News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • SteveTree

    Forum Replies Created

    Viewing 15 posts - 1 through 15 (of 113 total)
    • Author
      Posts
    • SteveTree
      AskWoody Lounger

      Did you try disabling wake timers?

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      SteveTree
      AskWoody Lounger

      When the system is frozen and crashes it is not recording things in logs. I don’t waste effort trying to resolve those unless they happen frequently.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      SteveTree
      AskWoody Lounger

      There may be many different triggers to an error. This site MAY sometimes help.

      http://www.eventid.net/

      Search by Event number and source when possible.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
      in reply to: The scammers are a buzzing today #2353788
      SteveTree
      AskWoody Lounger

      I am a novice with cell phones but owning a computer since the days of floppy swapping made me more than a little cautious,

      Over a few day I had a couple of calls the incoming number starts +213. Some research revealed the IDD is from Algeria. I don’t know anyone in Algeria. More research quickly found what my PC-wary mind already suspected. More than likely the call was a single ring scam. The dialer relies on curiosity to make you call back.  When you call back you get “please hold” and music. The longer you stay, the more you pay.

      I suspect the cause of the problem is adding a genuine phone number to an online purchase. It was a well known website but the purchase was from a ‘partner’. Next time someone demands a phone number to complete a transaction they get my old landline number which still shows in my name but is no longer connected.

      Summing that: Never call back an unknown number.  When a website demands you add your phone number, ask yourself do they really need it.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
      SteveTree
      AskWoody Lounger

      The main tweak is F-Lux so I manage to sleep instead of listening to the Owls at 1AM.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
      in reply to: Getting better feedback #2350061
      SteveTree
      AskWoody Lounger

      Your comments about color design are unfortunately correct. Some web page color choices are abysmal even for ‘normally’ sighted people.

      Ctrl/A (select all) sometimes makes a difficult web page readable.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      5 users thanked author for this post.
      in reply to: WinSlap (Windows 10 Privacy tool) #2337192
      SteveTree
      AskWoody Lounger

      Before anyone pursues it with enthusiasm, read the author’s comments

      WinSlap is primarily developed for my own use cases. Feel free to use it under any terms the license permits. However, I can not guarantee that it works as intended, doesn’t break your system or is actively maintained.

      I believe there is no ‘undo’.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
      in reply to: This should be the best patching experience #2336777
      SteveTree
      AskWoody Lounger

      Surface was on my list years ago. Fortunately I waited for reviews. The deal killer came with news if the updates Issues I expected Microsoft could not possibly fail at with Surface. Logically, you’d think they test their own hardware beyond reasonable expectations so they didn’t generate a bad reputation.  it seems they went out of their way not to favour their own product instead.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      in reply to: Paying for 0Patch Using PayPal #2325461
      SteveTree
      AskWoody Lounger

      I keep falling over at the last hurdle. One or more extension seems not to want to play. To work out price I simply use an online currency converter. That should be close enough to rule out any large surprises. You were concerned enough to ask. Imagine those who may be deterred from paying because they can’t see a price in their local currency!

       

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      in reply to: AUTORUNS – what to do with results #2324116
      SteveTree
      AskWoody Lounger

      Right-click is your friend.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      in reply to: AUTORUNS – what to do with results #2321866
      SteveTree
      AskWoody Lounger

      A file search for the entire name, including extension should return results. However, most results fom a web search don’t tell a lot about the file and many are designed to make people worry they may have malware – these may have some vague malware information and advice to “click here to scan your computer”.  Don’t do it. if uncertain, use the virustotal website to scan your file. Even there, be wary. a score of 1 or 2 from 70 or so malware vendors is often nothing more than false positive. In other words, don’t panic about a low non-zero score.

      File.net often gives advice whether removing an autorun is to be avoided.

      Processlibrary seems generally reliable for example, click this link so see what it says about wow64cpu.dll That’s not a lot of information but is enough to give a hint to not disable it.

      Neuber also gives fairly good information but you need to search for the term using advanced search methods. For example, to search for information relating to lsass.exe, search as follows

      “lsass.exe” site:.www.neuber.com

      Wikipedia contains some information

      Bleeping computers has startups information

       

      Because you can switch something off, doesn’t necessarily mean you should. If you use something regularly, why bother. When switching something off  the decision comes back to the wise advice given previously, “do you know what you are doing”.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
      in reply to: Tasks for the Weekend – December 19, 2020 #2321716
      SteveTree
      AskWoody Lounger

      So, you run autoruns and do your research on every autorun in your system. They all clear. You are happy.

      One or two months later you run autoruns again. You look at the list. What is new and needs to be researched? That’s where SuperantiSpyware (SAS) can help.

