Posts by DMR

The Registry key you mentioned exists in XP, but I'm not sure if it existed in 98. I don't have a 98 machine running at the moment, but this tip from mvps.org might help:

Applications can be removed from the Open With dialog box. There is a list of applications stored in a registry key that are removed from the open with list.
Steps to Remove a Program from the Open With... Dialog Box

• Click Start - Run...
• Type regedit into the Run dialog box
• Navigate to the following key
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\FileAssociation
• In the right hand pane double click the value named KillList
• This will bring up a dialog box with the contents of the KillList. This is a list of applications seperated by semicolans
• Press the End key to place the cursor at the end of the list, type a simi-colon followed by the applications filename and extension.
• This is a sample kill list %1;explorer.exe;dvdplay.exe;mplay32.exe;msohtmed.exe;quikview.exe;rundll32.exe

Nope- just a weird Californian, with a weird thing for Wombats. And Moose.

I just love the Google ads that are showing for this page:

Stuffed Wombat

I WANT ONE!!!!!!!

Seriously- I've been trying to find a stuffed (toy, of course) Wombat, but U.S. stores just don't seem to stock them. Gee- go figure.

I even had one of our Australian members offer to send me a stuffed Wombat as a thank you gift for helping him fix his 'puter, but it just didn't happen. :sad:

faulting module shellexecutehook.dll, version 7.5.0.47

shellexecutehook.dll is a component of the AVG Anti-Spyware program; it either got corrupted, or there's something it conflicts with on that particular computer. Uninstall the AVG program and see what happens.

I'm not going to have my forum run by a bunch of wombats! There's no way that's happening, folks!

Too late- my plan for World Wombat Domination is already well and smoothly underway..... MUUUUAAAAAHAHAHAHA!!!!!!!

I like rabbits, particularly the evil Monty Python kind :cheesy:

Death awaits you all, with great, big, pointy teeth!! Ni!

It's right where it should be... you're just too quick on the draw! :D

In light of some recent snufflings through our underbrush by a certain marsupial (that would be me), our member niek_e suggested that someone should start a poll to find out what the DaniWeb community really thinks about Wombats. I couldn't agree more, so here's the poll.

Go ahead- tell us what you think of Wombats, and better yet- if you have a favorite animal, tell us why that animal kicks Wombutt!

:)

Maybe someone should start a poll to find out what people think about wombat's ;)

Niek

... and maybe someone is about to do just that. ;)

DMR can't 'alter' polls anymore.

Well, I still can, but then Dani would spank me pretty hard and... hmmm, wait a minute... :mrgreen::mrgreen:

It's more of a tradition for polls in the Geek's Lounge as the 'no opinion' answer. ;)

Yeah, that was about the size of it- just a few drops of levity in this churning sea of technicality; I'd never muck with a serious post.
But, as it turns out, it seems that a "Ricky vs. Enrique" poll is a serious post. ;)

I'm tempted to elaborate on my *cough* feelings about this, but I won't...

Hi sheurwayne,

Your HJT log shows the presence of the "WebDir" adware parasite. It also indicates that you have downloaded (perhaps not knowingly) the bogus "ErrorGuard" program, which you should not install. ErrorGuard is a malicious piece of adware which masquerades as a helpful utility program.

** Note that your log also indicates that you are running two antivirus programs concurrently (AVG and McAfee), and this is not advised because the two programs can conflict with each other. It is OK to use McAfee's firewall utility with AVG's antivirus, but choose only one of antivirus programs and uninstall the other.

Please do the following:

You will need to close/quit all web browser programs and disconnect from the Internet for some of the following, so you should print out the following instructions or save them into a text file with Notepad.

1. Download ATF-Cleaner and save it to convenient location.

2. Download the free version of AVG Anti-Spyware (formerly ewido). Save the installer file to your desktop or any convenient folder.

* Run the installer, accepting the default options. Run the program once installed, click on the Update icon at the top of the main AVG window, and allow the program to download the most current components.

* Close AVG once the updates have been downloaded.

3. Run a new HijackThis scan, put a chekc in the boxes to the left of …

The updates, the infections, or both could have something to do with it. Try this:

Open the Event Viewer utility in your Administrative Tools control panel and look through your System and Application logs for entries flagged with "Error" or "Warning", especially those whose time-stamps coincide with the occurence of the problem(s). Double-clicking on such an entry will open a properties window with more detailed information on the error; post the details from a representative sample of some of the different error messages (please don't post duplicates of a given entry, or flood us with the entire contents of the logs).

To post the details:
In the Properties window of a given entry, click on the button with the graphic of two pieces of paper on it; the button is at the right of the window just below the up arrow/down arrow buttons. You won't see anything happen when you click the button, but it will copy all of the details to the Windows clipboard. You can then paste the details into your next post here.

