InterviewSolution
Saved Bookmarks
InterviewSolution
This section includes InterviewSolutions, each offering curated multiple-choice questions to sharpen your knowledge and support exam preparation. Choose a topic below to get started.
| 251. |
Solve : s3vs8b9b & s3vseeh3 on C-Drice? |
|
Answer» I found s3vs8b9b & s3vseeh3 as files on my C-Drive with no extension -- not hidden either. They each consumed 61.2 MB's. Using 'details' in the view menu, I ascertained they were probably put on my hard drive in July 2005. I didn't notice them until 23 Aug 05. They won't open in Word or Word Pad and I can't find any information from google, Symantec or anywhere. What could have possibly put these two files on my hard drive and what are they? Ummmmm - spyware, virus goodies, or similar come to mind. SOMETHING you clicked on because it looked like an enticing link and took you to a web page and downloaded ActiveX oatmeal onto your drive? S3 screams of video to me. Thanks to all that replied. It's pretty obvious that whatever put that on my C-Drive didn't do any damage or CAUSE problems. Deleting both files simply eliminated them and freed the many MB's being consumed without any problems. Apparently, it was some type of Video or ActiveX files for temporary storage. Thanks again for the responses. |
|
| 252. |
Solve : Self-Rebooting Computer's Browser Likes tttttttttt? |
|
Answer» I'm hoping that someone here might be able to assist me. My wifes computer (running Japanese Windows XP) has recently started displaying some strange characteristics. Within the last week it has started to reboot itself occassionally (growing in frequency), insists on repeating the letter tttttttttttt whenever something is typed in the address bar, search engine, etc....., and today has stopped booting correctly. It will stall halfway in the boot, pause for a while, and then release an unrelenting high-pitched beep until I hit the F1 key...at which time it will finish the boot. I have checked the keyboard for dirt/grime under the keys, etc...., I've played around with msconfig, logged in as admin under safe mode, done a system recovery, etc....yet all problems remain. Does ANYONE know if this is some form of virus?....a hard disk problem?.....or have any other ideas which might help me rid the computer of these annoyances? Thanks. A good reformat ought to teach it a lesson! Gets my vote everytime. If you are an amateur and you screwed up your PC, the Windows fairy isn't going to play nice. And why should it? The reason famine exists is probably because of your extreme negligence. Hence having to reformat.Replace the keyboard... patio. |
|
| 253. |
Solve : being spied on? |
|
Answer» First I will say that I know very little about computers and understand very little that is discussed here. After a year long relationship with a software designer I was told that he had been reading my email for a month. He gave me quotes. He read back a year because I don't delete things. He had not had access to my computer so he must have done this remotely. Is this possible?! How is this possible? I have changed my password but I don't know that this isn't still going on.Change all passwords you are currently using. Do not use NAMES or numbers only. Use a combination of letters, numbers and reading marks. No I don't work with him. Why? Becuase is he has a higher rank than you in the same job, then he may be entitled to see them. [glb]Flame[/glb] Quote Yahoo. No I haven't contacted them. How would he be able to do this? Can he do it again if I change my password? It will at least eliminate the chance of him knowing your password. What else does he know about your computer or E-mail accounts? Do you want an entirely NEW E-mail adress? Yahoo is not trustworthy, anyway.He knew my two accounts adresses and then apparently passwords. He helped me set up the first one on his laptop. The second one I opened after we were broken up and he shouldn't even have known it existed.Could be a keylogger. Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker. So does this mean that he can read anything that I type on my computer and therefore read my passords also? How would he get this on my computer? When he started this he didn't have access to my computer. I never noticed anything. Quote So does this mean that he can read anything that I type on my computer and therefore read my passords also? How would he get this on my computer? When he started this he didn't have access to my computer. I never noticed anything. One does not need physical access. He may have see you type your password or perhaps guessed it. (Some people seem to think that their pets names make good passwords..) He may be connecting to your PC through remote desktop or something similiar. However, knowing your password is most likely the issue here. This is the second time you have ignored the list I posted. If you ignore it once more, I will RETREAT myself from your issue.Sorry. I didn't mean to ignore the list. I have since reading that, changed my passwords again and am checking out the list to try to figure some of it out.You will want to:
Logfile of HijackThis v1.99.1 Scan saved at 3:11:36 PM, on 9/25/2005 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\tp4mon.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\System32\igfxtray.exe C:\WINDOWS\System32\hkcmd.exe C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\bmmw\Local Settings\Temp\Temporary Directory 1 for hijackthis[1].zip\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.washington.edu R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Patient Care Services IS O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exe O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe" O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Free People Search Agent] C:\Documents and Settings\bmmw\Local Settings\Temporary Internet Files\Content.IE5\D0KVXDOP\FreePeopleSearchAgent_v1[1].exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O14 - IERESET.INF: START_PAGE_URL=http://www.washington.edu O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = u.washington.edu,washington.edu,mcis.washington.edu O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = u.washington.edu,washington.edu,mcis.washington.edu O20 - Winlogon Notify: EFS - C:\WINDOWS\SYSTEM32\sclgntfy.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: IBM PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\System32\ibmpmsvc.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe |
|
| 254. |
Solve : What If Your Computer Asks To Reinstall Windows?? |
|
Answer» What Does It Mean If Your Computer Asks You To Reinstall Windows - Sidewinder News Important Info For The Infected I don't know how common this problem is out there right now, but I work in IT at a college campus and we have had a rash of Sidefind. It's a very nasty little bugger and is usually accompanied by 180search, webrebates, and IST slotch bar. We get calls to remove spyware constantly, but a few weeks ago THINGS started going wrong. A worker went out to remove spyware and came back in carrying a crapped out machine. He said the spybot S&D removed a bunch of stuff, but was unable to remove one called sidefind. He accessed add/remove programs and clicked on sidefind to remove it. As soon as he clicked on the remove button the machine restarted itself. When it came back up Windows 98 appeared not to load. Instead the screen gave the MESSAGE that windows needed the product key code to begin installation. He thought he somehow screwed up, brought the machine in and we reimaged it. The next machine to go down didn't even make it through spybot S&D's entire scan before it hit sidefind, restarted itself and asked for the product key. We reimaged it. We ended up reimaging about 6 machines which sucks because we weren't able to save any personal data off of them since we could not access windows. Now I am hear to tell you, we have finally found a FIX to prevent reinstalling windows and losing everything. It didn't sit right that a virus could uninstall you operating system. We knew that the screen asking for the product key was probably a false screen that the virus was placing there in order to gather key codes. We blitzed out a few machines before we were able to solve the problem. If this happens to you, don't reinstall windows. Restart your pc and as it is coming back up hit the F8 key like you would to boot into safe mode. Instead of safe mode, choose command prompt only. At the command prompt type in scanreg and restore a backup copy of your registry. I RECOMMEND choosing the oldest copy. Then restart pc like NORMAL and it should come up just like it was before it freaked out. Then you can work on getting rid of the spyware in your normal fashion.I wonder what would have happened running scans from safe mode?Here was a solution posted there: I've had problem with Sidefind and 180search etc... on several machines a few months back. I didn't research it too much but after much frustration of finding the source. I've found that the trojan plants itself into the Windows folder and from they're continually uploads itself to any local network. Any Windows based computer without the proper security updates or firewalls can recieve the uploaded copy of the trojan and is then infected. Any attempts to remove the programs associated with sidefind is futile (even going so far as to remove the regkeys manually) because they will just be downloaded via the trojan. Even removing the trojan is useless in that they're must be a back-up somewhere that I wasn't able to find. All in all this is a major pain. If your trying to install a fresh copy of windows on a pc hooked up to a network then make sure you unplug your connection until you get a firewall or a hard copy of the security updates.Either the text you copied is outdated or the mechanic didn't know what he was doing. Spybot S&D has become obsolete. |
|
| 255. |
Solve : What is the next step in computer security?? |
|
Answer» I am very curious if someone could educate me on what the next step in computer security is for an amateur like me.
