Explore topic-wise InterviewSolutions in .

i have none of those programs you mentioned, and i am keeping it blocked. what trojan/keylogger scaning software should i use?I recommend The Cleaner. It is not freeware but can be downloaded for a 30 day free trial. $49.95 if you you decide to keep it after the trial period.i also ran a scan with that it too came up empty :-/Have you bothered going to the URL?

Quote

what do you want to find here?

My icons are turning into slices of cheese. Doesn't seem to be doing anything malicious. I use Kaspersky for ANTIVIRUS and spybot but they dont take care of the PROBLEM. Anybody else run ACROSS this ? ThanksYou're computer must have been INFESTED by rats.

What do you mean slices of cheese? Do they look LIKE actual cheese or just yellow?

In need of help.

I have all of my daughter first year of life pictures on a disc. While I was saving the last pic I take to the disc the (CD)disc locked and no longer lets me open the file(cd). When I do a disc scan it tells me that the disc utility is locked to unlock disc. I have also click on format and the program I have tells me that there is DATA on this disc. Problem is I can't see the pictures.
Please Help .

I read that a person who is really good with computers can open a file that was not completely format. I am hoping that whatever is going on with the disc I can restore back to view those picture.

Thanks,
I MOM In Need

The program I Have is Ahead Nero 5 and IncdYou can not format a CD-R. Are you certain you were not using a CD-RW?

I DONOT think you can recover data from a CD-RW once it is formatted... A Hard Disk Drive is another story.maybe you could find someone ELSE to share the costs>http://www.infinadyne.com/cddvd_diagnostic.html

The KEYBOARD on my laptop as of yesterday has begun acting
funny. The following keys are affected. The number 0 u i o p [ ] j k l ; m ? /. When depressed they display the following. / 4 5 6 * 1 2 3 - 0 + +. I have mcafee and my scan came up clean. I also did an ONLINE scan using symantic and got the same result. i have spysweeper and that turned up nothing.
has any1 encountered this problem before? When i power up and login to my cpu, my pass has an i in it and the login box READS it fine and my cpu STARTS up but after that the problem starts. any HELP is appreciated.
Maybe the keyboard itself is physically damaged? You haven't spilt coffee on it have you...Is it set to the proper language..

When I was installing Messenger PLUS from a free software CD supplied with an computer magazine, I use to get warning that my computer was infected with trojan DOWNLOADER.SWIZZOR.2G. Ofcoarse I removed it with AVG antivirus. But when I scanned the CD there was no virus. From where this virus came. Do you have idea about this to avoid this in future. ThanxQuote

Do you have idea about this to avoid this in future

My Virus SCANNER DETECTED a virus in a CAB (cabinet) but will not delete viruses in a cabinet. Any easy solutions?What virus scanner did you use? Operating system? Name of the virus if you KNOW it? What rights does your account have?Sorry. Windows XP (Home).
Anti-Vir Guard for Windows XP(2000 and NT)
Don't remember the virus but will post it WENT I run the scanner again.

Supervisor rights

Thx for replyingbertbarb........Double check the CONFIGURATION in your anti-virus program ....it may not be set up to scan everything in your pc .

dl65

Hey guys. I'm THINKING of buyin Norton Internet Security personal or Professional, but I was told that for some reason, Norton Internet Security 2005 will not work with my computer.... Is it true? I have a Gateway PC, 384 megs of RAM, and everything that I should, from what I know..... Anybody ever hear of this strange rumor? Please respond soon..

[glb]Flame[/glb]Save you cash and hard drive space...www.majorgeeks.com for sygate personal edition free....and anti vir...personal edition also free....spend the cash on more ram or cdrw disk etc...ok. Just curious because my friend has it, and is going to let me install it on my cpu, but I wanted to make sure that it would be compatible....

[glb]Flame[/glb]CPU = Central Processing Unit....

If your system meets the requirements for the Norton package, I don't see in why it would not work. Who told you that it wouldn't work?My computer manufacturer. lol Maybe they were just kiddin, but they said that Norton 2005 Edition stuff will not work with a Gateway computer.

[glb]Flame[/glb]E-mail Norton technical support, then.flame Posted on: Nov 28th, 2004, 3:28pm
ok. Just curious because my friend has it, and is going to let me install it on my cpu, but I wanted to make sure that it would be compatible
--------------------------------------------------------------------
you may find norton will not work on you pc....its licensed to your mates pc? M_2You can usually use the license on two or three PC's..

Well, actually, what happened was, I had to erase my HD, called Gateway for free help, and I think I had a virus, but I'm not sure.... Anyway, while I was on the phone with Gateway, the tech said that Norton 2005 products for some reason do not work with Gateway computers..... I just want to know if it's true. I'm not concerned about licences... (Although licences would be a problem later. lol)

[glb]Flame[/glb]Symantec have some GOOD software programs..but alas a BAD apple in barrel is not good like nav....its causes so many problems..>like mac(posted) has stated...it hogs the hard drive by storing files left /right CENTRE*/run dll 32etc..] norton speed disk/ defrag win9x ghost /powerquest just "well....without symantec m$oft would have had a problem to boot?just wish i had the cash to INVEST in symantec...maybe m$oft owns them..it would be an maze of mystery...imhaoPersonally, I use Antivir, and I am currently getting Sygate (after merlins advice). I don't like Norton, and so I will have to say that you should scrap getting Norton, and save your money.

Jacko

Well, I had an obvious browser hijacking (XYSearch), and so I ran Ad-Aware and came up with 200 infected files. I attempted to erase them, but Ad-Aware froze. When I re-scanned, I got a prompt that Windows would be shutting down in 30 (or so) seconds. It happens every time I run Ad-Aware, so I can't delete any of my files. I am PRETTY sure it is pretty bad... my computer that is. Any idea what is happening? It happens in Safe Mode as well. I've tried everything it seems. Any suggestions? It's Windows XP (the devil OS)Scan in safe mode and download the latest Microsoft security updates.

Quote

It's Windows XP (the devil OS)

What about system restore? Will that work?

Have you read what I advised... I think not.. Thanks a lot - I tire of you people..

Hi, can anyone tell me if having a weird sort of wishy-washy gurgle sound when you play SOMETHING in realplayer or any other media player be a sign of a virus? it only did it once, i closed realplayer, opened, and its played fine. Just curious. Thank you for your time!!Probably not. Do you have an antivirus PROGRAM, or firewall?

[glb]Flame[/glb]I have NORTON anti-virus, ad-aware SE and the only firewall i have is the one that came with my dsl service, but i'm planning on picking up the norton one in the next few days or so.Have you run a virus scan lately, and updated your virus definitions recently? If so, then you have NOTHING to worry about.

[glb]Flame[/glb]Sounds like a sound driver PROBLEM. (Sorry I could not resist). Go to start > run > dxdiag and run the sound tests. RESULTS?

Hello,

Yesterday when i was rebooting my COMPUTER after installing some software my computer boots up to my desktop, but before everything loads it restarts itself and it just keeps doing this. Is this a virus or a hardware problem. Any help would be much appreciated. If it matters I had AVG up and running at the time...please help, it's the end of the semester and I need my computer!What software did you install?

Try to get into safe mode. When your computer boots up keep pressing F8 and select safe mode. Does this work?