Hey- it ain't my butt the feds will be lookin' for. :mrgreen:

WinAntiVirus is a member of the "Vundo" family of parasites, so let's try this:

Please download VundoFix.exe to your desktop.

• Double-click VundoFix.exe to run it.
• Click the Scan for Vundo button.
• Once it's done scanning, click the Remove Vundo button.
• You will receive a prompt asking if you want to remove the files, click YES
• Once you click yes, your desktop will go blank as it starts removing Vundo.
• When completed, it will prompt that it will reboot your computer, click OK.
• Please post the contents of C:\vundofix.txt even if Vundofix found no infected files.

Note: It is possible that VundoFix encountered a file it could not remove. In this case, VundoFix will run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button" when VundoFix appears upon rebooting.

You're welcome- glad we could help :)

If you do decide to buy an ATA controller card, I'd suggest one of models made by Promise Technology.

OK- let's get a "second opinion" on the state of your system:

You will need to close/quit all web browser programs and disconnect from the Internet for some of the following, so you should print out the following instructions or save them into a text file with Notepad.

1. Download ATF-Cleaner and save it to convenient location.

2. Download the free version of AVG Anti-Spyware (formerly ewido). Save the installer file to your desktop or any convenient folder.

* Run the installer, accepting the default options. Run the program once installed, click on the Update icon at the top of the main AVG window, and allow the program to download the most current components.

* Close AVG once the updates have been downloaded.

3. Reboot into Safe Mode (you get to the safe mode boot option by hitting the F8 key as your computer is starting up).

* Double-click ATF-Cleaner.exe to run the program.
- Click the Main menu option.
- Check the Select All box. (Uncheck cookies if you do not want them removed).
- Click the Empty Selected button.

If you use Firefox browser:

- Click the Firefox menu option.
- Check the Select All box. (Uncheck cookies if you do not want them removed).
- Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, click No at the …

My apologies. I'm new here. ;)

No problem- I've moved this to the correct forum. :)

All I know is that in my computer, I have 2 hard drives already installed, and 2 CD drives. Both ribbon cables only allow 2 devices. I have the space for another hard drive (IDE), but how would I install it if there are no more slots for a ribbon cable?

If you have the physical space to mount another drive, but both IDE channels/cables already have 2 drives on them, you will need to install an [search]Ultra ATA controller card[/search]. These are PCI add-on cards which (usually) have 2 IDE channels of their own, allowing you to connect up to 8 IDE/ATA devices total. Of course, an external Firewire or USB drive is also an option.

The causes of the specific error you're getting run the gamut from certain Windows updates being incompatible with certain machines (often Dell machines) to backdoor trojan infections. Although it may be a possibility, I've personally never seen a direct link between that particular BSOD and tunneling.

Unfortunately, you might want to call the company IT dept on this one, as it is their laptop.

Now with the wireless... although it is expected, viruses, worms, and trojans have not really hit. Gee, am I thinking correctly?

Ahh... I think I see where you're coming from. If you're talking about infections hitting wireless devices such as cell phones and PDAs, then yes- those are very rare at present, but it is expected that they will become more prevalent as cell phones and other messaging devices become more complex and "feature-filled" (because more "features" means more flaws to exploit). Malicious hacking attacks on these devices will become more common as well.

Viruses and spyware don't care about the network medium over which they are transmitted. That is, they don't care if they travel through physical wiring or over wireless connections. The foregoing is actually most applicable to viruses, as spyware programs themselves technically doesn't spread (although infections that carry spyware as their payload certainly can propagate from machine to machine). In terms of protecting against viruses and spyware, implementation of the protection is, for the most part, the same on both wired and wireless networks.

Security hacks/breaches/exploits, however, do vary with the different physical transmission media, and wireless networks have more issues/weaknesses in this regard than do wired networks, because wireless transmissions are easier to intercept/interact with than are hard-wired networks.

If you can be a little more specific as to what types of attacks/defenses you're thinking about, I'm sure we can give you more specific info.

Boot into the BIOS setup again and make sure that both the hard drive and CD-ROM drive are being correctly identified by the BIOS. The fact that it's bypassing CD-ROM boot, combined with the "OS not found" error, might indicate a lower-level (BIOS) problem with your IDE devices.

we may have different Hijackthis logs

Good call- yes, every HJT log will differ slightly, because everyone's computer is configured differently, and because many infections use randomly-generated filenames.

Your log definitely indicates a few "nasties" (including the "VirusBursters" infection responsible for the fake critical system warnings), but there's something you need to take care of first:

C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

The log entry above indicates that you are running the HijackThis.exe program from within the downloaded HijackThis.zip download package. You are also running HJT from within a Temp/Temporary downloads folder.
One of the normal steps in eliminating malicious programs is to entirely delete the contents of all Temp folders. Given that, if HijackThis (and other data that you care about) is living in those Temp folders, it will be erased along with everything else!

