUserConfig = FALSE
ConfigurationDialog = modemui.dll
CreationClassName = Win32_PotsModem
+ DCB
28
0
0
0
0
8
7
0
21
32
0
0
0
+ Default
60
0
0
0
0
0
0
0
0
0
Description = Smart Link 56K Modem
DeviceID = PCI\VEN_8086&DEV_24C6&SUBSYS_106A1734&REV_03\3&267A616A&0&FE
DeviceType = Internal Modem
DriverDate = 05:00:00 19/04/2004
ErrorControlForced = \N2
ErrorControlOff = \N0
ErrorControlOn = \N3
FlowControlHard = &H1
FlowControlOff = &H0
InactivityScale = "3c000000"
InactivityTimeout = 0
Index = 0
MaxBaudRateToSerialPort = 115200
Model = Smart Link 56K Modem
ModemInfPath = oem3.inf
ModemInfSection = Modem1
ModulationCCITT = B0
Name = Smart Link 56K Modem
PNPDeviceID = PCI\VEN_8086&DEV_24C6&SUBSYS_106A1734&REV_03\3&267A616A&0&FE
PortSubClass = "02"
PowerManagementSupported = FALSE
Prefix = AT
+ Properties
0
1
0
0
255
0
0
0
255
0
0
0
7
0
0
0
ProviderName = Smart Link (www.smlink.com)
Pulse = P
Reset = ATZ
ResponsesKeyName = Smart Link 56K Modem::Smart Link (www.smlink.com)::Smart Link (www.smlink.com)
SpeakerModeDial = M1
SpeakerModeOff = M0
SpeakerModeOn = M2
SpeakerModeSetup = M3
SpeakerVolumeHigh = L3
SpeakerVolumeLow = L1
SpeakerVolumeMed = L2
Status = OK
StatusInfo = 3
SystemCreationClassName = Win32_ComputerSystem
SystemName = RUBI-3C2162260E
Terminator =
Tone = T
- Network Adapters


