2,959 Posted Topics
 | |
| | The bridge.dll problem is definitely spyware related. I'm moving this to the Security forum, as that is where we deal with spyware, virus, etc. issues. Read through many of the previous posts in Security to find the solution to the bridge.dll error and many other spyware-related problems. :)  |
| | You've got quite a few nasties in that log. First, have HJT fix the items in red below. The other items are suspect, but I can't positively say they should be deleted: [QUOTE=xrayeyes2u] [color=Red]R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = file://C:\WINDOWS\System32\SearchBar.htm[/color] [color=Red]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = [/color] [color=Red] R0 - HKLM\Software\Microsoft\Internet … |
| | Hi lynxmc, welcome to TechTalk! :) As a new member, I would ask you to read our [url="http://www.daniweb.com/techtalkforums/faq.php?faq=daniweb_faq#faq_rules"]posting guidelines[/url], especially the "Post in the correct place" section. For reasons of clarity, we ask that members not post their question in a thread started by another member. When multiple questions from …  |
| | [url="http://www.tldp.org/"]The Linux Documentation Project[/url] is great place to start. They have online guides, HOW-TOs, and other reference material for all things Linux, including networking topics such as firewalling. :) |
| | Is that causing you problems? If so, please give us a detailed description of those problems. I've seen different solutions posted for problem of those files being missing; read the links in the following Google search for some of those solutions: [url]http://www.google.com/search?q=iecont.dll&hl=en&lr=&ie=UTF-8&start=10&sa=N[/url] |
 | Can you get a screen if you start up in safe mode? If so you could be looking at a corrupted driver, as safe mode loads the generic/stock vga.sys driver instead of your card's driver. Speaking of what you can't display, is it just GUI mode that isn't working, or … |
| | What program did you use to remove the "nastyware"? Can you boot in safe mode? If so, try this: Have a look in threads in our security forum for instructions on how to download and run HijackThis, Ad Aware, SpyBot, and CWShredder. Download those programs on a working computer and …  |
 | Re: HiJackThis [QUOTE=Squirty]80 GB but only can use 32 GB, Window XP..[/QUOTE] That would be true if you tried to format the drive as FAT32 instead of NTFS. XP and Win 2K can handle FAT32 volumes >32G, but they won't let you create a FAT32 volume >32G. Another possibility is that some … |
| | " O4 - HKLM\..\Run: [RunDLL] rundll32.exe "C:\WINDOWS\Downloaded Program Files\bridge.dll",Load" Having HJT fix the above entry should get rid of the error message, but if you haven't done the following yet, you should do so and then post a fresh HJT log: 1. Download and run [url="http://www.lavasoftusa.com/"]Ad Aware[/url] and [url="http://www.safer-networking.org/"]SpyBot[/url]; let … |
| | [QUOTE]With a bit of luck, you just might be able to get a bit more out of it[/QUOTE] Yeah, but with the symptom descibed that's probably all you'll be getting with that tweak- she's a'goin' down, captain. :mrgreen: It will get progressively worse without a proper repair, but if the … |
| | 1. Have HJT fix this entry: R3 - URLSearchHook: IncrediFindBHO Class - {5D60FF48-95BE-4956-B4C6-6BB168A70310} - (no file) 2. The "smartbotpro" and "default-homepage-network" entries are indicative of a CoolWebSearch infection. Follow the instructions [here](http://forums.net-integration.net/index.php?showtopic=15551&st=0&#entry74863) carefully and post a new HJT log. Moved to the Security forum... |
| | It's a common problem, try the steps in the link below: [url]http://www.spywareinfo.com/forums/index.php?showtopic=43492&st=0[/url] If that doesn't do the trick, some of the following Google links offer more options: [url]http://www.google.com/search?hl=en&ie=UTF-8&q=th.msie.cc+spyware&btnG=Google+Search[/url] Also use our own Search funtion using the phrase th.msie.cc; we've had our own fair share of posts concerning this problem in … |
| | Could be a few things: - Do you get a display if you remove the newly-installed drive? - Did you make sure that you didn't jostle/loosen any component or cables while you were installing the drive? Recheck you cable connections, make sure all of your cards/RAM sticks are firmly seated, …  |
 | cisgms, We ask that members not tag their questions on to a thread already started by another member. When multiple questions start getting asked within a single thread it can quickly get confusing to follow which answers relate to which question. This is known as "thread hijacking", and it isn't … |
| | Under the File menu in IE, go to Import and Export. This will start the Import/Export Wizard; things should be pretty straightforward from there. |
| | That behaviour could be caused by a few things, including software corruption, faulty hardware, and yes- viruses or spyware. - Can you start up correctly in safe mode? - Can any of the other 3 computers you've received calls about start in safe mode? If so, start looking from there. … |
