Jump to content

MiamiBeachCop

Atomican
  • Content Count

    160
  • Joined

  • Last visited

Community Reputation

0 Serf

About MiamiBeachCop

  • Rank
    Journeyman
  1. MiamiBeachCop

    Single purpose OS

    Just a question but if multiboot refers to being able to choose different OS's to boot into, why is that a godsend? If that is also called a bootloader, then what is multiboot in the context of a dedicated single operating system?
  2. MiamiBeachCop

    stupid ****** infection

    this is still going on, and so far nothing has worked. I am going to have to format and reinstall if nothing else works, but I REALLY REALLY want to avoid that. Has anyone got other things I can try?
  3. MiamiBeachCop

    TheSecret wasn't banned, was he?

    ahh, that does suck. he may have acted like an ass, but he was a technical mastermind. I always enjoyed reading his posts. Yeah. Thankfully you can always just turn to him and have a little chat, seeing as he's in your house using your computer. Oh, wait... Just for the record, this was never the case. I'm not sure how "the case" could be inferred from an off hand joke remark... I was going by what happened after and assumed that was the cause. If it wasnt then nevermind :)
  4. MiamiBeachCop

    stupid ****** infection

    Hi Master_Scythe I have done as you suggest, and it still persists. It is a very new computer, only a few months old, and it has always been updated. There is hardly anything installed on it, so I am surprised at this. You said these files are my virus?: O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) removing them from hijack this made no difference, and they are on the disk. I asked someone else who said they were normal windows files, how are you sure they are the virus?
  5. MiamiBeachCop

    TheSecret wasn't banned, was he?

    ahh, that does suck. he may have acted like an ass, but he was a technical mastermind. I always enjoyed reading his posts. Yeah. Thankfully you can always just turn to him and have a little chat, seeing as he's in your house using your computer. Oh, wait... Just for the record, this was never the case.
  6. MiamiBeachCop

    Got Resultz of the VCE kind?

    What is the VCE for?
  7. MiamiBeachCop

    stupid ****** infection

    OK, I tried combofix and Dr Web, nothing found. Dr Web seems like a small dodgy av...any reason it is recommened? I did not yet delete the services because I am wary of doing so. If I delete services, can they be restored?
  8. MiamiBeachCop

    Minor change to mouseover in forums

    I second this request/feature. Would this mean there would not be an issue with replying to older threads any longer?
  9. MiamiBeachCop

    TheSecret wasn't banned, was he?

    ahh, that does suck. he may have acted like an ass, but he was a technical mastermind. I always enjoyed reading his posts.
  10. MiamiBeachCop

    I have made a blog.

    just a quesion, but if you use wordpress, how many tags do you give each article? I am in the habit of giving them as many as I can, perhaps 10 or so, but wonder if that is the wrong behaviour.
  11. MiamiBeachCop

    Single purpose OS

    well, this new goal has certainly become the focus :P i don't think know enough of what you are talking about to comment further, although I would like to understand it, so if you can direct me to a resource i would be grateful. Why do you need a long mode ultra compact DOS? What do you mean by long mode? What is the signfificance of Ring 0. My understanding of rings was that it was more of a context thing. If you remove other contexts, it would not be so much an issue. i.e. with your single purpose os, you could run everything in ring 2 and it would not make any difference? what is the significance of sysenter and why are interrupts the worst of them all? why do you need one and only one memmory space? last of all, why can you not do all of this using/modifying the oskit component or something like the klinux code. it really does seem like the work has mostly already been done for you ---------------------------- i seemed to have missed your entire list of quotes somehow. I did read all of your posts, but perhaps the significance escaped me, which i hope if you can answer the questions I ask above i will have a better idea.
  12. MiamiBeachCop

    stupid ****** infection

    OK, thanks for your help here is my hj log Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:15:54 PM, on 12/11/2009 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Notepad++\notepad++.exe C:\Program Files\Microsoft Office\Office12\WINWORD.EXE C:\Program Files\DAEMON Tools Lite\daemon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://iesetup.dll/SoftAdmin.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = res://iesetup.dll/SoftAdmin.htm R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKUS\S-1-5-21-7387539-1306034971-1529643008-1003\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'matt') O13 - Gopher Prefix: O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) i remember him doing a good job of fixing everyones problems. Yup, I tried many online scans, no difference.
  13. MiamiBeachCop

    Single purpose OS

    It really isn't, as I mentioned to willm, I think that if I were to use with the kernel component as a starting point it'd be with an "rm -rf". Which parts of OSKit kernel component do you think could be used in an SPOS? Rob. The 'kernel' component of OSKit. as an example from their page: #include <stdio.h> #include <oskit/clientos.h> #include <oskit/startup.h> #include <oskit/version.h> int main() { #ifndef KNIT oskit_clientos_init(); #endif #ifdef GPROF start_fs_bmod(); start_gprof(); #endif oskit_print_version(); printf("Hello, World\n"); return 0; } could you not then replace the hello world functionality with whatever you wanted? as i said, I did not look at it very closely. If it is not what you were after then why? My understanding that once compiled this would result in a bootable basis operating system that did nothing except print hello world to the screen. i.e. a single prupose os. there are more complex examples on the site that are beyond my understanding although they seem equally abstracted.
  14. MiamiBeachCop

    Single purpose OS

    so that would be option 3 then. I don't see why could not modify one of the existing lightweight kernels to remove the functionality you deem costly, as others have suggested. Looking closer at oskit(But not to closely), the kernel component could be used as a starting point for waht you want?
  15. MiamiBeachCop

    I can't hear you!

    A least there was no permanat damage! I would hate to go to sleep and wake up only to find my ear on the ground!
×