2,042 Posted Topics
 | Spamming? You should mention that one of the really useful aspects of CCleaner is that it is easily configurable by a user so that it will delete on demand the contents of just about any file you care to empty. Like Zonealarm's log files which just grow [well, they used … |
| | I would love to help but I am not Vista-aware.... nevertheless, check out the top sticky and post a hijackthis log. |
| | Cindy, after following zelkea's instructions the log you give is clean. If you wish you could remove MyWay as it is basically an adware search bar. This is the best way to do that: =I see that you have MyWay Search Assistant. You can get rid of it if you … |
| | Be a little careful! This msconfig.exe is in the wrong place: C:\WINDOWS\system32\msconfig .exe -it should be in C:\windows\pchealth\helpctr\binaries\, so I suggest you check its owner. If it is not from Microsoft, delete it. C:\WINDOWS\system32\temp.000.... I would delete this, system32 is not the place for temp files. Delete this file: C:\WINDOWS\system32\SSQRQ.DLL.del …  |
| | Your vundofix is out of date, btw.... 6707 is current. |
| | Just so you know, this is the key involved.... shown is the locked value [6]; setting value as [4] unlocks web items. You are unsetting bit 2 - if locked value is 2 you would set 0. [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components] "GeneralFlags"=dword:00000006 ..and hughv's method does just that - you can do … |
| | Legit... stops ppl using cheats in Punkbuster online games. O23 - Service: PnkBstrA - Unknown owner - E:\WINDOWS\system32\PnkBstrA.exe |
| | Hello, suzanne, posting a log here like that is just fine. Lessee.. you have AVG Free and Symantec AV services running; you must remove one, and now. They may interfere badly with unforseeable results. If you wish to remove Symantec you may require the removal tool from their website. Good. … |
| | What happens if you use Firefox or Opera? Being serious here... |
| | Go start, run, paste in this: control sysdm.cpl,,3 -press Performance settings, and check Use drop shadows for icon labels on desktop, apply n ok. |
| | Give this a go, vj... ==Download this temp file cleaner from [url]http://www.atribune.org/ccount/click.php?id=1[/url] --click in the download window to run it, and when ATF Cleaner opens go Select all, and then Empty Selected. Next click Firefox [if you have that browser..] at the top, Select All again, and Empty Selected again. … |
 | You may have dropped through the cracks here, billy. So.... while crunchie is having a cup of tea: Start hijackthis, select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. O4 - HKLM\..\Run: [cjkkkjzipnm] E:\WINDOWS\system32\cjkkkjzipnm.exe O4 - HKLM\..\RunServices: [cjkkkjzipnm] E:\WINDOWS\system32\cjkkkjzipnm.exe Good. … |
| | Vista trojan/anything proof? Oh dear, all those poor malware writers that will be out of work.... Start hijackthis, select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. O2 - BHO: Office toolbar - {4722D065-A352-42FB-924C-EAEF5A1AE571} - C:\Windows\sysosa.dll O2 - BHO: (no … |
| | Re: Power Supply if by trip you just mean switch the DC on/off, then grounding the green enable wire to black will turn it ON. This is for ATX supplies.  |
| | Clean: ==Download this temp file cleaner from [url]http://www.atribune.org/ccount/click.php?id=1[/url] --click in the download window to run it, and when ATF Cleaner opens go Select all, and then Empty Selected. Next click Firefox [if you have that browser..] at the top, Select All again, and Empty Selected again. Follow that procedure also … |
 | Hello, sam... ==Download SDFix from here: [url]http://downloads.andymanchesta.com/RemovalTools/SDFix.exe[/url] and save it to your desktop. Dclick SDFix.exe and choose Run to extract it to %systemdrive%, which commonly will be C:\ ==Download this temp file cleaner from [url]http://www.atribune.org/ccount/click.php?id=1[/url] --click in the download window to run it, and when ATF Cleaner opens go Select … |
| | Re: Problems with PC Hello, Rezert, let's run these fixes first. ==Download LSPfix from here [url]http://cexx.org/LSPFix.exe[/url] -start it by dclicking the .exe.... On the opening screen, click the "I know what I'm doing" checkbox. Check all instances of "rlls.dll" (and nothing else), and move them to the "Remove" pane. Then click Finish. Delete C:\windows\system32\rlls.dll … |
| | Top post in Viruses n Nasties forum gives you what you are loooking? for...:) |
| | Hello, Sarah, a first point: I notice that you have no active AV service running, and possibly no firewall [if you do have it running, fine - it is not possible to see Window's firewall]. May I recommend you get one of these if you do not wish to turn … |