FAILED
+ [00000001] Realtek RTL8139/810x Family Fast Ethernet NIC (FAILED)
Caption = [00000001] Realtek RTL8139/810x Family Fast Ethernet NIC
DatabasePath = %SystemRoot%\System32\drivers\etc
+ DefaultIPGateway = 172.21.192.1(Same Subnet) (PASSED)
Pinging 172.21.192.1 with 32 bytes of data:
Reply from 172.21.192.1: bytes=32 time=5ms TTL=5
Reply from 172.21.192.1: bytes=32 time=7ms TTL=7
Reply from 172.21.192.1: bytes=32 time=9ms TTL=9
Reply from 172.21.192.1: bytes=32 time=7ms TTL=7
Ping statistics for 172.21.192.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss)
Approximate round trip times in milli-seconds:
Minimum = 5ms, Maximum = 9ms, Average = 7ms
Description = Realtek RTL8139 Family PCI Fast Ethernet NIC - Packet Scheduler Miniport
DHCPEnabled = TRUE
DHCPLeaseExpires = 23:11:07 23/07/2006
DHCPLeaseObtained = 23:20:57 16/07/2006
+ DHCPServer = 213.57.35.2 (FAILED)
Pinging 213.57.35.2 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 213.57.35.2:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
DNSEnabledForWINSResolution = FALSE
DNSHostName = rubi-3c2162260e
+ DNSServerSearchOrder (FAILED)
+ 192.168.101.102 (FAILED)
Pinging 192.168.101.102 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 192.168.101.102:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
+ 192.168.101.101 (FAILED)
Pinging 192.168.101.101 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 192.168.101.101:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
DomainDNSRegistrationEnabled = FALSE
FullDNSRegistrationEnabled = TRUE
GatewayCostMetric = 21
Index = 1
+ IPAddress = 172.21.220.117 (FAILED)
Pinging 172.21.220.117 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 172.21.220.117:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
IPConnectionMetric = 20
IPEnabled = TRUE
IPFilterSecurityEnabled = FALSE
IPSecPermitIPProtocols = 0
IPSecPermitTCPPorts = 0
IPSecPermitUDPPorts = 0
IPSubnet = 255.255.224.0
IPXEnabled = FALSE
MACAddress = 00:03:0D:27:EE:6B
ServiceName = RTL8023xp
SettingID = {56191390-9B91-4453-99D7-A966DA15328F}
TcpipNetbiosOptions = 0
WINSEnableLMHostsLookup = TRUE
+ [00589827] WAN Miniport (IP) (FAILED)
Caption = [00589827] WAN Miniport (IP)
DatabasePath = %SystemRoot%\System32\drivers\etc
+ DefaultIPGateway = 89.0.12.210(Same Subnet) (FAILED)
Pinging 89.0.12.210 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 89.0.12.210:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
Description = WAN (PPP/SLIP) Interface
DHCPEnabled = FALSE
DNSEnabledForWINSResolution = FALSE
DNSHostName = rubi-3c2162260e
+ DNSServerSearchOrder (FAILED)
+ 212.150.49.10 (FAILED)
Pinging 212.150.49.10 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 212.150.49.10:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
+ 212.150.48.169 (FAILED)
Pinging 212.150.48.169 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 212.150.48.169:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
DomainDNSRegistrationEnabled = FALSE
FullDNSRegistrationEnabled = FALSE
GatewayCostMetric = 1
Index = 589827
+ IPAddress = 89.0.12.210 (FAILED)
Pinging 89.0.12.210 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 89.0.12.210:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss)
IPConnectionMetric = 50
IPEnabled = TRUE
IPFilterSecurityEnabled = FALSE
IPSubnet = 255.255.255.255
IPXEnabled = FALSE
MACAddress = 00:53:45:00:00:00
ServiceName = NdisWan
TcpipNetbiosOptions = 2
WINSEnableLMHostsLookup = TRUE
+ [00000011] Intel(R) PRO/Wireless 2200BG Network Connection
Caption = [00000011] Intel(R) PRO/Wireless 2200BG Network Connection
DatabasePath = %SystemRoot%\System32\drivers\etc
Description = Intel(R) PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
DHCPEnabled = TRUE
DHCPLeaseExpires = 03:50:55 13/07/2006
DHCPLeaseObtained = 23:50:55 12/07/2006
DNSEnabledForWINSResolution = FALSE
DNSHostName = rubi-3c2162260e
DomainDNSRegistrationEnabled = FALSE
FullDNSRegistrationEnabled = TRUE
Index = 11
IPConnectionMetric = 1
IPEnabled = TRUE
IPFilterSecurityEnabled = FALSE
IPSecPermitIPProtocols = 0
IPSecPermitTCPPorts = 0
IPSecPermitUDPPorts = 0
IPXEnabled = FALSE
MACAddress = 00:0E:35:F5:04:A3
ServiceName = w22n51
SettingID = {A1A31405-24DD-46D5-A0ED-3AECBD4C5372}
TcpipNetbiosOptions = 0
WINSEnableLMHostsLookup = TRUE
+ [00000013] Check Point Virtual Network Adapter For SSL Network Extender
Caption = [00000013] Check Point Virtual Network Adapter For SSL Network Extender
DatabasePath = %SystemRoot%\System32\drivers\etc
Description = Check Point Virtual Network Adapter For SSL Network Extender - Packet Scheduler Miniport
DHCPEnabled = TRUE
DHCPLeaseExpires = 13:38:09 01/07/2006
DHCPLeaseObtained = 12:38:09 01/07/2006
DNSEnabledForWINSResolution = FALSE
DNSHostName = rubi-3c2162260e
DomainDNSRegistrationEnabled = FALSE
FullDNSRegistrationEnabled = FALSE
Index = 13
IPConnectionMetric = 1
IPEnabled = TRUE
IPFilterSecurityEnabled = FALSE
IPSecPermitIPProtocols = 0
IPSecPermitTCPPorts = 0
IPSecPermitUDPPorts = 0
IPXEnabled = FALSE
MACAddress = 54:55:43:44:52:0D
ServiceName = VNA
SettingID = {B2D60379-C915-40BD-8011-AD2F09507625}
TcpipNetbiosOptions = 0
WINSEnableLMHostsLookup = TRUE
+ Network Clients

Thanks again for helping,
Rubi:)
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,068
I'll see if I can someone to help you with that.
 

etaf

Wayne
Moderator
Joined
Oct 2, 2003
Messages
65,484
can you answer all points below

1) would you post the HJT log so that cookiegal can check and make sure theres no spyware on the machine.

2) Theres two messanger service mentioned above MSN and windows
I recently tried uninstalling Windows Messenger
I uninstalled MSN Messenger
This is how you disable/prevent running the windows messenger service
http://www.microsoft.com/windowsxp/using/security/learnmore/stopspam.mspx
http://support.microsoft.com/kb/302089/
http://www.grc.com/stm/shootthemessenger.htm

3) how long has the problem been going?
4) can you do a system restore to before you had the problem

5) If you dont connect to the internet it works fine - correct

6) How are you connected to the interent ? - can you post make and models of modems - routers - if you connect by USB or LAN or Wireless {implied in the log connected with LAN to directly to a modem - but want to be sure}
Who is the ISP

7) can you post an IPCONFIG /all

TWO Methods to do that - some people have problems with ONE----

ONE ---------------------------------
start
run
cmd
ipconfig /all

rightclick in the box
select all
enter
control key + C key - to copy
then reply here and
control key + V to paste

TWO -----------------------------------------------

Start, Run, CMD to open a DOS window and type:

IPCONFIG /ALL >C:\RESULT.TXT

Open C:\RESULT.TXT with Notepad and copy/paste the entire results here.
 

