Posts by caperjack

Great glad i could help .
run it again and fix this one .

] O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocach...etup1.0.0.6.cab

also have a read here !:)
http://boards.cexx.org/viewtopic.php?t=957

I don't know what it is and it doesent come up in a google search and it not in the spyware data base that i use for my hijack helper /and spywareblaster .did you run ad-aware and spybot .and a online virus scan.
you log looks good except for it and this one
O3 - Toolbar: (no name) - {71ED4FBA-4024-4bbe-91DC-9704C93F453E} - (no file)

Boot to safe mode ,hitting f8 when you boot your computer ,

aim= aol instant messanger

Just curious , if it's a messenger why did you post a link for the AIM virus .:)

Assuming you are using winxp ,boot in safe mode and create a new user in control panel /users .

what is AIM, i assume a messenger and not a Virus ,as who would update a virus .

ALso, when the 98 bootdisk started it up it warned me that the hardisk didnt contained any fat32 and that I may need to partition it...???

win98 is fat32 file system, you winxp is ntfs file system.win98 doesen't see ntfs ,but xp sees fat32 and can also be run in h fat32/file syatem ,98 will not work with ntfs .

Set you computer to boot to the cd in the BIOS/SETUP when you boot computer .
but the winxp cd boot computer and follow instructions .

this will explain it better .
http://michaelstevenstech.com/index.html

Well ,if i'm getting what you mean the movies are not downloadable ,there are live stream from the site you are on!
IE is not a media player,it uses media player plugins , so this must be what you mean.

this one ,but its only 76 megs and 32 bit if that matters '
http://browsers.evolt.org/?ie/32bit/6.0

you have what is refered to as a browser hijacker ,in my sicnature you will find some programs to help .If you are ready for some work in removing these parasites.
first to do is ad-aware ,spybot ,and the online virus scan .

Run hijack again and fix these

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = about_:blank

O4 - HKCU\..\Run: [NetTsk] C:\WINNT\System32\NetTsk.exe

O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocach...etup1.0.0.6.cab

we need to delete this file ,just follow the same instructions as before .

C:\WINNT\System32\NetTsk.exe---- file

Sure, at your request, when I get time in the next 36hrs, I will give a quick way to harden IE. And I thought me and Orge were the only ones who cared,knew about security.

It's causing the most problem with computers right now , that are connected to the internet,and getting worse by the computer minute !!

Im too busy for you log ,but here is a hijack what is .
http://hjt.wizardsofwebsites.com/

there are actually hijack this fourms that all they do is fix logs you may want to go there for faster fix.
http://forums.tomcoyote.org/index.php?act=SC&c=7

Make sure all windows programs and browser windows are closed .

Run hijack and fix the following .

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about_:blank

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about_:blank

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about_:blank

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Angel's Playplace

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride =

localhost

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,(Default) = about_:blank

O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe

O4 - HKLM\..\Run: [RunDLL] rundll32.exe "C:\WINNT\Downloaded Program Files\bridge.dll",Load

O4 - HKLM\..\Run: [BEHLO] C:\WINNT\BEHLO.exe

O4 - HKLM\..\Run: [NetTsk] C:\WINNT\System32\NetTsk.exe

O4 - HKCU\..\Run: [NetTsk] C:\WINNT\System32\NetTsk.exe

O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - java_script_:{document.location

='http://sexmaxx.com/freegalleries.htm';}

O8 - Extra context menu item: LimeShop Preferences - file://C:\Program

Files\LimeShop\System\Temp\limeshop_script0.htm

O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocach...

etup1.0.0.6.cab

O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/171

d2b86f25366...ip/RdxIE601.cab

You will need boot into safe mode [boot into safe mde hit f8 on boot up .]to delete the

followning files and folders

C:\PROGRA~1\ MYWEBS~1\ === folder

C:\WINNT\Downloaded Program Files\bridge.dll---- file

C:\WINNT\BEHLO.exe----file

C:\WINNT\System32\NetTsk.exe------ file

you will need to set windows to show hidden file to delete these files ,you may not find

all as hijack delets some .
How to show hidden files .-- http://www.xtra.co.nz/help/0,,4155-1916458,00.html

Because some bad file/trojans are …

I think you should add this to your signature. ;)

I agee ,thanks for those who use the programs in my sig, without asking questions first ,Done

After following links in your sig, I went to Trend and did a scan. [img]http://www.digital-accents.com/bad_stuff.JPG[/img]

If you ran the virus scan after the hijack log was created please run hijak and post a new log .yhanks
Also you have hijackthis.exe in E:\ hijack, is E a second harddrive .

I think you should add this to your signature. ;)

It is something I tell people to do as you can see from the first post i made .

Hint: Harden IE and you would not be this situation.

perhaps you can tell people how to harden IE ,I have this in my signature
How I got infected in the first place

I have never used a reg cleaner that didn't remove stuff i needed .thats why I stopped useing them ,If you want to secure you computer Remove it from the internet !!

make sure all browser windows are closed and run hijack and fix this .

R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)

O4 - HKLM\..\Run: [Online Service] C:\WINDOWS\svchost.exe.

this one is optional it is not spyware but is not needed and is a known resource hog
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

then reboot into safe mode ,hitting f8 on bootup to enter safe mode .to delete this file .

C:\WINDOWS\svchost.exe ---this file

you may need to set computer to show hidden files to find it .
how to show hidden files

After deleting file run hijack again and post new log

if they are avi you are downloading from Kazaa ,most are bad to begin wit h!:)

in IE go to, tools /internet options /advanced ,scroll down to secruity and check off to delete temp internet files when you close the browser !