If you look at this, it all SEEMS rather shallow and obvious. What am I missing? Should I go into more details regarding one of these subjects? Am I lacking? Am I too paranoid? What can use improvement? So, I am secure as I can be? Read emails in plain text. Don't use IM programs. Quote
1. Been there 2. And why is that?If you don't know, then you better learn... Quote If you don't know, then you better learn... Your logic is flawed. I created this thread to learn, I am learning if you provide me with the correct answers. However, since you were unable to and only stated the obvious I will simply assume that your knowledge is below that of mine. Would you perhaps like a crash course in wittiysm and computer security, Fed? For you it's half price. Google for +im +vulnerable you will find what you seek there. I hope this helps you. What is wittiysm, I want some, where do I get it? Quote What is wittiysm, I want some, where do I get it? I think Joleen put copyright on that word. I never discuss important details through Instant Messaging. The essence of speaking lies in not speaking at all.Raptor, although this has nothing to do with your problem i feel i must just make a small comment on your behalf. i have been using this forum only RECENTLY and several people have been of great help, even if only to hopelessness of a situation, including yourself and merlin2 for which iam sincerly thankfull( this is not an arse lick). unfortunately, i have noticed that there is a large number of contributers who seem to miss the whole point of this forum experience and seem only to want to point out others ignorance in certain subjects. surely that is why we place posts, to assist others if we can, learn if we can, not massage our egos and placate our obvious insecurities and fed like holier than thou ids. if you cant make a positive comment, dont bother!Darthpaul... My friend... I think it's only fair to warn you... I think typing that message was a mistake... Good luck friend... I knew thy well... [glb]Flame[/glb]no offence was intended, and i hope none taken. i am using this forum to try and learn from people who obviously have more knowlegde than myself, and a lot has been learned ALREADY from all have posted on this thread, i shall now *censored* out Quote Darthpaul... My friend... I think it's only fair to warn you... I think typing that message was a mistake... Good luck friend... I knew thy well... I didn't know this place had turned into a dictator and censurship?Sorry lol Just a natural reaction lol he'll threaten to come over to your house and kill you. [glb]Flame[/glb]Only if you do not support el presidente. Quote I am very curious if someone could educate me on what the next step in computer security is for an amateur like me. How about using Linux for all of your Internet activities then? You won't have to worry about the first 4 for sure. You also log in under a user account, not the "root" or Administrator account so system FILES would not be affected if something did happen. You could even run it from a LiveCD so your hard drive would not be accessed. Heck you don't even need to have a hard drive installed in the machine!! When you reboot you start all brand new. No way to contaminate anything there. You could set up your system as a dual boot, rather doing all one or the other. Linux for Intenet and learning. Windows for everything else until you find the Linux equivalents of the programs you use and your comfort level increases. There are virus SCANNERS for Linux, but those are not required except to keep from forwarding and passing along infected e-mail attachments to Windows users. There is a solution for every level of paranoia. |
|
| 256. |
Solve : Search net engines? |
|
Answer» http://news.com.com/New+worm+spoofs+Google%2C+Yahoo+and+MSN+sites/2100-7349_3-5886484.html?tag=nefd.topGood to see PANDA is on the job. We will now get a lot of questions from infected PEOPLE who can't access the FAKE Google when the site is shut down. Free online virus scan http://www.pandasoftware.com/products/activescan.htm Free online spyware scan http://www.pandasoftware.com/products/spyxposer/com/spyxposer_principal.htm |
|
| 257. |
Solve : my labtop? |
|
Answer» help me my labtop is acting werid!! every time i open a program it minizes back to the tray and the start mean go up a second and back down!!!i thought it was a virus and restored my computer. but after that same probleam!*censored* what i do. im scared!it may have affected my hard drive or somthing cause it to not restore or delete the virus! Well a system restore does not fix viruses! A giood reformat and reinstall solves most Windows problems (for a while)! OR we could LEARN how to do proper maintainence. Formatting is only the last resort. dl65 Quote
True, if proper maintenance has been done and THINGS are as they should be. If not, and it is totally screwed up it is easier to blank it. If this is not XP does Microsoft antispyware even work? Those labtops can be difficult! Looking at date date of this post the questioner has probably died by now. Microsoft Antispyware only works on w2k or better. |
|
| 258. |
Solve : really sick computer? |
|
Answer» first of all i want to say what a great site this is. my home computer has been compromised severely and i found this site and printed several topics to try and none of them worked. first of all something disabled my mcafee install shield and virus scan. my taskbar is gone and i tried several of the methods ya'll posted to retrieve it and nothing worked. secondly, i tried to "system restore" and it tells me my computer is not protected by system restore and it wouldn't run. i checked all the settings for the task bar and it should show up. mcafee has given me some instructions to try to solve their issues but i have to have a dos prompt and don't know where to find it in xp. has anyone had any similar problems and could ya'll tell me where to get a dos prompt without my taskbar? is there anyway to just reload and start over? it's a fairly new computer so i don't have a lot of files i am concerned with saving. You should look into this. Before connecting to the Internet, install the FOLLOWING programs to prevent any security breaches: Virus scanners AVG Free -- Anti virus scanner Trend MICRO Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.i have installed cwshredder, avg and adaware and run them. they found some problems and "fixed" them but i wasn't cured. when i tried to install microsoft antispyware i couldn't get past the "genuine" verification. thanks for the link to info about erasing the hard DRIVE. i will try that and load the other things you listed before i start trying to reload the other software. Quote when i tried to install microsoft antispyware i couldn't get past the "genuine" verification This must mean that you have never installed Windows XP SP2. You should obtain a legal copy of Windows XP.actually i just got this desktop from dell less than a year ago with xp installed. i have a reinstallation disk that came with the computer. can i try reinstalling xp with that disk and see if it solves my issues?yes you can ........just disconnect pc from the net........place the disk in the drive........answer the questions on screen.....ok when you have re-installed winxp,scan for bugs,before connecting back to the net.i will try it, anydody know about a utility in newer dell's that takes your software back to it's original state without reinstalling xp? i just read about it somewhere and wondered if anyone had tried it. i'll do a search here, i believe it's called "dell pc restore by symantec". anyway, i'll let ya'll know what kind of luck i have Quote actually i just got this desktop from dell less than a year ago with xp installed. i have a reinstallation disk that came with the computer. can i try reinstalling xp with that disk and see if it solves my issues? That seems to be a very reasonable thing to do. Make sure you have SP2 on a CD and load it BEFORE connecting to the net. Make sure you have backed up data files you want to keep. Make sure you have downloaded any drivers you might need, unless you have a Dell Drivers/Utilities CD. Be sure and practice "safe surfing" in the future. |
|
| 259. |
Solve : Computer Hesitates? |
|
Answer» Every time I click on a program I want to use, I have to wait for 15 to 20 seconds before it kicks in. It doesn’t matter if I double click or try to open them with a right click. Everything hesitates. I had my hard drive reformatted in January updating the McAfee virus scan at that time. I developed the Newgenlook trojan and had it cleaned out in April. I had my dial up modem replaced in June. I run my Mcafee scan, Ad-Aware, Spybot, Spyware Doctor, CW Shredder, Registry Mechanic, Dustbuster, & Defrag just about every day.
If you need help with any of these suggestions, quote them and ask. Quote My printer also went on the blink so I purchased a new one. When I tried to install it I got this error message Try TESTING the printer on another computer to see if the problem was caused by your PC or by the printer it self. Gentleman and/or ladies, Thank you for your help. Had a friend look at it and added some ram and new data cables. Seems like I need a new CPU to bring it up to speed. It's like the old girl is just that, getting old. Thanks again. Oh yea Fed that Everest is really nice! Tom Quote Gentleman and/or ladies, Computer parts never grow slower. The user grows more impatient or the OS grows more unstable. Be careful when people try to tell you otherwise and have you buy things to 'speed it up'. If your computer becomes too slow, it is better to reformat the system and install a clean installation of the operating system. Once you have done so, you can install new hardware after you have loaded your most common programs. This way you can see if is due to an unstable OS or if you have simply grown impatient of waiting on the computer. Quote Had a friend look at it and added some ram and new data cables. Someone who really knows what they are doing. Is the HP6450 printer able to run now? First off I’ve been busy for a while so I haven’t been able to get back sooner. Secondly the printer is installed and working and the color is great. Really like it. Here is the latest on my hesitation problem. To refresh the hesitation problem is as follows: When I go to click on a program, e.g. Words or works etc it takes about 15 to 20 seconds to come up. When I move the cursor onto it moves herky-jerky like it’s trying to catch up. Hope I explained it because it is very aggravating. It also