It's a long time since I don't write an article in MA but I decided to explore some important concepts to analyze malware.
"Understanding packers and detecting a packed file" is a topic treated by @kram7750 in this thread :http://malwaretips.com/threads/malw...ng-packers-and-detecting-a-packed-file.42356/
I will talk to unpacking
The manual unpacking is definitely the most complex to learn. Although a malware can be sometimes much more difficult by a packer, it is much easier to explain the theory behind a malware, rather than explain the operation of a packer. This is primarily due to two reasons. First, you need to have a unpacking knowledge of a wider number of arguments: it is not enough to understand the machine code and know that debugging. In addition, the term "packer" is very generic. The packer implement all sorts of anti-reversing techniques and even an entire book would suffice to explain them all in detail.
I will try to make myself understood even by those who don't have a clue what a packer. However, it is useless to deny that you have to engage, and not just to see this introduction. Do not confuse, even if there are other threads, this article represents the real end of our route. If you include the following, all the rest you'll learn without difficulty and it will update your knowledge base package. Here, we define the article on manual unpacking the culmination of knowledge. To write this introduction I had little time guys. It is a very busy period for me. However, this lack of time well fits with the type of article that I write. Given the amount of knowledge that requires unpacking, I I will provide only a general understanding and I will bring towards other articles for the individual topics.
As mentioned, the term "packer" is very generic, then give a precise definition is not very serious. In other words, for protection. executables on Windows (there are even packer for other platforms, but not many) are, for example, EXEs, DLLs and sys. executables on Windows, although they have different extensions, are all Portable Executable. The Portable Executable, or PE for short, is a file format and the 90% of reversing of packer is aware of this format. Before speaking of the PE, I tell you in two words what you mean generically the term "packer".
The term "packer" means a program that:
Compresses (and if encrypt is called "crypter") data, as the code within an executable.
Add a piece of code at the end of the executable.
Change the Entry Point in the executable to run their code on startup.
The added code from packer deals, when run, to decompress the data and then jump to the original executable code, allowing normal execution. Protection, even if using a compression algorithm, typically adds so many their data to make the protected executable much larger in size than the original.
Surely you have noticed that I have introduced the term "Entry Point". An executable format, like the PE, has to know the operating system loader the location within the executable file, which starts the code to run. This location is called note entry point, in short: EP. After running the code packer, this jumps to the entry point of the original code, which, in the terminology of reversing, it's called Original Entry Point: OEP. EP and OEP because are two fundamental terms.
The information regarding the location of the entry point is located in a structure within the PE format and it is from here that you begin.
Well, as I said this is just a brief introduction to the subject that is going to confront so more detailed in the next thread.
I'm trying to install Renaissance Starter Edition, but the program just unpacks the files somewhere, and doesn't actually start the installation routine. I tried it at work, and it started installing, but on my PC at home, it unpacks the files, then nothing. It goes that fast, I don't know what the files are, or where it's put them. Any suggestions?
I've downloaded a large application (Quicken) in .rar format. I extracted it with Winrar and now I have 18 tidy little bundles of 15mb each in the intended directory. Bad news is I haven't the faintest idea what to do with them now. there aren't any .exe or installation files as far as I can see--just those 18 bundles. Can anyone straighten me out?
11 more replies
Yesterday I downloaded windows.iso via the Media Creation Tool (it took 8 hours!!). I clicked it today to unpack its contents and failed because an error message told me that there is no program associated with it. I panicked and associated it with Windows Media Player but am scared stiff to use it or do anything. Can anyone help please?