| | ==Download SmitfraudFix (by S!Ri) from [url]http://siri.urz.free.fr/Fix/SmitfraudFix.zip[/url] Extract the content (a folder named SmitfraudFix) to your Desktop. - Open the SmitfraudFix folder and double-click smitfraudfix.cmd, select option #1 - Search [type 1 and Enter]; a text file will appear which lists infected files (if present). It will also create a log … |
| | Re: SSDK02.exe ??? If you are going to google stuff, you should read the actual information in each post/site and not go on hte headings in the google search page info. You have Yahoo stuff, SSDK02.exe is actually a piece of Norton software that provides a security status to the Yahoo processes. If … |
| | Hello, annmarie. Running sfc /scannow with your CD inserted will NOT damage any of your files - all it does is employ Windows file protection system to ensure that your sys files are genuine and not corrupted; if any copy in the cache is damaged it will simply copy that … |
| | Hello, Dad... this should do the trick: - Download this temp file cleaner from http://www.atribune.org/ccount/click.php?id=1 - click in the download window to run it, and when ATF Cleaner opens go Select all, and then Empty Selected. - Next click Firefox (if you have that browser..) at the top, Select All …  |
 | Hiya, Comodore.... AVs... I don't know too much about how AV services work, but I do know that if you have an active AV service installed and started then it works in the background full time. In fulfilling that role they scan any process which starts and any files that … |
| | Swap power supplies. May help, may not. |
| | It's Saturday, and I'm going out; this is rushed, but should help [playing a bit blind, here...], do these things in this order: ==Download this temp file cleaner from [url]http://www.atribune.org/ccount/click.php?id=1[/url] --click in the download window to run it, and when ATF Cleaner opens go Select all, and then Empty Selected. … |
| | Hello, Jud... Let's start with this cos it's quite a load of problems you have there... ==Download this file to your desktop: [url]http://download.bleepingcomputer.com/sUBs/ComboFix.exe[/url] - to run it dclick combofix.exe and follow the prompts to start it. When finished, it will produce a log, C:\Combofix.txt - post that log in your … |
| | If the Save Scan button is greyed out at the end of a scan it is likely that under Scanner, Settings you have Automatically generate a report selected [default setting], in which case it will be under Reports tab. I think you may have a little trojan in there? |
 | "i m trying to make a windows xp cd, i want to know if there is anyway to copy the windows xp in my computer into a cd or IOS so i can use it to install windows xp in an other computer" Definitely not is the answer. You will … |
| | Hello, Wendell. Start hijackthis, select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) O4 - HKLM\..\Run: [TrustSoftAntiSpyware] C:\Program Files\TrustSoft AntiSpyware\TrustSoftAntiSpyware.exe /STARTUP O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu … |
| | Heidi, me ol mate. I use AVG AV Free, never a problem with it. Sticking with the flag, I keep AVG AS [free version also] roughly updated and ready for when I may wish to scan for spyware etc [on demand only]. [url]http://free.grisoft.com/doc/5390/lng/us/tpl/v5[/url] Make sure you get this: Spywareblaster [I … |
| | Hello, nate. I don't see an AV service...? That vundo log shows that it could NOT delete a file: tuvvstq.dll Rerun Vundofix a couple more times; if it still cannot remove it then let's try this: ==This one is a general purpose deleter, Unlocker: [url]http://filehippo.com/download_unlocker/[/url] Dclick the exe to install … |
| | I have a feeling I may regret this, but... ==download hijackthis: [url]http://www.majorgeeks.com/download5554.html[/url] -copy it to a new FOLDER either alongside your program files or on your desktop. ==GET AVG antispyware 7.5 here.. [url]http://free.grisoft.com/doc/5390/lng/us/tpl/v5[/url] or here.. [url]http://free.grisoft.com/freeweb.php/doc/5390/lng/us/tpl/v5#avg-anti-spyware-free[/url] -Install it and UPDATE it. Start AVG a-s 7.5; -under Scanner/ Settings please change … |
| | 3Mbps, and you use an accelerator! I have 128Kbps, and can wait for it to happen. Consider your position, and try uninstalling that accelerator. A web accelerator is just a rather large cache of webpages commonly accessed by users of that accelerator. They don't always work well. Your log shows … |