interferes with some of the programs and at times I have to reboot because they don’t respond. It was never really resolved but something did happen that might shed some light on it. I received an error the other day concerning my virus scan; sorry I didn’t write down what it said. Basically it said to reinstall the virus program, which is McAfee version 9. Anyway when I rebooted windows said it found a problem with the registry and had to reload, which it did. I uninstalled the virus program and reinstalled it. After rebooting again my hesitation problem was gone. I mean everything worked great. No herky jerky mouse, when I clicked on a program, wham it was there. The only thing is my anti virus index showed it protecting at 50%. I tried to update but had trouble with McAfee. Anyway for the rest of the night everything was cool. I started this morning and everything was still A-OK. Went on the internet and Mcafee started updating automatically which it has been doing. When I rebooted BOOM the hesitation was back. When I thought about it I remembered that we had a storm when I was on about 3 months ago. I heard a pop and lost my dial up modem. Everything else was ok except the windows rebuilt the registry at that time. I had my modem replaced but have had the hesitation problem. It seems to me, remember I am computer illiterate, that the virus scan is downloading something that is interfering with my computer or corrupting the registry or am I wrong. Any suggestions? Please be gentle with the advice, it may take some time before I comprehend what you folks are talking about. You may have to talk me through he repairs, if any, and it may take some time. Thank you, Tom Remove McAfee and install AVG. Turn on the Spybot Teatimer.I removed 21 viruses from a computer I am working on (The people were that own it were confident that it was secure and ran properly) Not to mention the +100 spyware critical objects. It suddenly became a lot faster. Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software FIREWALL. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.I'm going to download the AVG and uninstall McAfee. I use Spybot, Ad-Aware, CW Shredder, & Housecall. I now have 2 questions: 1. Any idea why the McAfee updates would cause the hesitation? 2. What is the best Virus protection? Quote I'm going to download the AVG and uninstall McAfee. I use Spybot, Ad-Aware, CW Shredder, & Housecall. I now have 2 questions: 1. Do they? 2. So far, I found AVG Free to be much more effective and easier to install/uninstall than any of the retail products out there. While McAfee is updating itself it will use up some of your internet bandwidth and system resources, if your computer is old (slow) to start with then this activity will take it's toll. Remember we asked you for your full system details at the start of this thread? (Everest) After you use AVG you won't go back. BTW, have fun uninstalling the McAfee virus. I agree with Fed, AVG is really a great product. Ive used it for 2 yrs now. Before that I used Avast. Take Careremove spydoctor? link for anti-virus free program http://www.majorgeeks.com/AntiVir_Personal_Edition_d955.html never update win98 helps?What all is running in the background? And what are the system specs? |
|
| 260. |
Solve : Connection riding? Clone handles?? |
|
Answer» I've been finding some really sick crap on my computer. No one has access to my system, so I'm confused. This is extrememly sick stuff, probably illegal, pictures etc. But I want to know how in the world someone or some program can do this. I keep my firewall (zonealarm) update, as well as everything else. Spybot, Spyware Blaster, Norton Antivirus... How to stop is my concern now. I also want to know who, if intentional, so I can beat the crap out of him/them. I've never heard anything like this before. I'm totally lost here. Exactly what kind of content do you see? What names is it using and can you relate it to COMPANIES that produce spyware or other such products? What security are you using? What do your security logs tell you? Have you disabled remote access and file sharing?I deleted the files and logs a little while ago when clearing out the history. So maybe in a few hours or tomorrow I'll look at that stuff. I found some quarantined files and such. Using Norton System WORKS '02, spybot, spyware blaster. Forgot about file sharing and remote access. Will address that now. At this point I'm more interested on just giving up the Internet. This is just not worth it. Okay, for content: some real sick stuff. Sick. Just disgusting. Pictures, movies, and nasty games. Godsake probably some illegal stuff. And why!?!? What in the world? I now use the option to "stop all internet activity" when I'm not surfing at a given moment. You know what, come to wonder, maybe I don't really have ZoneAlarm? I'm going to uninstall and install from a published disc I have, older but at least that's a possibility. Quote Okay, for content: some real sick stuff. Sick. Just disgusting. Pictures, movies, and nasty games. Godsake probably some illegal stuff. And why!Huh What in the world? I now use the option to "stop all internet activity" when I'm not surfing at a given moment. I need to know the names of the content that you see. I do not know what you regard as 'sick'. Are there any names or brands? What are these games? Can they tell you the location they were obtained from? Quote I found some quarantined files and such. Using Norton System Works '02, spybot, spyware blaster. You should install more and better security software. Norton seems heavily outdated and Spybot lets a lot of spyware through. I have heard of Spyware blaster, but it has never gained my thumbs up.I don't understand what you mean by "names." They're media. Mostly pornographic. Some shockwave flash games, other executables which I never open for obvious reasons. I'll check out the programs you listed above tomorrow. Gotta get some sleep now. The NEXT time I find these files, usually in a temp folder, I'll list them if you want. And thank you so much for your assistance.I get the feeling that you are trying to hide something by giving indirect answers to my questions. I can not help you unless you are going to be honest and do exactly as we suggest.I'm not being indirect at all. If you don't want to help me just say so.magicshamrock...... Perhaps you should change your Nick to 4leafedclover .......it may be luckier for you ..... You must have a trojan or some other nasty in your system thats leaving a door open for that stuff to be coming in ......so it must be found and removed ..... so for openers .... Could you list exactly which security apps you are using ..... If you could list them and give us the version and if they are up to date as far as current updates and subscriptions . Which operating system are you using ? Please let us know. dl65 Actually right now I feel pretty stupid. When I run SystemWorks it includes a virus scan, but not a full scan. I think it just checks to see if it's the current version. So I've not yet run a full scan at all yet. I have to run that separately. I didn't see that. Win98SE, Norton SystemWorks 2002, Spybot, Spyware Blaster, ZoneAlarm are all. Current within a week. I'm looking into the list that Raptor gave earlier. For now, I'll run the full scan. |
|
| 261. |
Solve : Java.Byte Verify!Exploit? |
|
Answer» Help! Everytime my scan runs it shows 8 infected but does not clean them. From what I've read these aren't too serious but I want to rid them. Can anyone help? The info says they are in C:/Documents and Settings/Owner/application data..... I've tried cleaning the cache but it doesn't work. I will really appreciate help. I'm not very illiterate when it comes to this STUFF. italiangrl......What operating system are you using ? C:/Documents and Settings/Owner/application data So if you go to this location do you see them ? Do you have Sun systems java installed ? What virus scanner are you using ? Let us know dl65 Windows XP I haven't been able to find them. If Java came with the computer pkg then that's the only way I think it would be on here. Not even sure what it does. I do see on the START up menu "Java Web Start", but not sure if same thing. The virus scanner is thru SBC Yahool Online Protection by Computer Associates and prior to that had EZ Trust and neither cleaned these. My computer is set to scan EVERY day. Thanks...italiangrl..... Try this .......Antispyware beta............ http://www.microsoft.com/athome/security/spyware/software/default.mspx let us know if it finds anything dl65 Scan from safe mode.can i download this spyware from http://www.microsoft.com/athome/security/spyware/software/default.mspx if I already have spyware protection without doing harm? Also how do you scan from safe mode? I really, really appreciate this helpitaliangrl...... Yes go ahead and D/l and run antispyware Beta ........no harm will be done ..... To get into safe mode .......as soon as you reboot the pc .......repeatedly tap the F8 key and you will be given differant options ....choose SAFE mode ....... once it loads simply run your scans ......... Note the safe mode LOOKS very differant ........ dl65 Quote 1. can i download this spyware from http://www.microsoft.com/athome/security/spyware/software/default.mspx if I already have spyware protection without doing harm? 1. Yes, no danger at all. You can even run several spyware scanners simulteanously. 2. I. Before Windows loads, press F8 II. Select safe mode and press Enter 1. I dnloaded and ran the antispyware beta & it did detect 4 bad files which I DELETED, but it did not pickup and did nothing for the same other ones I still have. 2. the only 2 options i get upon repeatedly hitting the F8 key is 1. go to windows; 2. Boot from CD Rom. If i choose 2 (without inserting a CD rom-not sure what) it goes thru a slight process and then comes up with other options to: (1) delete all files (automated f disks/format) (2) automated installation windows XP or 2000 (3) Advanced user menu (4) restart computer (X) exit to a command prog. The 8 bad files are in C:/Documents & Settings/Owner/Application Data/Sun/Java/Deployment/Cache. at the end each one indicates one of the following: "classload" "dummy class" "insecure class loader" "verifyier bug". They look like they could be zip files because tht's also in the description, but I can't actually find the files in C drive & subfolders Any further suggestions or solutions?? I'm sorry I'm such a problem. I recently retired so I don't have IT people to ask for help and I never was very good at solving computer problems! I would just call them! Thanks...Italiangrlitaliangrl......Odd you can't get into safe mode.......what kind of a computer are you using ? Is it a desktop or a laptop ? Quote The 8 bad files are in C:/Documents & Settings/Owner/Application Data/Sun/Java/Deployment/Cache. at the end each one indicates one of the following: "classload" "dummy class" "insecure class loader" "verifyier bug". They look like they could be zip files because tht's also in the description, but I can't actually find the files in C drive & subfolders lets try this once more .......click on start , then my computer , then Local disk C: then Documents and settings......then owners name ......then Application Data ......then Sun ....then Java ....then Deployment ........then cache .........now then , the files you want to delete should be in the cache folder ......so hilite the cache folder and then right click on it and select delete ........ that should remove them ........ let us know dl65 Try uninstalling Java completely. What scanner is picking up the Java cache contents as faulty? A virus or spyware scanner?Walla! I have had success in finding those ugly files and removing them forever, I hope. Thanks for all your help. It has been a good learning experience, that's for sure.italiangrl Quote Walla! I have had success in finding those ugly files and removing them forever, I hope. Thanks for all your help. It has been a good learning experience, that's for sure. We're glad to have been of service. dl65 |