You can use the free program 7-zip to extract iso (and other) files: 7-Zip
I recently ordered a new PC from ironsidecomputers and it didn't work when I plugged it in, I later pulled the front connectors loose replugged them and was able to get it running but the reset powered it on power button reset the system. I was happy but PC was in the wrong spot so I turned it off put it where it need to be and nothing I tried all other outlets then the one that worked previously but nothing. I referred to manual and seemed original set up was wrong but I'm not getting to work in the right set up. What am I doing wrong is it just power problem? I would be talking to tech but it's the weekend. Motherboard is as rock z97 pro 3, Intel core I5 4590 processor, evga 500 watt, nvadia GeForce Gtx 750ti graphics card, 8 ram, win 10, enermax thorax case
Sounds like to me the front panel connection is hooked up wrong, which could do some damage to the system over time. If your not comfortable taking it apart and reconnecting all if it, I'd wait and take it back to the place where you bought it and have them look at it and fix it.1 more replies
I have just replaced my old desktop for a new one that comes with windows 7 64 bit. But not sure why ever since I started using the new desktop to unpack rars and especially rars with parts, both winrar and 7zip often have error messages like:
"Packed data CRC failed"
"The volume is corrupted"
"The file is corrupted"
For example, one of my family member who lives in Ireland wants to send me a bunch of videos and photos taken from a trip they went. He packed these bunch of files into three part rars and uploaded onto a file hosting website and so I have to download each one of them. I first tried jdownloader and downloaded them but couldn't unzip it. Then I tried to download in the normal way using firefox but still couldn't unpack. And I started to think is the pack corrupted?
But then I tried to use my netbook (with win7 32 bit starter os) and downloaded the files through this computer, it unpacked smoothly without a hassle. I then tried to copy the files I have downloaded using my new desktop to my netbook and try to unpack them there but again it saids the file is corrupted. That means somehow it's not winrar or 7zip's problem but the way my new computer writes the files into the hard disk creates corrupted files?
So what's wrong with my new computer? Even my old desktop won't have these problems. Is it because of the 32 64 bit difference? Perhaps my Ireland cousin packed the files with winrar 32 bit and i used 64 bit didn't work? Or ... Read more
Win Rar can be installed in bot 32bit/64 versions have you installed the correct version for your system6 more replies
Whenever I download a large archive, whether it's 7z, RAR format or some bin format (that's unpacked via provided installer), I always have problems unpacking.
What happens is that, while extracting, I receive errors about some files that are corrupted and cannot be extracted. The FUNNY thing is, if I try to extract the same archive again it says some other file is corrupted while the one that was "corrupted on my first try now extracts properly. I don't know how is that even possible.
1) I know that the archives I download/get from friends are not corrupted, and I can trust those sources.
2) I've tried basically everything, like re-downloading, trying with numerous attempts, and updating the software I use (7z, Win RAR, or Daemon tools for those bin archives I mentioned).
Any help? Thanks,
I'm wondering if your hard drive has some bad sectors. You might run a disk check program to see. Your drive manufacturer will probably have one.7 more replies
How do I unpack, but not install, SoftPaqs?
You can unpack a SoftPaq by running it with a few command line switches. To do this, open a Windows command box and refer to the following information:Unpacking a SoftPaq fileSp#####.exe ?pdf ?f<path> -s WhereSP####.exe is the Softpaq to unpack.-pdf is a run time switch that overrides the build parameters.-f<Path> is a run time switch that overrides the default path set at build time.-s instructs the package to unpack in silent mode skipping the welcome, license and directory screens.EXAMPLE:At the command box prompt (with Administrator rights to prevent access issues) go to the directory where the SoftPaq is and type the following: sp59909.exe -pdf -fC:\SWSetup\sp59909 -s3 more replies
HJT log removed as we analyze these only in the log forum and then only rarely. ~ OB
Please describe the problems you are having with your computer so we can assist you better.
Please update MBAM and run a scan in Normal Mode and post the log in your reply as well.
My problem is that if u wanna unpack an exe file, could be a setup exe., then it will save the data in the temp folder (Windows drive), and my problem is that i made a patision (or however to spell that in english.. ) so i got 10 gb for windows, so if my windows ****s up i will be able to just reinstall without worrying too much for my files. (Programs like registery mechanic will often solve the registery prob.) Anyways, this means i don't have enough space on my c-drive, as i should have given it more ofc.. Should have given it 15 instead, as my programs are on that drive aswel... anyways! thats not the matter.. the matter is that when some exe. files wants to extract they want to extract huge amounts of software before installing, im talking about 1,3 gb + here, and i cant get that much space without deleting half of my programs or so.. SO what i want to know, is there a way to manualy unpack an exe. file ? Or is there a way to change its unpacking destination, so it won't save in temp.. thanks for all upcomming answer.
- Hans, Denmark.
