1,661 Posted Topics
 | Re: hjl help You need to go to Windows Update to get the Critcal Updates for your system as soon as possible. Using Task Manager, end the process on these: wsxsvc.exe vmss.exe defragfat32abc.exe svchostings.exe qfoqbq.exe Go to Add/Remove Programs in your Control Panel and remove (if found): WeatherBug 180solutions Close all browser windows, … |
| | First of all, you need to go to Windows Update to get the Critical Updates for your system. Hold off on SP2, however, until your computer gets cleaned up. Next, you should put HJT in it's own folder instead of right on the desktop. You can do this by right-clicking …  |
 | Re: Server Move Of course it didn't go as expected; that's the law. Murphy's Law ("If anything [I]can [/I] go wrong, it will") Everything seems to be back to normal now :D |
| | Using Task Manager, End Process on: ndllzxy.exe omniscient.exe olehelp.exe Go to Add/Remove Progams in your Control Panel and remove (if found): WindowsSA Close all browser windows, scan with HJT, and have it fix the following entries: R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [url]http://websearch.drsnsrch.com/sidesearch.cgi?id=[/url] R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://websearch.drsnsrch.com/sidesearch.cgi?id=[/url] … |
| | Next time please post a copy of your log instead of an attachment. Oops, guess you did that when I wasn't looking :o Close all browser windows before fixing anything with hijackthis. Scan with HJT and have it fix the following entries: These only if walla.co is not your ISP: … |
| | Are you absolutely certain they should be deleted? Did you try it from Safe Mode? You can right-click on the dll and go to Properties, that may give you a clue as to what program is using it. |
| | The Freshbar takes a bit of work to get rid of (I know because I recently had it). Scan with HJT and have it fix all the entries that say about:blank, all the O17 entries, and the O15 entry. Reboot into Safe Mode Search for, and delete the following, if …  |
| | Try emptying the temp folders while in Safe Mode (you'll be going there in a bit anyway). This is just a quick review because I know you've been waiting; I'm sure there is more, but I've gotta get some sleep. Close [B]all [/B] browser windows, scan with HJT, and have … |
| | Hi american and welcome to DaniWeb! As the post right before yours suggested, you should have posted this in a new thread. It appears you have some sort of spyware/adware problem. You should check this thread and follow the advice to clean up your system: [url]http://www.daniweb.com/techtalkforums/thread5690.html[/url] If you need to … |
| | Please put hijackthis in it's own permanent folder (like c:\hjt\hijackthis.exe). Right now you have it in a temp folder so that's where it will save it's backups -- and they could easily be deleted from there. Also, have all browser windows closed when you scan with HJT. After you put … |
| | Go to Windows Update and get the Critical Updates for your system. Hold off on SP2, however, until your system is clean. |
| | Reboot into Safe Mode (you can get to the Safe Mode boot option by hitting the F8 key as your computer is starting up) Open Windows Explorer, and in the Folder Options, Tools, View, select "show hidden files and folders," and uncheck "Hide protected operating system files." For every user … |
| | Here are complete instructions for XP: [url]http://www.daniweb.com/techtalkforums/thread6632.html[/url] This thread has instructions for a dual-boot, but for Win98, just use the first part: [url]http://www.daniweb.com/techtalkforums/thread11350.html[/url] |
| | Open Task Manager & end process on bitnelt.exe Go to C:\windows and delete bitnelt.exe manually. Scan with hijackthis, check the boxes next to all the following entries, make sure you [B]close all browser and explorer windows[/B], and then hit the "Fix checked" button. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [url]http://dr-search4u.com/sp.htm[/url] … |
| | Sorry for the slow response. Scan with HJT, check the following entries, and hit Fix. O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - [url]http://software-dl.real.com/2656dad...RdxIE601_es.cab[/url] If you're still having a problem, … |
| | Just noticed this has already been solved. :o |
| | Before you reinstall Windows, go to this thread: [url]http://www.daniweb.com/techtalkforums/thread5690.html[/url], and get Hijackthis. Post the log it generates in the [B]Virus [/B] forum. If you do decide to reinstall, complete instructions can be found here: [url]http://www.daniweb.com/techtalkforums/thread6632-clean+install.html[/url] |
