Posts by gerbil

sudo dd if=./linuxmint-17.1-cinnamon-64bit.iso of=/dev/sdd bs=1M

You copied a file (image) to a device, not a partition - everything under the iso is hosed, the partition table has been rewritten. Why do they nick dd the data destroyer? beats me...
Anyway.... Linux conforms to the ntfs spec, so the backup table will be overwritten, also. What will remain are the old sector boundaries that have not actually been overwritten (by your iso or other) for all old partitions - TestDisk can find those using its sector search (Deeper Search).
You must recognise the valid from all that it finds, and write them to the table. Of course, the new partition sector will be the first valid one. Your searches can be quicker if all your partitions were written to cylinder boundaries (XP spec); if not necessarily so (Vista, W7 spec), then the search is quite slow.
Each boundary sector (there are beginning and end sectors) contains a table with beginning and end info for that partition, and the MFT location. You need those MFTs - without them, files are simply lost. Testdisk can read file tables, but not rebuild them. So if you choose an incorrect boundary then TD will likely not find that partition's FT (you test by checking file lists, contents).
When satisfied, you write the table. Not correct? Nothing more is lost, but time - you do it all again.
As for your OS, 1.4GB is a lot to lose; there is an …

Deceptikon, be in awe of Jorge.

Yes, latest Win to Flash is loaded.
So you get around it. You keep only the one language (409 is English), Logs, Options, EULA, .ico, and the exe.
And then no problems with adwares, add-ons.
Of course, there is also Rufus. I think it might even be better. Faster, anyway. It's what I use.

W10. I could worry that it is going to be regarded as a service. You know, something like electricity, gas, water, for which you pay a monthly bill. M$ would like that, is probably moving to it... W10 is a free upgrade from W7 & W8, but...wait for it..."W10 will be free for the first 12 months".
But I won't worry, actually, cos am sticking with XP.
Suck on that M$.

Everything that is legal you will find here:
http://forum.xda-developers.com
I don't know from your post whether you are attempting to unlock someone's PW, or to unlock from a provider. Certainly they will guide you to unlocking from a provider. But then, often too, will the provider if you pay a fee or a certain time has elapsed. In PNG it is possible that your provider is TLS? - in which case, the last advice does apply. Check xda for your model, visit the forums.
Okay, from your topic header, it's a password unlocking you seek... Mobile phones are computers - you can ...k, I'll stop here.

When a lappie does that it is almost always a heat problem. If you must use it on your lap, keep your legs apart. On a desk - prop it at the back.
Still does it, then pop off the base cover around the fan and heatsink and remove the dust and fur. Nobody takes manufacturers to task over it, so they see no need to improve the venting.

I'm reading this as someone who is annoyed by people wearing and using bluetooth gear. Even strangers. Company risks a bricking. By "certified nerds" I know you mean top-hole nerds who have been certified as unfit to be in public places. People who really know me turn off their mobile phones when spending time with me. Okay, I'm so old fashioned. But I know and understand the hierarchy of importance, and the concept of politeness.
Glass was just a wrong turn in the employment of technology. I'm thinking smart watches will recognised as such, too, one day.

Could be any of three or four things...
-dust-laden heatsinks - brush and vacuum/blow clean
-driver software corrupted - reload it.
-faulty RAM - test it with Memtest86+
-faulty video card - stress test it with Furmark
I'd probably do those things in that order. Putting the worse news toward last...

Ye-es... but somewhat slowly cos of not much RAM, and a slow CPU. But there are tablets designed for W8 specced like your system.

Anyway, from the tenor of your post I'm guessing that you do not have a backup disk drive right now. Not just a partition on your main hdd... that just does not cut it as backup at all. A separate hdd for backups and warehousing of stuff is safer. So use it for that. You could even put your main page file on it as an outer (first) partition to speed your sys a little, with still a small one on your main hdd.
If you don't put a page file on it, but just use it for backups and warehousing then set it in power options to shut down after, say, 10 minutes, because you will likely set your backup software to run just once daily. Less wear and tear on a seldom used drive. With ten minutes, if you are doing incremental backups every 5 or so minutes on some important file as you use it, it will stay on for the duration.

