Posts by caperjack

http://compnetworking.about.com/cs/windowsnetworkin1/ht/client4msnet.htm

I much prefer zip files now

And in any good Zip file is a .EXE!:)
I would do a System Restore back to a earlier Time ,befor you remove Nortons Internet S--it !

After that do the following Fix and of this that might be Left.
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,

Have Hijack This fix the following by placing a check in the appropriate boxes and selecting fix checked. Make sure all browser and all Windows Explorer windows are closed before fixing.

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = C:\WINDOWS\_hp.html

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.searchportal.info/10039/

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,(Default) = C:\WINDOWS\_sp.html

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,(Default) = C:\WINDOWS\_sp.html

R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = C:\WINDOWS\_hp.html

R3 - Default URLSearchHook is missing

F3 - REG:win.ini: run=C:\WINDOWS\inetdata\winlogon.exe

F2 - REG:system.ini: UserInit=Userinit.exe

O1 - Hosts: 3466709097 com.org

O1 - Hosts: 3466690378 view.atdmt.com

O1 - Hosts: 3466690378 click.atdmt.com

O1 - Hosts: 3466690378 leader.linkexchange.com

O2 - BHO: (no name) - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - (no file)

O4 - HKLM\..\Run: [aggwhhks] C:\WINDOWS\System32\atbbrrc.exe

O4 - HKLM\..\Run: [xp_system] C:\WINDOWS\inetdata\winlogon.exe

O4 - HKCU\..\Run: [xp_system] C:\WINDOWS\inetdata\winlogon.exe

Now reboot into safe mode and delete the following files and folders if found .

C:\WINDOWS\System32\atbbrrc.exe,,,,,,,,,,delete file

C:\WINDOWS\inetdata\winlogon.exe,,,,,delete this file !
note only delete the winlogon.exe in inetdata folder not the good on in the windows folder

C:\WINDOWS\_hp.html,,,,,,,,,,,,,,,delete file

to delete the above files and folder you will need to do the following
go to
Show hidden files & folders

"Fix Checked"...Reboot to SAFE mode to delete files
How to start …

Then this :

1. Downloaded and Install Spybot S&D, accepting the Default Settings
(Please ensure you have version 1.3 final.)
Home - The home of Spybot-S&D!: SpyBot download

2. Go to Start > Programs >Spybot – Search & Destroy and choose Spybot S&D

3. Close ALL windows except Spybot S&D

4. Click the button to ‘Search for Updates’ and download and install the Updates.

5. Next click the button ‘Check for Problems’

6. When Spybot is complete, it will be showing 'RED' (RED) entries ‘BLACK’ entries and ‘GREEN’ (GREEN) entries in the window

7. Unsure there is a check mark beside the RED (RED) entries ONLY.

8. Choose ‘Fix Selected Problems’ and allow Spybot to fix the RED (RED) entries.

9. REBOOT

================================================
Scanning in Ad-Aware:
(please ensure you have version 6 build 6. 181)
Downloads - Support - Lavasoft#free: http://www.lavasoftusa.com/support/download/#free

The following explains how to set Ad-aware's settings to perform a "Full Scan."
And some settings that should be made prior to using the first time.

In Ad-aware click the Gear to go to the Settings area.
The following items should be on a green check, not on a red X.
Under the Scanning button:
Scan within archives

Under Memory & Registry, Check EVERYTHING

In Check Drives & Folders, make sure all of your hard drives are …

Then This :

Download then unzip and run CWShredder to clean up clicking "FIX" to have it remove all it finds.

CWShredder available from these places :-

http://www.zerosrealm.com/downloads.php
http://www.aluriasoftware.com/tools/cwshredder.zip
Or this as a full download without any unzipping required
http://www.downloads.subratam.org/CWShredder.exe
http://www.spywareinfo.com/downloads/tools/CWShredder.exe

We have found that some of the CWS infections can be removed better from safe mode, rather than normal mode.
To get to safe mode use the F8 key while booting the machine. Detailed instructions from here :-
http://service1.symantec.com/SUPPORT/tsgen...001052409420406

Lets start with this :
Important: Create a folder on the C: drive called C:\HJT.
You can do this by going to My Computer (Windows key+e) then double click on C: then right click and select New then Folder and name it HJT.
Unzip HijackThis into this folder. When you run HijackThis from this folder and have it "Fixed checked" it will create a backup file of modifications to use if restore is necessary.

enns.exe ,from what i read this file was droped on you computer if you ran the PurityScan to check computer for Porn!if you did you should also look for and remove PurityScan.exe and delete it .
Infor Here ,scroll down to IWAR ,and the ENNS.exe is in the list .
http://answersthatwork.com/Tasklist_pages/tasklist_i.htm

Noton ,should have Quarantined the file even if it can't fix it .open norton and go to Reports And in the Quarantine section view report ,you should be able to delete the file there .