Please do the following:

* Create a folder for HJT outside of any Temp/Temporary folders. A folder such such as C:\HijackThis or C:\Spyware Tools\HijackThis will do.
* Right-click on the HijackThis.zip folder and choose the "Extract all..." option from the resulting drop-down menu. This will start Windows' Folder Extraction Wizard. Click the "Next" button to start the wizard.
* In the next window, click on the "Browse" button. In the destination selection box, navigate to the new folder you created for HJT, hilight it, and click "OK".
* Click "Next", and then click "Finished"; a window dispaying the newly-extracted hijackthis.exe file should open.
…

*Pop!* is obviously not a Good Sound; it could mean that a component did blow up. If you're lucky, it was only a component in the power supply (power supplies are cheap and easy to replace).

The general troubleshooting drill for a non-starting machine is this:

* Disconnect all peripheral devices (printers, USB devices, etc.) and see if removing those items has any effect on the problem.

* Open the computer's case and:
- Remove and then firmly reseat the RAM modules.
- Do the same for all PCI cards.
- Check all power and data cable connections on the motherboard and all internal devices. Make sure the cables are firmly seated into their respective connectors.
- Look for (and smell for) signs of shorted connections, damaged chips, etc.
- If you have (and know how to use) a voltmeter, check the internal power cables to see if they're supplying any kind of voltage. Normal, healthy voltages you'd expect to find on the different connectors would include 12V, 5V, and 3.3V.

* If you detect no physical signs of damage and have verified that the connections/cables are OK, but the system still does not boot:

Remove/disconnect all non-critical internal components and external peripheral devices. In other words, pare the system down to: the boot drive, 1 RAM module, the video card, mouse, keyboard, and monitor. If the system boots normally with that minimal configuration, reconnect the removed components one at …

Although WinAntiVirus is a well-known "nasty", your HJT log shows no evidence of it whatsoever. As a matter of fact, the log looks very light on content in general; did you do your scan while booted in Safe Mode?

Moved to the Virus Zoo.... :D

...what I want to do is have a section where the members can submit there video or picture materials they've made to my site.

*cough!* *copyright* *cough!* :mrgreen:

Open the Event Viewer utility in your Administrative Tools control panel and look through your System and Application logs for entries flagged with "Error" or "Warning", especially those whose time-stamps coincide with the occurence of the problem(s). Double-clicking on such an entry will open a properties window with more detailed information on the error; post the details from a representative sample of some of the different error messages (please don't post duplicates of a given entry, or flood us with the entire contents of the logs).

To post the details:
In the Properties window of a given entry, click on the button with the graphic of two pieces of paper on it; the button is at the right of the window just below the up arrow/down arrow buttons. You won't see anything happen when you click the button, but it will copy all of the details to the Windows clipboard. You can then paste the details into your next post here.

when i click on a window of IE is open on "VirusBursters" sites:?:

The VirusBursters infection is one of Smitfraud family of "rogue" antispyware product parasites. Removal instructions can be found here.

Entirely disabling the RPC service will pretty much render the local machine useless. The RPC service should be set to "Automatic", and the RPC Locator service should be set to "Manual".

Network exploits involving RPC are a different story- you should take steps to secure [search]vulnerable RPC ports[/search].

Questions regarding secure logins are pretty popular here (and on Google as well). There are different causes for the symptom(s), and therefore different "fixes"; here are a couple of suggestions:

1. One cause of secure login problems lies with security-related .dll files, and the following steps should fix that problem. Even if it turns out that your particular problem lies elsewhere, it won't hurt anything to perform this fix:

* Download the attached IERegsvr.zip folder and save it to your desktop.

* Double-click on the IERegsvr.zip folder on your desktop; a window displaying the enclosed IERegsvr.bat batch file will open.

* At the top left-hand corner of the window displaying the batch file, click on the "File" menu option. In the resulting submenu, click the "Extract All..." option. This will start the "Compressed (zipped) Folder Extraction Wizard".

* In the Wizard, don't worry about or change any of the settings that appear, just click the "Next" button, click the "Next" button again, and then click the "Finish" button. A new window displaying the IERegsvr.bat file will open.

* Double-click on the IERegsvr.bat file to run it. Just follow the file's prompts from there to apply the fix.

2. Other possible fixes can be found in the threads returned by the following keyword searches: [search]hotmail secure[/search] [search]hotmail login[/search].

You may get better answers at
Search Engine Optimization forum

And so, to that far off land we now travel...

Glad we could help :)

I thoiught myself that it was the regional settings, so reset this earlier.

