4832 + Interview Questions in Computer viruses and spyware in Software Page 65 InterviewSolution

3201.	Solve : do i still need a firewall/antivirus??
Answer» I used to always rock avast and zone alarm. but lately i got a modified host file (that blocks all ads) and removed zone alarm and avast (because they would conflict with a lot of my online gaming) and keep my windows up to date, and been rocking it like this for last 3 months. (mostly from laziness, but I do run ccleaner a lot) but for the heck of it today i ran a scan with malware BYTES. and i had like 1 infection which was a ad thing from yahoo. i am a heavy user, facebook, forums, chats, gaming... and my computer seems to still run as smooth as my gf's inner thigh so am i alright? I would never even consider running a SYSTEM without a top notch AV installed and always resident.Quote from: Allan on May 06, 2012, 11:13:01 AM I would never even consider running a system without a top notch AV installed and always resident. Yeah I am installing some now. What do you mean by "always resident"?also wth?? i am running super ANTISPYWARE, and it says i got tracking cookies from my gmail and stuff? and youtube?? I TRUSTED YOU!!! SNAPE I TRUSTED YOU!!!!!Resident = loading at boot and always running / active in the backgroundi want to do these few things, what order should i do them? first gonna update all my software, then turn off internet and restart PC then virus scan 1. malwayre bytes scan 2. superantispyware scan 3. run ccleaner 4. ccleaner registry fix is that a good order to do these?1) DO NOT EVER use any registry cleaners / utilities - including the ccleaner registry cleaner MODULE. The best of them do absolutely nothing. The worst of them will leave your system unusable. 2) Ccleaner does nothing you can't do yourself. It certainly is not in any way, shape, or form an anti-malware utility. As for the rest, there is no "good order" or "bad order". Run the scans however you like.Quote from: Allan on May 07, 2012, 09:44:54 AM 1) DO NOT EVER use any registry cleaners / utilities - including the ccleaner registry cleaner module. The best of them do absolutely nothing. The worst of them will leave your system unusable. 2) Ccleaner does nothing you can't do yourself. It certainly is not in any way, shape, or form and anti-malware utility. As for the rest, there is no "good order" or "bad order". Run the scans however you like. cool thanks - i like to update all my programs, then restart in safemode- run scans - then reboot hey also why did trusted sites like google send me malicious tracking cookies? Makes me not trust google as much, thinking of transferring my accounts to something less mainstream.They're not malicious - their just tracking cookies - for marketing purposes. Pretty much everyone does it these DAYS. Disable third party cookies in your browser options.

3201.

Solve : do i still need a firewall/antivirus??

Answer»

I used to always rock avast and zone alarm.

but lately i got a modified host file (that blocks all ads)

and removed zone alarm and avast (because they would conflict with a lot of my online gaming) and keep my windows up to date, and been rocking it like this for last 3 months. (mostly from laziness, but I do run ccleaner a lot)

but for the heck of it today i ran a scan with malware BYTES. and i had like 1 infection which was a ad thing from yahoo.

i am a heavy user, facebook, forums, chats, gaming...

and my computer seems to still run as smooth as my gf's inner thigh

so am i alright?
I would never even consider running a SYSTEM without a top notch AV installed and always resident.Quote from: Allan on May 06, 2012, 11:13:01 AM

I would never even consider running a system without a top notch AV installed and always resident.

Yeah I am installing some now.

What do you mean by "always resident"?also wth??

i am running super ANTISPYWARE, and it says i got tracking cookies from my gmail and stuff?

and youtube??

I TRUSTED YOU!!! SNAPE I TRUSTED YOU!!!!!Resident = loading at boot and always running / active in the backgroundi want to do these few things, what order should i do them?

first gonna update all my software, then turn off internet and restart PC

then
virus scan
1. malwayre bytes scan
2. superantispyware scan
3. run ccleaner
4. ccleaner registry fix

is that a good order to do these?1) DO NOT EVER use any registry cleaners / utilities - including the ccleaner registry cleaner MODULE. The best of them do absolutely nothing. The worst of them will leave your system unusable.

2) Ccleaner does nothing you can't do yourself. It certainly is not in any way, shape, or form an anti-malware utility.

As for the rest, there is no "good order" or "bad order". Run the scans however you like.Quote from: Allan on May 07, 2012, 09:44:54 AM

1) DO NOT EVER use any registry cleaners / utilities - including the ccleaner registry cleaner module. The best of them do absolutely nothing. The worst of them will leave your system unusable.

2) Ccleaner does nothing you can't do yourself. It certainly is not in any way, shape, or form and anti-malware utility.

As for the rest, there is no "good order" or "bad order". Run the scans however you like.

cool thanks - i like to update all my programs, then restart in safemode- run scans - then reboot

hey also why did trusted sites like google send me malicious tracking cookies?

Makes me not trust google as much, thinking of transferring my accounts to something less mainstream.They're not malicious - their just tracking cookies - for marketing purposes. Pretty much everyone does it these DAYS. Disable third party cookies in your browser options.