|
| 262. |
Solve : Please help with this hijack log? |
|
Answer» This computer belongs to a family member. She was having trouble so I said I would look at it. This computer is HIJACKED by so many whackos that I am not sure where to START other than reformat.There are a few things on here that she would like to keep but I know there is a W32/Valla.2048 virus on it. I have the removal tool but it doesn't seem to remove it. Running WINXP,AVG,Spybot S&D. This computer belongs to my son and I have no idea why the updates were not installed. This is a legit copy of XP so there really is no reason. I suppose he thought it wouldn't happen to him. Sometimes updating is forgotten about ...or they think , ya I'll do it when I have time or a friend might have said ......na you dont need those updates ....... Unfortunately , with all the nasties out there , you do ( or at least they help) Quote Really wish there was a way to send all the nasties back to all the ones who are sending them out. Don't waste the time trying to find out .........It will lead to nothing but frustration .........The best way is to have your pc current as far as updates , a good firewall , good anti-virus and then some nasty hunters like.....Ad-Aware SE , SpyBot search and destroy and Antispyware Beta ...... The most important thing is not to click on things that you are not sure about ......even if it's in a Email . If you dont trust the source ....leave it alone or dont open it . let us know how you make out . dl65 New hijack log: StartupList report, 9/9/2005, 11:26:21 AM StartupList version: 1.52.2 Started from : C:\Program Files\hijackthis\hijackthis.EXE Detected: Windows XP (WinNT 5.01.2600) Detected: Internet Explorer v6.00 (6.00.2600.0000) * Using default options ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\ewido\security suite\ewidoctrl.exe C:\Program Files\ewido\security suite\ewidoguard.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\hijackthis\hijackthis.exe -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run AVG7_CC = C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP AVG7_EMC = C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run SpybotSD TeaTimer = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=*Registry value not found* drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry key not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\PROGRA~1\SPYBOT~1\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F} (no name) - C:\WINDOWS\System32\dllcache\javascript.dll (file missing) - {6E28339B-7A2A-47B6-AEB2-46BA53782373} -------------------------------------------------- Enumerating Download Program Files: [McFreeScan Class] InProcServer32 = C:\WINDOWS\McAfee.com\FreeScan\mcfscan.dll CODEBASE = http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/2,0,0,4576/mcfscan.cab -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- End of report, 3,728 bytes Report generated in 0.070 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Logfile of HijackThis v1.99.1 Scan saved at 11:41:39 AM, on 9/9/2005 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\ewido\security suite\ewidoctrl.exe C:\Program Files\ewido\security suite\ewidoguard.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\hijackthis\hijackthis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/en-us/srchasst/srchasst.htm R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Microsoft Javascript Class - {6E28339B-7A2A-47B6-AEB2-46BA53782373} - C:\WINDOWS\System32\dllcache\javascript.dll (file missing) O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe O23 - Service: ewido security suite GUARD - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe O23 - Service: Performance Logs (Perfhmon) - Unknown owner - C:\WINDOWS\System32\Perfhmon.exe (file missing) I am unable to remove the following file: O23 - Service: Performance Logs (Perfhmon) - Unknown owner - C:\WINDOWS\System32\Perfhmon.exe (file missing) I have tried but it keeps showing up. I have the critical updates installed and will do SP2 tonight when the line is more likely to be free. The W32.Valla.2048 virus was removed with a bitfinder tool. The entry below HAS been removed. O2 - BHO: Microsoft Javascript Class - {6E28339B-7A2A-47B6-AEB2-46BA53782373} - C:\WINDOWS\System32\dllcache\javascript.dll (file missing) How does this look to you?majakdragon....... O2 - BHO: Microsoft Javascript Class - {6E28339B-7A2A-47B6-AEB2-46BA53782373} - C:\WINDOWS\System32\dllcache\javascript.dll (file missing) O23 - Service: Performance Logs (Perfhmon) - Unknown owner - C:\WINDOWS\System32\Perfhmon.exe (file missing) Those two should be removed .......... the files are missing and not required . How is the pc working ....? dl65 The computer is very slow but much better than before. The file: O23 - Service: Performance Logs (Perfhmon) - Unknown owner - C:\WINDOWS\System32\Perfhmon.exe (file missing) Will not remove. I have tried many times but it keeps showing up. The other one has been removed.majakdragon..... I note that SP2 hasnt been installed ....is there some reason you haven't installed it ?......... and what about all the other updates ? dl65 All updates EXCEPT SP2 have been installed. SP2 download as well as any updates were blocked by the numerous viruses that were on the computer. It will be downloaded as soon as I get this thing clean....hopefully tonight. I attempted removing the C:\WINDOWS\System32\Perfhmon.exe by using killbox. As you can see from the new log ....it is STILL there. What exactly is this file with nothing in it? New log:Logfile of HijackThis v1.99.1 Scan saved at 11:10:28 PM, on 9/9/2005 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\ewido\security suite\ewidoctrl.exe C:\Program Files\ewido\security suite\ewidoguard.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\hijackthis\hijackthis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/en-us/srchasst/srchasst.htm R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {6E28339B-7A2A-47B6-AEB2-46BA53782373} - (no file) O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} - O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe O23 - Service: Performance Logs (Perfhmon) - Unknown owner - C:\WINDOWS\System32\Perfhmon.exe (file missing) Thanks for all the help you have given me thus far.You are marking these things for removal with the Hijackthis program... aren't you? |
|
| 263. |
Solve : How do viruses effect your history file?? |
|
Answer» If your computer is infected with viruses and spywear, is it possible for the viruses and spywear to cause websites to show up in your ONLINE history file, even if you did not personally visit the websites?shay31........Well when it COMES to computers ....anything is possible, but after saying that .......I have NEVER seen a virus or spyware put entries in the history file ..........The history is propagated even if you did not personally visit the websites? How about someone else did and didnt tell you ....... dl65 I must have caught it off the toilet seat Quote I must have caught it off the toilet seat You should practice safe COMPUTING. Keyboard CONDOMS. |
|
| 264. |
Solve : Corporate Intranet Security ??? |
|
Answer» Recently our intranet server was affected with virus and it TOOK NEARLY 4 hours to restore the server , Can anyone suggest which is the best firewall to PREVENT this .........and where can i get it (url )Sygate Version 5.5 BUILD 2710 |
|
| 265. |
Solve : severe drop in download speed? |
|
Answer» I recently got a broad band connection and at first it was fine and downloaded at around 50kb for most files but now even when I download from cable servers it usuallyonly goes at around 1-5kb.
Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE PERSONAL -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware REMOVER. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully FUNCTIONAL virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.guy....... Quote I recently got a broad band connection and at first it was fine and downloaded at around 50kb for most files but now even when I download from cable servers it usuallyonly goes at around 1-5kb. The download speed is determined by the SOURCE........usually ......... if you are trying to d/l movies , depending on the site the d/l speed can be terrible . If you want to do a download test to check your connection ........try this one ....... http://www.bandwidthplace.com/speedtest/ dl65 check with cable operators to see if there are any outrages on the system. |
|
| 266. |
Solve : Hijackthis Log - any suggestions? Nasties!? |
|