What operating system is this?my operating syster is windows XP and the virus guard I use is the free version of AVG, and I just updated it yesterday before the whole restarting thing kep happening. Someone else told me to try to use an online free virus scanner, would that be a GOOD idea?oh, and the software I installed was Daemon ToolsTrojan

[glb]Flame[/glb]I ran the virus scanner I have and it says I don't have any viruses, and since I can only start my computer in safe mode, how can I get a new virus scanner to search for this trojan? Do you thik Daemon Tools is the Trojan?I also turned off auto restart when windows crashes (or whatever it's called) and I got the following error:

Stop: oxoooooo8E (0xC0000005, 0xF86D7A72, 0xB9F8715c, 0x00000000)

CDR_xp.sys- Adress F86D7A72 base at F86D6000, Date stamp 3bc7333d

Can anybody tell me what this means?Try uninstalling that program. Then we will know. You could try REINSTALLING Windows.I tried to uninstall it but since I can only start my computer in safe mode it won't let me use the windows unistall utility, but I did delete the program but there still hasn't been any effect...I think I MAY just have to get someone to fix it for me...Do you thik Daemon Tools is the Trojan? no>http://www.cd-rw.org/software/cdr_software/cdr_tools/daemon_tools.cfm
-----------------------------------------------------------------------
CDR_xp.sys- Adress F86D7A72 base at F86D6000, Date stamp 3bc7333d
------------------------------------------------------------------------
have you tried to make a cdboot disk? this will help you in the future ISO recorder >http://isorecorder.alexfeinman.com/isorecorder.htm try a repair>http://www.michaelstevenstech.com/XPrepairinstall.htmI don't think that daemon tools is the trojan. I downloaded a version of homeworld 2 from suprnova.org, installed it just fine and was going to use that to mount it, but then this whole crashing thing happened. Are there any known trojans or virus' out there that do this sort of thing? I think if it comes down to a re-install of windows i'm just going to have someone else do it, because I don't trust myself...

I have full professional version of AVG anti-virus(thank you very much dl65) and it's fully updated. Every time I BOOT up the pc it updates and then runs a full system scan. After a while my pc started to suffer in performance and i couldn't FIGURE out why. I had experienced this problem before due to all kinds of -ware on a xp os with sp2. Before I had to uninstall sp2 so that's what I did. Performance increased noticeably. Then because AVG didn't find anything after another full system scan I decided to use mcafee free scan from their website. They picked up 7 new viruses.

Any suggestions as to what antivirus program I should get? Any free ONES as good as mcafee's?I got into an arguement a while back with this comment, but I'll say it again. I don't bother with an Antivirus app any more. Vigilance is by far the best tool in your armoury.

Basically, don't ever run any executable attachments that come in the email. Ever. Especially if you never specifically asked for them.

Think about it. A friend of mine sent me an email and attachment that he wasn't too sure about. The text went (roughly) along these lines:
"Hi, i [sic] SEND this in order to have your advice!"
and in the "From" field was an unknown email address (which I later heard was forged anyway). Doesn't really take a genius to work out what's in the attachment, right?

Anyway, point made, back to the question. AV apps are much and such the same, and seeing as AVG is free I'd normally go with that - but it really is more down to personal preference than anything else. So long as you keep the virus definitions up to date, you're going to be safe enough.

A quick question: Did you regularly update AVG with the latest virus definitions? You should have.I am NOT a McAfee person!!!!!!! I had McAfee firewall, took it off the cpu, and it casued BIG problems. That stupid firewall is what made me come here... (Which was kind of a good thing. lol) I would strongly urge you to but Norton SystemWorks. That comes with Antivirus, and other good stuff for PC performance.

[glb]Flame[/glb]anvir-personal edition free from majorgeeks.com this program has found things norton never did?and you should have a virus program on your pc......not just for emails but SURFING the net is a must......some websites have viruses in embeding in them.....the one i have listed above does not take all the hard drive resourses up....its your choice??As for spyware scanners..... I have SpySweeper. It works GREAT. I purchased it for $20.00. It's pretty cheap, and works great! Now, those are the qualities that I look for! lol

[glb]Flame[/glb]

Help! We have an in house LAN line, and we might have a virus that's INFECTING all our computers. The guy who set up our high-speed internet access says we have a virus. Well, I have one clue: My auto firewall was taken down somehow, and won't go BACK up. I 1) don't know how to take it down and 2) don't want to. There's a huge possibility the whole family will have to re-format our computers. Two questions: What is the virus? and How do we get rid of it?

Thanks!one you should have anvir personal edition or some thing like that>>. program on your pcs....www.majorgeeks.com you may have a trojan download spysweeper from www.webroot.com and load all the pc with it......and disconnected from the net after the updates and scan with it......or use trendhousecall......Go to

www.grisoft.com

and download the free virus scanner. Make sure you update it and then run it.Kimberly Lewis.....You didnt say how many pcs are on the network......But here is what I would do......
On a pc that you know isnt infected .......D/L a little app called stinger .....and save it to a FLOPPY disk. Don't forget to write protect the disk after you download it.
http://vil.nai.com/vil/stinger/
Next ......shut down any access to the net by your network. .....Now one pc at a time
.......Isolate that pc from the others .....use the floppy with Stinger on it and run it from the floppy drive on each machine on the network. Once you have established that Stinger has found and deleted ......whatever was there ......Run the anti virus which I would imagine you have on all the pcs. Once you have a clean system. You should be safe to go back online .

HOPE this helps you .

dl65 Along with what Dl said, you should disconnect all the PCs from the network or the virus may just spread after cleaning again.

I'm in search for a good program that get's rid of viruses and spyware. I currently only have Ad-Aware, which is prety good, but does not cover the viruses.

If anybody has a good virus scanner, which is FREE, and that is good, post up please.

Jacko

www.grisoft.comNot Being A Complete Idiot is as good a virus defence as anything else.

In other words, any email that says something along the LINES of "Hey! Wanna see Russian-teenage-lesbian-dwarves stick things into certain bodily orifices? Click on this strange-looking *.exe file!" should automatically be assumed to be either spyware, virus, dialer or all of them.Jacko, please be aware that FREE stuff has errors and flaws in it.... It's FREE for a REASON. Just spend to $40.00 to get a REAL one. This will save you a LOT of grief later. Trust me...

[glb]Flame[/glb]Flame, I am using free virus scanner, free firewall... no problems in that department. Like Corrosive said, not being an idiot is your first line of defence. Secondly, as far as I know all viruses scanners use pretty much the same virus library or whatever anyway so essentially their core ability is the same.Thanks all!

I think I'll stick with my Ad-Aware which is good for spyware and stuff, and take Corrosibves advice for not being an idiot and opening viruses.

Thanks,

Jacko
Jacko, not being an idiot is no excuse for not actually having a virus scanner. I believe corosive was talking about obvous viruses. Some are hidden and not so obvious. You never know... one could sneak past even the most vigilent person.The bottom line is..... There are some things that are a MUST for computers..... Firewalls and virus scanners are 2 of them. Just THINK about it. If you get one of these, then give yourself a pat on the back for THINKING. Does this make ANY sense?

[glb]Flame[/glb]Rather than giving yourself a pat on the back for an essential... maybe we should whack people who don't have them in the back with a large kazaa-defeating stick? As there seems to be some minor confusion in what I meant in that last post, I'll give you Tom's TOP TIPS (see what I did there ) on not falling for email trickery:

1 - If you receive an email from Symantec, McAffee, Grisoft, Microsoft, The President or another major corporation that warns of the latest virus, delete it. Unless you have explicitly signed up for virus updates from the company in question, they will NEVER send email warnings. A lot of the time, these emails also contain attachments - even if they did send out warnings, they'd link to it so it can be downloaded from their site.

[A varient of this trick has also caught people out. If you receive an email from eBay, Hotmail etc, asking you to update your payment details or something to that extent, delete it. Especially if it asks for your password and/or any financial details. It's a common identity theft trick]

2 - If the body of the email asks you to "forward it to all your friends" or something to that extent, delete it. And for God's sake don't forward it - especially if I'm in your address book. This is a trick used mostly with scams and virus hoaxes (which can sometimes be as bad as a real virus). No reputable company will ask for you to do this.