3204.	Solve : Removing BearShare applications?
Answer» Hello I am unable to delete the BearShare applications FOLDER from my C \| Program files directory (ATTACHED screenshot). I have run MalWareBytes which didn't PICK up anything, and then SuperSpyWare which removed 30+ 'threats', but the BearShare folder is still there. Thanks for any suggestions. High1 [year+ old attachment deleted by admin]Try REVO Uninstaller SELECT the 30 day trial one.Many thanks for that SuperDave

3206.	Solve : Gateway Blue Screen?
Answer» When I start up computer I get message that something is wrong with my computer and two options: repair or start normallly. Repair LEADS to a blue SCREEN that says to run chkdsk /f which when I run says device is not ready. All the other chkdsk demands say the same thing. Safe mode does not work and I dont care about saving my information. Alls I want to do is be able to reinstall windows vista but when i boot from the cd it does not see my dvd. I have windows vista 32What is the make and MODEL of your computer? "Device not ready" and "the cd does not see my DVD" indicate a hardware problem, most LIKELY caused by misconfiguration. If its a desktop, try resetting CMOS. If its a laptop, take out the battery, unplug it from the charger and press the power button a few TIMES. Then try again.1) Replace the cmos battery then reset the bios to default. 2) In the bios, find the device boot order and move the dvd drive to the top followed immediately by the hard drive. If the system still doesn't boot properly you should at least be able to boot to the Vista cd now.

3207.	Solve : How to do the DOS attack??
Answer» Please anyone who can HELP me? I WANT to learn more about DOS attack!!!Here!

3208.	Solve : Antivirus Test Labs?
Answer» I am searching for buy a proper Antivirus software for myself. i searched about the comparisons on the Internet. I found out that there are some test labs that their results can be useful such as av-test.org and others. my question is that which labs are best. which has more expert and famous. which can be used as reference and source for comparison of Antivirus software? http://www.google.com/#hl=en&sclient=psy-ab&q=antivirus+test+labs&oq=antivirus+test+labs&aq=f&aqi=g1&aql=1&gs_l=hp.3..0.18622l18622l6l20096l1l0l0l1l1l0l0l0ll1l0.efis.1.&pbx=1&bav= on.2,or.r_gc.r_pw.r_qf.,cf.osb&fp=91fbb53e0f2ce1b4&biw=1366&bih=619 Most of these free AV's are just as good as what you can buy. I prefer MSE. Remember to only install one antivirus! 1) Avast! Home Edition 2) AVG Free Edition 3) Avira AntiVir Personal 4) Microsoft Security Essentials for Windows Vista\Windows 7 - 64 bit Download 4-a) Microsoft Security Essentials for Windows XP 5) Comodo Antivirus (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" if you choose this one) 6) PC Tools AntiVirus Free Edition 7) ThreatFire It is strongly recommended that you run only one antivirus program at a time. Having more than one antivirus program active in memory uses additional resources and can result in program conflicts and FALSE virus alerts. If you choose to install more than one antivirus program on your computer, then only one of them should be active in memory at a time.thank you very much for introducing free antiviruses. As you know some SITES such www.av-test.org examine them and give SCORE for their abilities. i WANT to know how much these sites are useful. can i refer to their statistics for knowing better antivirus? which antivirus test labs are best? http://www.av-comparatives.org/ is the best.You can download Avira too!!!(the red umbrella)

3209.	Solve : SVCHOST.exe or Newfolder.exe?
Answer» thyxxxxxxx GUYS!!!!!!

3210.	Solve : What are these eroors in Event Viewer?
Answer» HI, Can someone tell me what these Errors are in EVENT viewer Volmgr, VSS, Windows media player sharing? I picked them up because My computer keeps crashing to DESKTOP out of the games I run? How do I get rid of them. Thanks!!

3215.	Solve : Computer acting weird and no Internet Access?
Answer» You should contact your Internet Service Provider to set up a connection.i contacted them they state the issue is with Internet Explorer not RESPONDING and the virus may have wiped out my drivers?They were unable to help,not sure what i am going to do now?Ok. Let's try to create a NEW connection. Click Start, Control Panel, Network connections and click "create a new connection". You will get the connection Wizard. Click NEXT and select Connect to the internet. Click choose from a list of ISP's and click next. Since I don't know your ISP you will have to search for it. The next drop-down box has two options. The first is Get online with MSN(only GOOD in US.) and the second is Select from a list of ISP's.

3216.	Solve : Computer classroom always virus infected.?
Answer» Every one, we are computer classroom adminitrator, because all COMPUTERS are USED for all students. during one week, there is virus infected, it is REALLY headached to manage all computers when there is virus infected. Is there any good way to solve this problem? Don't you INSTALL antivirus software? It does't WORK?

