Posts by DMR

Thanks DMR, here is my new log:

You're welcome, the log looks clean now. :)

Being as privacy/security conscious as dlh6213, I'd whack Weatherbug as well, but if you're OK with the the fact that it is adware, the choice is yours.

I made sure that "view hidden files and folders" was selected

Did you also make sure "Hide protected operating system files" was deselected? Verify that and look for the file again. If you find it this time, look for the info in its Properties page as I instructed in my earlier post and tell us what you find there.

I'm not saying that the nhpf dll is definitely malicious, but I get very suspicious when I run across a filename for which no info whatsoever exist on the Net.

Additionally, I did find reference to the fact that paired "O18 - Filter: text/html" HJT entries with identical CLSIDs (the long alpha-numeric strings enclosed in braces) and .dll filenames, such as those that appear in your log, can be indicative of an infection by a variant of the CoolWebSearch trojan. Download the CWShredder utility from the link in my sig below, run it, and see if it finds/fixes any CoolWebSearch infections. Let us know the result.

Personally, if I could find no identifying information on the dll, I would have HJT fix the 018 entries, reboot into Safe Mode, delete the file (assuming I could locate it), and see if my deleting the file had any detrimental effect on the usage/workings of any of my legit programs. !! Please note, though: I am not advising you to do that !!

I am only saying that the above is what I, based on experience/intuition gained from having done …

The thing is that I'm not able to browse at all and perhaps this is not the only reason.

I don't see anything obviously nasty in your logs now, so perhaps you do have other issues in terms of your connectivity. Here are a few things you can check in that regard:

- It looks as though your computer is diirectly connected to your DSL modem; is that really the case? If so, check the modem's status using whatever configuration/utility sofware it came with. Verify that the modem reports a good connection to your ISP, and that it has obtained valid IP addressing and DNS server info from the ISP.

- If you connect to the modem through a broadband router, check its configuration/status as well.

- In your Start menu, click the "Run..." option, type "cmd" (omit the quotes) in the "Open:" box, and hit enter. In the resulting DOS window, type the following command at the DOS prompt:

ipconfig /all

In the statistics returned by the command, verify that your network adapter has been assigned valid IP, subnet mask, gateway address, and DNS server info.

- While still in the DOS box:

* Try to ping the local "loopback" address of your computer:

ping 127.0.0.1

* Try to ping the IP address that the ipconfig command reported for your network adapter:

ping IP_address_of_adapter

* Try to ping Google by its IP address:

ping

I got the message
"Spybot reports that you want to download "Avenue A, Inc.". This is a known threat. Do you want to Bloc this". I say "yes" to block it, but now everytime I open a new page I get this message. There's something sitting in my computer (this is the desktop now, not the laptop). The same is reported for something called "DoubleClick"

This is normal SpyBot behaviour. To have SpyBot block these automatically without asking you for confirmation, do the following:

- Open SpyBot and click on the "Immunize" option in the left-hand pane of the main window.

- In the right-hand pane of the resulting window, check the "enable permanent blocking of addresses in Internet Explorer" option box, and in the drop-down menu box below that, select "Block all bad pages silently"

I'm in California, so time difference is big :-)

I'm in Fairfax, CA, so time difference is not big. :mrgreen:

About your HJT log- I doubt the following entry is legit; have HTJ fix the entry unless you're absolutely sure that you should be running through a proxy server at telmos.net, because that's the name of the company to which the 212.48.49.94 IP address is registered:

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 212.48.49.94:8080

Proxy settings such as the above will have an effect on your browsing regardless of which actual web browser you use...

In addition to Ad Aware, also download/install/run SpyBot Search & destroy, CWShredder, SpywareGuard, and SpywareBlaster.