| | Congratulations, you've got spyware! :mad: That file is part of the WinTools spyware package. Links in the following Google search for " WTOOLSA.EXE" will give you more information and removal instructions: [url]http://www.google.com/search?hl=en&lr=&ie=UTF-8&q=WTOOLSA.EXE+wintools&btnG=Search[/url] I'm moving this to our Security forum. Read through the post there to learn even more about spyware/adware/hijack … |
| | Knowing your operating system version, version of IE, and method of connecting to the Net could help us. Does this only happen in circumstances where you're trying to submit data (username and password, for example), or does it happen frequently just in general browsing? For that matter, does it only … |
 | [QUOTE=murphy2747]Hi, Judie, you need to direct your question to a new thread. [/QUOTE] True- We ask that members abide by our "one member's question per thread" rule. New members should read the "Forum rules when posting" announcement at the top of each forum's main page for more info on our … |
| | [QUOTE=alc6379]I believe the general concensus here is that "Bridge" is related in some way or other to spyware...[/QUOTE] Yeah, it definitely is. It's at least related to the Golden Palace/Gold Casino" malware packages, might be a component of other malicious programs as well. Moving to the Security forum- you'll find … |
| | The actulice pop-up is a bit tricky. The beastie responsible for it seems to come in a few different flavors, with different users reporting different filenames for the culprit and, correspondingly, different fixes. Have a close read through thread I've linked to below; the different solutions posted there seem to … |
| | Welcome to TechTalk! I'm moving this to our new Security forum, as that's where we're dealing with all of these spyware/virus/etc. problems now. Have a read through the other posts in Security; solutions to the dreaded "bridge.dll" error and many other problems caused by malicious programs have been posted there … |
| | [color=Black][size=5]Ludootje?? [size=3] Just can't get away from you, can I? :mrgreen: [/size][/size][/color] |
| | Re: System 32 Folder [QUOTE=crunchie]To be fair on the original poster & seeing how his problem is still ongoing, it would be unfair to him/her to start doing your log. Please start your own thread where someone will be glad to help you.[/QUOTE] Yes. It is our policy that threads remain focussed on the … |
 | [QUOTE=kc0arf]3) shutdown -h now will bring the box down right then and there. Do a man shutdown and see if you can give the users a few minutes to logoff properly[/QUOTE] The "-t" option controls that (in seconds). For example: /sbin/shutdown -t 60 -h To wait 1 minute before halting … |
| | When crunchie said: "[color=red]not directly on your hard drive", [color=Black]he meant not in the root (C:) directory. Create a C:\HijackThis folder or something like that and save HJT there. [/color][/color] |
| | [QUOTE=alc6379]Interesting... could have sworn 2000 could do it...[/QUOTE] I don't [i]think[/i] so Alex- I think feigned is right about that one. (Of course, what do I know, spending most of my waking hours in Linux-Land as I do... :mrgreen: ) |
| | Jim, We ask that members not "tag" their questions onto a thread started by another member- please post your question in its own separate thread. It just gets too confusing when multiple questions are being asked and answered in a single thread. For more info on our general posting guidelines, … |
| | Have a look through some of the threads in our Security forum to see if you can find any helpful suggestions; there are some nasty viruses/trojans/malware programs out there which can cause this behaviour. The fact that you say that it happens when you're online makes me suspicious of this. … |
| | Re: help You need to give us more information: - What are the [i]exact[/i] errors? - What version of IE? - What version of Windows? - Do print errors only occur in IE? |
| | [QUOTE]I am a goose: entered this thread in MAC forum by accident: every body will think (and know) I am a goose.[/QUOTE] I deleted that other thread for you, Mr. Goose. (Honk!Honk! :mrgreen: ) |
| | I've seen a few reports of that exact error by others who had just installed SP4, but no definitive fixes unfortunately. Uninstalling SP4 was the only solution that anyone found. :( I repost if I can find any more info. |
| | [QUOTE=Jra2003]k, i finished the laptop, should i make a new HJT log for both so you can look over it and make sure nothing was skiped over?[/QUOTE] Yup, that would help. |
| | Re: what is this???? Yzk is right- it appears to be a new worm or malware from what I've read. Do the Ad Aware/SpyBot checks, and also a full anti-virus scan. Make sure you are using the latest virus definitions when you do. The beast appears to use varying filenames, so manual removal can … |
| | Does this happen only when you've got a certain program (or programs) running when the screensaver kicks in, or does it happen even with no applications open/running? Given that you say your computer's performance has been degrading lately in addition to the screen saver problem, you should probably check your … |