3218.	Solve : Windows 7 Computer Turns Off Every Time ANY Folder Is Opened?
Answer» I Have Windows 7 Gateway SX2851 Its been a couple months now when i was gone, someone was using computer when i came back it was messed up. no previous problems. Now anytime i open ANY folder (new folder, my documents, my computer etc.) the computer turns off within 1-5 seconds and goes to blue screen, But I can RUN any program and open control panel, start menu, internet, play music or movies and open files on the desktop, the only way to access files off desktop is through start menu search. Originally I Only Had AVG Free, and CCleaner, Since problem I have ran many security programs (Norton, Avira, Avast, Superanti Spyware, Malware Bytes, Ad Aware, Boot Scans Etc.) Also have performed ChkDsk disk check, SFC Scannow from Command Prompt, Data Lifeguard Diagnostic for windows, Uniblue Registry Booster. Please someone give any advice to help fix this. Even if i can access the folders temporarily it will give me time to back up my files on external hd and restore the computer. Thank YouDownload BlueScreenView: http://www.nirsoft.net/utils/blue_screen_view.html unzip downloaded file and double click on BlueScreenView.exe to run the program. when scanning is done, go to EDIT - Select All Go to FILE - SAVE SELECTED Items, and save the report as BSOD.txt Open BSOD.txt in Notepad, copy all of the content, and paste it into your next replyBecuase of the problem i cant even save anything because it opens the save as folder and turns off, so i had to copy it by hand Dump File -040712-17768-01.dmp Crash Time -4/7/2012 12:07:49 PM Bug Check String -KMODE_EXCEPTION_NOT_HANDLED Bug Check Code -0x0000001e Paramater 1 -ffffffff`c0000005 Paramater 2 -fffff880`0578d5d0 Parameter 3 -00000000`00000000 Paramater 4 -00000000`00000000 Caused By Driver -ntoskrnl.exe Caused By Address - ntoskrnl.exe+7cd40 File Description -NT Kernel & System Product Name -Microsoft® Windows® Operating System Company -Microsoft Corporation File Version -6.1.7601.17727 (win7sp1_gdr.111118-2330) Processor -x64 Crash Address -ntoskrnl.exe+7cd40 Stack Address 1 - Stack Address 2 - Stack Address 3 - Computer Name - Full Path - C:\Windows\Minidump\040712-17768-01.dmp Processors Count -4 Major Version - 15 Minor Version - 7601 Dump File Size - 262,144 Dump File -040712-18314-01.dmp Crash Time -4/7/2012 12:00:16 PM Bug Check String -KMODE_EXCEPTION_NOT_HANDLED Bug Check Code -0x0000001e Paramater 1 -ffffffff`c0000005 Paramater 2 -fffff880`06f0a5d0 Parameter 3 -00000000`00000000 Paramater 4 -00000000`00000000 Caused By Driver -ntoskrnl.exe Caused By Address -ntoskrnl.exe+7cd40 File Description - NT Kernel & System Product Name -Microsoft® Windows® Operating System Company -Microsoft Corporation File Version -6.1.7601.17727 (win7sp1_gdr.111118-2330) Processor - Crash Address -ntoskrnl.exe+7cd40 Stack Address 1 - Stack Address 2 - Stack Address 3 - Computer Name - Full Path - C:\Windows\Minidump\040712-18314-01.dmp Processors Count -4 Major Version - 15 Minor Version - 7601 Dump File Size - 262,144Does the same thing happen if you boot to safe mode? Have you recently updated any drivers? Do you still have multiple antivirus apps installed? If so, please pick one and delete all of the rest. You should never have more than one installed. Open device manager - any yellow or red SYMBOLS? See if anything here helps: http://support.microsoft.com/kb/275678i also cant boot in safe mode, while starting up it freezes and will not boot all the way Not that i know of manually, maybe if set for auto No i have uninstalled the extras Nothing Red Or Yellow in Device Manager And ill be working on trying the suggestions on that link i ended up fixing it! I restarted my computer in selevtive startup, got access to folders and backed up all my files on external hd and restored the computer to new thank you for the helpOkay, thanks for the follow up. Glad you're all sorted out. I'm a little surprised a selective startup worked since you could not boot to safe mode.

3220.	Solve : UPDATE ON WINFIXER FAMILY OF MALWARE?
Answer» The scum that write this stuff are being brought to BOOK ... http://www.theinternetpatrol.com/lawsuit-filed-against-winfixer-aka-errorsafe-winantispyware-winantivirus-systemdoctor-and-drivecleaner You ALSO have their address if you feel like JOINING in the complaints. OJthanks ALOT for the info oddjob unlovedwarrior

3222.	Solve : AVG Free Edition?
Answer» I have the AVG Free Edition 7.1 which is no longer supported by Grisoft. I'm having difficulty uninstalling it. I tried to DELETE the files as well as remove it from the Add/Remove program but it will not allow me to uninstall. There was a WARNING to the effect that it failed initialization. I don't want it in my PC any longer because the support was somewhat lousy. It won't even acknoledge the license number given to me. Anyone got any ideas how to delete this monster altogether? ThanksTry using ccleaner.AVG Free edition has been updated to version 7.5, and their free antivirus product is still FREE it is a misunderstanding that the product is no longer available but it is FREE ans available from here:- http://free.grisoft.com/doc/1It's true that AVG is still free, but donsor's version is no longer supported by Grisoft, meaning that they no longer provide updates and whatnot for it. donsor, if you can get 7.1 off of your COMPUTER, I would advise downloading 7.5; it works very well and the support for it is great.You can install 7.5 right on top of it. If you insist on uninstalling 7.1 first, you have to disable the active scan first. (Right click on the icon in the task bar.)As the product is free and ONE of the best along with having an excellent support forum that is also free i can't understand you bashing it as an inferior program... But that's just me.