The following thread explains a bit more about the above utilities and the begin2search infection; follow the basic suggestions given in the thread and them post a fresh log:

http://www.bullguard.com/forum/9/help-with-nasty-trojans-please_5946.html

You're not clean yet, though- a new nasty has appeared in your latest log:

O4 - HKLM\..\Run: [Win Server Updt] C:\WINDOWS\wupdt.exe

Have HJT fix the above entry, reboot into safe mode, and do the following:

- Open Windows Explorer, and in the Folder Options->View settings under the Tools menu, select "show hidden files and folders", and uncheck "Hide protected operating system files".

- Delete the C:\WINDOWS\wupdt.exe file.

- For every user account listed under C:\Documents and Settings, delete the entire contents of these folders:

1. Local Settings\Temp
2. Cookies
3. History
4. Local Settings\Temporary Internet Files\Content.IE5

- Delete the entire content of your C:\Windows\Temp folder.

Note- If you get any messages concerning the deletion of system files such as desktop.ini or index.dat, just choose to delete those files; they'll be automatically regenerated by Windows if needed. Windows will allow you to delete the versions of those files which exist in sub-folders within the main Temp/Temorary folders, but might not let you delete the versions of those files that exist in the main Temp folders themselves; this is normal and OK.

- Empty your Recycle Bin.

- Reboot normally.

Post a fresh HJT log once you've done the above.

I didn't have to configure the sata drivesas raid in bios before installing windows -- however it is required to run linux.

Drives, as in plural? Everything you've posted so far indicated that we were only dealing with a single hard drive here; is that not the case?

OK- since you can now get back to the router's config pages, what info does the router's Status page give you for Login Type, Login Status, IP Address, Subnet mask, etc.?

Hi DandyAndy,

Our posting guidelines specifically indicate that members should not tag/piggyback their questions on to a thread previously started by another member (regardless of how similar the problems might seem). Not only does it divert the focus of the thread away from the original poster's problem, but it also makes it less likely that you yourself will get the individual attention that you need.

Please start your own thread in this forum and post your question there. For a full description of our posting guidelines and general rules of conduct, please see this page:

http://www.daniweb.com/techtalkforums/faq.php?faq=daniweb_faq#faq_rules

Thanks for understanding.

Changing the default IP of the router can make it impossible for your computer to access the router's configuration page after the changes unless you then reconfigure the IP settings on the computer from which you are connecting to the router accordingly. If done incorrectly, your router and your computer will essentially be on separate (logical) networks and will be unable to communicate.

Changing the default IP/etc. info on the router may be a bit of overkill at the moment, and since it will cause problems if not done correctly, let's put that aside for now and get your basic communication with the router restored:

- BTW: Is your Internet connection via cable, or DSL? If DSL, who is your ISP?

- If your reset of the router worked, you should be able to plug the router back in to the equation and access it at its default 192.168.1.1 IP address.

a) Power down the modem.

b) Reconnect the router to the modem and apply power to it. Let it stabilize (get through its power-up tests).

c) Turn on the modem and let it stabilize as well.

d) The computer that you want to use to access the router's configuration page should be connected to the router by an Ethernet cable, not via a wireless connection. Before connecting the cable between that computer and the router, set the TCP/IP settings in the Properties of the (wired) Local Area Connection network adapter …

1. Uninstall any Wild Tangent software and the WeatherBug program using the Add/Remove Programs control panel if possible; they have spyware/adware components.

2. Run HijackThis again and have it fix the following:

O2 - BHO: WebBar Class - {EE392A64-F30B-47C8-A363-CDA1CEC7DC1B} - C:\PROGRA~1\ADVANC~1\bar.dll
O4 - HKLM\..\Run: [WT GameChannel] C:\Program Files\WildTangent\Apps\GameChannel.exe
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0400.dll",cdaEngineMain
O4 - HKCU\..\Run: [Weather] C:\PROGRA~1\AWS\WEATHE~1\Weather.exe 1
O4 - Global Startup: MS Office.hta
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\PROGRA~1\AWS\WEATHE~1\Weather.exe (HKCU)
O16 - DPF: {0306F7BC-8EFB-4280-8512-461037071EBA} (pup.setup) - http://undergroundlair.net/ph/pup.CAB
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52...meInstaller.exe
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yah...utocomplete.cab
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} - http://download.abacast.com/downloa...asetup142f1.cab