Change the place where it unpacks to the other partition you have for files, programs etc. This should be on the extraction wizard.2 more replies
Error while unpacking program, code LP5. Please report to author.
You are going to have to provide a lot more detail in order for anyone to be able to answer your question. Please include as much information as you can in your posts.2 more replies
This help request might fit in alternate discussion threads, but this seems like the most logical place to post... these could be 2 separate issues, but it feels like they are connected to me.
A - Unpacking any RAR, Zip, 7z, etc file - particularly large ones results in CRC or other unpacking errors 90% of the time. Sometimes a simple retry works, sometimes re-downloading the compressed file works.. sometimes nothing works. Anything over 1GB is almost sure to fail miserably every time (often fails on different files within the package.
(this occurs using winzip, winrar, 7zip)
B - Multiple game client crashes - Oblivion, Various MMORPG (WoW, LOTRO, many others) crash constantly.. if the computer doesn't freeze or blue screen, the error is 100% the client .exe file .. it doesn't happen just on strenuous load sequences or 'laggy' areas.. it can just happen sitting in the middle of an unpopulated area.. varies once per 1-5 hrs.. rarely goes 3 gameplay attempts without at least 1 crash.
Both errors have occured pretty consistently over the last 3 years.. i give up on some games that have more crashes than others.. and give up on some because i can never even unpack the game to play it.
Original System: Dell XPS 600 Purchased October 2005 .. problems started right away - but I just ignored most of them until after warranty
Video Card (6 mos ago).. was nvidia 7800 gtx, now nvidia 8600 i believe..
Hard Drive(3 mos ago) - was Maxtor... Read more
sorry - i hate bumping - put posted this late last night - figure there are more people on the forums now that hopefully have some advice!
how do i stop this message from coming on my computer all the time?
Error while unpacking program, code 2. Please report to author.
The captioned message appears whenever I try to update my antispyware application, so preventing it. When I stopped the firewall and runned a sfc /scannow and corrected 3 or 4 system files, it did open, but no more after reopening the firewall.
You may have other Spyware issues. First you can disable the Firewall. If the Spyware program opens then it has it's own Firewall that conflicts with Windows. You should also download CCleaner delete temp files, run Registry Cleaner too. Then download malwarebytes run full scan delete nasties.9 more replies
Hi guys, I have just recently upgrade my computer from Windows XP to Windows 7, but since then I haven't been able to install most games.
During installation, each game has a different error message but generally, the problem seems to lie in games that require unpacking large files, such as *.bin. For example, while trying to install Assassin's Creed 3, this message appeared:
An error occurred while unpacking: archive corrupted! Unarc.dll returned an error code: -7. ERROR: archive data corrupted(decompression failed)Click to expand...
Decompression failed with error code: -12. Bad CRC in the archive data0.binClick to expand...
Please help me, I'm going mad.
OS: Windows 7 Ultimate 64-bit (6.1, Build 7600)
Processor: Intel Core i5 CPU 750 @ 2.67GHz (4CPUs)
RAM: Elixir DDRam 3 2GB x2
GPU: ATI Radeon HD 4800 Series
Motherboard: ASUS P7P55D
BIOS: 9/24/9 Ver: 08.00.15
What I've tried so far:
Updated drivers of graphic card, mainboard, etc.
Ran as Administrator.
Installed in safe mode.
Tried installing these games in another computer (everything's fine)
Reinstalled Windows 7.
Formatted entire HDD, reinstalled Windows XP (now even Windows XP has this problem)
Bought a new HDD
what site are you downloading these from?
I changed my os to win 7 64 bit, I'm trying to install microsoft 2010 office 64bit from an online link. it downloaded and goes to unpack when I get an error while it's checking crc. It stops and the error says insufficient disk space or errors on disk. I have 80gb free on my drive. and I cleaned the disk from previous installs. Stuck?? Please help
Downloaded from what online link?
The last I heard, 32-bit was the recommended version even for 64-bit systems?
Choose the 32-bit or 64-bit version of Office - Word - Office.com
My son who was my computer genius and built and maintained everything on our computers passed away a couple of years a go and now I am left trying to figure out everything. My other son who lives in a different state told me to go here and stop buying spyware. So I've run the combofix, but now need help on what to do next. please:)
Hello there, and to BleepingComputer.