3227.	Solve : log of my computer anti spyware results?
Answer» Can someone analyze these results for me? AVG Anti-Spyware - Scan Report --------------------------------------------------------- + Created at: 2:13:54 PM 3/9/2007 + Scan result: HKLM\SOFTWARE\Classes\AlxTB.BHO -> Adware.Alexa : IGNORED. HKLM\SOFTWARE\Classes\Popup.PopupKiller -> Adware.Alexa : Ignored. HKLM\SOFTWARE\Classes\CLSID\{F1FABE79-25FC-46de-8C5A-2C6DB9D64333} -> Adware.Generic : Ignored. HKU\S-1-5-21-4039157630-3002777719-1478863617-1007\Software\ADV -> Adware.Generic : Ignored. C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL -> Adware.IESearch : Ignored. C:\WINDOWS\SYSTEM32\vtsqn.dll -> Adware.Virtumonde : Ignored. HKLM\SOFTWARE\Classes\CLSID\{E52DEDBB-D168-4BDB-B229-C48160800E81} -> Hijacker.Generic : Ignored. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e52dedbb-d168-4bdb-b229-c48160800e81} -> Hijacker.Generic : Ignored. HKU\S-1-5-21-4039157630-3002777719-1478863617-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E52DEDBB-D168-4BDB-B229-C48160800E81} -> Hijacker.Generic : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.2o7 : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.2o7 : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.2o7 : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Addynamix : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Bluestreak : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Burstnet : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Com : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Esomniture : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Liveperson : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Pointroll : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Questionmarket : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Ru4 : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Specificclick : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Specificclick : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Tacoda : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Tacoda : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Tacoda : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][1].txt -> TrackingCookie.Tribalfusion : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Yieldmanager : Ignored. C:\Documents and Settings\Craig Davis\Cookies\craig [emailprotected][2].txt -> TrackingCookie.Zedo : Ignored. ::Report end The log shows evidence of a fair amount of rubbish, some more serious than others. First ... go here and RUN through the process to remove Vundo .... http://www.bleepingcomputer.com/forums/topic18610.html When done update your AVG Anti Spyware to the latest definitions then scan your computer with it in safe mode. Save the log as you did before. Download a self-extracting copy of HijackThis from here ……. http://downloads.malwareremoval.com/hijackthis_sfx.exe Save it to your Desktop. Double-click on the file hijackthis_sfx.exe file and it will self-extract into its own folder …… C:\Program Files\HijackThis Go to this folder and run the hijackthis.exe file. From the menu click on "Do a system scan and save a LOGFILE". Copy and paste both the AVG AS scan report and the HJT logfile to this thread. Also let us know if you are experiencing any trouble. More specific removal INSTRUCTIONS will follow for anything that's causing problems. OJ

3230.	Solve : Best Fire Wall??
Answer» Advice please? Is Zone Alarm free a good fire wall? Is Jetico BETTER, or is there ANOTHER free one that you would recommend? Thanks for any advice. LINK to Jetico download (from Majorgeeks) below. http://www.majorgeeks.com/Jetico_Personal_Firewall_d4480.htmlI recommend Sygate Personal Firewall. It's free, powerful and doesn't slow your system as much as ZoneAlarm. Just my opinion.Here are links to some ... Zone Alarm > http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp?dc=12bms&ctry=US&lang=en&lid=nav_za Sygate > http://www.simtel.net/product.download.mirrors.php?id=53687 Kerio Firewall > http://www.sunbelt-software.com/Kerio.cfm Agnitum > http://www.agnitum.com/products/outpost/ m0n0wall > http://m0n0.ch/wall/ (I’ve heard good things about monowall but it takes some setting up, I believe) SMOOTHWALL > http://www.smoothwall.org/ Tiny Personal > http://www.webmasterfree.com/tpfw.html Outpost > http://www.agnitum.com/products/outpostfree/download.php [Footnote … the NORMAN Personal Firewall looks like it isn’t compatible with vista but this may change.] OJ