I'm also suspicious of these, as I can find no info on the "nhpf.dll":

O18 - Filter: text/html - {385F7CF5-B52B-43C3-9CDB-41096438665B} - C:\WINDOWS\system32\nhpf.dll
O18 - Filter: text/plain - {385F7CF5-B52B-43C3-9CDB-41096438665B} - C:\WINDOWS\system32\nhpf.dll

Open Windows Explorer, locate nhpf.dll, right-click on it, and choose "Properties" from the pop-up menu. Look carefully through info in the General, Version, and Summary tabs of the Properties window to see if you can find anything pertaining to the name of the company which made the file or other descriptive information. If so, please post that info here.

Once you've had HJT fix the above, reboot into safe mode as crunchie described in his post and do the following:

- Entirely delete the C:\Program Files\WildTangent and C:\Program …

I have checked the this website: http://www.slipstick.com/outlook/share.htm
But as far as I can see, All the methods it mentioned, they concern the outlook instead of outlook express.

Sorry about that; I read your initial post too quickly, but yes- Outlook and Outlook Express are different beasts "under the hood"; solutions for Outlook will not necessarilly work for OE.

Is there any reason that you can't migrate to Outlook instead of trying to hack together a workaround for OE? A move to Outlook might prove to be a more efficient solution, as off-the-shelf programs already exist to give Outlook the functionality you need.

If you do wish to try the "home-brewed" solution, you should post your questions and needs regarding that in a new thread in one of our programming forums, as this forum is more meant for resolving issues with existing Windows applications.

can i copy my mp3s into a linux partition and play it just as i don in Win.

That will work, but an even more elegant solution (if you have the disk space) is to create a separate partition, formatted as FAT32, for your mp3s and any other data that you would like to access from both Windows and Linux. Linux fully supports reading and writing to FAT32 partitions, so if you centralize your shared data on such a partition, you won't have to keep separate copies of the data for use in Linux and Windows. If you just need to read data from a Windows partition, Linux does support doing so with NTFS partitions as well as FAT32, but writing to NTFS isn't really fully supported yet.

Also how do i assign space independently to ../ ../temp../internet and all??

You create separate partitions for each of them during the installation process; different distros have different installation routines, so the actual steps you need to take will depend on the specific distro you install. In general though, if you choose to perform a "Workstation" or "Basic" installation, the partitioning will be done for you automatically, and the distro's installation manual should tell you what that default partition scheme will be. However, if you perform a "Custom" install, or if the installer offers an "Advanced" partitioning option, you will be able to over-ride the default scheme and create whatever partitions you desire.

If you're up to it, I'd suggest doing …

I've got mandrake on right now with windows, but I forgot my password.

You can get around that by booting into rescue mode/single user mode and doing a bit of fiddling from there to reset the password. Links in the following G4L search have more instructions on that:

http://www.google.com/linux?hl=en&lr=&q=password+root+recover&btnG=Google+Search

pcpalct is on the right track- Outlook components themselves are not natively designed to be served/shared network resources. That funtionality is what Microsoft Exchange provides, but installing and maintaining an Exchange server isn't often practical for people with relatively small networks.

Adise from the possible solution offered by pcpalct, the following link offers more info and resources:

http://www.slipstick.com/outlook/share.htm

The consistency check doesn't necessarilly indicate that a disk error is the real root of the problem. The consistency check is automatically forced when Windows senses that it was shut down abnormally, but the reason for that shutdown could be one (or more) of many things.

Spontaneous shutdowns/reboots can be caused by anything from virus/spyware inspections to hardware failures. Can you give us more background info to go on?