rubi

Thread Starter
Joined
May 5, 2006
Messages
36
Okay, I will try and answer all questions as thoroughly as possible.
1. I have disabled Messenger in Services and Applications
2. I have uninstalled MSN Messenger
3. The problem is fairly recent, only about 2-3 weeks (though sometimes it was okay)
4. System Restore did not help, I tried!
5. Correct, it is only once I connect to the Internet via my ISP that the problem starts
6. I am not sure, which means that I don't know where to look for the info. The connection was installed by the ISP (which is Barak, an Israeli company), and they configured everything for me. IT works on a DSL modem (750, I think)
7. Here's the text file:

Windows IP Configuration



Host Name . . . . . . . . . . . . : rubi-3c2162260e

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Wireless Network Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel(R) PRO/Wireless 2200BG Network Connection

Physical Address. . . . . . . . . : 00-0E-35-F5-04-A3



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC

Physical Address. . . . . . . . . : 00-03-0D-27-EE-6B

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 172.21.220.117

Subnet Mask . . . . . . . . . . . : 255.255.224.0

IP Address. . . . . . . . . . . . : fe80::203:dff:fe27:ee6b%5

Default Gateway . . . . . . . . . : 172.21.192.1

DHCP Server . . . . . . . . . . . : 213.57.35.2

DNS Servers . . . . . . . . . . . : 192.168.101.102

192.168.101.101

fec0:0:0:ffff::1%3

fec0:0:0:ffff::2%3

fec0:0:0:ffff::3%3

Lease Obtained. . . . . . . . . . : 17 July 2006 18:37:22

Lease Expires . . . . . . . . . . : 23 July 2006 23:11:10



Ethernet adapter {B2D60379-C915-40BD-8011-AD2F09507625}:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Check Point Virtual Network Adapter For SSL Network Extender - Packet Scheduler Miniport

Physical Address. . . . . . . . . : 54-55-43-44-52-0D



PPP adapter Barak013_L2TP:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface

Physical Address. . . . . . . . . : 00-53-45-00-00-00

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 89.0.33.229

Subnet Mask . . . . . . . . . . . : 255.255.255.255

Default Gateway . . . . . . . . . : 89.0.33.229

DNS Servers . . . . . . . . . . . : 212.150.49.10

212.150.48.169

NetBIOS over Tcpip. . . . . . . . : Disabled



Tunnel adapter Teredo Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : 80-00-FA-7E-A6-FF-DE-1A

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::5445:5245:444f%7

Default Gateway . . . . . . . . . :

NetBIOS over Tcpip. . . . . . . . : Disabled



Tunnel adapter 6to4 Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : 6to4 Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : 59-00-21-E5

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 2002:5900:21e5::5900:21e5

Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

fec0:0:0:ffff::2%1

fec0:0:0:ffff::3%1

NetBIOS over Tcpip. . . . . . . . : Disabled



Tunnel adapter Automatic Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : 59-00-21-E5

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::5efe:89.0.33.229%2

Default Gateway . . . . . . . . . :

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

fec0:0:0:ffff::2%1

fec0:0:0:ffff::3%1

NetBIOS over Tcpip. . . . . . . . : Disabled



Tunnel adapter Automatic Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : AC-15-DC-75

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::5efe:172.21.220.117%2

Default Gateway . . . . . . . . . :

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%3

fec0:0:0:ffff::2%3

fec0:0:0:ffff::3%3

NetBIOS over Tcpip. . . . . . . . : Disabled

Finally, there's no need to post a HJT log; I know my system is clean of spyware and other assorted nasties (touch wood!).
Thanks,
Rubi:)

Okay, just in case here's the logfile:
Logfile of HijackThis v1.99.1
Scan saved at 19:18:13, on 17/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\CheckPoint\SSL Network Extender\slimsvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Barak013\Barak013_L2TP\fts.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Barak013\Barak013_L2TP\FWPortal.exe
C:\Program Files\Mozilla Firefox\firefox.exe
E:\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [%FP%Barak013 L2TP fts.exe] "C:\Program Files\Barak013\Barak013_L2TP\fts.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} (SupportSoft SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab
O16 - DPF: {01012101-5E80-11D8-9E86-0007E96C65AE} (SupportSoft Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1141628019343
O16 - DPF: {E7D2588A-7FB5-47DC-8830-832605661009} (Live Collaboration) - http://liveca04.rightnowtech.com/7020-b369h/rnl/java/RntX.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F5056D05-EF6A-468C-A81C-3DA447573F26}: NameServer = 212.150.49.10 212.150.48.169
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Check Point SSL Network Extender (cpextender) - Check Point Software Technologies - C:\Program Files\CheckPoint\SSL Network Extender\slimsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
 

etaf

Wayne
Moderator
Joined
Oct 2, 2003
Messages
65,484
thanks for answering all my questions

i have seen problems with IPv6 the tunnelling mention in these forums - BUT I DONT KNOW enough about it to make any recommendations here.

it would be good for cookiegal to give the HJT log a clean bill of health and then look for someone to help out with the tunnelling
 

rubi

Thread Starter
Joined
May 5, 2006
Messages
36
Thanks etaf, I really appreciate the effort. I hope cookiegal has some suggestions. Keep up the good work:) (y)
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Members online

Top