| | I don't have the removal tool but you can probably get it yourself and run it... the trojan has very likely set values in your hosts file which are blocking you from some anti-malware sites. Solution is to remove those entries, ie. reset your hosts file. You can do this … |
| | Re: explorer.exe Hiya, let's see what this does for you... Start hijackthis, select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. O4 - HKLM\..\Run: [{6A-AA-A8-87-ZN}] C:\WINDOWS\system32\kpdsrngl.exe MSM002 O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\system32\swinqldq.exe MSM002 O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\kpdsrngl.exe O4 - Startup: … |
| | Heya, lou, for a start could you please move hijackthis.exe off your desktop to a new folder on C:\ please? Only then start hijackthis and select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. O4 - HKLM\..\Run: [py] C:\WINDOWS\system32\py.exe O4 … |
| | Okay, running blind here, but may I suggest you copy these two files to a replaceable drive .. eg pen drive, CDRW... install and run them? ==Get CCleaner from [url]http://www.ccleaner.com/[/url] - and put it in a new folder. You should aim to keep this one for general use. I set … |
| | Post that HT log too.... |
| | Hello, and okay, yes, they do find stuff, but with two AV services onboard they are mostly finding each other. AVs interfere badly and unpredictably...Yyou must make a choice and remove one. Now. If Symantec is to go you may require the removal tool from their site. Good, done? Then … |
| | Start hijackthis, select Scan Only, place checkmarks against all the entries listed below that still exist, and then press Fix Checked. O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O4 - HKLM\..\Run: [Microsoft] servicess.exe O4 - HKLM\..\RunServices: [Microsoft] servicess.exe O4 - HKCU\..\Run: [Microsoft] servicess.exe Delete this file: C:\WINDOWS\system32\servicess.exe … |
| | See the backups tab in Scan Registry? Hit it, select the backup made for the 5000 job and Restore those entries. Registry cleaning does have its place.. just where, I am not sure. 5000 sounds like a lot, some of those would be removed in the course of time because … |
| | Yurecnik.exe darn near qualifies as the rarest pgm in existence. That is an outdated version of hijackthis... ==download hijackthis: [url]http://www.majorgeeks.com/download5554.html[/url] I see nothing that could be redirecting you... have you checked your hosts file? This pgm will do that and more for you: ==Download fixwareout from [url]http://www.bleepingcomputer.com/files/lonny/Fixwareout.exe[/url] - and save … |
| | Re: Hijack this log What, about 2 mins before the BIOS screeen appears? Then may I suggest that your power supply is dying or merely borderline capable? When your PS completes its self-checks and detects that its voltage outputs are respectable [it takes a couple hundred milliseconds...] it sends a Power Good signal to …  |
| | Ah, a brother to cnbjmo.dll : you will have some fun removing this one [dgsetu.dll]. Try this as a first step on it and its mates with similar names to dgsetu.dll... ==This one is a general purpose deleter, Unlocker : [url]http://filehippo.com/download_unlocker/[/url] Dclick the exe to install it, unchecking the updater … |
| | Delete the file and fix the key in Safe Mode. You will not survive long out there with a naked XP - get SP2. |
| | ==Download fixwareout from [url]http://www.bleepingcomputer.com/files/lonny/Fixwareout.exe[/url] - and save it to your desktop. Double click Fixwareout.exe to start the Fixwareout Setup Wizard, click next and then install. Ensure that Run fixit is checked, and click on Finish. After the fix follow the prompts. You will be asked to reboot your computer, and … |
| | Re: HiJack Log Keep working at it; your sys is filthy. I'd help, but I don't have the time.... I'm just peering at a few posts.  |
| | You have Sony-BMG's rootkit, C:\WINDOWS\CDProxyServ.exe You may want to think about that. Do not try to remove it manually else your CD drive will not work again uless you replace a changed filter driver. Here is a good start: [url]http://www.ca.com/us/securityadvisor/pest/pest.aspx?id=453096362[/url] ..and this details removal methods: [url]http://www.bleepingcomputer.com/forums/topic34904.html#oncd[/url] FromCP, Add/Remove pgms uninstall … |
| | For a one-off restart into Safe Mode go Start, run, enter msconfig; under Boot.ini tab check /Safeboot, Apply, Close, select Restart. You could run this to give us a look at recent files and a few other settings.. ==Download this file to your desktop: [url]http://download.bleepingcomputer.com/sUBs/ComboFix.exe[/url] - to run it dclick … |
The End.