1. When did this start happening, and had you made any hardware or software changes at about that time?

2. Have you scanned your system thoroughly for virus, spyware, adware, etc. infections?

3. Does the computer exhibit the problem when Windows is booted into Safe Mode?

4. Does the problem seem to occur only when you are running certain programs or performing certain tasks, or is it random (think carefully)?

5. Is it a thermal problem perhaps? Open the computer's case and make sure that all areas are free of dust/dirt, and that all fans are operating correctly.

6. While you've got the case open, check all of your cards/cables/connections. Make sure that everythig is seated firmly and correctly.

7. MAD_DOG may be right about the power supply or drive; it could also be some other component aside from those which is failing. Remove/disconnect any non-essential devices (network card, sound card, CD-ROM, etc.) one at a time. Also, if you have more than one RAM module installed, try them one module at a …

When you get the Blue Screens, do they give any Stop error codes? If so, post the full and exact code.

Keeps coming up with errors?

What exact errors?

The more specific information you can give us, the more quickly we'll be able to help you resolve the issue.

1. Try deleting all of your cookies if you haven't already; that error is sometimes cookie-related.

2. Do you get the error only in the AOL browser, or does it happen in Internet Explorer also?

He might even show you MAC address exclusions, but I would think that is excessive for what you want to do.

lol. Actually, being a paranoid bugger, I am going to throw MAC filtering in there!

Most of the configuration is done in the router's setup utility, so open your web browser and point it to http://192.168.1.1, which is the default IP for that model of router.

Speaking of "defaults", it is never a good idea to leave settings such as the IP address, device name, aministrative password, SSID, etc. of a wireless router or other wireless access device at their defaults. The default settings for different manufacturer's devices are well known, and getting just one of those pieces of information can give an attacker a lot to go on.

For instance: if I wander around downtown San Francisco with my laptop, I can usually pick up at least 7 wireless networks in any given place. Most of the time, 3 or so of those networks will be broadcasting the default SSID "Linksys". Just from seeing that, I can be 99% sure that at least one of those networks:

- Is not using WEP encryption.
- Is using the Linksys default IP of 192.168.1.1 for the router.
- Is using the Linksys default password "admin" for the router.
- Is not using MAC address filtering.
- Is using the router as the DHCP server for the network.
…

You're welcome, s_c. :)

By the way:

There are alternatives, like linuxant.

Sphynx has a good point- I've read reports of people getting their WPC54G cards working under Linux by using Linuxant's "DriverLoader" software. Unlike the "ndiswrapper" software I mentioned earlier, Linuxant does charge for the software ($20 USD), but they also have a free 30-day trial if you want to test it out first. Here's the link if you want to read more about it:

https://www.linuxant.com/driverloader/

Info on ndiswrapper can be found here:

http://ndiswrapper.sourceforge.net/

What both ndiswrapper and DriverLoader basically provide is translation layer, or "wrapper", which allows you to use the Windows version of a wireless card's driver from within Linux. This provides a usable workaround for situations in which card manufacturers have not, fo whatever reason, released native Linux drivers for their products.

Financial considerations and business partnerships/associations/contracts between the manufacturers of the final products and the makers of the specific components used in those products products usually have more to do with things than do issues of quality.

However- in terms of Linux hardware support, your question of "So basicly, it's depends on the chipset" is correct. This is true of network cards, modems, video cards, etc., because the makers of all of these cards use, to a large extent, chips manufactured by other companies. Linux drivers are written for the specific chipset in question, which is why, for example, the Linux "tulip" network driver/module works with Ethernet cards sold by a variety of manufacturers. The same is essentially true of Windows drivers when you get right down to it, but the "nitty gritty" of that is fairly transparent to the Windows end-user due to the *AHEM!* cooperative agreements that Microsoft has with most hardware manufacturers.