I am moving this topic to the Am I Infected forum.
First of all, I would like to know what problems you are having with your computer.
I am new to this and have to admit I understand nothing about a computer except turn it on, click on what I want and it pops up. So, imagine my surprise when I went to enter info into my quick books and saw the SecurityTool warning. Following my first mind (thank goodness) I didn't input my credit card information. I googled the name of the product and found the 'bleepingcomputers.com site to be the most informative. I want to know if the information in the Remove Security Tool (Uninstall Guide) the best way to go with this issue? I just read a post and there seems to be a pretty confident group of people here...can you please help?
Hi cocotoo,Yes, the guide that can be found on the BleepingComputer site removes the SecurityTool virus, If you follow the instructions and then post all the logs here, I am sure an advisor will be able to assist you in further steps.Follow this guide, post all logs and be ready for an Advisor!1 more replies
Hello, my name is Wayne, and this is my first post.
Actually, I'm having a problem with my Mom's computer (I take care of all the computers in our family). I'm not a professional, but as the youngest I guess I constitute our IT department.
So this thing is a Toshiba Satellite running Vista-32 bit. It has 2/3 of its hard drive unused, and it's never been used for any sort of file-sharing, entertainment, or other risky computer stuff. The only thing is that suddenly it's freezing all the time, and I do notice that CPU usage seems high, spiking at 99% at times when there's no software running except startup programs and the like. I have tried turning off some of the startups that looked suspicious to me and actually right now it does seem to be doing better! We'll see...
Anyway, I wasn't really asking for help at this time, because I'm hoping I've got it knocked for now. Wish me luck!
Did you get everything sorted?
Just introducing my self. I'm a 58 yr old, born and raised and still living in So Cal, USA. Still play basketball and love to watch NBA, so am enjoying the All Star Game hoopla. I don't know if I'm supposed to post my problem here or not, but here goes anyway. I somehow downloaded an "antivirus" program that calls itself "System Tool", but it is really a virus, and a nasty one at that. It has completely taken over my computer, (running xp home, service pack 2). I am running Malwarebytes as I am writing this , from safe mode, because in regular mode, I can't execute anything, (I get a message telling me that I can't run that program because it is infected). It is trying to get me to buy its program, but who would be stupid enough to use a credit card with a company that uses tactics like this to get you to buy its program? I ran malwarebytes once without updating because I didn't know if I could get on the net to get the update, but it didn't find anything, so I chanced it and it looks like it updated ok, and I'm running it now. I also have spybot on my computer, ( A Winbook A213 laptop), but haven't run it yet. Just checked my computer again, and the Malwarebytes is done, and only found one thing, but it looks like maybe that was it.More replies
Was directed to your pages and board after posting a query in another computer help fourm - PC911
Someone's advise was to use hijackthis and then seek help from the "friendly folks" at bleeping computer. So here I am.
I don't even know if I have a problem, I'm just very suspicious.
Like what I've seen so far. Will have a look at some of your tutorials, boards etc. and them maybe will be back.