| | The short answer is: - Have HJT fix this entry: O4 - HKLM\..\Run: [RunDLL] rundll32.exe "C:\WINDOWS\System32\bridge.dll",Load - Reboot - Delete the bridge.dll file if it does exist on your system. The longer answer is this: - Your log shows that you were running HJT from the desktop, and that IE … |
| | [b] C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Documents and Settings\EtherBoo\Local Settings\Temporary Internet Files\Content.IE5\S9E38HUR\ie6setup[1].exe C:\DOCUME~1\EtherBoo\LOCALS~1\Temp\IXP000.TMP\ie6wzd.exe[/b] The above entries appear to indicate that not only did you run HJT while IE was still open, but that some sort of update to IE was running as well. Close [i]all[/i] open programs, run HJT this again, and … |
| | Please run Ad Aware, SpyBot, CWShredder, and a full anti-virus scan if you haven't already. Let the utilities I just mentioned fix whatever they find and post a fresh HJT log after that. Instructions for downloading, installing, and running the utilities can be found in many of the past threads … |
| | Have you not read through some of the other threads in this forum? The bridge.dll problem has been asked and answered many times here before. Please have a look through the threads, use the suggestions offered in them, and then post back if they don't work. |
| | Re: Bridge.dll guata, You've now posted this question in no less that 3 different threads as far as I can tell. Please read the "Forum rules when posting" Announcement at the top of each forum to familiarize yourself them, especially these: "[b]Do not flood the forum [/b]Do not flood the forum posting … |
| | caperjack is right- the Windows Security Assistant/rundll32.vbe entries indicate a CoolWebSearch infection. Also, after you run the removal utilities, do a search for file named "hosts" on your system. Open it in Notepad and make sure that aside from some lines of comments at the beginning, it only contains the … |
 | Re: what OS to use? Bloody Slackers! :cheesy: [QUOTE=i686-linux]Also, Redhat 9's support life is almost expired.[/QUOTE]Yes. Version 9 was the last official freely-distributed "Red Hat Linux" release before they went to the (not free) Enterprise line and spawned the (still free) Fedora project. Fedora is not a direct Red Hat product; RH supports the effort …  |
| | [QUOTE=dvr]never mind I had another PC on the network sending requests to my computer. my bad :o[/QUOTE] D-oh! :mrgreen: (marking as solved) |
| | Now that you've done a full reinstall, you should see if you can get SpyBot and Ad Aware to run- it won't take long for the "nasties" to return on a broadband connection (I got a few of them within only 1/2 hour of plugging my new laptop!) |
| | [b] C:\WINDOWS\System32\wuauclt.exe[/b] On Win ME wuauclt.exe is a valid system file related to Windows updates; on all other versions of Windows, it indicates a trojan. The description is here: [url="http://securityresponse.symantec.com/avcenter/venc/data/backdoor.clt.html"]http://securityresponse.symantec.com/avcenter/venc/data/backdoor.clt.html[/url] I would seriously suggest the following if you haven't done this already: - Get the most current virus definitions for … |
| | [QUOTE=HPriser]How do you add the links to web sites and call them "[u][color=blue]here?[/color][/u]"[/QUOTE] To save yourself some typing (and avoid possible typos), there's easier way to create links when composing a post, assuming you're using the Standard or Enhanced editor options: - Highlight the word or words that you want … |
| | [QUOTE=crunchie]Perhaps there should be a sticky asking ppl to search the forum for their particular problem, then go through the same process of removal?[/QUOTE] Keep in mind that many of the people coming to us lately for help with these spyware problems are new to technical support forums and are … |
| | Yup, you've got unwanted guests on your system- MSIESH.dll is related to the CoolWebSearch hijacker. If you have accesss to another machine, I'd suggest downloading the lastest versions of SpyBot Search & Destroy, Ad Aware, and CWShredder and burning them to a CD. You can get the programs on to … |
| | Close IE and run HJT; have it fix the following: R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [url="http://searchexe.com/searchbar.html"]http://searchexe.com/searchbar.html[/url] R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://searchexe.com/searchbar.html"]http://searchexe.com/searchbar.html[/url] R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://searchexe.com/passthrough/index.html?http://login1.telia.com/"]http://searchexe.com/passthrough/in...gin1.telia.com/[/url] R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [url="http://searchexe.com/searchbar.html"]http://searchexe.com/searchbar.html[/url] R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = [url="http://searchexe.com/searchbar.html"]http://searchexe.com/searchbar.html[/url] R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = … |
The End.