A large reason why no Linux drivers yet exist for certain hardware is that the chipset makers refuse to release their driver source code, so Linux developers are left with the task of having to write their own drivers "from scratch" as it were, with no help or input from the hardware makers themselves.

Thanks for the feedback elunow. Given what you've posted, I'll mark this thread as solved. :)

Note: Linksys has been making me mad the past few days also. :twisted:

I've got my gripes with Linksys as well, but most of those come from my work with their products in the "Windows world", and those are entirely different issues.

I think one of the more core problems in terms of Linux support in areas like this is the fact that Linksys (and others) use chipsets made by other companies in their products. In the particular case of the WPC54G cards, I think we're hobbled not so much by Linksys' willingness/unwillingness to support Linux, but by Broadcom's unwillingness to do so- Linksys uses Broadcom chips in many of their products.

Sorry about the R1 & R0 entries; thanks DMR. I totally missed that O4 WildTangent one too.

Hey, we all miss stuff in the logs every once in a while (well, OK- except for crunchie). :mrgreen:

Note: Could you tell me exactly what your wanting me to tell you?

You just did. ;)

I just wanted to know the exact make/model numbers of your router and wifi network card(s) so that I could give instructions that were specific to those particular devices. Also, knowing the exact version of Windows that you use would be helpful.

I can't give you a full answer on this until tomorrow because I have other work that I need to finish tonight, but in the mean time could you tell us exactly what your needs are security-wise? There are many things you can do to "lock down" a wireless network, but you may not need to put all of those protections in place if you're only running wireless on a home network. Also- some of the security settings can get rather complex, and aside from the added layers of complexity, implementing them in situations where they aren't absolutely necessary can have a negative effect on your overall network performance.

Give us an idea of what your concerns are security-wise, and I'll give you specific instructions on how to put those in place for the hardware that you have.

Grr!

For reasons that I won't go into simply because they p!ss me off, it looks like there is no manufacturer-supplied solution to getting that particular card working under Linux; you are going to have to jumps through some hoops to if you want it to happen.

Please have a read through the following links for A) one possible solution (ndiswrapper), and B) where the core of the compatibility problem lies:

http://ndiswrapper.sourceforge.net/
http://www.google.com/search?hl=en&q=wpc54g+broadcom+linux&btnG=Google+Search
http://www.google.com/linux?q=WPC54G+driver&hl=en&lr=&start=0&sa=N

...have it fix the following entries:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us9.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us9.hpwis.com/
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe

1.The hpwis.com entries are valid for owners of HP computers, which this one appears to be.

2. The Userinit.exe entry can be valid as well under normal circumstances, although some viruses are know to abuse this. If a full system scan with Norton (with the latest virus definitions installed) doesn't find anything amiss, it's most likely OK.

razorduck,

I see two more entries which should be fixed:

1. O4 - HKCU\..\Run: [SpyKiller] C:\Program Files\SpyKiller\spykiller.exe /startup

You should remove SpyKiller and use Ad Aware and SpyBot Search & Destroy instead. SpyKiller is not a reputable product, and is known to return false indications in an attempt to get you to purchase upgrades. For more info on the many "bogus" anti-spyware programs out there, please visit this site:

http://www.spywarewarrior.com/rogue_anti-spyware.htm

2. O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0400.dll",cdaEngineMain

After having HJT fix the WildTangent entry, reboot and then delete the entire C:\Program Files\WildTangent folder.

Can I play too? :).

Yay! Let's all party at thread #16625 tonight!!! :mrgreen:

asianpanthers,

You log looks clean now. Are you still noticing anything suspicious, or do things seem to be working correctly now?

If you're still seeing problems, let us know. If not, here are some general suggestions that will greatly minimize your chances of getting infected in the future:

1. Use Windows Automatic Update function to keep your system as up-to-date as possible with the most current Microsoft security patches and bug fixes.