Answer» I have suffered at the hand of evil viruses! Please help! When I reloaded windows I was not connected. I was careful to reload my antivirus prog, with new definitions, and anti spyware progs, then do scans, before getting on the net. Which nasty scanners are you using apart from Norton ? let us know dl65 Dl 65... I'm very ashamed... my XP isn't legit! I downloaded the Norton definitions at work in the form of an Intelligent Update, and popped them on disk at work. Just open the RAR file and voila! Definitions updated! And yes, I was on Messenger prior to the problem occurring. Apart from that, would having SP1 and or SP2 fix or improve my system? I used Spybot, the Microsoft Malicious tool, Spyware Guard and Adaware... these all have good reputations. Nothing came up... do you have any suggestions? chadz69 Quote I'm very ashamed... my XP isn't legit! Embarassed Quote And yes, I was on Messenger prior to the problem occurring. Apart from that, would having SP1 and or SP2 fix or improve my system? It would definitely make it more secure.The way microsoft is heading I can see nothing but trouble for people with pirated copies of xp. Buy the real thing & jump through the microsoft hoops or get w2k for next to nothing at the $2 shop. Quote The way microsoft is heading I can see nothing but trouble for people with pirated copies of xp. Which is exactly what Microsoft wants to happen. I do not quite care, THOUGH. I have legal OS installed. I do not feel sympathy for someone who is trying to steal software when I paid for it. |
|
| 267. |
Solve : Something still wrong? |
|
Answer» Okay, a while back my computer got infected with a virus. it was malware's PsGuard (or something along those lines.) My Norton had just ran out so I downloaded a trial Panda which got rid of mostly everything. However, there is still this odd blank box on my desktop that flashes from black to grey periodically. This first appeared when I got the virus or whatever it was, but now it's sitll there and it's not only a nuisance, but I don't want it to be doing anything bad to my computer. I can't get rid of it and when I Ctl+Alt+delete, there are no strange programs running or anyhting. Please someone help.Virus scanners |
|
| 268. |
Solve : Need Help ASAP:Unwanted Files Stored in My Docs? |
|
Answer» Major Critical Dilemma: Need Help ASAP |
|
| 269. |
Solve : cxtpls.dll? |
|
Answer» I rum hijack this on my dad's pc and came across this: My dad is the same as me- not a ligit windows xp. Can't get microsoft downloads. That is security breach number one and will never be removed unless you obtain a legal copy. You might want to use http://merijn.org/files/bholist.zip]this program. I doubt it can tell you wheter it is a legal BHO or not, though. Read this as well. shell26.......Run another hijackthis scan and post it here so we can tell you what to remove . the 02 entry you listed above is bad it has to be removed . dl65 Quote O2 - BHO: (no name) - {016235BE-59D4-4CEB-ADD5-E2378282A1D9} - C:\Program Files\CxtPls\cxtpls.dll (file missing) Just delete to 02 entry, it's calling for a file that isn't there anyway. If in doubt, have a look C:\Program Files\CxtPls\cxtpls.dll and see if it's there.here is my dad's log file as requested: Logfile of HijackThis v1.99.1 Scan saved at 10:00:52, on 09/09/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exeC:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\BullGuard Software\BullGuard 5.0\BullGuardUpdate.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\QuickTime\qttask.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SpeedTouch\Dr SpeedTouch\drst.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe C:\Program Files\BullGuard Software\BullGuard 5.0\BullGuard.exe C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Internet Explorer\iexplore.exe C:\DOCUME~1\Mike\LOCALS~1\Temp\Temporary Directory 2 for hijackthis.zip\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.co.uk/iesearch/default.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.co.uk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wanadoo.co.uk R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.co.uk R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Wanadoo O2 - BHO: (no name) - {016235BE-59D4-4CEB-ADD5-E2378282A1D9} - C:\Program Files\CxtPls\cxtpls.dll (file missing) O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: VBRunDLL Class - {197B8CA4-E215-46DD-8F33-E0544A80E5C4} - C:\WINDOWS\system32\vbrundll.dll O2 - BHO: ohb - {9ADE0443-2AB2-4B23-A3F8-AC520773DE12} - C:\WINDOWS\system32\nspF.dll O3 - Toolbar: Wanadoo - {8B68564D-53FD-4293-B80C-993A9F3988EE} - C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [STManager] "C:\Program Files\SpeedTouch\Dr SpeedTouch\drst.exe" -b O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /0 O4 - HKCU\..\Run: [BullGuard] "C:\Program Files\BullGuard Software\BullGuard 5.0\BullGuard.exe" O8 - Extra context menu ITEM: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{D41F8257-AECC-4FD9-BB56-A8400536D865}: NameServer = 195.92.195.94 195.92.195.95 O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BullGuard LiveUpdate (BGLiveSvc) - BullGuard, Ltd. - C:\Program Files\BullGuard Software\BullGuard 5.0\BullGuardUpdate.exe O23 - Service: BullGuard Main (BGMainSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: BullGuard File Monitoring (BsFileSpy) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: BullGuard Firewall (BsFirewall) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: BullGuard Email Monitoring (BsMailProxy) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe O23 - Service: Windows VisFx Components - Unknown owner - C:\WINDOWS\yuktsvc.exe (file missing) shell26ok ......here are the obvious removals ......... O2 - BHO: (no name) - {016235BE-59D4-4CEB-ADD5-E2378282A1D9} - C:\Program Files\CxtPls\cxtpls.dll (file missing) O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk O17 - HKLM\System\CCS\Services\Tcpip\..\{D41F8257-AECC-4FD9-BB56-A8400536D865} : NameServer = 195.92.195.94 195.92.195.95 O23 - Service: BullGuard Main (BGMainSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: BullGuard Email Monitoring (BsMailProxy) - Unknown owner - C:\WINDOWS\System32\svchost.exe" -k bg5 (file missing) O23 - Service: Windows VisFx Components - Unknown owner - C:\WINDOWS\yuktsvc.exe (file missing) ok .......mark these for removal and click fix marked. I would suggest D/L and installing : Ad-aware SE http://www.download.com/3000-2144-10045910.html SpyBot Search and Destroy http://www.pcworld.com/downloads/file_description/0,fid,22262,00.asp Microsoft Antispyware Beta (excellant) http://www.microsoft.com/athome/security/spyware/software/default.mspx Next , I note there is a number of anti VIRUS programs installed on the pc .......... you should really only use one ..........sometimes they do not interact with each other very well ........so more isn't better . I see Norton , AVG and Bullguard . The same thing applies to Firewalls ..... I see Norton , Bullguard and Zone Alarm. If any of those are outdated .....remove them using the Add/Remove function in the control panel. Note.....there is also a firewall in XP sp2 ..... If you are using another firewall turn the Windows one off . let us know how you make out. dl65 Why are you posting your log file? You can remove any entry there by using the following programs: Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker. There is no NEED to do it manually. Unless a certain type of malware is persistent. |
|
| 270. |
Solve : Norton Internet Secruity? |
|
Answer» I been having problems with my pc and I dont know why. I have always been able to post at yahoo under threads. I am a regualr there, its not like I just started posting. I go to post and it comes up with this |
|
| 271. |
Solve : Securybanks? |
|
Answer» My spy sweeper keeps finding a "Securybanks phishing trojan" on my pc. Spy sweeper deletes it but when i re-scan the next day or so, it is there again. Norton doesn't detect it. I am running xp pro.Try another Spyware Scanner... |
|
| 272. |
Solve : problem with loaded video file? |
|
Answer» ftp://ftp://http:// :owhen im playing VIDEO file which is loaded on my computer my system is going to be strucked means it is totally not responding untill i restartand when im plzying video file COMING online from internet it running as usual,plz help REGARDING that problem step by step ,what is that problem??can any ONE help me[/b][/i]muhammad owais....... [/ftp][ftp]http:// when im playing video file which is loaded on my computer my system is going to be strucked means it is totally not responding untill i restartand when im plzying video file coming online from internet it running as usual,plz help regarding that problem step by step ,what is that problem??can any one help me[/i] What is all this ........ Please try and EXPLAIN your issue again only this time be more specific....... Like what O/S your using .......is this some online game thats causing the issue ? let us know dl65 |
|
| 273. |
Solve : Norton Security Help!?? |
|
Answer» Every TIME I OPEN Norton it SAYS my definitions are outdated, even after I just updated them. What's happening? Ad-Aware is doing it too. It says my definitions are 60 days old! I updated them yesterday!GOT a dejavu thing happening here Every time I open Norton it says my definitions are outdated, even after I just updated them. What is the expiratory date on your Norton ? Quote Ad-Aware is doing it too. It says my definitions are 60 days old! I updated them yesterday! The latest Ad-aware update is August 31 , 2005 ....is that what you downloaded ? dl65 |
|
| 274. |
Solve : several iexplorer.exe running in the background? |
|
Answer» Hey, ive got a problem here. Several iexplorer.exe is running the background and starting up automaticly and i havnt got a clue why. |
|
| 275. |
Solve : internet explorer & aol (possible redirect vir? |
|
Answer» this is unlike the previous post regarding the automatic redirect to a secure site. my problem, according to my ISP's tech support, lies with the browser im using, internet explorer in conjunction with AOL. |
|
| 276. |
Solve : Disabling unnecessary services? |
|
Answer» Quote
I didn't want to hijack Raptor's other thread, but this BULLET GOT me curious about my own security. What are these unnecessary Windows services?http://www.blackviper.com/index.html Enjoy Quote
Try this website as well. |
|
| 277. |
Solve : Panda Anti virus/Spyware rating? |
|
Answer» Recently, Fed has been posting the following links: In case Fed starts nagging like a pregnant yack. ROTFLMAO!I can safely add it to my list? |
|
| 278. |
Solve : Long and bad traceroute? |
|