3 - Many of these emails will contain something like "Microsoft REPORTS that VirusX will wipe your hard drive, take all your financial reports and violate your cat". If in doubt, check if they did actually say that. Google News could help here but if you type in the 'virus' in question into Google you'll normally get usable information.

4 - Turn on the file extensions. Go into Start > Settings > Folder Options, then click on the 'View' tab and uncheck 'Hide file extensions for known file types'. From there, you can easily spot any executable files in the email (they'll have the extensions .exe, .pif and .scr).

5 - Disable the preview pane. Many viruses take advantage of a loophole in Outlook Express and many other clients, which allows the virus to automatically execute when the message is previewed. Also disable the automatic download of .exe files in IE (search through Tools > Internet Options. It's in the 'Advanced' tab.)

And finally:
6 - Do your homework. If in doubt, search for info. www.snopes.com ('Inboxer Revolution') is also a good place to find out information on viruses, scams and hoaxes.

I am working on a computer which is obviously INFECTED with a virus which does not allow programs to be installed properly, and reboots the computer. I attempted to install Norton AntiVirus 2003. The install went normally, but did not complete. Norton will not open to allow me to scan for viruses. I get messages from Norton that a program is attempting to change settings. Norton attempts unsuccessfully to correct the situation and reboots. Short of reformatting the HD and reinstalling WinXP and all of the programs, is there a way remove this virus? I do not know the virus' name. I cannot detect it on the Task Manager processes screen.corndale.....Certainly sounds like a virus ......here's what I would......go to another pc that you know to be virus free......then D/L "STINGER" .......its a small stand alone virus cleaner which should get your pc cleaned to the point you will be able to install and do a full scan with Norton. Get stinger here .... http://vil.nai.com/vil/stinger/ D/L it and save it to a floppy disk.......remember to write protect the disk once you have downloaded stinger ......Then go back to the infected pc .......make sure its not connected to the net .
Then run stinger from floppy drive A: This should get your machine clear. Now before attempting to reinstall Norton .....make sure there are no bits and pieces of Norton still on the pc or you may have problems installing it . I think Norton does a pre install scan before it will load .
Hopefully this will help get you back up and running.

Let us know
dl65 You can also go to McAfee.com and run a virus scan from their site....

[glb]Flame[/glb]Thanks dl65 for the McAfee AVERT Stinger file. Can Stinger be run in Safe MODE, and, if so, is there an advantage in running it in Safe Mode rather than Normal?I know, I know.... I'm not DL65, and I don't know if it runs in safe mode, but computers USUALLY perform better in safe mode....

[glb]Flame[/glb]I ran stinger on a good computer and saw that it will accomplish what I need it to do on the infected computer. I just hope the virus does not interrupt the scan.
Additional question: is there either a version of Stinger, or another program that will fit on a 3 1/s floppy which will run from C>: if you boot up a computer using a Start Up Disk? That would be the ideal situation.Quote

1. Can Stinger be run in Safe Mode, and,
2. if so, is there an advantage in running it in Safe Mode rather than Normal?

Please EXPLAIN.....

[glb]Flame[/glb]a lot of the time I do a WEB SEARCH, this BBS site turns up when you try to go to the web site from the earch ENGINE. I have no idea how to eliminate this APPRENT popup. Duckdrvr.......Is your browser being redirected or is it just a small pop up that is appearing ?

dl65 The browser is being redirected to NATHAN BBShttp://www.wilderssecurity.net/bhblaster.html

Previous question in this FORUM related to this problem: Cannot Install On Infected Computer
« on: Dec 15th, 2004, 11:59pm
I discovered that the BIOS virus protection was disabled. After the BIOS virus portection was enabled, the boot process terminates prior to the Windows XP splash screen in both Safe and Normal Modes. When enabled, the boot process proceeds as normal. Do I need to "flush the CMOS?" If so, what is the process? Computer name is Protek (found out they have a terrible support reputation), Motherboard: Socket A Mainboard L7LMM2, BIOS Phoenix Technologies, LTD 6.00 PG, 2/21/2003. To repeat from the above link, SOFTWARE cannot be INSTALLED in Windows XP. The computer was purchased through Popular CLUB and did not come with a Windows XP installation disk. I am unable to get any assistance from Protek. If, as a last resort, I purchased ANOTHER Windows XP Home CD, reformatted the HD, and reinstalled the OS and all programs, would this clear up my virus problem? Or, based on what I have explained, is the virus in the CMOS?Turn the virus protection in BIOS off and get some good antivirus software.

Smells a BIT FISHY. Google doesn't turn up any information (at least not in ENGLISH). DENY it access and scan for spyware and viruses (make sure you update the scanners too).

My computer is running windows xp and is infected by virus VBS/REDLOF.A. It was detected by AVG and Norton, but both couldn’t remove it. It is located in temp. internet file. so please help to remove this virus.dratul.....There's something strange going on here .....If you have Norton AV and its upto date and the subscription is current it should have deleted that virus or at the very least placed it in quarintine......Are you certain you have Norton CONFIGURED correctly ........The other thing which jumps out at me is why you have two AV....installed .....two isnt better ........

http://securityresponse.symantec.com/avcenter/venc/data/vbs.redlof.a.html

read this from Symantec about how to remove the virus

dl65 As a computer salesman I'd say you should COME to my store and get yourself a nice new copy of Norton AV (and Personal Firewall while your at it). As a Regular Joe, dump that Norton crap and keep AVG updated... In Internet Explorer, go to tools > internet options and delete temp files (including offline) delete cookies and clear HISTORY.

I KEEP gettin serveral items tryin to dl onto my comp...findwhatevernow search bar, casiontoolbar and OTHERS. when they open i AUTOMATICALLY CLOSE them and then seconds later they pop back up how do i get RID of them. I rab spy sweeper to try and get rid of them but they just keep reappearin.any help would be much appreciatedGet a firewall from www.zonelabs.com
Get a virus scanner from www.grisoft.comhttp://www.intermute.com/spysubtract/cwshredder_download.htm

did you configure spysweepers.......shields......?

i have to be extremely careful with this one - so won't try it myself - although i've gotten pretty good at knowing what to get rid of at HOME - no chances here - but here it is - help please?

Logfile of HijackThis v1.99.0
Scan saved at 9:03:57 AM, on 12/20/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\WINDOWS\System32\NWTRAY.EXE
C:\Program Files\CA\eTrust\InoculateIT\realmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\skiefer\Application Data\elat.exe
C:\WINDOWS\System32\w?wexec.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEAKSYSTEMTRAY.EXE
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\Program Files\Common Files\System\MAPI\1033\nt\MAPISP32.EXE
C:\WINDOWS\System32\Cyf0o.exe
C:\WINDOWS\System32\ZhscofZ.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\skiefer\Local Settings\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.compaq.com/1Q00CDT/0409/bl8.asp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.compaq.com/1Q00CDT/0409/bl8.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.compaq.com/1Q00CDT/0409/bl7.asp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 172.16.100.250:8080
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {071F6F97-F72F-D287-0B4E-8CCACFDECAC7} - C:\WINDOWS\System32\hdgoiibp.dll
O2 - BHO: (no name) - {1AAC3254-EE15-01B7-D10A-17550DFB2845} - C:\WINDOWS\System32\avfkc.dll (file missing)
O2 - BHO: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [NWTRAY] NWTRAY.EXE
O4 - HKLM\..\Run: [Realtime Monitor] "C:\Program Files\CA\eTrust\InoculateIT\realmon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [2u0BHziT] C:\documents and settings\skiefer\local settings\temp\2u0BHziT.exe
O4 - HKLM\..\Run: [4gocD] C:\documents and settings\skiefer\local settings\temp\4gocD.exe
O4 - HKLM\..\Run: [4S2NSLA3QS#366] C:\WINDOWS\System32\WxfV9U5.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Lerm] C:\Documents and Settings\skiefer\Application Data\elat.exe
O4 - HKCU\..\Run: [Raac] C:\WINDOWS\System32\w?wexec.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - EXTRA context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0411.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0411.dll
O12 - Plugin for .SPOP: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {01111C00-3E00-11D2-8470-0060089874ED} (Support.com ActionRunner Class) - http://help.rr.com/Foundrysdccommon/download/tgctlar.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab27513.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://download.games.yahoo.com/games/popc...aploader_v5.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = PARC-FL.local
O17 - HKLM\Software\..\Telephony: DomainName = PARC-FL.local
O17 - HKLM\System\CCS\Services\Tcpip\..\{85C32FCE-F94D-4741-8917-DF0E589F58F8}: NameServer = 172.16.100.248,0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = PARC-FL.local
O23 - Service: eTrust InoculateIT RPC Server - Computer Associates International, Inc. - C:\Program Files\CA\eTrust\InoculateIT\InoRpc.exe
O23 - Service: eTrust InoculateIT Realtime Server - Computer Associates International, Inc. - C:\Program Files\CA\eTrust\InoculateIT\InoRT.exe
O23 - Service: eTrust InoculateIT Job Server - Computer Associates International, Inc. - C:\Program Files\CA\eTrust\InoculateIT\InoTask.exe
O23 - Service: Event Log Watch - Unknown - C:\WINDOWS\LogWatNT.exe
O23 - Service: SoundMAX Agent Service - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe



C:\WINDOWS\System32\Cyf0o.exe
C:\WINDOWS\System32\ZhscofZ.exe
C:\WINDOWS\System32\w?wexec.exe

they look iffey.........download spysweeper/shredder/stinger......now scan........thanx again merlin - it found a few things - got rid of them, but gotta find the magical way to get rid of the gator guy - that's one that is a very haunting pain in the butte - haven't had it in so long forgot how hard it was to make it go away. I don't have administrative RIGHTS on this puter - so - there is only so much i can do before calling for help - but i always like to try what i can.

oh - by the way - the old problem i was having at home with the sims2, old compaq, and graphics - has been solved - i don't like to admit this - but for the first time in my life i broke down and bought a dell - only a dimension 3000, but for a CHANGE i'm not trying to keep things together - now i have some time to play, and then work on the old guy again later!

Oh. I guess you shouldn't call them then.... lol

[glb]Flame[/glb]Icon, my post was actually directed at Flame, so sorry if I've confused you. Also, there is no need to quote everything that is SAID: normally a thread like this flows (well, "moves ROUGHLY in the one direction" is more accurate) like a conversation, where one person says something or a few things and then you respond. As you've probably seen, this isn't often the case which is where the quote tags come in.

Not a telling off - it's just that I'm beginning to get a little square-eyed...

Flame, you've completely missed the point I was making. On the free programs front, I've pointed to various Linux ports in the past that are excellent, and it's not entirely difficult to find decent AV software for free. No, they may not have some of the features of some commercial apps, but do you really need them? If it's just a case of "it might be handy", does that really warrent you shelling out £30? I guess it's down to the user, but I find that quite a few freebie AV apps (AVG in particular) are perfectly cabable of sorting you out.

As for the firewall, I agree. It's vital to have one so that the script kiddies (by and by, read this to find out what a hacker really is - you'd probably be disappointed) can't screw with your PC. What I was saying was that the likelyhoods of this being the root cause of Icon's problem was highly unlikely, and that I was very confused as to how you actually came to that conclusion. Even with your reasoning I still feel it's a very unlikely scenario.

I'm still putting money on a conflict of some sort. But I'll LEAVE you guys to work that out for yourselves.I know you were talking to him Corrosive. No need to argue over something that doesnt need to be argued about. Oh and I know how posting messages and such work. I didnt quote everything, I was RESPONDING to each person, that way they knew I was talking to them.

Ive been doing the message board thing since 2k, so I know how it all works. Thanks for the help guys, but it seems that I just may have to live with this problem until my hard drive is finally dead.

Yesterday a customer came in and asked me if we stocked some 'Booster' software from a company called InKline Software. The search on the computer in store turned up nothing, so I asked what it was for - so I could possibly recommend an alternative product which could do the same job - and something she said struck me as a little odd about the situation.

Apparently, the reason she'd heard of this software was through a dialog box on her PC, which had popped up and quite blatently told her that this piece of software would SPEED up her computer (incidentally, she also mentioned that her PC had been running a little slower than usual). The more experienced among us are beginning to smell a rat, I feel...

I Googled 'Inkline Software' and it does appear to be a real and legitimate company, and having had a closer look at the products I'm beginning to get a feeling I actually saw the very same product on QVC.

I passed this customer on to the tech, who tried to sell the Healthcheck (she was having none of it) but my curiosity lives on. Have ANYONE else had similar messages? Are InKline Software dabbling in Adware and scaremongering?I think I've seen some pop-ups before saying that my computer is not running as fast as it should, and that if I download this PC Booster THING, that it would be better... I never tried it, so I don't know if it works..... However, there are SO many things that slow down computers.... (Spyware, little memory, etc.). It's hard to say for sure if speed boost would have worked, or what was making your customer's computer so slow...

[glb]Flame[/glb]http://www.inklineglobal.com/products/mb/Corrosive...Here's a review I came accoss .

http://www.itreviews.co.uk/software/s65.htm

It may help...but according to the review theres no quarantee .......suggestion was to try it before buying.
All it seems to do is tweak your pc ........But D/l speed all relates to the connection to your ISP ......."You can't make a silk purse out of a sows ear" I assume your customer has a dialup connection ...... I'm my humble opinion ....spend the money on something worthwhile .
Here's another independant review......
http://www.onepc.net/reviews/0048/

cheers
dl65
Quote

It's hard to say for sure if speed boost would have worked, or what was making your customer's computer so slow...

Hey guys! I'm getting a friend a spyware program, but it HAS TO BE FREE. Does anyone here KNOW of any spyware killers are are FREE and work REALLY well? (I usually would know about this kind of thing, but I'm not much of a freeware PERSON) Also, NO TRIALS PLEASE! I need a full version. (His computer is REALLY MESSED. lol)

[glb]Flame[/glb]Spyware Blaster and Spyware Guard

http://www.javacoolsoftware.com/spywareblaster.html
http://www.javacoolsoftware.com/spywareguard.htmlBut which one's better? (I'm lookin for the best I can find)

[glb]Flame[/glb]They both do different things and complement each other.But it's not good to have 2 programs that do basically the same thing on the same computer at once, right? I just want the best spyware hunter...

[glb]Flame[/glb]Flame

They are made by the same company. They don't do the same thing. I use them both. I don't have any problems with spyware. I run Spybot and Adaware once a week to check if the system is clean. They are all freeOk I tried it, but I can't delete spyware. I NEED to be able to delete spyware if it comes into the computer. He already has TONS of it! Now, I just need to get rid of it. Once again, I need a full version of software that is free.

[glb]Flame[/glb]spybot s&d http://www.download.com/Spybot-Search-Destroy/3000-8022_4-10289035.html?tag=lst-0-2


why would you only want one when you can get MULTIPLE, all complimenting each other, but if it MUST only be one then s&d , it gets pretty much everything, and has an alert for startup CHANGES and such, quality program

I've just HELPED a friend gain internet connection after removing IRC/BackDoor.Sdbot.67.L & Dropper_Small.7.BN virus with Grisoft Free AVG plus removed spyware with Ad Aware SE.