3234.	Solve : HJT?
Answer» I was wondering...where can I find a good HJT tutorial? It's such a useful program and we're all using it pretty frequently, so it'd be nice to know how to read the logs better. I can kinda get the main gist by looking at them and can sometimes spot things that shouldn't be there, but I don't quite fully understand everything involved.You could have a look, >here<, >here<, >here<, or >here<. Hope that helps. 8-)fffreakThanks a lot for the links. Those are super helpful. It's a lot of info and I'm a little tired, so I can't read it all right now, but what I've read so far has already cleared up quite a few questions I had. Thanks again; this is exactly what I was looking for.Your welcome, again easy to find when you're using Google.Sorry to go of topic but i have often wondered when sending a link how do i change the link to here or try this eg ?? You could have a look, >here<, >here<, >here<, or >here<. Hope that helps. Skyblue It is called BBCode, you can do this by... Code: [Select][url=http://www.google.com/]Google[/url]Thank you Now that tells me what its called,the question was how do i do it??? SkyblueI already told you . Code: [Select][url=http://www.google.com/]google[/url]He just showed you how. Use that code he posted as a guideline. Code: [Select][url=THE URL OF THE SITE YOU'RE LINKING TO]TEXT[/url] For example... Code: [Select]Please click [url=http://www.google.com]here[/url] Turns into... Please click here.CBMatt .... glad to hear someone else has caught the bug. With HJT it is imperative you remember old addage .... a little knowledge is a dangerous thing. The malware that you see in the log could be the tip of the iceberg. Much malware just hides deeper than HJT can see. Contrary to what some folk think HJT doesn't reveal everything. Far from it. There are free training places where you can learn the art of HJT fixing better than just "reading up" on it. Here are some of the best ..... TechSupprtForums "Academy" http://www.techsupportforum.com/tsf-academy/ Malware Removal "University" http://forum.malwareremoval.com/viewtopic.php?t=233 Tom Coyote "Classroom" http://forums.tomcoyote.org/index.php?showtopic=1421 Bleeping Computer "HJT Study Hall" http://www.bleepingcomputer.com/forums/topic4970.html Geekstogo "Geek University" (GeekU) http://www.geekstogo.com/forum/Would_you_like_to_learn_to_fight_malware-t4817.html SpywareInfo "BOOT camp" http://forums.spywareinfo.com/index.php?showtopic=34 You register at a school ... have a look round to see what's involved ... make your decision if you want to go ahead. You don't have to. There's no compulsion. Many people decide the committment's not there, it's too difficult or they simply haven't got the time. Oh yes .... to do it properly will take a lot of work and study but it will be worth it in the end. Happy hunting. OJThanks for all of the helpful links, oddjob. I'm looking into those sites right now. I'm busy with school, but I'm still interested in being adept with this program. I'm already starting to be able to point out CERTAIN things fairly quickly, which is nice. But of course, I still need more experience.With HJT follow what other experienced analysts do, google HJT entries and see what they indicate and, yes, do read up on those tutorials. They will give you an idea of what the entries can mean. The author wrote the main tutorial on which all others are based. You can read his tutorial here ... http://www.merijn.org/htlogtutorial.php When looking at other analysts' work you must not necessarily believe everything you read. Follow only the recommendations of people who are clearly correct in what they say. For example, if the analyst is a member of ASAP or is an MVP you can trust what they are doing. One small warning at the moment. In your research you may well see two programs being used when analysts fix HJT but which you must avoid at present.... Avenger and Combofix. Avenger involves writing specific instructions/code for the specific problem of the user in question. It's a VERY powerful tool and can easlily trash a system if someone else carries out the instructions. What I'm saying is that you can learn a lot by reading other analysts' fixes to problems but NEVER copy what they do with Avenger. At least not until you have more experience with HJT first. Combofix is a "point & shoot" tool. The user could d/l it, run it and it will fix many things without user intervention. It's very popular and easy to recommend to a user. HOWEVER, at the moment, the author of Combofix has pulled the tool from use. He has development problems with it. It must NOT be used for the time being. There are doubts as to whether the tool will ever return. Let us know what "training school" you choose. OJThis took me a couple of days because I've been super busy with school. But I finished up the MAJORITY of my current project, so I have a bit more time now. I looked around at the different sites and I think I'm going to give Geeks To Go a try. It seemed like the most appealing forum to me. So, I've submitted an APPLICATION. And now, I guess I WAIT to see if I get accepted or not. By the way, I've found another really helpful tutorial... http://hometown.aol.co.uk/jrmc137/hjttutorial/tutorial.htmYes, Matt, that is also a useful HJT tutorial. All these tutorials will be based on Merijn's own master copy but perhaps some are easier to follow. If in any HJT entry gives you doubt ... check with Merijn's one and research what other recognised analysts do with a given entry. Best of luck with your G2G application. I have no doubt you will be accepted (although do let me know if there's a problem). Happy bug hunting! OJJust to let you know, I've been accepted and I'm currently working on my first practice log. I haven't received any feedback yet, but I'm confident that I did well. My girlfriend is totally making fun of me, but I'm determined to do well in this. I'm already working on some of my canned speeches. Heh. Oh, and thanks for your help via PM. I'm downloading the two anti-malware programs you suggested and I'll run them as soon as they're done. Yay for dial-up... I'm going to have to get some sleep pretty soon because I have class in a few hours, so I might have to let you know how it goes later today.

3221.	Solve : need help finding and deleting a link for a virus?
Answer» we have been trying to find a link for days now. we think it may be a virus from an EMAIL. our computer will slow down, freeze up, and states " internet explorer CAUSED an error, and also says SHPRRPRT.DLL." we have tried to find this link or file but everything says that "link/file" is not found or will not let us OPEN a program to find it. PLEASE HELP!!!!! What antivirus and antispyware protection are you using? Try it ALL in safe mode with system restore turned off and post back.war3006....... This spyware BHO (smrtshpr.dll) is related to SmartShopper Have you run your anti virus and your antispyware APP from safe mode ? A good antispyware to try is the AVG antispyware ...... get it at http://free.grisoft.com/doc/20/lng/us/tpl/v5 ...make sure to get the latest updates. Please post a hijackthis log here for us to have a look at ...... after you have run the above mentioned scans. dl65

3223.	Solve : OMG PLEASE HELP ME PLEASE!!?
Answer» ok, im on my laptop and i had a bunch of apps running, and i was very frustrated, so i just turned it off, well, then i turned it BACK on and this black screen keeps SAYING that i can reboot my comp, but it is running very SLOW, and sometimes my computer works but it is super slow, and i think i have a virus, but how do i get rid of it pLEASE HLEP MEPlease see below.Sometimes it helps to turn the computer off, unplug it (to MAKE sure everything is off). Wait a minute or two then plug it in and reboot.Turn the light off....

