Desktop

Question

Gravatar
Locked

system32\cmd.exe POP-UP's

By stetienne1 ·
Hi this is my first post, I apologize for any protocol errors. I'm trying to fix a friends computer but at startup I get 6 blank popup windows with "windows\system32\cmd.exe" headings. These then disappear one by one after about 10 seconds. Does anyone know what this is, if it is harmful, and how I can fix it? Many thanks, Nick.

This conversation is currently closed to new comments.

15 total posts (Page 1 of 2)   01 | 02   Next
+ Follow this Discussion ·
| Thread display: Collapse - | Expand +

All Answers

gravatar
Collapse -

Try this...WARNING could make your computer unstable if done wrong.

by Peconet Tietokoneet-217038187993258194678069903632 In reply to system32\cmd.exe POP-UP's

HiJack This V1.99.1 http://thespykiller.co.uk/files/hijackthis_sfx.exe - double click the DL file and click UNZIP letting it extract to its default folder C:\Program FIles\HiJackThis, run it from there

Fix these with HJT ? mark them, close IE, click fix checked

O4 - HKLM\..\Run: [WINDOWS SYSTEM MANAGER] \spoolsvc.exe

O4 - HKLM\..\RunServices: [WINDOWS SYSTEM MANAGER] \spoolsvc.exe

O23 - Service: Local Security Authority Subsystem Service (lsass) - Unknown owner - C:\WINDOWS\lsass.exe
=============

Click Start > Run > and type in:

services.msc

Click OK.

In the services window find this EXACT name

Local Security Authority Subsystem Service

Rightclick and choose "Properties". On the "General" tab under "Service Status" click the "Stop" button to stop the service. Beside "Startup Type" in the dropdown menu select "Disabled". Click Apply then OK. File-Exit the Services utility.

+++++++++++++++++++++++
DL http://www.downloads.subratam.org/KillBox.zip

Restart your computer into safe mode now. (Tapping F8 at the first black screen) Perform the following steps in safe mode:

Double-click on Killbox.exe to run it. Now put a tick by Standard File Kill. In the "Full Path of File to Delete" box, copy and paste each of the following lines one at a time then click on the button that has the red circle with the X in the middle after you enter each file. It will ask for confimation to delete the file. Click Yes. Continue with that same procedure until you have copied and pasted all of these in the "Paste Full Path of File to Delete" box.

C:\WINDOWS\lsass.exe

Note: It is possible that Killbox will tell you that one or more files do not exist. If that happens, just continue on with all the files. Be sure you don't miss any.

Exit the Killbox.


START ? RUN ? type in %temp% OK - Edit ? Select all ? File ? Delete
Delete everything in the C:\Windows\Temp folder or C:\WINNT\temp
Empty the recycle bin

Please post back if you have any more problems or questions.

gravatar
Collapse -

Sorry that doesn't work

by stetienne1 In reply to Try this...WARNING could ...

Nope, thanks for your advice but I had none of those files on the computer. I did as you suggested, step by step, but I'm still getting 6 blank 'windows\system32\cmd.exe' pop-up screens on startup, which then disappear one by one. Any further suggestions will be gratefully explored.
Many thanks
Nick

gravatar
Collapse -

Did you delete your "Temp files"?

by Peconet Tietokoneet-217038187993258194678069903632 In reply to Sorry that doesn't work

This could be important because this little program could run from there.

Please post back if you have any more problems or questions.

gravatar
Collapse -

Another way is to get a pop up blocker..

by Peconet Tietokoneet-217038187993258194678069903632 In reply to Did you delete your "Temp ...

http://www.download.com/Popup-Blocker-Software/3150-7786_4-0.html

Please post back if you have any more problems or questions.

gravatar
Collapse -

Sorry, still not solving it

by stetienne1 In reply to Another way is to get a p ...

Hi, put a pop-up blocker on but still getting the messages (cascaded small command line windows which then disappear) when the main Windows screen is loading.
:-)

gravatar
Collapse -

yes

by stetienne1 In reply to Did you delete your "Temp ...

yes i deleted temp files

gravatar
Collapse -

Ok ..Try this...

by Peconet Tietokoneet-217038187993258194678069903632 In reply to Sorry that doesn't work

http://www.spotmau.com/
Download this a run it.. :)

Please post back if you have any more problems or questions.

gravatar
Collapse -

50

by stetienne1 In reply to Ok ..Try this...

for $50! not likely my friend :-)

gravatar
Collapse -

try

by PC-guru In reply to system32\cmd.exe POP-UP's

go to the run box and type msconfig
hit enter and uncheck any start up items or services that are unneeded and reboot and see if they go away

gravatar
Collapse -

thanks, have tried that

by stetienne1 In reply to try

hi, that was the first thing i did but i wil go back and check again and let you know. cheers.

Back to Desktop Forum
15 total posts (Page 1 of 2)   01 | 02   Next

Start or search

Related Forums