"I just Reinstalled Windows 8.1"
So where was the loader for the malware?

You can see Grub's command prompt. Now you need to locate your /boot directory. I think this should show it (throughout I am assuming that partition 4 from your Diskmgmt pic is the Linux partition):
ls (hd0,3)/
-you should see vmlinuz initrd.img and boot/
If that doesn't show /boot etc, then ls (hd0,tabkey) will list the drive options. Search the likely one with ls.
So then you would run:
root (hd0,3)
kernel /vmlinuz root=/dev/sda4
initrd /initrd.img
boot

Did that boot ubuntu?
(Grub counts from zero, linux from "a" and one)
ls is LS....

It will be buried inside one of your Chrome add-ons. Delete the lot and reload the ones you want.

I think, Dani, that it is around about now that you should consider introducing a lock to threads older than, say, one month, with perhaps a special request from the OP needed to enable reinstatement.
Yes, I know there is that long-running whopper commenced by HappyGeek about the life, times and near-death experience of XP, but you could tag such as exempt.
If he ever dares start one like that for Vista I would not expect it to arouse such fervour.

And so long ago, it probably doesn't even smell bad now.

Aw, heck... I thought the chap hoping to make a living writing batch files would have helped you with this. Because you mention dir I assume you are using the cmd window? Well, these two lines in a batch file will give you a listing.. put it on your desktop and simply drag any drive or folder from explorer into it.
dir %1 | more +3 >> c:\test.txt
start c:\test.txt
With a bit of fiddling you can remove the leading date/time charaters also.

If some page constructs (forms, elements, graphics...) like... as you mention, .gif files are not sometimes displaying correctly then it can often be as a result of poor page scripting, and minor/major incompatibilities with the browser you are using. Browsers differ. There is Google's Chromium Project which is setting up to become an open source standard for browser development, and both Opera 25 and Chrome draw from it. Do not expect all page features to work on it/them. As an example, I do not bother trying to open banking sites with Opera 25 - the result is too hit and miss. Firefox - open source, and extreme. It never fails to work with any web page in my experience; I use it for banking and other "sensitive" sites.
Try loading the same pages in different browsers and note how the treatment can vary. It shouldn't, but occasionally does. Html5 is the newest standard, not all browsers fully handle it; MPEG support varies, and so on.
I stick with an older version of Firefox (28) because I don't like not being able to hide Navigator bars as is not possible with the 30 series. Sure, there is full screening via menu or F11, but then you lose the Taskbar. And strangely enough , full screening varies too. You will find the whole screen used, but elements not expanding to take advantage of it. Horses for courses.
Anyway, try another browser... Firefox?.., and then which version series...? because with …

An administrator does not normally have access to the personal files of other users, those in their My Documents folder. But it's a computer, the stuff is there....

It does pay, once in a blue moon, to check AV review and test sites. Windows Defender is non-competitive, ranks lowly because it is basic protection. Try av-comparitives for objective tests and comparisons, or "commercial" sites for somewhat subjective reviews (that is just the nature of their reviews). If you are using free, then check the ratings for such AVs. Free sometimes is not the same AV engine.

There is Java, and there is Javascript. Totally different.
Some applications use/require Java, and some applications that are run through websites for specific purposes, oh... like share trading displays, engineering functions and so forth. Most people don't require Java at all. It is not related to browsers, but some sites do invoke it. After Adobe products it is generally a user's biggest security risk, so if you do not specifically need it, don't install it. Javascript... used on many webpages - a lot of features (like some logins etc) will not work if it is not allowed in the browser's settings. Generally useful to "enhance your webpage viewing pleasure". Not much more a risk than is html.

You remove the password; the owner will of course notice this.
Look, it's a Windows OS; if you lose the laptop, it is OWNED by the taker, so don't use complex login passwords. They are NO protection at all. Your favourite food, dog, town.. anything simple will do.