We managed to do all the updates and ran scans again, this time the system came up CLEAN, but when we still went on the internet, we kept getting url DIVERTS to the following websites. Nothing seem to load on the sites, as they have a dialup connection and we closed the page.

http://amateur.freegayspace.com/leetage/green.htm/

and

www.powow.com/greenleaf420/tbc/index.htm

Nothing seems to be picking the above up in spyware or virus programs.

Any ideas? Ok. Because of the KIND of sites that you are being taken to, I would say that it IS possible that spyware is in your friend's computer..... (Or adware) I have seen it before where spyware programs can NOT delete every piece of spyware, becuase of the way the author made it....

[glb]Flame[/glb]Try using GIANT Anti Spyware program. Its only a 15 day trial but it found and removed things that Spybot and Adaware could not find on my system. It saved me from having to reformat the drive and start clean again.

Its a great program IMO. I am most likely going to purchase it. Paying a little money is worth it to not have to reformat your drive TWICE a year to GET rid of spyware/adware that no other programs will find/delete.Many thanks for your advice, will try the program.robkcald.....Both of the sites you mentioned are full of spyware .........I would either avoid going there ..or if you do ......dont click on any of the ads which pop up offering your pc is infected and to click for a free scan and removal............ The when you come out empty your temp internet folder and run Ad-Aware .....


dl65

every TIME i try to perform a full SYSTEM scan from ad ware something pops up SAYING that my computer will restart in 1 min then the computer RESTARTS! does this mean that i got a virus HELP!downloaad stinger.......adaware will not shift trojans/viruses........the msblaster worm use to tell the USER he/she has thirty seconds? ???or the netsky/welcha/sasser worm......i maybe at a guess!see if it does it in safe mode hold down the f8 key......and if you scan for bugs.....disable system restore and the net connection.....do you have an anti-virus program??It might be..... Do you have an anti virus program?

[glb]Flame[/glb]run the scan in safe mode.

I "accidently" DOWNLOADED a porn picture earlier and tried to delete it, but it wouldn't let me. The message said that the file was in use and deletion was protected by Windows. Now, whenever I try to load Windows, the picture POPS up and stays there for a prolonged 15 seconds. I have to find a way to delete it immediately because my dad is about to use the computer for work . Please help me.Run AdAware from lavasoft.com.Matt Rody........"I "accidently" downloaded ".......LOL uhha.....reboot your pc and as it begins to restart tap the F8 key repeatedly until you have the option of starting in the safe mode. Once in the safe mode .....run Ad-aware and see if if will remove it or try GOING to internet options in the control panel and deleting the temp internet files and history files .......if that fails try and find the picture as it will be saved somewhere and go to that location and manually delete it ....then shut down and the pc will start backup normaly ....

let US know how you make out .

dl65
THANKS Guys For The Help MY dad had no idea LOL This Site is a life saver

I have also have a little problem with my pc shutting down. I am using windows 2000 and after I do a new scan with Yahoo Anti-Spy, or Ad-Aware SE. I get a prompt that says: WINLOGON.exe has generated errors and will be shut down. Then the pc restarts. This will do this over and over again. Is there a way to stop this from happening again.T - Man...By any chance has this SITUATION started after the INSTALLATION of SP3 ?

Let US know

dl65 Keep up with your Windows Updates.... Have you been doing this? Some updates could help your shutdown PROBLEMS....

[glb]Flame[/glb]PLEASE! bare with me guys! I know very little when it comes to pc jargon in the pc world. but I'm not afraid to learn what I need to. Anyway I have kept up with all my windows updates but I'm not sure what you mean by SP3.Whrn dl65 said sp3, he meant Service Pack 3 from Microsoft. However, if you keep up with your Windows Updates, then you probably have it...

[glb]Flame[/glb]

Hi, can SOMEONE help me stop something called NV from stopping my CONNECTION with BT and RECONNECTING it to NV? It HAPPENS most times I am on the internet and it is bloody annoying!

Thanks for your time,

SteveScan for viruses.

Look for NV in control panel > add remove programs and in start > run > msconfig > startup and disable/uninstall it. Make sure you don't need NV first. It could be a virus which dials a premium line number to scam you out of money. Check your phone bill, keep your virus scanner up to date and get a firewall.Sounds like a well put together virus/trojan to me.... Delete it by using a virus scanning program...

[glb]Flame[/glb]

So this is my first post. I operate windows xp with norton ant virus and norton security and windows firewall..
My virus definition is outdated 12 18 04 and so it tells me to update.
When I update I GET the following message
Lu 1806 was unable to install either of the 2 updates that you selected (i didn't actually select any as it was automatically scanning)
The the second dialogue box that ONE opens to see what the problem is says
"virus definitions update failed because it tried to overwrite a file that was in use.Close all your semantic applications and try again"
So i had applicationsthat were on the icon tray closed and then went to norton site for instructions and that's an experience. anyway they gave me some instructions about readjusting some settings in my windows firewall which I did but that didn't help anything

So i am just fishing before going back to the Norton site where they are suggesting i go into registry and several other weird things..anybody got an easier way????ThanksTry downloading the defs using intelligent updater. After the download, disconnect from the internet, shut down NAV, and DOUBLE click on the downloaded file.Forgot. Reboot after the update completes.striker64......Is your SUBSCRIPTION for your Norton Internet Security still CURRENT ? Is this situation something that has just started ? Are there any other error message numbers displayed other than ...LU 1806 ? It sounds like you have your Norton set to auto update.... Have you tried to update the definitions manually ? I have a friend who had a similar problem recently updating his definitions and he just kept trying the manual update and after several attempts it up dated just fine . Exactly which Norton program are you using ? When the list of items which the live update looks at comes up there should be an excalmation mark show up on the ones which wont update ...then if you click on the + sign in front of the item .....more info will be listed as well as the error code.

let us know

dl65

Can somebody please help get rid of these NUISANCE ads. They have placed a number of icons on my desktop and when you right click them nothing happens. They have also infested my favourites drop down in internet and again when you right click on them expecting to delete it just comes up with 'close toolbar' (crafty buggers).
Ad aware appears to find the files but they STILL appear. Deleted them from user/cookies folder but the icons never go and the cookies just keep coming back.Setup and Secure your PC once and for all. (click here)Thanks I'll read it with my hangover tomorrow. Since I posted this item I installed Spybot and Spyblaster and although spy bot found problems it did not get rid of the icons. In FACT, probably coincidence, but the icons have doubled there is two of each now?

Happy New year DWMickwhat anti-virus program have you got.....disable system restore.....and disconnect from the net and scan again......try secretmaker from download.comIf you really are finding it impossible to keep the SPYWARE off your computer, you might try installing a firewall program. It wouldn't get rid of the spyware already an your computer, but would keep any new spyware from collecting. A free program that I've found very helpful is Zone Labs Security, but there are many good ones out there. If you already have a firewall, you might WANT to change the settings.

I am not a computer person, so please bear with me.

I was looking through my ADD/REMOVE in Control Panel because I have been getting A LOT of pop ups. I run Spykiller 2004 & AVG for viruses, plus Yahoo & Google Blockers. (Still getting pop up!)

I saw - eSyndicate & DMVlite. I looked on the internet and they both seem to be THINGS I don't want on my computer. I was able to remove eSyndicate, but in order for me to remove this DMVlite I have to download SOMETHING from their website. Should I trust this? If they are bad in the first place, should I download something else from them?

Thanks - elbib

PS - I also have questions about the TEMP folder, where should I ask those questions. Thanks.Well..... It sounds like spyware to me, but I haven't looked it up, so I'm not sure..... Now, about your question(s) about the TEMP folder..... You should probably post that question in the Microsoft WINDOWS Board...

[glb]FLAME[/glb]Thank you.