      SAS does not have the reputation is had before the 2011 acquisition by supportDOTcom. Most would only know it as a malware scanner but it does have other useful options worth exploring. In particular, System Investigator

      • click Sytem tools then System Investigator

      You can click the [Start] button there and have many hours of ‘fun’ ahead of you researching a lot of malware points on your computer or you can choose to check specific point. To restrict the investigator,

      • check (for example) Windows User Startup
      • Now click the [Start] button.

      SAS will inspect your system and return lists. Initially the lists it present you with will be ‘unknown items’ and ‘known good items’. It may have a list for known bad items, as well. If so, I’ve never seen it.

      Now your work begins. For each unknown item, do your research. To help you do that, SAS has inbuilt search tools. Mouse-hover over the line you wish to check and a magnifying glass appears.

      • Click the magnifying glass and an item details list appear.
      • Every line in the item details can be researched using the hover and magnifying glass method.

      For example, my Autoruns list produces DSATray. Hover, click magnifying glass on the filename line runs a web search (uses Google, not default 😢).  Top of my list is file.net, which confirms it is Intel Driver and Support Assistant Tray. I am happy with that and don’t need to search further.

      Back to SAS, there are options to upvote or downvote. I choose upvote, no comment required and click [OK]. Next time I run the investigator, the file will appear on my user upvoted list. I know it does not require research.

      Now repeat for thousands of entries! Actually, it’s not that bad. For example, I am currently working through CLSIDs and have 1646 records. Most of those are known. 1588 of those are ‘known good items’. Those still to be check contained mostly signed files from software companies I know (Kaspersky, Lastpass, malwarebytes). Some are unsigned and will get research priority.

      HINTS:

      1. Upvotes and down-votes are only useful as a general guide. Anybody can upvote and downvote (including me). You have no idea of the credentials of the person who cleared the file.
      2. A web search for file names puts you in the territory of malware scammers, who want you to run their ‘free malware scan’. DON’T DO IT.  Simply try to work out what the file does and a guide whether it is legitimate.
      3. If you can’t easily clear a file of find out what is does, open VirusTotal, and import the file for analysis. Again, be cautious of the result. VirusTotal publishes few false positives (I won’t go into my suspicions why).

       

      EDIT: almost forgot. Even the free version of SAS standard setting is to start with the system. Initially this concerns me but I figured out it must be connected with the right-click option. if you don;t want it to run (I don’t). Open System Tools, Preferences, uncheck General   Configuration options. While at it, read ad decide about other settings. I like to be in full control. The only setting on mine is the Radio Button ‘Do not scan at startup’.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      • This reply was modified 3 months, 2 weeks ago by SteveTree.
      1 user thanked author for this post.
      in reply to: Tasks for the Weekend – November 29, 2020 #2315946
      SteveTree
      AskWoody Lounger

      Thanks. This is an area never explored before.

      I know it won’t do any harm to delete a credential but before I do there is a curious entry that  web searching doesn’t help solve and a few different types of search of the PC don’t provide clues for me.

      My machine has  something similar to I97PiCc33i  sitting under Generic Credentials (persistence =Local Machine). How might I track what is calling it?

      ‘Something similar’? I am a cautious person.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      in reply to: So why do you buy a Windows PC? #2315721
      SteveTree
      AskWoody Lounger

      You seem to understand many are at Askwoody because they either encounter or are in the business of curing issues with Windows  and seem to be asking why we whinge about  it but keep buying Windows-loaded devices.

      Microsoft has a strategy. At least, they do in this part of the world.

      I was never involved in the contracts, but suspect schools are supplied with MS product at massively discounted prices. This may be fed by decision-makers who are able to obtain massively discounted prices for personal licences because their workplace used MS products. Once students move into the workplace, they are fairly well ‘wedded’ to Windows and Office.

      In similar arrangements to schools, many large organisation are able to offer Microsoft products at massively discounted prices.

      My son runs a fledgling Air Conditioning company. He asked me what laptop to buy. I said, “you have a Macbook”. He said, “the program am I need to run only functions under Windows”.

      My ‘excuse’ is employment providing  support for Microsoft products.

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      • This reply was modified 4 months, 1 week ago by SteveTree.
      1 user thanked author for this post.
      SteveTree
      AskWoody Lounger

      currently i don’t dare to try it…

      Is there an obstacle that prevents reversing the changes if MSE fails to update?

      Group A (but Telemetry disabled Tasks and Registry)
      Win 7 64 Pro desktop
      Win 10 64 Home portable

      1 user thanked author for this post.
    Viewing 15 posts - 1 through 15 (of 113 total)