3225.	Solve : AD-AWARE SE PROBLEM?
Answer» Heu Guys Just started having this problem today, when I run Adaware it stops when it GETS to CLSID whatever that is. Every time I cancel and restart it stops at the same file again, any ideas?Its happen to me b4 is probly a virus stopping you from opening the file. Ad Ware Se Detects about 25% of the Adwares on your computer I use to use it. When I used a diffrent Ad Ware Program it detected 50 sometihng out of the 18 Ad Ware SE found. I suggest getting a AV like AVG or MCafree run a scan if you cant install it, itss because the virus or trojan is preventing you from installing it. If this does happen.Save everytihng in a USB or Disk and REBOOT your computer from the begining if you have WINDOWS XP press F10 when the computer starts and the computer will begin to reboot everything now you WONT have any Trojans,Viruses,Worms,Adware,Spyware,or any other malicious program.When CLSID is showing it is checking the registry. It is not unusual for AdAware to "appear" to be stopped when it fact it is not. How much time do give it before deciding it is stopped? When this happens, watch the "items checked" for a few minutes to see if it changes.Some good advice here but, if you continue to have trouble, try this ..... Download Ewido/AVG Anti Spyware from here (this prgram will also remove adware) …. http://www.ewido.net/en/ It has a FULLY working 30 day trial period. Install it and update it to the latest definitions. Do NOT use it yet. Now boot to safe mode. Here’s a “how to” if you’re not sure .. http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406 When in safe mode run a full system scan with AVGAS and let it fix what it wants to. REMEMBER TO SAVE THE SCAN REPORT and also remember where you saved it. [FOOTNOTE > this is a good program to use as an “on demand” scanner even after the trial period is over. Keep it updated and use it to scan your computer from time to time]. ---------------------------- If this doesn’t succeed in fixing the problem download a self-extracting copy of HijackThis from here ……. http://downloads.malwareremoval.com/hijackthis_sfx.exe Save it to your Desktop. Double-click on the file hijackthis_sfx.exe file and it will self-extract into its own folder …… C:\Program Files\HijackThis Go to this folder and run the hijackthis.exe file. From the menu click on "Do a system scan and save a logfile". Copy and paste both the AVG AS scan report and the HJT logfile to this thread. More specific removal instructions will follow for whatever it is that's causing the problem. OJ

3226.	Solve : Sandboxie 2.79.3 Beta?
Answer» Any opinions or views on Sandboxie 2.79.3 Beta? I have seen it as a download on majorgeeks and wondered if it was WORTH installing it, but don't WANT to make the same mistake as I did with spyware terminator which caused more problems than it cured. Thanks for any replies. Link to Sandboxie 2.79.3 Beta below. http://www.majorgeeks.com/Sandboxie_d4993.htmlIt has been running on my benchtest machine for a few weeks now...no issues to report as of yet. PATIO. 8-)Thanks Patio. I will give it a couple of weeks and if you have not posted any problems about it will give it a TRY.

3229.	Solve : Aplication close unexpected..pls help me?
Answer» Dear Experts, On my Windows XP SP2....when I clicked on "Add Remove Program" on Control Panel, the new pop up window of "Add Remove Programs" appeared as normal...but I dont know why it close automatically without any orders...ANOTHER same case, time and situation, even the same for some application...for instance, when I open application of Windows Fax Viewer, the application close automatically still without any orders....I have no idea what was going on... anyone can help me please what is going on and how to fix this matter? and what the name of the virus or something is please? Thank's a lot for your HELPS.. NatashaTry this...go to Start / Run and TYPE in sfc /scannow and hit Enter...have your XP CD handy.Hi, Thank you for your advice. I already follow your steps but still did not WORK. When I open an application CALLED "Window Pictures and Fax Viewer", it opened but when I press any button, suddenly close...any other solution for me pls? Natashabut do you have a windows cd? and what protection are you using? unlovedwarrior

3240.	Solve : Bots on my devices?
Answer» My laptop has a bot and I suspect my iTouch and Dsi to have one to. My laptop won't even GO on the interent anymore. All of these DEVICES had recieved warnings to from comcast SAYING malicious software detected. I have very little knowledge of these things and am going insane. So patience would be suggested.... It's scary when a Dsi is infected because it's the least suspected to me. Desperate help. Well, for the laptop, you could start at download.com to get your anti-spy free protection. Pc Tools is pretty reliable, so is AVG... Download DDS from HERE or HERE and save it to your desktop. Vista users right click on dds and select Run as administrator (you will receive a UAC prompt, please allow it) * XP users Double click on dds to run it. * If your antivirus or firewall try to block DDS then please allow it to run. * When finished DDS will open TWO (2) logs. * Save both reports to your desktop. * The instructions here ask you to attach the Attach.txt. 1) DDS.txt 2) Attach.txt Instead of attaching, please copy/past both logs into your Thread Note: DDS will instruct you to post the Attach.txt log as an attachment. Please just post it as you would any other log by copying and pasting it into the reply. •Close the program window, and delete the program from your desktop. Please note: You may have to disable any script protection running if the scan fails to run. After DOWNLOADING the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet. Information on A/V control HERE .Then post your DDS logs. (DDS.txt and Attach.txt )