Sincerely - elbib

I am greatly TROUBLED with my mouse, it SEEMS to have a mind of it's own .... when typing it moves the words around both in Outlook Express and Word also when browsing it will open pages up automatically, when it hovers or passes over any links. I have used both Logitecch and MS mice ... I use Windows XP Pro and Office XP ... I have checked over with the latested versions of Norton and Lavasoft Adaware ... nothing shows up ... YOUR HELP WOULD BE GREATLY APPRECIATED...HAPPY NEW YEAR TO ALL.... AND THE WORST OF BELLY ACHES TO ALL VIRUS WRITERS
Sounds more like a conflict to me. Have you disabled all other pointing devices?Please reinstall your mouse drivers... This SHOULD solve your problem.... LET us know...

[glb]Flame[/glb]What type of mouse is this?

Have you scanned for viruses?I wonder if there is a virus attacking the mouse as mine has recently started freezing briefly then it works and gradually gets worse up to freezing all TOGETHER. I suppose the mouse can eventually die but my system states it is working properly.

DWMickLadies and Gents, may I just say clarify a few things.

Firstly, that little block with the buttons on that you move around? It's the mouse. The little arrow that moves around the screen when you move the mouse? That's the cursor.

Second, the mouse is an inanimate object. It cannot die. Even if you throw it against a wall in a fit of rage.

And thirdly, there probably is a virus which messes with the mouse cursor, no doubt programmed by a sixteen year old who still FINDS the notion that girls don't have a willy as an absurd concept, in which case it's your own fault for not keeping your virus definitions up to date. But also be aware that there are "joke" programs (probably coded by the very same teenager) that'll do exactly the same thing. In which case find out who installed it and tell them to get rid of it, or go to bed without dinner.

Just tried to runupdates for Search and Destroy and ZONE Alarm pops up and says: S & D trying to access internet New program. Is this ok to grant permission?

Then I tried to close and it said "can't be closed; being debugged" so I had to restart again...

Why does ZA asks this...do they do it any time you have to shut down and reboot? Because I did that earlier SINCE 'puter froze up and NAV must have run and showed some "stuff."

Anyhoo, do I need to give ZA permission for S&D to access the internet, every time I reboot??

Thanks much.


wonderer......Anytime one of your running programs tries to access the internet .....Zone-Alarm will detect that and ASK you if you WANT it to.........With a APP like SpyBot S&D you can tell ZA to let it and not ask you again....It's just doing its job......

Hope this helps you .

dl65 dl65 - thanks a bunch.

What do you mean about a "running program"?

I'm on my way over to grant my permission to ZA!
It's wish is my command....(on this one) wonderer....Running program is any program that is actually running .......as opposed to programs which may reside on your hard drive but do not run unless you open them .

Hope this helps

dl65

chmatthew...... I love this quote ........""The VNC binaries we distributed are virus-checked before release, and are also signed on platforms that support signed binaries. VNC does not include nor install adware nor spyware of any kind.

The most likely cause of VNC being detected as a virus, adware or spyware is that your computer has become infected with a virus that attaches itself to existing files. Once you have used your virus checker to clean up your machine, you should be ABLE to download and re-install VNC without further problems.

Some virus checkers do, however, wrongly report that VNC is a virus. In most cases this is caused by "heuristic" virus detection methods, while in others the virus checker's database is simply wrong! " ......
....LOL.... It reminds me of a commercial put out by a drug company promoting their product.........You know the drill , our product will do whatever .........but the user may experience some of the following side effects.........and anyone suffering from......bla bla bla ......should refrain from using these products.........( Thats called covering your *censored* ) ......

In any event , as you point out... its up to the user to decide what he or she uses or doens't use ........that's the users choice . On this point we are in complete agreement .....

I also hope that the visitors to this great site take the time to read these posts ...because even if the posts appear to be slanted one way or the other it may stir a desire in them to do a little more checking and as a result become more informed ......

Until the next time .......
Have a good one ,

dl65



I agree that hopefully users will decide for themsevles after perhaps being either enlightened or thought-provoked.

RE: VNC disclaimer: it's far shorter than any MS disclaimer about how they are not responsible for DAMAGE done by their software to your hardware or other systems. but I think that's pretty standard practice in the industry so no need to continue debating.

All in all -- great discussion...we'll try to HELP people and we'll see what comes of this adware/spwyare mess. 'Till next time -- take care.....

Where is the file C:/RECYCLERS?

nortan has been yelling at me that i have viruses there. It cant AUTO delete them eitherEmpty your recycle bin. See what that does. "Recycler" is a hidden folder (directory) so you won't be able to see it unless you tell Windows to show hidden files / folders (which is really okay to do but be AWARE that these folders / files are hidden for your proection).

To unhide: in Windows Explorer go to Tools > Folder Options > VIEW > Show Hidden Files and Folders.

I know its not a hidden file, i already tried that one Look at the message again: is it C:\RECYCLER or C:/RECYCLERS

The 2nd is not even a VALID name so that is bogus if it says that. You've got other problems, then.

If it really is C:\RECYCLER then it IS a hidden / system file. Check your views settings again for your folders.

While you are showing hidden / system files / folders check if you can see other hidden files: the cache file (swap file) and/or LOCAL SETTINGS folder under your profile or others' profiles under C:\Documents and Settings\

OK...Adaware found a virus on my computer, and everytime it detects it my comp WOULD go into a shutdown countdown. I got it to remove it finnaly (or so I thought) Now I think it flubbed up my Internet. Evertime I go to a web site I get a this page is not here page (and when I look at the progress bar it says something about system 32 .dll. whatever) but my network settings show I have a connection. Can someone please send me in the right dirrection for fixing this thing please. THANK YOU!Well.... Guessing on how you GOT the virus in the first place, I am guessing that you never did, and still do not have antivirus protection.... right?

[glb]Flame[/glb]No I have AVG, adaware, Stinger, I have run them all everything comes up clean, but my comp still says It is unable to detect a network config. and my AVG email scanner keeps shutting down now (could be that there is just no network. I have tried to do a restore but It woudn't let me go back to the restore point.Is it a specific site that won't open or is it the net overall? Are you sure your net connection from the ISP is active?Net overall and yes I have checked my connections tried using a different plug, the computer SHOWS a internet connection but when I try to log into Explorer it says not connected. It is a computer at work and all our other computers are still up and running fine.Can you FIND a way to clean the virus? If you can't you can always take it into the shop, and have them clean it for you. They have all of the state-of-the-art technology, so they will have no problems.... HOWEVER, it is of course cheaper to clean it yourself...

[glb]Flame[/glb]Some malware screws over your winsock by changing registry entries that modify your NAME space provider. (Google) for lspfix. Download it to floppy on your good machine. Write protect the floppy. Run the program on the problem machine.2k dummy...TY TY TY....you have fixed our problem...perfect solution...you our the office hero!

my floppy drive or drive A always turns yellow... or it always read without a floppy diskette in it... what could have been the cause of it? please help, whenever i USE my computer it always reads without a diskette every 7 seconds, so it always pause for a while.. and because of that when i type sentences in microsoft word, the cursor always pause, it really irritates me, because it always interrupts what i am doing, i also irritated with the sound of it, is it because of a virus? but i have a pc-cillin anti virus, i scan all the hard drive just now, but it says no virus found, but my pc-cillin is not yet updated, i also found a suspicous folder in C:\WINDOWS\Start Menu\Programs\StartUp, whenever i delete it, it will always show up especially when the floppy drive turns yellow again... please help, especially now.. because im doing some THESIS... and it is an information system... please.. help.. thank you.... c", Have you contacted your computer manufacturer? This SOUNDS like a POSSIBLE faulty floppy drive...

[glb]Flame[/glb]It's unlikely to be down to a hardware FAULT as Flame suggested but seeing as a floppy drive is about the cheapest bit of kit you can replace in a PC it's maybe worth a shot.