Answer» Hi sometimes it takes a while to load web pages and sometimes I get a high ping on games. So I ran tracert on a server and came up with this as the result: 5 310 ms 309 ms 309 ms po8-0.gw1.sjc1.asianetcom.net The problem does appear to start there. Has this been going on for long? Maybe the gate just has some problems at the moment.Track them down & SEND an email of complaint. Tell them you're a hermit & your only contact with the outside world is through them. LOL Domain Name: ASIANETCOM.NET Administrative Contact : Asia Netcom Asia Pacific Ltd [email protected] 46th Floor, Cheung Kong Center, 2 Queen's Cheung Kong Center 2 Queen's Road Hong Kong, HK 00000 HK Phone: 852-2121-2960 Fax: 123 123 1234 Technical Contact : Cheung, Howard [email protected] 46th, Cheung Kong Center 2 Queen's Road, Central, Hong Kong none HK Phone: 852-21212781 Exactly what did you trace? Quote Hi sometimes it takes a while to load web pages and sometimes I get a high ping on games. So do I. You can not expect to have a decent ping when connecting to a server somewhere in Japan or China. Especially not with all the secret atomic data being exchanged all the time.I traced a server in Europe - it's the same one all the time for consistency in my tracerts. What I mean is that sometimes instead of a ping of 300 (AMERICAN servers) I get like 500 on the same server. I've had the problem for a while but never did anything about it. I don't want to email some dodgy group with my real email address - that's asking for trouble! Is there any way to bypass asianetcom? Isn't something called "Webcontrol.demarc.cogentco.com" a bit dodgy too?You have no virus or spyware infections?Have a look here. http://www.internettrafficreport.com/main.htm You might find the problem.I used AVG, Ad Aware, Spybot S&D, and Trend Micro online scan to check my computer. Trend Micro found 2 data miners (cookies) but that was all. 2k Dummy unfortunately I'm not a computer expert and so I don't understand how that link helps me? Quote found 2 data miners (cookies) but that was all. That's two too many!You could try running through the 'Jap' proxy server for browsing but I don't know if you can get it to work with online games.Raptor I often delete all my cookies anyway but my problem is that I'm sure I shouldn't be going through Asianetcom which is causing the sudden jump thing (but I'm not an expert). Also I don't understand what you mean by running through the Jap proxy server? Is there a way I can skip PAST Asianetcom in my traceroute and thereby fix the problem? This may direct you through alternative routes & improve your browsing speeds. http://anon.inf.tu-dresden.de/index_en.html |
|
| 279. |
Solve : uzmkjj.exe? |
|
Answer» In an attempt to solve a different problem I was viewing the startup items in msconfig. I noticed this uzmkjj.exe in the System32 folder. Is this something I should be concerned about? |
|
| 280. |
Solve : I AM NOT A SERVER-tcp/ip prob ?? |
|
Answer» hello,I've been having strange problems with my computer since a 'hacker'gained access.This'hacker' has since been taunting me with cryptic e-mails (from spoofed e-mail addresses)telling me how 'evil' his 'work' is.Sadly I have to agree,so here it is: (Black ice from iss security) I haven't heard anything good about Black Ice. Try Zone Alarm or Sygate's firewall. What type of network are you on? You say that you are on a LAN. This tells me that there are users on your network which can freely access or see or your PC. Thanks for reply,yes black ice can be a bit paranoid.I've uninstalled black ice & tried zone alarm,with the same result. When I say probes from my lan I mean from the same isp as me-if my isp is Tiscali.fr, the syn probes come from computers with tiscali.fr as their server.This is normal because I have sent a broadcast declaring my computer as a server.I am not on a LAN-my mistake. This all started with me doing downloads from 'dubious' sources (it won't happen to me! ) from which I presume I installed a RAT.The computer was then left online (ether)for a week while I was away elsewhere,which I guess left time for this person to do their dirty work. I'm resigned to the fact I'll have to reformat.Is it possible for the bios settings or flash memory to have been corrupted,so that when I reformat the hard drive I'm just importing the same problem? Again ,any ideas or thoughts on this most welcome, thanks Raptor.P.S. Here's an example packet my computer is sending at the beginning of a connection. As you can see,the 'this is a workstation/server/browser' flags are set.This is sent through udp port 138, the netbios port.Maybe a clue as to where to look? No. Time Source Destination Protocol Info 14 2005-07-28 07:38:24.562500 (my IP) 255.255.255.255 BROWSER Host Announcement , Workstation, Server, NT Workstation, Potential Browser Frame 14 (243 bytes on wire, 243 bytes captured) Arrival Time: Jul 28, 2005 07:38:24.562500000 Time delta from previous packet: 0.000000000 seconds Time since reference or first frame: 1.218750000 seconds Frame Number: 14 Packet Length: 243 bytes Capture Length: 243 bytes Protocols in frame: eth:ip:udp:nbdgm:smb:browser Protocol: UDP (0x11) Header checksum: 0xbad1 (correct) Source: (my ip ) Destination: 255.255.255.255 (255.255.255.255) User Datagram Protocol, Src Port: netbios-dgm (138), Dst Port: netbios-dgm (138) Source port: netbios-dgm (138) Destination port: netbios-dgm (138) Length: 209 Checksum: 0x3ecd (correct) NetBIOS Datagram Service Message Type: Direct_group datagram (17) More fragments follow: No This is first fragment: Yes Node Type: B node (0) Datagram ID: 0x8005 Source IP: my ip. Source Port: 138 Datagram length: 187 bytes Packet offset: 0 bytes Source name: me<20> (Server service) Destination name: MSHOME<1d> (Local Master Browser) SMB (Server Message Block Protocol) SMB Header Server Component: SMB SMB Command: Trans (0x25) Error Class: Success (0x00) Reserved: 00 Error Code: No Error Flags: 0x00 Flags: 0x0000 .... .... .... ..0. = One Way Transaction: Two way transaction .... .... .... ...0 = Disconnect TID: Do NOT disconnect TID Timeout: 1 second Reserved: 0000 Parameter Count: 0 Parameter Offset: 0 Data Count: 33 Data Offset: 86 SETUP Count: 3 Reserved: 00 Byte Count (BCC): 50 Transaction Name: \MAILSLOT\BROWSE SMB MailSlot Protocol Opcode: Write Mail Slot (1) Priority: 0 Class: Unreliable & Broadcast (2) Size: 50 Mailslot Name: \MAILSLOT\BROWSE Microsoft Windows Browser Protocol Command: Host Announcement (0x01) Update Count: 0 Update Periodicity: 4 minutes Host Name: me OS Major Version: 5 OS Minor Version: 1 Server Type: 0x00011003 .... .... .... .... .... .... .... ...1 = Workstation: This is a Workstation .... .... .... .... .... .... .... ..1. = Server: This is a Server .... .... .... .... .... .... .... .0.. = SQL: This is NOT an SQL server .... .... .... .... .... .... .... 0... = DOMAIN Controller: This is NOT a Domain Controller .... .... .... .... .... .... ...0 .... = Backup Controller: This is NOT a Backup Controller .... .... .... .... .... .... ..0. .... = Time Source: This is NOT a Time Source .... .... .... .... .... .... .0.. .... = Apple: This is NOT an Apple host .... .... .... .... .... .... 0... .... = Novell: This is NOT a Novell server .... .... .... .... .... ...0 .... .... = Member: This is NOT a Domain Member server .... .... .... .... .... ..0. .... .... = Print: This is NOT a Print Queue server .... .... .... .... .... .0.. .... .... = Dialin: This is NOT a Dialin server .... .... .... .... .... 0... .... .... = Xenix: This is NOT a Xenix server .... .... .... .... ...1 .... .... .... = NT Workstation: This is an NT Workstation .... .... .... .... ..0. .... .... .... = WfW: This is NOT a WfW host .... .... .... .... 0... .... .... .... = NT Server: This is NOT an NT Server .... .... .... ...1 .... .... .... .... = Potential Browser: This is a Potential Browser .... .... .... ..0. .... .... .... .... = Backup Browser: This is NOT a Backup Browser .... .... .... .0.. .... .... .... .... = Master Browser: This is NOT a Master Browser .... .... .... 0... .... .... .... .... = Domain Master Browser: This is NOT a Domain Master Browser .... .... ...0 .... .... .... .... .... = OSF: This is NOT an OSF host .... .... ..0. .... .... .... .... .... = VMS: This is NOT a VMS host .... .... .0.. .... .... .... .... .... = Windows 95+: This is NOT a Windows 95 or above host .0.. .... .... .... .... .... .... .... = Local: This is NOT a local list only request 0... .... .... .... .... .... .... .... = Domain Enum: This is NOT a Domain Enum request Browser Protocol Major Version: 15 Browser Protocol Minor Version: 1 Signature: 0xaa55 Host Comment: Shut some ports wwdc http://www.wilderssecurity.com/showthread.php?t=25485 Quote Again ,any ideas or thoughts on this most welcome, thanks Raptor. Disable processor ID. I believe only Pentium III processors have got one. You may wish to buy a new Network Interface Card as they all have a fixed MAC adress. I do not know if this will resolve your problem, but they are both methods to recognize a machine. Quote Is it possible for the bios settings or flash memory to have been corrupted I do not think this is possible if the user wasn't sitting behind the PC.o.k.,thanks. I'll try this & let you know how it turns out. It would be good to know how and why this is happening,but I guess I'll have to be content just to get rid of this very strange problem. It's a shame the person responsible couldn't put their well developed knowledge to better use. Thanks again About the Bios/flash memory question,could this broadcast command have come from a 'bad'or intercepted (IP or TCP spoofed) download or e-mail ? Is this impossible or just unheard of ? -Noone has had physical access to my computer. Also,if I WANTED for my box to act as a server,where would the broadcast command come from -can I find the offending piece of script somewhere in the registry ? Is there a legitimate application which can be used to make an XP box a server ?-Lazy question,I'll look on microsoft.com myself! Thanks for the link to the WWdc prog,ports are closed but I have to wait till the TTL of my last broadcast has expired - 3 days- to see if this works. I hope this strange problem has sparked your INTEREST as much as me.It's put me on a very STEEP learning curve.-Anyone ever hear of anything like this before? I'll bet not. XP can be set to act as a server but don't ask me where. I'll poke around a little. |
|
| 281. |
Solve : Random Spiking? |
|