Oh dear. Mods!!
I don't think that this site is one that encourages the use of "loaders". And a Loader will not make your Windows genuine, it will merely make it appear so by modifying the BIOS certificate to one from an OEM. But it's Microsoft's war, not mine...

Right. I have never resolved whether the stress of being assessed on points-heavy projects or major examinations was a valid test of work-readiness. Your real-world performance assessment is rather like the internship doctors must go through. Good luck with it.

"safely kept in the City Hall's vault for some reason"
Gosh. Just... gosh. Microsoft has an official download site for the W7 installer flavours. Free....

Finally, eBay are realising the consequences and possible damage to their reputation and bank balance, and risk to clients' digital security....
"It said it would be contacting users to alert them of the issue via email, its website, adverts and social media.
A spokesman added that the firm's engineers were in the process of rolling out a feature that would oblige members to choose new passwords when they next logged in, which should be live in each of the countries eBay operated in by the end of the day." -from BBC.
To Blackmiau, and others, EBay hackers stole password hashes and logins. Right now, they would be running decryption software, or have sold the info to those who will. PCWorld, in an experiment with realworld password hashes and realworld hacker/decryption experts, showed just how efficient the process can be. If decryption is happening, you can be sure that they have cracked many tens of thousands per day. Hence the now-forced password change.
""The database... included eBay customers' name, encrypted password, email address, physical address, phone number and date of birth," it said." -BBC. That is a lot of identifying information. Given that some people use the same password across several sites requiring such, and combine it with their email address to complete a login, the damage is very real, and not just to EBay.
Ok, so credentials of some personnel were stolen, giving the hackers a free ride. But two weeks to come clean and …

Note that AVG 2014 Free recco by PCWorld, tcll... :)

Well, you go and torrent it somewhere. You won't get any advice from here for that cracked OS.
Other than that, I spose...
And if you get burned with something nasty in it, you won't get help with that, either. More advice. Sigh.

I do gotta say.... if cars were like bloody computer systems then NOBODY would drive.
You can replace "cars" with any other convenience you normally take for granted. When electric sewing machines first appeared the motors were simply bolted on the outside, and the belt drive went to them instead of to the treadle wheel. For all best efforts, personal computers are still at that stage.

Clean. But...
-Remove all old Javas with JavaRa [free] and update to 7.51 [or go to the Java site, update and then run their test/old Java uninstaller tool]. Old Java installations are one of the two greatest security issues.
-Clear your MBAM quarantine.

Well, hats off to Symantec for proving that average is not beyond reach.

I am not sure that XP will die easily, and I'm pretty sure that this thread won't, either.

Hello, Lynn, and welcome. From what you say it appears that you have been infected by malware which has read your email address book and then proceeded to use those addresses to spread itself via infected emails. But you knew that... Anyway, that makes it a trojan (just an industry definition so that we know what we are dealing with). And no, I don't know why it should be called a trojan... they were the ones who got attacked by the greeks inside the horse. Maybe call it a Greek with Gift. Malwarebytes.org is a reputable group with a formidable anti-malware tool, which you used, but it only fights some groups of infections, and of course, only those it knows about. RogueKiller is generally run to stop malware processes that interfer with the running of anti-malware softwares; it has some killing capabilities, too. Neither software would have introduced problems into your system, nor did they remove anything.
There.
OTL, which you did not use, is a software which gives via its log a detailed look into your system, the processes which are running, or can be set to run, the add-ons to your browsers and so on. It is totally safe to run, but has removal capabilities if separately and specially instructed.