3242.	Solve : Checking out downloaded file?
Answer» HEY guys, I just downloaded a rar file for a program, and unzipped it to get a .exe file. Before i run it, tho, I want to know if it's virus free. I already scanned it with my antivirus program, but is there ANYTHING ELSE I can do? I'm using a laptop running windows VISTA, and I have AVG free edition 2011 P.S. sorry for the noobish postWhat is the file and from where did you obtain it?

3244.	Solve : Foreign factory infection computer products, more?
Answer» A little more from the CIA computor security retiree. " Hi _______, I just returned from Office Depot looking at their all-in-one printers. The Brother 5895CW you were interested in from Costco illustrated in their latest flyer is "Made in China". The problem with that is the special agreement that the Intel services in China have with local computer/printer manufacturers. They get Government money/assistance/sponsorship for allowing their Intel service to insert packages into outgoing ELECTRONICS. (per Wiki-leaks DOS cable traffic). The below news release confirms that relationship. It would be nice if US company's would accept accountability for this problem, or hold China accountable. That hasn't happened yet. Alternately, Office Depot has All-in one printers from Epson that are made in Indonesia. There is a MUCH better relationship between the US and Indonesia for producing products at this time. The equivalent all-in-one appeared to be the Epson Workforce 520 for approximately $129.00. I helped my buddy in Tucson install his Epson all-in one printer and he just confirmed to me that he is happy with it's capability, and he apparently has no adverse side effects from the installation. (unlike some HP all-in-ones that produce unpredictable on line behavior) Cheers, xxxxxxxxxxxxxxx U.S.official says pre-infected computer tech entering country By M. Alex Johnson, msnbc.com reporter Confirming years of warnings from government and private security experts, a top Homeland Security official has acknowledged that computer hardware and software is already being imported to the United States preloaded with spy ware and security-sabotaging components. The remarks by Greg Schaffer, the Department of Homeland Security's acting deputy undersecretary for national protection and programs, came Thursday during a tense EXCHANGE at a hearing of the House Oversight and Government Reform Committee. The PANEL is CONSIDERING an Obama administration proposal to tighten monitoring and controls on computer equipment imported for critical government and communications infrastructure. Schafferdidn't say whether the equipment he was talking about included end-user consumer tech like retail laptops, DVDs and media players. If so, his comments,first reported Friday morning by Fast Company, would be the first time the United States has publicly confirmed that foreign consumer technology is arriving in the country already loaded with nasty bugs like key-logging software, botnetcomponents and even software designed to defeat security programs installed on the same machine. """Charlie361, Without references, your post has zero value. I just bought a hammer made in china. Do you think it will attack me? LOL please provide sources or references Or simply boycott all china products LOL I mean, come on man. Can this "contact" of yours not provide anything but some dilettante rambling?The phrase "made in china" will soon become an awesome cliche.

3245.	Solve : Imported computers infected at factory?
Answer» I know not Linux and did do a hijackit and saw nothing to be worried about in the search. I fear the bug MAY have come not from the factory, but MAYBE when I VISITED a mainland China site once. Just do not now REMEMBER having the problem from the getgo when I bought the printer. If only there was someway I could get rid of the xerox showing up in the add hardware option in "PRINTERS and Scanners" I might be free of the problem. It will not be moved..