Did you dig deeply enough in to those settings?:

* Open the Regional and Language options Control Panel.
* Click on the Languages tab.
* In the Text services and input languages section, click the Details... button.
* In the Settings tab, set the default input language to your language.
* In the Installed services section, configure the keyboard options such that only the keyboard device and input language listed are those which are correct for your particular system.
* Click OK to apply your changes and close the Details window.
* Click OK again to close the Control Panel window.

[IMG]http://i59.photobucket.com/albums/g299/JP583625/wsMJHXjhqCUl9K4VoRmwubpuDj78.gif[/IMG]

No tensions here, just gettin a feel for the locals.....:cheesy:

lol ...and that little sign you posted is supposed to make me feel more secure about that, right? :mrgreen:

You've obviously changed the setting from american style keyboard to english style or vice versa.

Go to control panel > regional and language settings.

From English (UK/Ireland) to US, judging from boanerges' description (a US keyboard has no monetary "pound" sign).

Try pressing shift + control, that works for me. I think it's some sort of shortcut to changing the keyboard.

Yes- it's a shortcut to switch between available keyboard layouts.

*AHEM*

A suggestion from your friendly neighborhood moderator:

Play nicely folks. I sense a little tension in this thread; let's not let it turn to flame...

TIA

[IMG]http://www.stevewolfonline.com/Downloads/DMR/Visuals/Smilies/nono.gif[/IMG] Do not post links to dating sites in our forums ! [IMG]http://www.stevewolfonline.com/Downloads/DMR/Visuals/Smilies/nono.gif[/IMG]

Doing so skates on the very hairy edge of violating more than one of our posting rules.

The discussion itself is fine, but the links are not. I've given the benefit of doubt here and only removed the links, but further link posting will result in post deletions and infractions.

- Thanks.

Rich, was I ever glad to find you!

You might not get a response from richh, given that his reply was posted more than two years ago. :cheesy:

Power supplies are easy to replace; it's usually just a question of fiddling with a few screws and connectors, as the power supplies themselves are self-contained boxes which just slide into the inside of the machine.

A search for the keywords [search]emachines "emonster 500" "power supply"[/search] should help you find the right supply.

Hmm...What have you been smoking lately Wolfie ?

Rumor has it he's been snorting lines of "C"... :mrgreen:

Apparently horn blowing is infectious. :cheesy:

Yeah- certain *ahem* other members were having so much fun doing it that I thought I'd give it a try.

Damn... talk about ripping off someone else's title ;)

Absolutely, intentionally, and blatantly. :mrgreen:

Eek- it's post #7,000! My, how the time flies........ :mrgreen:

I have asked a mod to move this thread to Tech Talk since I think that is a more appropriate place.

And so off we go to the Windows Software forum; buckle up............

First of all, you should verify that the firewire drive is working properly by trying to boot another computer from that drive.

.... tried to boot from disk drive by holding down C ....

That command forces a boot from the CD-ROM only.
* Try holding down the Option/Alt key instead. That should bring up a list of the recognised bootable devices on your system, from which you can choose the external drive.
* Another option: simultaneously press Command+Option+Shift+Delete while booting. This forces the Mac to bypass the internal drive and search for another boot device.

.... have now replaced hard drive with original drive (came with computer) ....
get flashing ? alternating with mac icon...

Please be more clear: You replaced which drive with the "original"? The internal boot drive, or the drive in the firewire enclosure?
The flashing "?" means that the system sees the disk, but can't locate the boot files. Are you positive that this drive is in bootable, working condition?

If it's a question of having to "fix" multiple posts for a relatively minor issue such as text size/color/style, and the poster has been advised of the correct way to post in the future, it's OK to let the existing posts stand as they are.

... That is, unless someone else on the staff is extremely bored, and wants to kill a little time "Text Twiddling" seven posts. :mrgreen:

For getting your post edited just press the "flag bad post" for all the posts which you have colored and give the reason as " I request the concerned moderator to please revert the colors back to normal. Thanks a lot for your help."

That should get the job done.

Oh, thaaaanks- now we've got seven requests for editorial cleanup lined up in the Reported Posts forum. Joy............. :eek: :mrgreen:

How do you block the ports this is driving me carzy thanks!

How do you Block the ports

The easiest way to block the ports in question is to download the Windows Worms Door Cleaner utility mentioned in one of the above posts. The utility lets you close different groups of vulnerable ports with the click of a button. Please pay attention to the caveats given here and in the utility regarding the effects that closing certain ports may have on your particular network.

Also see this post for more information on the problem.

Due to the fact that the source of the problem has been found, and a solution identified, this thread is now closed.

In accordance with our posting rules, other members having similar questions or problems need to start their own threads and post their questions there.
In order to help us help you most quickly, please include as much information about your problem as possible in your posts.

If the member who originally started this thread wishes to have the thread reopened, please send your request, including a link to this thread, to one of our moderators via email or Private Message.

Thank you.

You're welcome :)

8 out of 10... frightening.

That's a clean log :)