9) But I haven't a clue how to recover the drivers for my keyboard and mouse, which work so flawlessly in POST operations.
10) It seems what I need is a bootable short program that will install my keyboard and mouse USB drivers, and have wininit accept that installation, restoring my ability to use my keyboard and mouse in Windows 7, Ultimate, 64 bit.
-it's BIOS which controls the keyboard in POST, using a simple map. But your kb and mouse both work in BIOS? Then you have a UEFI? BIOS, which can pick up the drivers from a special partition.
So your BIOS is not handing over correctly to your OS during boot - the W7 drivers should load, and then depending upon your setup any proprietary drivers would be loaded from the Run key or wherever.
Use your W7 dvd and Setup, boot from that; it will use the W7 keyboard and mouse drivers. If it works then create a new partition, load a fresh W7 into that and see how your gear works.
Or haul the drive out, slave into another machine and go from there.
Check the drivers/replace them in your orig sys partition.
kbdclass.sys kbdhid.sys mouclass.sys mouhid.sys WdfCoInstaller01005.dll are the MS ones.
But it is rather strange that both those sets would die; they are loaded independently from the Service key; kb, mouse are unrelated. Do you have any software installed that might modify those drivers, some …

Actually, because you appear to have some sort of redirector trying to work, it would be advisable to run this tool as well... download it from http://media.kaspersky.com/utilities/VirusUtilities/EN/tdsskiller.zip
Unzip to your desktop, start it [right click and select Run As Administrator], accept both statements. Before you start the scan, click Change Parameters - in that window check the Detect TDLFS file system box, and the Check file signatures box.
Skip all files that are shown to fail signature check; leave any objects to be cured as Cure; if any objects show Delete, please change that to Cure.
Click Continue, reboot if requested.
Finally, a log file will appear on your C: drive - TDSSKILLER date.txt.
Please post that log.

Hello, 2rti,
as you might have worked out, HijackThis is incapable of working with W7, and it is no longer being maintained. In my view, as a malware revealer, it was at the end of its rope years ago, even with XP. MAlware moved on, HT did not.
Anyway, with a multifaceted problem such as you seem to have picked up, the first step is the easiest: run Malwarebytes. Get it from here... https://www.malwarebytes.org/
The free version will do; run the installer, and at the end allow it to start and update. When that is over, do the Quick Scan. Delete all it finds, reboot if it suggests it. Post the log.

Things like this serve to support the notion that Apple users are more intelligent. As far as I am aware, it is not recorded that anyone has gone to a greengrocer for Apple products.
Ok, there is that brilliant BBC skit with Ronnie Corbett....

If that command is doing just what you wish, then put it into a desktop shortcut.
Rclick desktop, New, Shortcut, paste in your command, Next to name it. Done.
A cmd window will flash, but that's hard to stop without using WSH.

Gee, I don't know about that, RJ.
Sure, as far as devices go, my sys does not bother to show any but speakers - it seems to leave all that definition to the sound controller. So I plug something in to the rear jacks, the controller detects that action and asks for confirmation of what I have plugged. But as for the front jacks, control is not so simple as in a switch contact redirection of speakers to headphones.... it's individual lines, chip controlled. I can plug speakers or a headset into my mike jack, or vv; I just need to tell the controller that that is what I have done, and it sets it up. So I can run two headsets at once, or two mikes, speakers...
I wouldn't mind betting that there ARE systems out there with an action such as you describe.
If a headset is not working it is just so simple to plug in another set to test the hardware.

If you know what you are doing, then open a cmd window as System and run delete file from there. So, in a admin cmd window, enter:
at 12:34 /interactive cmd.exe
where 12:34 is, say, one minute ahead of your current time.

DON'T DO IT!!
Find a cave, and live in it.

I think this should give you the guidance you need to remove the message:
http://www.techrepublic.com/blog/window-on-windows/adding-messages-to-windows-7s-logon-screen/4390
Or, if you so wish, you can copy and save the following script to your deskto using notepad; name it cleanlogin.bat.
Double-click it to run it; you will be asked to confirm the steps. It will zero out the two value names, legalnoticecaption and leganoticetext

reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System /v legalnoticecaption
reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System /v legalnoticetext

Ancient, I'm using IE6 [rarely], but I'm going to guess nothing much has changed... :)
What if you physically edit this key [or sim, for IE10] to reflect your homepage URL?