Hi okfrank and welcome to the BC forums. We need a complete HijackThis (HJT) log file to be able to analyze what is happening on your computer. If you do not have a copy of HijackThis or do not have the latest version (1.99.1) then download it from here: HijackThis_sfx.exe Double-click on the file you just downloaded and click on the UnZip button to install the program. It will be installed to the C:\Program Files\HijackThis\ folder by default.Start HijackThis and click the Do a system scan and save a log button to perform a scan and create a log file. When the scan is complete, Notepad will open up with the log file in it. While in Notepad, press Ctrl-A to select all text and then Ctrl-C to copy the text to the clipboard.POST the log in this thread using the Add Reply button. Click in the data-entry window and press Ctrl-V to paste the log into the window. Add any other comments which you believe might be helpful in our analysis. and click the Add Reply button.I will review your log when it comes in.DO NOT MAKE ANY CHANGES OR CLICK "FIX CHECKED" UNTIL I CHECK THE LOG, AS SOME OF THE FILES ARE LEGIT AND VITAL TO THE FUNCTION OF YOUR COMPUTEROT1 more replies
Halooo every one,i'm djamot,I have a problem with my computer, i think my computer was infected by malware or somekind of virus, this is the message that always comes out from Norton Antivirus 2003,This is the message "Object Name=C:\WINDOWS\SYSTEM32\LDCORE.DLL" "Virus Name=Downloader"(Moderator edit: log post moved from Introductions to Team Forum for analysis and Member help. jgw.)I've already use Hijackthis scan and this is the logfile :Logfile of HijackThis v1.99.1Scan saved at 2:10:42 PM, on 4/5/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Internet Explorer\iexplore.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Java\jre1.5.0_09\bin\jusched.exeC:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\QuickTime\qttask.exeC:\Program ... Read more
Welcome to the BleepingComputer HijackThis forum djamot Download SDFix and save it to your desktop.http://downloads.andymanchesta.com/RemovalTools/SDFix.zipPlease then reboot your computer into Safe Mode by doing the following :* Restart your computer* After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;* Instead of Windows loading as normal, a menu with options should appear;* Select the first option, to run Windows in Safe Mode, then press "Enter".* Choose your usual account.* In Safe Mode, right click the SDFix.zip folder and choose Extract All,* Open the extracted folder and double click RunThis.bat to start the script.* Type Y to begin the script.* It will remove the Trojan Services then make some repairs to the registry and prompt you to press any key to Reboot.* Press any Key and it will restart the PC.* Your system will take longer that normal to restart as the fixtool will be running and removing files.* When the desktop loads the Fixtool will complete the removal and display Finished, then press any key to end the script and load your desktop icons.* Finally open the SDFix folder on your desktop and copy and paste the contents of the results file Report.txt into your next reply.********************************Download SmitfraudFix (by S!Ri), to your desktop.Double click on Smitfraudfix.cmdSelect option #1 ? Search, by typing 1 and press "Enter"; a text file will appear, which ... Read more5 more replies
I would like to introduce myself to these forums. I am a 13 year old (Please don't make fun of my age) windows 7 user. I am pretty good at using my computer and my dad calls me a "computer wiz" I am here to help people with their computer related problems and have chats about computers and windows based things. I am glad to be on these forums. :)
Can you tell me how to activate Winders 8 ?
It looks like a really neat OS !
New member here hoping to get help with my new windows 7 32 bit system.
I have just switched all of my data over from windows XP to a new computer with this operating system only to realize that I will not be able to use the extra (16GB) of memory I just purchased.
Am I stuck with the 2.89 usable unless I load windows 7 64 bit system?
It was really dificult for me to get everything transfered over to my new computer especially all of my outlook stuff (rules, files, etc.)
Would I be able to back everything up, and just transfer it to the new windows 7 64 bit system installation?
Any help is greatly appreciated..
How much RAM do you have?32 bit will support no more than 3 Gigs.Installing 64 is a whole new OS,its installing,not upgrading,you will not be able to keep your settings.Back up your data and files contents can be done,sure,but settings...Go 64,its gonna be worth it afterwards.6 more replies
Hi there. I'm doing a quick post now to say hello and intro myself. I will be back with some specific questions about privacy and security with Win XP. I'm a "used to be" computer geek-type stay at home mom who sort of fell "out of the loop" a few years ago when I met and married an even geekier guy who knows much more and was able to solve any problems or questions for me. As a result I pretty much got lazy and have let him deal with all our home computer stuff. (He does this stuff for a living and is a mod on another tech site.)
Anyhow, I have a few issues with personal privacy online and within XP that I will post questions on later, I am really busy with a one year old and a newborn baby so I don't get a lot of time to get online but I am going to make time for this. I hope my questions don't seem silly or too uniformed. Like I said, I've been pretty busy with other stuff for the past few years and feel a bit out of touch.
So I will be around again later, probably when nap time rolls around. YAY for naptime!!!