Anyway, some old, badly written viruses can cause UNWANTED floppy drive activity. Anything newer will never try to mess with drive A because no-one ever uses floppy disks anymore.

Which implies to me that you don't have any up-to-date virus protection installed. So either update the virus definitions on your copy of PC-Cillin or get AVG from www.grisoft.com, and keep it updated, for goodness sakes.

after sitting idle for several hours...I will recieve a blue screen with a long ERROR message, and then its dumps the memory, then the comp will reboot, and I get a message box that says a serious error has occured. any suggestions?Take a look at your power management settings. Is the system set up to hibernate or SHUT down after X period of inactivity?Try reinstalling your video card drivers... OR, BETTER yet, UPDATE them off of the web wiht the LATEST ones...

[glb]Flame[/glb]

hello ppl i have a major prob, for awhile now IVE had this program running on my task list, the file name is
AQKPPOBC.EXE *censored* is it, delete it off my computer n it still comes back. Not that much of a problem u say... ok
How about this program taking 500+mb of my memory wen its running and half my cpu speed. Everything stops working but more so internet explorer
Cn sum 1 plz HELP me ive searched n came up wid 0 results and answers


cheers rossHave you tried running a virus and an adware scanner to see if it gets rid of the file for good? Doesn't take a brainbox to try that one out...lol ol ofcourse i have i have even submitted the file 2 symnatec aint gotta clue wot it is, as i said brainbox's Anti-adware/spyware/anti-virus programs cannot find everything. It's probably one of among hundreds of thousands of andware/spware apps. Start in safe mode and search your computer for that exact file; upon finding it, either rename or delete it (depending upon your confidence LEVEL that it is indeed crap).

It will be either in Windows, Windows\system32 or in one of your temp directories or one of IE's "Temporary Internet Files" directories. You should empty these directories on a regular basis, anway; and many times it's best when doing so in safe mode.

As ALWAYS; do a reality CHECK and be sure you don't "need" the file or that it's not a part of a legimitate application that is needed. But it looks like crap (even smells like crap)....i delete the file rename it everything its in thw windows\prefecth folder or somin like that. It comes bak no matter wot i try doin ma head in lol

andrewj......you still have those trojans .......
I do not understand why you can't delete them......
Are you sure your using hijackthis correctly ?

Do you have msn messenger ?

dl65 i'm using it correctly as far as i can tell. i don't get it either, but this isn't the first time that has happened. i don't have msn messenger. i don't know what other than to start all over, and reinstall everything. andrewj......really strange ....can you not go to the location that is spelled out .......and delete them .

hijackthis will remove them .....are you certain you marked everything ...because when I see your log the trojans are still there .......
Did you set your HOME page as your main as well as the assistant in the settings in hijackthis ?


let us know

dl65

andrewj.......How about .......running hijackthis again ......
only this time E mail it directly to me and I will prepare a step by step manual for you ....This will save the Forum a bit of bandwidth .......
I would also like you to D/L and run .......Antispyware ....
http://www.download.com/3302-8022_4-10353596.html

dl65 Hello

I'm curious as to whether this issue has been resolved?

I have a few comments I wish to share...

• Why on earth are you getting the user to remove the Windows Update file? There is no way to tell this is a trojan without first knowing the Operating System.
  
• There is no of knowing the Operating System because this information has not been included in the posts. Probably XP, but that cannot be assumed
  
• HJT cannot make backups of fixed entries because it is in a compressed folder.
  
• The hijacker: these CoolWebSearch entries require a lot more attention than simply fixing them with HJT. There are programs freely available that specifically deal with it.
  
• There is a rogue 023 Service entry at the very bottom of the Log.
  
• There is also another rogue entry, being the 04 running from local settings/temp.
  
• Internet Optimizer has been listed by Symantec as Adware.
  
• All of the "safe sites" NEED to be removed. There is a possibility that some will resist removal.
  
• All malicious files need to be removed from the computer. Chances of reinfection are high if the files still exist.
  
• The user does have Messenger because it is clearly in the Log.

Are you sure your using hijackthis correctly ?

I have Norton's Systemworks 2004 running on XP Home EDITION. While running my weekly virus scan, two adware programs were detected, and could not be deleted. Norton told me where the programs are located, but I cannot find nor get to the DIRECTORY. I CHANGED the folder options to include all hidden files and folders, and I have done searches to try and get to the directory, but no luck. My question is: How do I get to a directory "C:/recycler"?
I have tried and tried, but can't get to the above directory.Hi,

C:/recycler is your recycle bin. Simply right click the recycle bin icon on your desktop and choose "Empty".

morenito44.......Recycler is a hidden file ......so if you wish to see it .......click start /control panel/folder options/view .........then scroll down untill you see " Show hidden files and folders" ......now click apply and ok ...... Now click my computer ....select C drive and you will see a folder called "recycler"...( NOTE it's a lighter colour than the others denoting its a hidden file )

Note ....when you go to your control panel ......make sure its set to display the classic view as opposed to the Catagory view .


hope this helps

dl65

Hi folks.

My desktop changed to a BLACK SCREEN and an ad that say's something about everthing on my hard drive can be SEEN and to remove to click on the ad.
I cant seem to get rid of it!.
Please help!

J.R.Try Alt-F4 to close the screen.Buy a SPYWARE program after closing the window...

[glb]Flame[/glb]

Thank you, ahead of time, to anyone who even bothers to read this.


A few days ago I restarted my computer (Windows XP Home) and I'd get to the blue log in page where you select what user you want to log in as. Whenever I'd click on it, it would say it was loading the personal setting for forever and most of the time -- never ever load further than that. Eventually, after a couple of tries, it worked but I got a few warnings saying my virtual memory was too low, that some programs failed to execute. But everything seemed to work fine.

Today it rebooted itself and I clicked to log in and it had the same problem. Though this time it occasionally would go past the log in page -- load my background, but nothing else. I ctrl + alt + deleted and logged out and logged back in and it worked but within thirty seconds, it had shut itself off and rebooted without any warning at all.

So right now I'm running it in safemode SINCE that's the only thing that works -- I ran virus scans and I got funlove.gen and that was removed so I tried to see if the problem was fixed, but it still did the same thing -- only this time if I logged on as a NEW username I made I got a popup saying ntauthority\system was shutting down in sixty seconds. I know this is commonly associated with the blaster worm, I got that on my other computer through my school's wireless network and removed it from there long long ago. So I am back in safe mode now, I'm running the blaster removal too but it hasn't seem to have found anything yet and it's been running for a long while now.

I'm not sure what else it could be, so I thought I'd give it a try and ask here if anyone has had similar problems or may have any idea as to what I can do to fix this.


Thank you!How much RAM do you have installed on that computer? When your computer says that your virtual memory is low, then you need more RAM usually... (Virtual memory comes from RAM) Let us know how much you have...

[glb]Flame[/glb]256 mb of Ram.

I dont know if that's the problem though, or if it's something else. I can imagine thats a problem otherwise but I dont think it would be with randomly shutting off as soon as it loads up (though it takes forever to load).Probably a trojan... What programs load when you start the computer normally?

[glb]Flame[/glb]For the record, virtual memory is NOT RAM, but HD space. It is the windows SWAP file.
Disable system restore and run the AV again in safe mode.
Make sure the indexing service is disabled.
Delete temp files and temp INTERNET files.
Empty the recycle bin.
Remove any programs that you have installed but do not use.
Check your startup files and disable any programs except your firewall and AV. (You can start them from a shortcut or the start menu when needed)
Defrag the HD.Oh yeah, after you have done all that, you can turm system restore back on if desired.Just "for the record" 2kdummy... Turning off system restore is NEVER a good idea, if you do not have another PROGRAM that does the same thing (Norton Go Back, etc.)! If you EVER read any of the posts that we publish here, then you SHOULD know that system restore is a CRITICAL option! It fixes MOST problems EASILY, so that the viewers that post here do not have a lot of difficulty fixing their computer problems. PLEASE DO NOT GIVE INFOMRATION THAT WILL MAKE OTHER PEOPLE'S LIVES HARDER! By the way... About the virtual memory not coming from the RAM.... Read my quote! "I do not claim to know it all, but I can suggest" ! If I'm wrong, then that's one thing, but when you try to use risky meathods to fix the problem, you're going down the WRONG path... Save those ideas for a LAST resort! PLEASE! PLEASE THINK BEFORE you open your mouth! The last thing we need is to have to walk a viewer through a VERY complicated situation, when there WAS an easier way... Think about it....