 | I don't see anything bad in your log. As far as the Norton notice, I find it hard to believe, but it seems that reminder can't be stopped unless you uninstall the program or update it ([url]http://www.dealtime.com/xPR-Symantec_SYMANTEC_Norton_SystemWorks_2004_Professional~RD-158249684612[/url], [url]http://www.gripe2ed.com/scoop/story/2003/5/23/124055/405[/url]) NAV Cfgwiz is a resource hog (according to this [url]http://startup.iamnotageek.com/srch-cfgwiz.exe.html[/url]), but they … |
| | If you look through this thread, you should find a patch for SP2 that may fix this problem: [url]http://www.daniweb.com/techtalkforums/thread10031.html[/url] If you decide to uninstall SP2 (not recommended by me), you can do it from Add/Remove Programs, but you need to be in Safe Mode.  |
| | Re: "DNS Error Page" Go to Add/Remove Programs in your Control Panel and remove 'Window Search', 'Window Searching', 'Lop.com', 'LOP SEARCH', 'Browser Enhancer', or 'Ultimate Browser Enhancer' if found. You may be given a code to insert, if so, insert it and reboot. Use ctrl-alt-del to access Task Manager, click on the Processes tab, … |
| | Re: HJT log help pls Use ctrl-alt-del to access Task Manager and End Process on [B]flashget.exe[/B] Go to Add/Remove Programs in your Control Panel and remove this, if found: Flashget Close all browser windows, scan with HJT, and have it fix the following entries: R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) O2 … |
| | Please update your hijackthis to version 1.99 and post a new log. Sorry for the slow response, been busy here lately. |
| | Although pcOrion has reportedly cleaned up it's act, I would still trust the programs caperjack recommened over it. You can find out more about pcOrion here: [url]http://www.spywarewarrior.com/rogue_anti-spyware.htm#swn_note[/url] |
| | Close all browser windows, scan with HJT, and have it fix the following entries: R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = [url]http://www.isearch.com/index.php?ap...ODQ6NTo5&Terms=[/url] R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://www.isearch.com/index.php?ap...ODQ6NTo5&Terms=[/url] R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [url]http://www.isearch.com/index.php?ap...ODQ6NTo5&Terms=[/url] R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 R3 - Default URLSearchHook is missing O2 - BHO: ohb - … |
 | You can find a link to Hijackthis (aka HJT), as well as other useful advice in this thread: [url]http://www.daniweb.com/techtalkforums/thread5690.html[/url] Make sure you get the latest version of HJT (1.99) and post it in the [B]Viruses, Spyware, and other Nasties[/B] forum (formerly known as the Security forum) |
| | Before posting another HJT log, try running all your scans while in Safe Mode. Then reboot into Normal Mode, close all browser windows, scan with HJT, and post a new log. |
| | Re: 98se Help Did you install the motherboard drivers? And up-to-date drivers for all the other hardware in your computer? Sounds like motherboard drivers to me, do you have the floppy or CD that came with the motherboard (or computer)?  |
| | Sorry, but this seems to have been overlooked. If you still need assistance, could you please post a new log? |
| | According to this it can: [url]http://www.lavasoftsupport.com/index.php?showtopic=54599[/url] There's more info about it here, but it doesn't address Windows Updates: [url]http://www.pestpatrol.com/PestInfo/V/VX2.asp[/url] |
| | Sorry about the delay in responding to your post, it's been pretty busy here lately and yours seems to have gotten overlooked. If you can't find an .exe file using Google, it's usually a pretty good indication that it's bad. Before you fix anything with hijackthis, it needs to be … |
| | Hey, it's my turn for some help again! I got this hijacker that put a FreshBar toolbar on my computer, kept getting Strip Poker popups, and a balloon in the taskbar saying I needed to update my MS firewall. I think I've got most of it fixed, just want some … |
| | Follow the suggestions in this thread (including the free antivirus scanners): [url]http://www.daniweb.com/techtalkforums/thread5690.html[/url] Get hijackthis, explained in that thread (make sure you get version 1.99) and put it in it's own folder. Close all browser windows, scan with HJT, save the log, then copy and paste it here. |
| | Download moveonboot from here: [url]http://www.webattack.com/get/moveonboot.html[/url] The file(s) you choose will be deleted on reboot. MoveOnBoot allows you to copy, move or delete files on the next system boot. This comes in very handy, if you need to replace or delete files which are locked by other applications, loaded into memory … |