First please get Spybot S&D to clear out most of the spyware.

Short tutorial and download link here:
http://tomcoyote.org/SPYBOT/

Fix everything SpybotSD labels in red.

Then after reboot:
Download 'Hijack This!'. http://www.tomcoyote.org/hjt/
Unzip to a permanent folder, doubleclick HijackThis.exe, and hit "Scan".

When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, load it in Notepad, and copy its contents here. Most of what it lists will be harmless or even essential, don't fix anything yet.
then post the log here

First please get Spybot S&D to clear out most of the spyware.

Short tutorial and download link here:
http://tomcoyote.org/SPYBOT/

Fix everything SpybotSD labels in red.

Then after reboot:
Download 'Hijack This!'. http://www.tomcoyote.org/hjt/
Unzip to a permanent folder, doubleclick HijackThis.exe, and hit "Scan".

When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, load it in Notepad, and copy its contents here. Most of what it lists will be harmless or even essential, don't fix anything yet.
then post the log here

http://www.microsoft.com/hardware/sidewinder/support.asp

take the ME disk and throw it through the nearest window, and follow the instructions on the site to install winXP.
http://michaelstevenstech.com/cleanxpinstall.html

double click on the grey border of the Box !:)

First please get Spybot S&D to clear out most of the spyware.

Short tutorial and download link here:
http://tomcoyote.org/SPYBOT/

Fix everything SpybotSD labels in red.

Then after reboot:
Download 'Hijack This!'. http://www.tomcoyote.org/hjt/
Unzip to a permanent folder, doubleclick HijackThis.exe, and hit "Scan".

When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, load it in Notepad, and copy its contents here. Most of what it

lists will be harmless or even essential, don't fix anything yet.
then post the log here

localhost ,what

you should run a anti virus scan ,there is a online one in my signature .Also recomended that you run ad-aware and spybot ,also in my sig ,update before running .

This [O4 - HKLM\..\Run: [Online Service] C:\WINDOWS\svchost.exe]could be part of the cause of you problem as it is added by a trojan check the norton site below .It is not the windows svchost.exe .check this link .
http://www.sysinfo.org/startuplist.php?filter=Online+Service&count=&type=

http://securityresponse.symantec.com/avcenter/venc/data/w32.hostidel.trojan.b.html

Also hijackthis creates backup when u use it to fix problems so it is not recomended to run it from a temp folder ,so create a new folder on you c:\ drive called it hijack and copt the hijackthis.exe to it and run it from there .

Do all of the above then run hijack again and post a new log .

good question mine works !could be a corruption of sorts ,have you tried a reinstallinf Word ,might replace a missing file needed for the ruler !

I'm stumped ,I only ever tried to load win2000 once on a computer of mine ,and it was server 2000 and I had video problems ,and gave up .and whent back to win98 ,

what's it called !:)

Hey !Come on in and enjoy !!and help us if you will!:)

http://support.microsoft.com/default.aspx?scid=/support/windows/topics/errormsg/emresctr.asp

check this .
http://hjt.wizardsofwebsites.com/

and This
http://forums.spywareinfo.com/

and this foe CWS browser hijackers'

http://www.spywareinfo.com/~merijn/cwschronicles.html

actuall I don't hink you are that far off how long it takes to load XP ,I'm around 40/45 sec to login first time

Is there a reason I can't view that site? It says I'm not authorized to view it.

No its a open site ,try putting its url in trusted sites in ,IE's tools /internet options /security /trusted sites /sites and add the Black viper url

so i take it you are trying to trim the 1 min login .maybe unnecessary services runnning will help .
http://www.blackviper.com/WinXP/servicecfg.htm

ok ,it was just sitting for awhile remove and reseat anything that has been pluged in all that time .may be the ram doesn't match the MB

so did you have the hardrive partitioned or were you just installing it on the same partition as linux.
Can you still boot to the linux os

I was using this case just this morning so I know the power supply is good. Is it likely that my cpu is toast?

So did you just put the cpu in this case or is it a different motherboard as well ,if it is maybe the front panel wires are not pluged in correctly ,or the board is not compatiable with the cpu .any number of things can cause this

windows

is this word association. lol

My CD-R plays but won't burn,My computer is not detecting my CD-RW, but it detects the CD-Rom

You are confusing us with you you info ,do you have 2 different cd drive or just 1 ,cd-rw ,cd-rom combo ,that is what they are and i have had a few that stoped burning.but sill were good enough to use to load programs even win98 .

try this .
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q260650

Why I've got lost the topics bottom line in my comuter folder ?

Here is the problem feature....
http://us.f2.yahoofs.com/bc/40264b22_155d7/bc/status/xp---1.bmp?bfcIlJABVFNbfVJm

How can i reset it ? :rolleyes:

you message makes no sence to Me
Your link goes to can't find server !:)

http://www.le.ac.uk/cc/problems/software/ie6blank.html

sorry that was my 2 cents,but if you browser went wacky because of the links in my sig ,then you do have issues !:)

will take awhile to fix ,I will post as soon as i get it done .

You are experienceing waht is fast becoming a major problem for people using Internet Explorer . called Spyware,
In my signature are some programs to help ,Get Spybot and AD-Aware ,installand update and fix the problems they find ,then get hijackthis and unzip it to its own folder on you harddrive ,not in a temp folder !then run it and save log and copy and past it here ,do not fix any thing in hijackthis until we have a look at the log !