2. Stop using Internet Explorer as your web browser. Because IE is so closely tied into the Windows operating system itself and contains so many security flaws, switching to another browser such as Netscape, Firefox, or Opera will greatly reduce the avenues through which spyware/adware/hijackers/etc. can infect your computer.

3. Install preventative utilities such as SpywareBlaster and SpywareGuard (links are in my sig below), especially if you absolutely have to continue using Internet Exploder. These utilities protect areas of your system known to be vulnerable to malicious attacks.

4. Tighten up some of Internet Explorer's existing, default settings to make it more secure. Some info on that can be found here.

5. Enable your anti-virus program's "auto-protect", "auto-update", and email-scanning features.

6. None of your utilities are of much good if you don't check for updates frequently; updates for anti-spyware/anti-virus programs can be released as often as ever two or three …

This link could be of help. The site discusses a lot of the causes of Win 95/98/ME shutdown problems and offers possible solutions, troubleshooting procedures, and links to more sources of information concerning the problems.

OK- do that, and we'll take it from there. :)

If you've totally reformatted the pre-existing Win XP partition and are attempting a full reinstall from scratch, you should not even get that choice.

It sounds like you haven't really totally wiped/reformatted the pre-existing XP install and therefore aren't truly performing a "clean" install this time. Can you give more specific info on the steps you've taken while trying the install please?

If you want our help, you will have to give us as much information as you possibly can; the simple fact that Windows does not shut down for you tells us basically nothing. There is no single reason why one gets that; it can be caused by too many things for us to even delve into without you giving us as many specifics as you can.

At what exact point during the install did it fail out to that error?

Give us more info to go on:

- Does it only happen while trying to go to certain site? If so, what are those sites?

- When did it start happening?

- Had you made any changes/upgrades to IE around the time the problem started to occur?

Please keep in mind that the more specific info you can provide us up-front, the faster we'll be able to help you resolve your problem.

1. Can you give us some specifics on the history of the problem (when did it start happening, did you make any hardware/software changes around that time, etc.)?

2. "After about 20 minutes of use, my computer crashes--"Blue Screen O' Death" comes up with Memory Dump error message"

Give us the full and exact contents of the error message(s) you get from those BSODs.

3. Boot into Safe Mode and see if the problem occurs there. You get to the Safe Mode startup option by hitting the F8 key as your computer is booting up. Hit the F8 key just as the BIOS's RAM, hard drive, etc. detection messages are finishing scrolling by, but before you see a "Starting Windows"-type screen.

4. What is the make/model of your computer? It may come with separate diagnostics which you can use without having to boot into Windows at alll. If your system has such tools, they can help us determine if this is a problem related to a hardware failure, and if so, they might even be able to point to the exact problem area.

Sorry, but the way in which you've described your network environment is more than a bit unclear. Can you please elaborate on what exact functions each of the two servers provide, and what services are running on each of the two of them?

2 windows 2000 servers with independent domain controllers...

Can you clarify that please? Are you saying that one is the PDC and one is the BDC for a single domain, do you mean that you actually have two separate domains, each having one of those boxen as its PDC, or do you mean something else entirely?.

The primary servers ip address is 192.168.1.100 in the alternate DNS server address. I have manually set all the computers to this ip address in the alternate DNS

If you mean that the .100 machine is the Primary DNS server for your domain, all machines which you want to join to the domain should be pointed to that address as their primary DNS server; why are you entrering it as an alternate/secondary DNS server IP?

but can't seem to joing the workgroup to the domain when right clicking properties in my computer under change or ID

What exactly happens when you try? Give us the full and complete text of any error messages that you get.

... but It won't go back.

How did you try to get it back?

If you haven't already:

- Right-click on the taskbar.
- Choose "Properties" from the resulting pop-up window.
- Click on the "Start Menu" tab in the resulting window.
- If the "Classic Menu" option is selected, select the "Start Menu" option instead.
- Click "OK"

If that doesn't work, let us know.