Message to Jill: Do you have antivirus protection?

[glb]Flame[/glb]Jill D.......I don't wish to confuse you , the info given you by both 2K dummy and Flame is correct ( or almost ) .....
If you are aware that you are infected with a pest of some type......it is a good idea to shut down your system restore before scanning for and removing the intruder ......BECAUSE .......should the intruder choose to hide in the system restore files .........and you do a system restore ....quess what ...it's still there alive and kicking .....and when you do a system restore , you have just put it back. Another tip , particularly if the pest is resisting removal .....is to reboot into the safe mode .....then run your scans from there ......Safe mode is a diagnostic mode . When you have removed your pest ......remember to turn on your system restore ......
Sytem Restore wasn't designed to be a virus or spyware remover ..........

Hope this helps you ....

dl65

I think I have a virus that won't let me update my AVG Virus control. I uninstalled it and tried to reinstall it, but it fails to INSTALL and I get an error message. Any suggestionsTry another virus protection SOFTWARE... There's plenty out there...

[GLB]Flame[/glb]happyex......Here's what I would do .......GO to another pc thats not infected and D/l Stinger onto a floppy disk then run it on the infected MACHINE .....Make sure your not on line while you run the scan ........Get Stinger at ...... http://vil.nai.com/vil/stinger/ ....

let us know how you make out

dl65

no, ricci is just part of an old screenname I used to use. My desktop wallpaper is of a girl I found on ItsAndy.com and I cut it out and made the rest of the wallpaper myself. Its on Deviantart.com under the wallpapers->females section on like the second or thrid page.

I can't recall what software I applied and started getting all these pop ups. It's been a while since I started getting them. It could be the Areslite. I know its some form of virus or trojan or whatnot because I go downstairs and check on my DAD's computer and he doesn't have any of the problems I do on his computer.StlHakusho......You could be right , I seem to remember that site .....Areslite .....Its a P2P app as well isnt it ?

dl65

just uninstalled it. still getting problems.

yeah, it is. And it sucks too. I only used it once or twice.StlHakusho...The problem with those apps is they work ok ...but you always endup with adware , spyware and popups....Have you ever tried ....Pest Patrol , or SpySweeper .... and do you have anything set to ignore in Antispyware ?

dl65 I've got McAfee Anti Virus deal and Ad-Aware set up.StlHakusho...The other thing about those apps is when you uninstall them they usually leave there mark in the registry ....so you still end up with the crap .........You may have to go in there and clean it out .......Do you have registry first aid be any chance ?

dl65 no, but I can probably get it pretty easilyStlHakusho...do you have msn messenger ...if you do I can send it and the serial ...

dl65 StlHakusho...check you private message ....I sent you my hotmail address

dl65 StlHakusho....I sent it ...you may see the message about it being unsafe to open ...its clean
Let me know when you get it

dl65 I did it and it still didn't work. HOWEVER I noticed that my McAfee has been saying that its been deleting the same trojan over and over and over again. So I GOOGLED the trojan and this is what I found.

http://forums.mcafeehelp.com/viewtopic.php?t=40306

lloks like I may have found the source to the problem.StlHakusho...just read the link you sent ......I didnt see a SOLUTION unless I missed it ......what did you find ?

BTW did registry first aid find any invalid entries ?
I've found that app to be decent ....

let us know

dl65
yeah, it wound up deleting over a thousand entries (tee hee). I had to run it twice to get them all. Thanks for the app.

They seem to be stuck in the same spot we're in. Noone has been able to figure out the CAUSE or solution.

At start up I have this window pop up that is labeled COPY and it goes though the process of trying to install something or a program only to end with an Error message. I ran anti virus, Adware SE. I scanned the registry with this OmniQuad antispy 4.2 and copy all the info and went into the reg and deleted the keys works fine but after rebooting it the pop up shows up again.
One key is named AproposMedia-HKEY_LOCAL_MACHINE\software\autoloader deleted but it returns for some strange reason.
Auto updates disabled and all done in safe mode
Add and Remove wont do it and one entry in the registry did not allow me to delete but the entry dissapeared. Any suggestions or Ideas ALSO ran PcCillin 2005 still nothing Start > Run > Type in "msconfig", and then go to the "Startup" tab. Uncheck the entry that seems to be causing the problem (it would be somethign related to that registry entry).Corrosive
Did just that and still keeps on running at start up.
D/L 'd Microsoft Antispy which I should have done in the first place and found 38 infected files trojans and the like. 4 RESIDING in memory. Also rebooted in safe mode. Stopped the system restore and rebooted. In the task manager found a suspect FILE (ezSP_Px.exe) did a search and found the folder cannot delete or remove any files asscociated with this. Any Suggestions.
Thank you you guys are great!

The_Postman...You might try changing your folder option to display hidden files and folders and then try to delete it again.

Hope this helps

dl65
DL65
The folder was hidden and I tried that but it will not delete I am getting an error message. I also tired deleting one file at a time but several do not allow deletion.Next step a bigger hammer!! This is a HP computer and it belongs to a friend his kids D/L off Kazza and picked this up. Boy was he mad when I told him about the 138 viruses adware and malwarelast count. Just ran another scan. Looks like I will have too format and reinstall. Keep them Antiviruses up to date this is what can happen. Thanks again for all the help!! The_Postman.....Before you beat it to death or tear out your hair......read this
http://www.doxdesk.com/parasite/AproposMedia.html

I just had a quick look and I think its what your looking for .......
Whenever I hear the word Kazza ......I cringe.....I spend more time cleaning up friends pcs after their kids D/L using Kazza ......
Dont push the format button yet ......lol

let us know how you fare

dl65 dl65
This is it and a few more you hit the computer on the head, I mean nail. Aproposmedia,2020search and numerous others I have read the article and saved the page for the future. I clicked on the link in the page for parasites and to my amazement I saw some of the infections that were in this computer. Now it's time to hunt these down and eliminate. Thank you for your help. I put the hammer down too! My buddy asked if I would take out Kazza I said sure it will be my pleasure...Surprised to see it was preinstalled by HP, it's on the recovery disc......UPDATE: Kids grounded for Life!

I agree that Norton is useless, I used it for a year, or so and it cause me more greif than it was worth. So when it came time to renue, I dumped it and installed a free antivirus program. AVG. Have had no problems with it for over a year now. AVG is free, it works.To all,
I have had this computer ~ 2yrs now and I subscribed to the Norton Antivirus when the 90 day free subscription was up and when it came time to renew Norton gave me the choice of maintaining the current software or upgrading so I spent ~ $70 on the software upgrade and have had nothing but issues since. I did SAY that the anti virus had found infections on this unit but is unable to access the files or delete them, so again I ask, If the antivirus software cannot rid me of the infections what good is it? Maybe one of you can suggest a way to delete the files? I came to this forum for help.PC_Illiterate.....Usually when Norton identifies something and it is unable to delete it ........the location of the file, as WELL as the THREAT that it contains will be given .....or has Norton quarintined it ?

If you can we would appreciate the names of the PESTS it cannot delete .......it would help us help you .

let us know

dl65