[tsg=welcome] Welcome to TSG! [/tsg]
Boosh, I can't believe this is happening to me. I have not gotten a SERIOUS virus like this.. For at least three years. God damn. I downloaded finallyfast, some bleep, and it downloaded the well known Asentive malware. This will probably save you some time?See, avast found some .DLL viruses.. Like. bulawasi.dllkidodize.dllyosineku.dllI tried to delete, I restarted, I looked for them, still.. Nothing. So I just moved them to my virus chest, but now at startup it spams. " Bulawasi.dll was not found. " Then the others, untill I turn on Avast. :/ I hate avast, I only got it for this one little problem.. I'm a gamer, so yeah. I don't need avast lagging me.The dlls are started by Rundll32.exe.. Or So I think? It seems so.Also, IExplorer.exe always pops up and uses about 86k Mem.Here's teh log file.I ran a full scan and found a few viruses...trz38.tmptrz39.tmpAnd two others I deleted.( Scanned with Avast. )Everything was running fine too..Till it started spamming windows open like"Stopzilla""Finallyfast.com""FastAtLast.com"Also, I never use Internet Explorer, it was opening them in that.Iexplorer.exe was using 89,091K Memory.( Sorry for double post, I meant to click edit. But I clicked qoute, and didn't notice till the last second. )Merged posts. ~ OB
Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Follow the instructio... Read more3 more replies
"Microsoft Outlook Express has for a number of years been the leading application for sending and receiving e-mails. This is not only due to a good functionality, but also due to the monopolization from Microsoft, and the lack of competitive programs.
Thunderbird is one of those programs which can compete with MS Outlook Express, not only because it has similar functionality, but it's also user friendly, and it's freeware.
Thunderbird, and other Open Source programs, are products developed by a community of developers. As everything else, this community ain't flawless. IMHO it seems they use too much energy and time developing programs, and fighting the everlasting battle against monopoly. I'm sure I'm not the first one to think about this, but what if the community had spent more time enlightening the masses? I don't see myself as a guru when it comes to handling programs, yet Thunderbird is quite easy to use.
People's fear of the new and unknown might be a missed issue, which needs to be put on the agenda. Throughout this article, I will try to help you understand Thunderbird, as the excellent, free program it is.
* It's user friendly, easy to install, easy to use.
* It's Free, meaning, you can download it from the web, no charge.
* Cross platform, you can use it with Windows as well as the GNU/Linux operating system.
These reasons alone should make you consider using this program.
Introduction to Thun... Read more
9 more replies
I recently installed windows 7 and so far I am very pleased with it.
There is just one problem: I can not seem to install things from my CD-drive (this includes office 2007). I get an error message which is :"D:\ is not a valid win32-program"
Any idea of why this is?
Thank you for any help in advance.
Quote: Originally Posted by Azurelight
I recently installed windows 7 and so far I am very pleased with it.
There is just one problem: I can not seem to install things from my CD-drive (this includes office 2007). I get an error message which is :"D:\ is not a valid win32-program"
Any idea of why this is?
Thank you for any help in advance.
I was having a little problem with my DVD Drive after I installed Win 7. Download this program, Imgburn. It is a good burning program that is free. See if it makes any difference. Get it here. The Official ImgBurn Website
I've heard a lot about podcasts, but am not exactly sure what they are. Do you need special softeware to get them? I wonder what the best ones are, and if you need an Ipod to listen to them, or can just do it on Widnows Media Player?
Podcasts are video's that can be played on an iPod Video. No other iPod can play them. I don't know if windows media player can play it (I don't think so). I hope that i answered your question.2 more replies
This forum is truly a blessing! The layout is simple and sophisticated and the wealth of information is almost overwhelming. I'm relatively new to this board but what I have discovered seems to be a great acheivment. Having browsed the forums for some time, I have also noticed that the members in this community are very friendly and dedicated to helping one another. The admin's and moderators are all very helpful and seem quite knowledgeable in regards to technology. I would just like to say I am happy to be a part of a grand community!