| | Download Killbox from here: [url]http://www.downloads.subratam.org/KillBox.exe[/url] and put it on your desktop. Open Killbox and select the option Delete on Reboot. Copy & paste the full path of this file into Killbox's topmost box. C:\Program Files\Admilli Service\AdmilliServ.exe With the full path to the file name in the topmost textbox, and click … |
| | Use ctrl-alt-del to access Windows Task Manager; click on the Processes tab, and look for [B]?hkdsk.exe[/B]; if it's there, click on it to highlight it, and then click End Process down at the bottom. Do the same for [B]eetu.exe[/B] and [B]id53.exe[/B]. Close Task Manager. Go to Add/Remove Programs in your … |
| | You need to update HJT to ver 1.99, it may find things this version didn't. The only thing I see here is: R3 - Default URLSearchHook is missing (Close all browser windows before fixing) Post a new log after you update HJT. |
| | Can you post the log Symantec's tool gave you as crunchie requested? You need to go to Windows Update to get all the Critical Updates for your system. Whenever you scan with HJT (or fix anything with it), make sure all browser windows are closed. Scan with HJT again and … |
| | You already have a thread going dealing with this and got an answer to it -- Get the IE Updates. :) |
| | Before fixing anything with hijackthis, put it in it's own folder. You can do this by right-clicking on an empty area of your desktop, point to New, and then click on Folder. Name the folder something like HJT, and then drag the [B]hijackthis.exe[/B] that is on your desktop into that … |
| | Crumba, before fixing anything with hijackthis, you need to put it in it's own pemanent folder (right now you have it in a Temp folder); something like c:\hjt\hijackthis. Also, close all browser windows when scanning with HJT. After you've put HJT in it's own folder, close all browser windows, scan … |
| | [QUOTE=ravengal_420]Wheeee Im back lol My Norton was out of date so I saw AVG on another post and decided to give it a shot. Welllll... found a couple things Norton didnt, but there are 4 Trojan Downloaders that are on my computer and AVG is no help in deleting them! … |
| | Reboot into Safe Mode (you can get to the Safe Mode boot option by hitting the F8 key as your computer is starting up) Open Windows Explorer, and in the Folder Options, Tools, View, select "show hidden files and folders," and uncheck "Hide protected operating system files." For every user … |
| | Re: msnp32.dll Here's what it's for: [url]http://www.liutilities.com/products/wintaskspro/dlllibrary/msnp32/[/url] And here's a site where you can get it: [url]http://www.dll-files.com/dllindex/dll-files.shtml?msnp32[/url] |
| | Does this thread help at all? [url]http://www.daniweb.com/techtalkforums/thread10958-gridlines.html[/url] |
| | I wouldn't recommend getting SP2 until after you've got your system clean. You can find more info on SP2 here: [url]http://www.daniweb.com/techtalkforums/thread10031.html[/url] Before you fix anything with HJT, you should put it in it's own folder. Right-click on your desktop, select New Folder, name it (something like HJT), and then drag … |
| | [QUOTE=CRIS_650510]well yeah when i used my computer yesturday well i always use the internet!!! and yeah i couldn;t access any sites!! i think the problem is winpack.exe beacause my computer didn't have this process well yeah i will like to get some help of removing this??? any help guys???[/QUOTE] Could … |
| | Re: "DNS Error Page" You may want to consider disabling CTHELPER.EXE Quote from sysinfo: "CTHELPER is a background task that is a plug-in manager for Creative drivers. The theory is that 3rd party manufacturers can use the CTHELPER plug-in interface to produce drivers, add-on features, and fixes that will integrate with a tighter fit … |
| | AIUpdate could be part of some software from a Taiwanese computer company ([url]http://www.ktop.com.tw/kautai/index-english.htm[/url]) as it can be found in thier code ([url]http://www.ktop.com.tw/kautai/32.htm[/url]). Unfortunately, I don't read Chinese, so I don't know what kind of program it is. You can take a look at their site and if any of that … |
| | RPrice, the 'Running processes' list in your log looks rather skimpy; was this log generated while in Safe Mode? If so, please post your next log while in Normal Mode. |
| | Wow, a lot happened while I was posting this! :eek: Do you have a firewall (and is it enabled)? That should be your first line of defense (a hardware firewall is better, but a software firewall at least -- both is best!). Next would be an up-to-date anti-virus program. The … |
The End.