Answer» It all started when i downloaded a file from a website and got keylogged. I got rid of everything that i got from the website. A few days after getting keylogged, my computer started to spike for a few minutes and then minimize anything that i was doing. It occurs every 20- 30 minutes and I have found no way to stop it. I was told that it was spyware, so I ran Ad-aware, Norton, and Microsoft Antispyware, yet it doesnt find anything. Can someone telle me what it is and how to get rid of it please? Im using Windows XPHow do you know a keylogger has been installed when none of the spyware programs REPORT anything?Because my account was hacked because i type my password and they got it. Thats how i know. Ive been keylogged before and nothign like this happened last time.Are you certain they did not simply guess your password.I am certain i was keylogged because no matter wat i changed my password to, they got it. Is there any more info u need to find out wats wrong?Can you post a Hijackthis log |
|
| 282. |
Solve : Help, I cannot remove a program in control panel? |
|
Answer» Hi, Got the prompt open? Then leave this open but close all other programs. Hit control-alt-delete. click the processes tab and end explorer.exe process. leave task manager open. return to command prompt. type "cd" then the path (not including the file name) then hit enter. then type DEL then the file name. (file.extension) Follow the directions EXACTLY. "cd" is how you tell it the directory, okay? Are there no removal instructions on Gearbox their website? They developed the game. Or distributed. I am not certain.Hi, I check their website before coming here and all it said was to go to control panel and remove it and it is where i am having a problem. Squirrel, I am about to try it again like you said. Thanks, Gail Squirrel YOU ARE THE BEST!!! It worked. It worked. I was putting the file name at the end when I should not have like you said but didnt "get it" than, but surely do now Thank you for being so patient with me Now I will try this if ever I get annoying stuff in my control panel ever again. Again, Thank you so much No TROUBLE at all. That's what we're here for. |
|
| 283. |
Solve : re Ad-aware? |
|
Answer» Last week my computer was infected through MSN messenger. Since then my AVG has found 8 virures. I downloaded Ad-aware Se but when I run it my computer keeps sending me a notice of illegal operation 02i5lp04 message of invalid page faults. When I bypass it the program finishes but after the quarantee my computer freezes and will not remove the infected files. I had 539 of those so quite a number. Please help.Use the following programs in safe mode When I try to update the definition files itwill not work.I get a note saying "definition files could not be read".Any suggestions? Are you connected to the Internet?Yes,connected to the internet.Will try the other.Although I have uninstalled and installed and the same thing.Download & run http://www.ccleaner.com first. Then do the Adaware & Spybot thing.Adaware shows thats my definitions are 372 days out of date! no reformat/or win updates are we after the cash now!..........spybot is owned by msoft! Quote Adaware shows thats my definitions are 372 days out of date! no reformat/or win updates are we after the cash now!..........spybot is owned by msoft! Is this a question? If your adaware definitions are so out of date with no new definitions available then I suggest your adaware core is out of date. When this happens adaware stop GIVING new definitions without telling you why. I think the current core is 1.06r1.My definitions are up to date 04/08/2005....but it still shows the splash box......367days out of date? i ignore it!so why does it do this?Are you using the current core? 1.06r1 |
|
| 284. |
Solve : IM not sure if this is a virus or something else.? |
|
Answer» Alittle over a week ago I defragged my hard drive. EVER since then its been doing one of the following three things after being on the computer for atleast 30 mins. |
|
| 285. |
Solve : Screen saver D/L & TROJAN? |
|
Answer» A friend Downloaded some screen saver software and was PROMPTED to restart. After doing so, he tried to reconnect to the Internet and a "page cannot be displayed" screen. He then ran AVG & MS ANti-spyware. AGV found a TROJAN and healed it. He said he tried to do an AVG update and it couldn't access the internet. Has he removed all threats? If he has, see if this is of any USE.He "healed" the trojan. I will show him your link. thanks. Will a system restore help ?Kellee...... It sounds LIKE the infection is still there .....I would be going into safe mode and rerunning the AV scan as well as Antispyware ......... The last thing your friend should do is use system restore... in fact he should turn it off until he is certain he has no further threats. dl65 |
|
| 286. |
Solve : No taskbar or desktop icons? |
|
Answer» I put this under the virus category cause I did have viruses which I quaranteed (sp?) with AVG and when I did a reboot after that, all I get is the screensaver with no TASKBAR or icons. The taskbar tries to load (flashes once). |
|
| 287. |
Solve : Worms and wonky cursors w/no reboot? |
|
Answer» I know, I know.... |
|
| 288. |
Solve : this is strange? |
|
Answer» i have 2 hotmail accounts-on 1 of them, when i try to put attachments on an email, i get an error saying the it cant be attached because there is a virus-on the other account, i can attach stuff and never get that error-this happens on both computers on our network-i ran norton and 2 online scan(mcafee and house call) and they showed NOTHING-i also ran adaware, spybot, and microsoft anti spyware and still am getting this error-any ideas y this is happening?Perhaps you have a new/saved message on your Hotmail account that has a virus inside... The virus WOULD not be on your computer UNLESS you download it... scan for bugs in the other account/use safe mode..and disable system restore/and disconnect from the net..... how do i scan for bugs? Quote
Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.i ran the following and here r the results: avg free: one trojan found and healed trend micro house call: nothing found microsoft anti spyware, spybot, adaware: microsoft and spybot found stuff and removed it-adaware found nothing mcafee stinger: nothing found cwshredder: nothing found i can run hijack this and post a log if u want i deleted all the email from the hotmail account and its still trying to attach viruses-i dont get it because if it was a virus on my computer, wouldnt it do it on BOTH hotmail accounts? y just on only one hotmail account and on both computers on the network?another thing-the other computer has no viruses on itHotmail is full of it self. Try E-mailing Hotmail technical SUPPORT and see if something is wrong with your account. If you'd rather skip the whole Hotmail phase, send me an E-mail and I will send you an invite for Gmail. Quote Hotmail is full of it self. Try E-mailing Hotmail technical support and see if something is wrong with your account. i do have a gmail account as well but thx for the offer now to go complain to microsuck |
|
| 289. |
Solve : Msofts new tool? |
| Answer» HTTP://support.microsoft.com/?kbid=890830 | |
| 290. |
Solve : HELP!!! msblank.html? |
|
Answer» Hi, .S. I would like to fix IE, and only last resort go to using another program.... Funnily enough, I use Internet Explorer as a last resort. Virus scanners AVG Free -- Anti virus scanner Trend MICRO Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant HIJACKER. hmm, I tried merlin's sites and downloaded the softwares but they didn't work Intermute shredder.............or hi-jack thisthnx, I've tried shredder before too (didn't work). I don't know where to DOWNLOAD hijack this, and it's said to be for advanced users anyway....anymore suggestions? YESSSSSSSSSSSSSSSSSSSS! YYes, I'm so happy, I've fixed it.....it had to do with the regedit thing, which I took the chance and deleted.....and after that, it worked......thnx for the help though Quote YESSSSSSSSSSSSSSSSSSSS! YYes, I'm so happy, I've fixed it.....it had to do with the regedit thing, which I took the chance and deleted.....and after that, it worked......thnx for the help though You should still use and keep the programs linked to above to prevent events like that from happening.Or re-type the website you use in /tools/internet options |
|
| 291. |
Solve : A System Restore Question? |
|
Answer» Hi, I told her to disable it and run her virus scan in safe mode. Roommate is telling her that I dont know what I'm talking about. No, you're doing the right THING. It is the roommate that does not know what SHE is talking about. In fact, it is said that Safe Mode should be used when you run a system restore, scan for viruses, etc. [glb]Flame[/glb] The never ending cycle of woe...imhao.....So it appears... You have to be careful when talking information from a friend... If they don't know their way around computers so well, they could end-up messing something up... [glb]Flame[/glb]4hugger.....NEVER attempt to remove a virus ...( if thats what it is )with the system rstore feature ........ Tell you friend to do a bit of research or ...even better ....engage BRAIN before opening mouth ........ If a pc is in fact infected with some sort of pest .....be it a virus , trojan or even some malicious spyware ...... The first thing the user should do ...is to shut down the system restore system ...so the pest doesnt infect everything ....... then go into SAFE mode and then begin running the appropriate scanners until the uninvited visitor is isolated and removed ....... Your friend should also remember that anti virus programs may not remove trojans .... They may identify them and where they are residing , but are are unable to remove them . If you know which pest your FRIENDS pc has ...post the name here and we can probably suggest the best app to use to get rid of it . dl65 Quote engage brain before opening mouth ........ |
|
| 292. |
Solve : PSW.Perfloger? |
|
Answer» Hi guys, just a reasurence post! I donwloaded something for a game and it was an archive, so i downloaded it and scanned it with AVG before opening the file and found a keylogger. I did NOT extract the items then deleated the file. Im sure im safe if i havnt extracted the items but i know what nasty things these are and would just like reasurence!! ThnksIt was most likely a key generator, which are often marked as key loggers or other malware. |
|
| 293. |
Solve : MRUs? |
|
Answer» Win XP Are MRUs spyware? No, Windows generates this list of 'Most RECENTLY USED' FILES. They do no HARM other than take up a small amount of space.That's right--kind of like how your start menu's documents option only SHOWS the ones that you've used recently. |
|
| 294. |
Solve : Someone plz help me? |
|