Welcome to the forums Blazinstang8 more replies
java script:emoticon(':)')smilieHello; I am Xandr, was led to your forum because of problems with viruses. I am a beginner on computing of a PC. I am an artist and all of my previous experience has been with Macintosh Computer. I am trying hard to learn but its a new PC experience for me. I have never had to deal with viruses and malicious hackers/advertisers. My question which I am trying to resolve with some logic has been evasive ot say the least. I recently purchase a second harddrive for my PC and disabled the previous one still installed on the PC. Thinking I can reinstall the System XP Pro, on the new drive and later move my previous files over to the new drive and use the previous drive as addiitional memory. In doing so I encounter a barrage of virus atttacks wihich just kept coming in spite of sunning spyware/virsus utilities over and over and over again when they reappear. Have not suddessfully accomplish to date. But I do not understand how to stop the attacks. My thinking is that if I reinstall the again after reinitalizing the new drive I may be able to prevent the problem from occurring by not attempting to enter the Web until I have all secutity in place. I plan to leave the modem unp;ugged while reinstalling. I wonder if someone might make some suggestion as I venture forth in this attempt. The Software that I am presently using to no avail are Spybot Search and Destroy, Spy Sweeper, Microsofts beta 1 Spyware app, SpyBlaster, Spybot and Adware.I will attempt... Read more
Hello XandrThe thing is that all of those nasty critters hide in System Restore. What you must do is scan in safe mode. Get rid of all those unwanted pests. Then disable and enable your system restore.How to start Windows in Safe Mode Windows XP System Restore Guide Excerpt from Bleeping Computers Windows XP System Restore Guide:Problems with System RestoreThere are some problems associated with System Restore when it comes to viruses. When restore points are created they are stored in a directory that is accessible only to the System account and not to a user. This keeps the restore points safe from misuse and tampering. Unfortunately this also means that any virus scan software you may have installed can not scan the files located there as well. This causes a problem if a file that is infected with a virus gets backed up into a restore point because now the anti-virus software can not clean it. Now if you ever restore from a restore point, that file that is infected will be introduced back into your system. With this in mind, if you find that you are infected with a virus, hijacker, or spyware and want to make sure you do not get reinfected if you restore a restore point, you should turn System Restore off and then back on again to clear all the restore points. This will guarantee that their are no infected files that could be restored.2 more replies
Hello Everyone, Just came across this forum, and I'm trying to get some answers as to how to resolve this trojan issue (virus) that is reeking havoc on my computers.Edit: Moved topic from Introductions to the more appropriate forumRoger
DownloadTDSSkillerLaunch it.Click on change parameters-Select TDLFS file systemClick on "Scan".Please post the LOG report(log file should be in your C drive) Do not change the default options on scan resultsDownloadaswMBRLaunch it, allow it to download latest Avast! virus definitionsClick the "Scan" button to start scan.After scan finishes,click on Save logPost the log results hereDownloadESET online scannerInstall itClick on START,it should download the virus definitionsWhen scan gets completed,click on LIST of found threatsExport the list to desktop,copy the contents of the text file in your reply1 more replies
Hi everyone. I'm a new poster on this site, though I reviewed it a few years ago when I was "attacked" by spyware and this forum really helped out. Well, I've been "attacked" again. I thought I'd post my HJT log below and ask for some guidance. I've also run Spybot and will include that log as well, though I'm not sure if it's something you will want to see. Thanks in advance for all of your help.Logfile of HijackThis v1.99.1Scan saved at 11:00:50 AM, on 7/2/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16473)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeC:\Program Files\Symantec AntiVirus\DefWatch.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Symantec AntiVirus\SavRoam.exeC:\Program Files\Analog Devices\SoundMAX\SMAgent.exeC:\Program Files\Symantec AntiVirus\Rtvscan.exeC:\Program Files\Viewpoint\Commo... Read more
Welcome to the BleepingComputer HijackThis Logs and Analysis forum raf66 Viewpoint Manager is considered as foistware instead of malware since it is installed without users approval but doesn't spy or do anything "bad". This will change from what we know in 2006 read this article: http://www.clickz.com/news/article.php/3561546You are well advised to remove the program now. Go to Start > Settings > Control Panel > Add/Remove Programs and remove the following programs if present:ViewpointViewpoint ManagerViewpoint Media PlayerThen restart your pc.**************************Please download VundoFix.exe to your desktop.Double-click VundoFix.exe to run it.When VundoFix re-opens,click the "Scan for Vundo" button.Once it's done scanning,click the "Remove Vundo" button.You will receive a prompt asking if you want to remove the files, click "YES".Once you click yes, your desktop will go blank as it starts removing Vundo.When completed,it will prompt that it will reboot your computer,click "OK".Post the contents of C:\vundofix.txt into your next reply.Note: It is possible that VundoFix encountered a file it could not remove.In this case,VundoFix will run on reboot,simply follow the above instructions starting from "Click the Scan for Vundo button." when VundoFix appears at reboot.**************************Please download Combofix and save to your desktop:Note: It is important that it is saved directly to your des... Read more7 more replies
Hello, my name is James and I am the owner of a bleeping computer. I became suspicious of a possilbe security issue when I came across a word document I wrote. I was preparing the material for esubmission and as I looked at properties under the file menu, it had another person listed as the author. I run AVG daily and routinely run Superantispyware, and A-Squared. I downloaded and ran Hijackthis and can provide the log it generated. Any assistance would be greatly appreciated.