And again- you're welcome.

Norton has its "Live Update" feature. If you enable that, it wil get its updates without any intervention on your part.

As I asked:

... and the exact makes/models of your networking hardware

The configuration software utilities vary between manufacturers, and even between models; if you want specific help, you'll have to give us specific info.

You're welcome sheff, glad we could help. :)

Now that your system is clean, here are some things you can do to greatly minimize your chances of getting reinfected:

1. Use Windows Automatic Update function to keep your system as up-to-date as possible with the most current Microsoft security and bug fixes.

2. Stop using Internet Explorer as your web browser. Because IE is so closely tied into the Windows operating system itself and contains so many security flaws, switching to another browser such as Netscape, Firefox, or Opera will greatly reduce the avenues through which spyware/adware/hijackers/etc. can infect your computer.

3. Install preventative utilities such as SpywareBlaster and SpywareGuard (links are in my sig below), especially if you absolutely have to continue using Internet Exploder. These utilities protect areas of your system known to be vulnerable to malicious attacks.

4. Tighten up some of Internet Explorer's existing, default settings to make it more secure. Some info on that can be found here.

5. Obviously: install a good anti-virus program and enable its "auto-protect", "auto-update", and email-scanning features.

6. None of your utilities are of much good if you don't check for updates frequently; updates for anti-spyware/anti-virus programs can be released as often as ever two or three days, so make sure you do that for any of the utilities you use which don't have an "auto-update" feature.

If anymore info is needed, just let me know.

Yeah, sorry- I should have asked for exact version of the card also just to make sure we get you the right driver.

Makes and models of the networking gear please, as well the specific drivers in use for the USB wifi device.

what i need to setup an ISP medium scale,all the hardware stuff

A heck of a lot of asprin? :mrgreen:

Seriously though, you need to give us a lot more information on exactly what you're planning before we can really give you any helpful information. For instance, you didn't even mention what type(s) of service you're planning on offering.

Hi hankemeier,

First of all- welcome to TechTalk!

We ask that members not tag their questions on to a thread previously started by another member (regardless of how similar your problem might seem). Not only does it divert the focus of the thread away from the original poster's problem, but it also makes it less likely that you yourself will get the individual attention that you need.

Please start your own thread and post your question there. When you do, please try to give us as much specific info as possible regarding the problem (exact error messages, system specs, etc.).

For a full description of our posting guidelines and general rules of conduct, please see this page:

http://www.daniweb.com/techtalkforums/faq.php?faq=daniweb_faq#faq_rules

Thanks for understanding.

You can certainly enable security measures after the fact.

If you need us to help you with that, you need to tell us what operating system(s) you're using, and the exact makes/models of your networking hardware.

a hub will work for you only if your ISP is setup to assign 2 or more ip addresses for your account/cable modem... my guess is that your isp only assigns 1 ip address per account or cable modem

That's almost certainly the case, and a broadband router (from Linksys, Netgear, D-Link, etc.) is the most painless solution.

With a broadband (that is, "always on") connection, you should be using a router anyway, even if you only have 1 PC. Due to their built-in security/firewalling features, broadband routers provide an added level of protection against malicious attacks from outsiders.

Give us the exact model # of the card please.

Open Task Manager & end process on the following:
cmd32.exe

Go to C:\WINDOWS\System32 and delete the file manually. It is added by the TANKED WORM!

Thanks for the catch crunchie- I totally missed that one... :o

sheff,

The entries referencing the missing googletoolbar2.dll file might mean that the toolbar took a hit in all of this, but other than that your log looks clean now. I'd like to wait for crunchie to give it the OK as well though, before we totally sign off on it.

Ok- do keep us posted, and thanks for understanding the real-world vs. online dillema; part of me thinks that if it would pay for the rent and food, I'd make online support a full time job. But.... dat just not da way da cookie crumbles.

:)