YaHoo!! I don't like them ,any thing they have !!

When it said a device needed to be install did you go through the steps and let it search c:\ for drivers for the pci device .its the card that it looking for drivers for I would think.
Is the drive new and PCI device new . [is the pci device A Firewire device] ,if so you should have gotten a cd or floppy with drivers

Great , Just a not its not recomended that you run 2 firewall !

Check IE /Tools /internet options /Content /auto complete and see whats checked off

HI Casper, I checked everything out and uninstalled the driver and reinstalled the updated driver for video card and it is working fine now. Thanks!

You welcome ,glad it worked !

I don't use stanby ,bu if you are downloading stuff can you computer go into stanby and still download !

Stanby tips .
http://www.kellys-korner-xp.com/xp_standby.htm

How many harddrive in the computer ?
if more than one how are the others pluged in ?
Motherboard Make ?
If computer works great why are you formating the Drive ?

I this were my computer this is what I would do .!
Uninstall the printer ,then I would
Right click on mycomputer go to properties/hardware/device manager /and uninstall everything in the +universal serial bus controllers !,then reboot and let windows reinstall the usb controllers ,then reinstall my printer .and any other usb devices that I have .

http://www.memtest86.com/

By onplug do you mean the power cable or the USB cable ,

That's the primary site DJ is trying to access. But you would have needed to see the first thread to know that:
http://www.daniweb.com/techtalkforums/thread13978.html

I know that ,I did see the first thread,I axcess all kinds of sites and have no Proxy overyrides in my hijackthis log.
So Im wondering why its there .

Should this line be in the log, If so why !!! .
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = http://ourchurch.com

Format It ! I would have by now !:)

not the first time I was wrong !:)

maybe spyware releated go to hte security section of this fourm

iI dont know you tell me !LOL
When you look in mycomputer and right click on the hardrive ,what does it give for the size of you hardrive and space used and space remaining !

Sorry Dont know what to tell you ,that should have worked .
Maybe try going to windows updates and get what evers avaiable !!

Stick in a windows 98 CD, start computer without CD ROM support, format the disk :cheesy:

That is, unless its using NTFS as the filesystem

If you have a winxp disk and the computer will boot to the CD ,boot to the xp disk and format the computer OR
boot with a win98 bootDisk and At the A prompt type in FDISK and select #3 delete partition ,then select delete non DOS partition .this will get rid of the ntfs partition then select 1 and create new partition

Doesent make sence ,,
A CD music disk works ok in the DVD drive and a DVD disk doesn't !! To me its either a Dirty DvD disk or the DVD playing Software ,try Uninstall And Reinstalling the sortware maybe !:)

TRy unchecking it reboot computer and go back in a check it again and reboot computer again ,see what happens

Have you tried another browser .like mozilla Firefox .

http://www.mozilla.org/products/firefox/

How would I check this?

Most programs that would do this use the file extension .BAK ,
go to start /search files and folders and type in *.BAK ,and search and see what it finds .
You could also search for *.tmp and see what showes up .

I think you should check with you service provide and maybe get a new modem to try !

You could have a program creating backups everytime you shut down the computer .

Dow by the Clock you will see most of the programs you speak of ,click on or dight click on the icon for each and look for properties or Options ,and you will find something to disable on startup OR Do this go to ------- Start/Run Type in MSCONFIG , Click Startup ,and uncheck the programs that you don't want starting up when you start the computer .

In Internet Explorer ,go to tools /internet options /connections and what if anything is checked off

I have now tried to access that site in Opera, Mozilla, Internet Explorer and Netscape... I cannae get it to work!

Must be that there server is down !
Your log look ok

Just want add that when you run hijackthis you are suppost to have all windows closed including ,IE ,this shows that you have browsre windows open when you ran the scan .

C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe

What DLL files are you getting on startup!!!
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
Have Hijack This fix the following by placing a check in the appropriate boxes and selecting fix checked. Make sure all browser and all Windows Explorer windows are closed before fixing.

F2 - REG:system.ini: Shell=Explorer.exe winsock.scr

I suggest fixing all of these 016s'as they will come back when you need to go to the site the next time .

O16 - DPF: cpcScanner - http://www.crucial.com/controls/cpcScanner.cab

reboot computer and post a new log

So basically my computer is screwed along with my harddrive?

No that is not the case .

Right ON!!!

Thanks for the tip. I checked the F1 key and it functions normally, i.e when it is pressed, the help window opens. If not it does not until I use the mouse and move it a very small deviation and then stop.

Ok, The above tip about disconnection the keyboard should also be tried ,just unplug it from the back of the computer and move the mouse .