3246.	Solve : Windows is not letting me access logs from Malwarebytes Anti-malware?
Answer» After scanning with Malwarebytes Anti- malware a message will pop up saying : Windows cannot access the specified device , path , or FILE . You may not have the appropriate permissions to access item . : ...................................... Then if i try to view the log it will say the same thing .... That was the only problem i had . Until i tried to do something i found in your forum that seemed to be the same problem ..... But it said i had to disable my anti virus (AVG)2011 free edition to use Combo fix . Well i tried to uninstall it and use the remover and NOTHING seemed to change .. except it wouldn't let me enable AVG again or install anything from AVG .... it now has a error message ............... I have been at this for about 2 days and i don't know what else to do . Thank you to all that respond . [recovering disk space - old attachment deleted by admin]SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 07/18/2011 at 04:44 PM Application Version : 4.55.1000 Core Rules Database Version : 7419 Trace Rules Database Version: 5231 Scan type : Complete Scan Total Scan Time : 01:40:47 Memory items scanned : 594 Memory threats detected : 0 Registry items scanned : 7855 Registry threats detected : 0 File items scanned : 156874 File threats detected : 60 Adware.Tracking Cookie .doubleclick.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .imrworldwide.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .imrworldwide.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .adserver.adtechus.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .kontera.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .anrtx.tacoda.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .xiti.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .tacoda.at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .tacoda.at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .tacoda.at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .tacoda.at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .tacoda.at.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .ar.atwola.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] ad.yieldmanager.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .legolas-media.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .legolas-media.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] segment-pixel.invitemedia.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .invitemedia.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .invitemedia.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .invitemedia.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] ad.yieldmanager.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .statcounter.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .atdmt.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .atdmt.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .media6degrees.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .media6degrees.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .media6degrees.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .media6degrees.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .collective-media.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .mediaplex.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .mediaplex.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .apmebf.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .revsci.net [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] dc.tremormedia.com [ C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cookies ] secure-us.imrworldwide.com [ C:\Users\Administrator\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\2DJPKFNP ] .at.atwola.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .advertising.com [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] .doubleclick.net [ C:\Users\andrewwspike\AppData\Local\Google\Chrome\User Data\Default\Cookies ] Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:29:22 PM, on 7/18/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Synaptics\SynTP\SynTPStart.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Users\ANDREW~1\AppData\Local\Temp\RtkBtMnt.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Launch Manager\QtZgAcer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Intel\Intel Matrix STORAGE Manager\IAAnotif.exe C:\Acer\Empowering Technology\eAudio\eAudio.exe C:\Windows\vsnp2std.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Trend Micro\sniper.exe\sniper.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/http://www.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/http://www.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/http://www.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsearcher.com R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/http://www.yahoo.com O1 - Hosts: ::1 localhost O2 - BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\ADOBE\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: BHO Project - {cbc5b60a-aa4d-45f6-84c2-d086f320299a} - C:\Program Files\Object\bho_project.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe" O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [SIDEBAR] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [DelayShred] c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q C:\Users\ANDREW~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\Content.IE5\UVXD44UR\TRYWOW~1.SH! (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [DelayShred] c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q C:\Users\ANDREW~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\Content.IE5\UVXD44UR\TRYWOW~1.SH! (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{97A8E8FE-42F1-4B7D-B22B-63782E7C2BE0}: NameServer = 208.67.222.222,208.67.220.220 O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - (no file) O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O18 - Protocol: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe O23 - Service: Google Update Service (gupdate1ca93bd2bfc4dd1) (gupdate1ca93bd2bfc4dd1) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- End of file - 8094 bytesok found the problem .... no virus .... just note pad wasn't set to always use this file type . .... now to reinstall AVG

Explore topic-wise InterviewSolutions in .

Solve : do i still need a firewall/antivirus??

Solve : Computer Fails To Start Up AFTER Threats Removed. HELP!?

Solve : Is this threat a false positive by avg 2012 free??

Solve : Removing BearShare applications?

Solve : How can I get rid of sality.nba virus ??

Solve : Gateway Blue Screen?

Solve : How to do the DOS attack??

Solve : Antivirus Test Labs?

Solve : SVCHOST.exe or Newfolder.exe?

Solve : What are these eroors in Event Viewer?

Solve : how can I get rid of sality.nba???

Solve : Problem with "welcome to nginx" and website logins?

Solve : "..." not a valid Win32 application, The application or DLL not valid windows im?

Solve : Computer processing noises are driving me crazy?

Solve : Computer acting weird and no Internet Access?

Solve : Computer classroom always virus infected.?

Solve : major problems with computer speed. Need big time help?

Solve : Windows 7 Computer Turns Off Every Time ANY Folder Is Opened?

Solve : Computer turning off and desktop icons not showing?

Solve : **UPDATE ON WINFIXER FAMILY OF MALWARE**?

Solve : need help finding and deleting a link for a virus?

Solve : AVG Free Edition?

Solve : OMG PLEASE HELP ME PLEASE!!?

Solve : Help please XP! Analyst of Hijackthis?

Solve : AD-AWARE SE PROBLEM?

Solve : Sandboxie 2.79.3 Beta?

Solve : log of my computer anti spyware results?

Solve : IE7 Running Slow?

Solve : Aplication close unexpected..pls help me?

Solve : Best Fire Wall??

Solve : Freezing at start-up?

Solve : How to find a backdoor?

Solve : Newdotnet infection - how??

Solve : HJT?

Solve : Virus or I did something wrong?

Solve : Win32/Rustock.gen!C virus HELP!!?

Solve : Please have a look?

Solve : Big infection! Can't stop it!?

Solve : Need the most advanced spyware?

Solve : Bots on my devices?

Solve : Imesh problems - please help?

Solve : Checking out downloaded file?

Solve : sending emails at 2 am?

Solve : Foreign factory infection computer products, more?

Solve : Imported computers infected at factory?

Solve : Windows is not letting me access logs from Malwarebytes Anti-malware?

Solve : nod32 update?

Solve : Hijacked cookies.sqlite in Thunderbird?

Solve : My Windows 7 Computer is infected with Win7 Security 2011?

Solve : Uninvited guests...Exploit:Win32/pdfjsc.PC and VIRtool:JS/Obfuscator.BN?

Solve : UPDATE ON WINFIXER FAMILY OF MALWARE?

3247.	Solve : nod32 update?
Answer» how can i update my nod32 @ where can i get updated files? thank yoy all.If you have an Internet connection on your computer with Nod32, just open the Nod32 then CLICK on "Update now". See SAMPLE screen-shot. [recovering disk space - OLD ATTACHMENT deleted by admin]