Answer» ok my friend sent me this link and it said is this you alie and i clicked on it and downloaded it and its a virus i know that for SURE buh i dont have the money to BUY a virus scanner so i have the free trial version on my computer...WELL its not detecting it so i TURNED off my comp and im on my dads right now. Help how do i get this virus off my computer. I have windows 2000 on my computer and the trial version of mcafee and e-wido on virus scannersIt may be spyware/malware, download, update & run Microsoft Antispyware. |
|
| 295. |
Solve : iexplore going haywire....? |
|
Answer» I am using win Xp home, fairly fresh install 1 week old. I have been having soundcard issues, but I just ran into another problem. I noticed my system was running incredibly SLOOoooOOw. I ctrl/alt/del and noticed that "iexplore.exe" was running in process, exactly 19 different listings of it. Each one using anywhere from 4000k to 25000k. As I would end the process another would start up, then another etc. I ran spybot, adaware, norton, xoftspy and nothing was found. I am completely befuddled. :-/ First do an online scan iexplore going haywire.... Why doesn't that surprise me. Use Mozilla Firefox instead. Also, make use of the following scanners: Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.Firebird does not solve all...spysweeper might.. Quote Firebird does not solve all...spysweeper might.. That is most likely because one is a browser and the other a scanner. Raptor, I do use Firefox as my browser. Thats why I couldn't figure out the problem with i expolore, I occaisionally get on with my MSN browser, but thats mostly just at work. Anyways, I ended up formatting and installing win xp pro64. I still cannot get my csoundcard to work, I am giving up and going onboard sound. Oh could someone please advise to the best anti virus FREEware? Quote Oh could someone please advise to the best anti virus FREEware? Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner.timidbull...... RE your hijackthis log ...... Mark for removal the following ....: R3 - URLSearchHook: (no name) - {A0352AC6-960E-0529-3B16-1A70536215F0} - sysconf16.dll (file missing) O1 - Hosts: localhost 127.0.0.1 O4 - HKLM\..\Run: [Microsoft Internet Acceleration Utility] C:\WINDOWS\iau.exe O4 - HKCU\..\Run: [Ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [Floppy Master] C:\WINDOWS\wavplay.exe O4 - HKCU\..\Run: [Microsoft Internet Acceleration Utility] C:\WINDOWS\iau.exe O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\APACHE.EXE" -k runservice O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe I also notice you do not have SP2 installed ..........is there any reason you don't have it .....as there are many very good added security features . Once you have SP2 installed you should be able to D/L and install Antispyware Beta .......... which is a very good anti - PEST app. http://www.microsoft.com/downloads/details.aspx?FamilyID=321cd7a2-6a57-4c57-a8bd-dbf62eda9671&displaylang=en let us know how you make out . dl65 |
|
| 296. |
Solve : Firewall help please? |
|
Answer» I just installed ZoneAlarm, but it is blocking something, which I think is MSN Messenger... ZoneAlarm from connectiong... Here is a screenshot of the alert... |
|
| 297. |
Solve : is this consider a virus?? |
|
Answer» computer monitor was showing irrational and jumbled CHARACTERS that KEPT running across the screen non-stop. i cannot take control over the computer.Is it a computer virus or something ELSE..PLEASE reply asap..thanks! It sounds liek one to me... Do you have protection? Did you make any changes to your SYSTEM recently? |
|
| 298. |
Solve : IE will not go to MS site to DL antispy? |
|
Answer» Any suggestions on how I can down load the new MS AntiSpy ware when IE has a virus that redirects me away from the MS site? MS will NOT down load to a Netscape Browser. Any suggestions on how I can down load the new MS AntiSpy ware when IE has a virus that redirects me away from the MS site? MS will NOT down load to a Netscape Browser. Use Mozilla Firefox Microsoft Anti spyware will not removes viruses. anti-spyware, not anti-virus. Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones DESCRIBED above. They are EITHER diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker.I guess I do not know if the IE Redirect problem is a Virus, or Spyware. Re: Mozilla, I guess that I will have to download and INSTALL it in order to clean up the problem?? I have run Norton AV several times including in Safe Mode twice and it finds no more virus'. Any ideas? Thanks, DaveThe reason Mozilla Firefox was suggested is becuase Internet Explorer has been foudn to be very unstable. A MUCH better browser exists... Becuase mozilla Firefox has few problems, many people favor it over other browsers... Try installing it. You will be much happier later [glb]Flame[/glb] Quote I guess I do not know if the IE Redirect problem is a Virus, or Spyware. Then download a different spyware or virus scanner.JagRacer....... What site where you sent to when you clicked on the this link? http://www.microsoft.com/athome/security/spyware/software/default.mspx Please let us know and BTW do you have XP retail or a OEM version installed ? dl65 The site that I am redirected to is 10.25.8.233 I am using an OEM version of WinXP. I have the Disk and Product Key. I am not able to "Validate" my software on the MS site as they require before downloading the Beta Antispyware, or any of the other tools that they have such as the "Malicious Software Removal Tool" I was able to down load the programs on my laptop, but the problem is on my desktop and when I try to copy them to this computer it does NOT let me copy them. Any help would be appreciated Thanks Dave Quote I was able to down load the programs on my laptop, but the problem is on my desktop and when I try to copy them to this computer it does NOT let me copy them. How do you copy them? Quote 10.25.8.233 There seems to be no website at that adress.Dave Weibel....... "I am not able to "Validate" my software on the MS site as they require before downloading the Beta Antispyware, or any of the other tools that they have such as the "Malicious Software Removal Tool" I was able to down load the programs on my laptop, but the problem is on my desktop and when I try to copy them to this computer it does NOT let me copy them. " How did you mnage to D/l Antispyware to your desktop ....without running the WGA ? If you were able to Download it to your desktop ...you should be able to click on the ........... setup for M/S antispyware icon and it will install. dl65 Hi dl65 I have NOT been able to DL ANYTHING to my desktop machine. I did DL to my Laptop but can not copy or More the programs to the Desktop. I can not get the Verification SW to work with even the Mozilla Browser on the Desktop (infected) machine. I got a response to a query to MS that indicated that the Verification was not fully implemented and that you could get to a dialog box that allowed you to skip the verification step, but I have NOT been able to find this. Any ideas? Thanks, DaveYou will have to remove the infestation first before you think of activating the product! Can you not install any of the programs I have supplied you with? What kind of error message do you receive when you attempt to copy files? What if you copy applcations onto a CD-R(W) and then install them without MOVING the installer to the Hard Disk Drive? JagRacer....... So is your desktop infected with bugs ......or is this something which occurred after the 25 th of July ? let us know dl65 |
|
| 299. |
Solve : ADWARE AND POPUPS? |
|
Answer» Good morning ev1, I have a general question regarding my computer. I currently have the Lavasoft Ad-aware SE PERSONAL FREE version on my computer, this is to remove Adware.. I also have Spyware Doctor, Counter Spy, Nortons Anti-virus 2005, Registry Mechanic, and the Beta from Microsoft. 1. Sorry I get confused are Spyware and adware two sep things?? 1. Spyware is as the name suggest, it spies Malware is also as the name suggests, it is malicious and causes harm. Adware causes unsolicited advertations. However, the lines are a bit blurry if you ask me and most programs will take care of all three. Since they are all the same to most people. 2. See the following, carefully comprised list; Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- Online anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software FIREWALL. Be ADVISED as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker. I have never heard of Spyware counter, I would remove it if it does not yield better results than the programs linked to above.Thank you for this info So if I run my spyware scans on a regular basis will they also remove any adware I may have on the computer?? I have Nortons for Virus protection. Thank again Quote will they also remove any adware I may have Yes, Spyware scanners should take care of adware, malware and spyware. Virus scanners take care of Viruses and often Trojan Horses. Also keep in mind that when you try to remove something, and it seems to be in use, that you re-start and scan in safe mode. |
|
| 300. |
Solve : any programs that will remove uninstall programs? |
|
Answer» Like I remove kazaa program my hard drive but the folder is still there! Can anyone help me by TELLING me of a program or software that I can download? I try the delete the folder but it keeps on coming back!What is inside the folder? Have you scanned for viruses and Spyware? Like I remove kazaa program my hard drive but the folder is still there! Can anyone help me by telling me of a program or software that I can download? I try the delete the folder but it keeps on coming back! It MAY also be in use by another Peer to Peer program. Are you using others? After having UNINSTALLED Kazaa, you should immediatly scan for Viruses, Trojan Horses and Spyware. Virus scanners AVG Free -- Anti virus scanner Trend Micro Housecall -- ONLINE anti virus scanner. Anti spy/malware Microsoft Antispyware -- Anti spyware scanner. Windows XP Home and Professional only. Spybot Search & Destroy -- Anti spyware scanner Adaware SE Personal -- Anti spyware scanner Firewalls Use both a hardware and software firewall. Be advised as dual software firewalls may cause problems ZoneAlarm Free -- Free firewall - more user friendly Sygate Personal -- Free firewall - more configuration options Removal tools The following files are not substitutes for the ones described above. They are either diagnostic tools or removal tools for malware of a certain kind HijackThis -- Manual malware remover. Post the HijackThis log generated only if requested! McAfee Stinger -- Virus removal tool. No substitute for a fully functional virus scanner! CWshredder -- CoolWebSearch removal tool. Widely known and persistant Hijacker. |
|