,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,

Try these 2 programs to check for Spyware Releated Problems that could be causing it !

Try these 2 programs to check for Spyware

1. Downloaded and Install Spybot S&D, accepting the Default Settings
(Please ensure you have version 1.3 final.)
Home - The home of Spybot-S&D!: SpyBot download

2. Go to Start > Programs >Spybot – Search & Destroy and choose Spybot S&D

3. Close ALL windows except Spybot S&D

4. Click the button to ‘Search for Updates’ and download and install the Updates.

5. Next click the button ‘Check for Problems’

6. When Spybot is complete, it will be showing 'RED' (RED) entries ‘BLACK’ entries and

‘GREEN’ (GREEN) entries in the window

7. Unsure there is a check mark beside the RED (RED) entries ONLY.

8. Choose ‘Fix Selected Problems’ and allow Spybot to fix the RED (RED) entries.

9. REBOOT

================================================
Scanning in Ad-Aware:
(please ensure you have version 6 build 6. 181)

Try These 2 Programs

1. Downloaded and Install Spybot S&D, accepting the Default Settings
(Please ensure you have version 1.3 final.)
Home - The home of Spybot-S&D!: http://www.safer-networking.org/
Here is a nice Tutorial http://www.safer-networking.org/index.php?page=tutorial

2. Go to Start > Programs >Spybot – Search & Destroy and choose Spybot S&D

3. Close ALL windows except Spybot S&D

4. Click the button to ‘Search for Updates’ and download and install the Updates.

5. Next click the button ‘Check for Problems’

6. When Spybot is complete, it will be showing 'RED' (RED) entries ‘BLACK’ entries and ‘GREEN’ (GREEN) entries in the window

7. Unsure there is a check mark beside the RED (RED) entries ONLY.

8. Choose ‘Fix Selected Problems’ and allow Spybot to fix the RED (RED) entries.

9. REBOOT

================================================
Scanning in Ad-Aware:
(please ensure you have version 6 build 6. 181)
Downloads - Support - Lavasoft#free: http://www.lavasoftusa.com/support/download/#free

The following explains how to set Ad-aware's settings to perform a "Full Scan."
And some settings that should be made prior to using the first time.

In Ad-aware click the Gear to go to the Settings area.
The following items should be on a green check, not on a red X.
Under the Scanning button:
Scan within archives

Under Memory & Registry, Check EVERYTHING

In Check Drives & Folders, make sure all of …

http://support.microsoft.com/default.aspx?scid=kb;EN-US;q293078

Hi ,I use Norton and not Trend micro ,but im sure there must be something in it settings /or options to set to auto protect or run at startup .

check in Start/Run /MSCONFIG/startup and see if whom ever fixted the computer unchecked it to keep it from running .

not likely if it had that many bad sectors I don't think it would bootup.
what operating system are you using Win98 or XP
I think you should run Scandisk

look through all 4 !:)

copy and paste this into,Start/ Run.... eventvwr.msc /s
And check logs for errors

This topic might help .
http://www.daniweb.com/techtalkforums/thread13887-dns+error.html

I can't get to it either, with IE or Firefox , Maybe not even such a site, have you ever been able to axcess that site .Fireox says site not found !!:)
this one works though .
http://unforgottenrealms.com/

Ok i think this is really bad. I just got out this computer its got 80gb HD and a P3 800mhz. Unfountuatly theres still a PW on the op system (win 2000) Only the administrator account is active. I an unable to reload the operating system because the setup at startup is passworded also. I believe that there is only one boot priority and its to boot from the Hard Drive. Any Idea on how i can get admin access back on my computer?

We could help you with this but we stay away from such problems because we have no IDEA if this is really your computer .Now Do we .!:)

I opened mycomputer ,hit the F1 key and searched this "disable Windows Logo Program?" and found this ,i think this is what you are looking for !:)
¿
¿

To set file signature verification options
Open System in Control Panel.
On the Hardware tab, click Driver Signing.
Under File signature verification, click:
Ignore to allow all device drivers to be installed on this computer, regardless of whether they have a digital signature.
Warn to display a warning message whenever an installation program attempts to install a device driver without a digital signature. This is the default behavior for Windows.
Block to prevent an installation program from installing device drivers without a digital signature.
Notes

To open System, click Start, click Control Panel, click Performance and Maintenance, and then click System.
If you are a logged on as an administrator or as a member of the Administrators group, under Administrator option, click Apply setting as system default to apply the selected setting as the default for all users who log on to this computer.

Hey guys. When ever i try to play a DVD on my PC the sound is really distorted and choppy :mad: It used to be good, and ive tried windows media player 10, PowerDVD and WinDVD! does anyone know how to fix this? Ive got XP SP1

So this only happens with DVD and not CDAudio ,do you have onboard sound or a PCI sound card .