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

So: "Start Page"="http://www.rottentomatoes.com/m/dogville/"

Or check that it at least reflects the home page that you tried to set?

Get imgburn. It's free. Build a recovery set of files from your two discs, then use Imgburn to create an image [an .iso file] from them on your hdd [Create image file from files/folders]. Default settings should work; extract boot files from one of the recovery discs. Creating a bootable image is not straightforward, is not a one-click operation, but the Imgburn helpfiles should steer you through it. There is no need to burn a cd, so no cost as you learn.
Get Unetbootin. It's free. Use that to load the iso onto your UFD.

Phew. Numbers.

To enlarge...
The ATA-6 /Ultra DMA100 standard provides for a 48 bit LBA address space for sectors [Ultra DMA133 is just faster], so that is the current hardware limit, I believe. 2^48 * 512B sector size = 144 * 10^15, or 128 * 2^50. That is 128PB. 2^50 is a PiB.
NTFS itself uses 32 bit addressing internally, although it is capable of 64 bits; NTFS uses 4KB clusters as address blocks by default, so theoretically you have a partition size maximum of 16TB. 2^32 * 4096 = 17.6 * 10^ 12, or 16 * 2^40. 2^40 is a Tib.
But if you forgo file compression capability you can set a cluster size up to 64KB with the format command.... and the limit for NTFS is then 256TB. Who needs file compression on a volume like that?

Threw out McAfee and put on AVG.
Aw, heck. For a light and hardworking load use Avira, or Avast. Both free. Either outperform the two you mention. And it's not only the opinion expressed in the report BigPaw recommended in his link above.
A lot of that committed memory you mention is going to be on your paging file. Mem mgmnt ensures only that needed absolutely, immediately or often is actually in RAM.

Would a moderator please kill the two links in the first post?.... the site is viral. Malicious.

If you learnt a few things by applying a little effort you could easily succeed at getting access to FB, and at the same time possibly fail miserably at what is somewhat more important - your studies, if you could not guess.
Children these days are so frightened of not being noticed; in their pursuit of attention they mistake it for worthiness.

No problems there, Q8i. Looks like you are ready to release into the wild, again.
Your trojan chose one of many ways to hide in Windows while having an effect upon something seemigly unrelated, hence nothing showed in Chrome itself, but only in IE settings.
You might google searchscopes. Most of the corrections we made in that Fix file were simply orphaned entries in reg, a tidy-up.

I just looked more closely at your screenshots... you still have Korean set as the default input language [that is why it is being used at startup as the system language]; you will have to change that default to another language before you can remove Korean as a service. That default also sets your keyboard layout to being one of the allowed set for that language.
There are other tools available which give a more in-depth look at your system, the one I prefer is OTL, but I must say that so far I do not see any indication of malware. If you still fear a rootkit then perhaps try GMER, but generally rootkits are there for a purpose such as to make money from your actions by pushing your searches through a pay per click advertising site - you would likely notice.
==Download gmer.zip from http://www.majorgeeks.com/GMER_d5198.html ...or the exe from http://www.gmer.net/download.php - it will have some obscure name.
-dclick on gmer.zip and unzip the file to its own folder or to your desktop.
-close all running programs.
-dclick the .exe to start it; wait for the intial scan to complete [a few seconds]. Press the Copy button, open Notepad and paste into it.
-Then, if you did NOT get a warning at startup about rootkit activity, leave checkmarks ONLY at System, IAT/EAT, Devices, Modules, Processes, Threads and Services; click the Scan button and wait for the scan to finish …

Right. Reset the Print Spooler to automatic, it's not the one I was interested in.
The problem lies with a startup entry in registry or elsewhere, and the best way to find that and fix it is with Autoruns. Download it (a zip archive) from http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
Or you can Run it from the site - there is a link for that.
Start Autoruns, it will open at the Everything tab. Search for and uncheck every instance of dlcjtime.dll -there may be more than one entry. Click OK, reboot.
Did that work?