There you have the probleme "Superantispyware" this software i never trust. Its nestel in windows and change some setting, Use a other program, perhaps "http://www.iobit.com/advancedwindowscareper.html" is somthing for you.2 more replies
Hey everyone I am new to Bleeping Computer and have a serious problem or at least its serious enough where I need help. Somehow I have acquired a virus that goes by the name of "System Tool". It looks like an anti-virus/Spy-ware protection program but it is definitely not. It is even nice enough to high jack the background with a clever warning. This beauty will now allow me to access my programs in normal start up mode, and malwarebytes in safe mode could not remove it. Is anyone knowledgeable on this and know how to remove it? Any help would be much appreciated.
That(System Tool 2011)is running rampant right now! I'll have to let the experts walk you through that one. Lot of rules on this site.....although a system restore might put you in a better spot for the time being. I never use the system restore because of the available tools out there, but it might be a short term fix.1 more replies
Introduction to Cygwin
Cygwin is a UNIX-compatible environment that runs on Windows systems. It consists of cygwin1.dll, a library that takes POSIX calls and translates them into Win32 calls (kind of like winelib in reverse); a shell (GNU BASH, the shell used on most Linux systems, is the default); an implementation of the X Window System and, of course, GCC.
There are many reasons why you'd want to use Cygwin:
You are used to UNIX-like systems, but are forced to use Windows for some reason.
You want to compile and run *NIX software on Windows.
You are thinking of switching from Windows to a UNIX-like OS, and want to learn more about the environment you will be working in, before you actually do it.
You need an X server on Windows, and don't want to pay upwards of US$600 for one.
This FAQ will tell you how to set up Cygwin, and some of the cool things you can do with it. Please note that these instructions assume you are using Windows NT/2000/XP. The procedures are similar for Win9x, use common sense.
Login as Administrator, or some user with Administrator privileges.
Go to Cygwin.com
Click Install Cygwin Now to download setup.exe. Make a directory "cygwin" and put setup.exe there.
Choose "Install from Internet". You will get a dialog asking where you want to install Cygwin, who to install it for, and the default text file mode. Accept the defaults. You will then be asked abo... Read more
Hello everyone. I'm a civil engineer specializing in bridge foundation design and testing. I'm not a total computer illiterate - but after about Windows 3.1 it all became way too much for me to really keep up with.
So anyway, I've got this problem with my machine, some kind of malware - I guess really a trojan. It first started showing up a few days ago as a notification from Norton that there had been "an intrusion attempt by 873hgf7xx.com was blocked." It also says that no action is required and gives me an option to disable further notifications of this type, but 1) Norton doesn't usually throw up notifications like this and 2) I note that the attack is coming from the svchost.exe file in the system32 directory.
Like I said, I really don't know much about computers these days, but it seems to me that any intrusion attack that looks like it comes from within your own machine and wants to go outside is something that needs attention.
At about the same time this problem came up I started getting some ad that was trying to get me to sign up for something called antimalware. I closed it with alt-F4 but it kept coming back and I realized that it was somehow in my machine. I found this directory "C:\Documents and Settings\John\Application Data\DEC2EC89102A4ACF5286E49260D247AB\setupupdater0000.exe" - and I can't remember how I associated it with the antilmalware thing but anyway I deleted it and the popup... Read more
Hello and welcome. Determining what is / was on here is cruciial to determining where we go in cleaning.A log file should be created on your C: drive called "TDSSKiller.txt" please copy and paste the contents of that file here.Next run ATF:Note: On Vista, "Windows Temp" is disabled. To empty "Windows Temp" ATF-Cleaner must be "Run as an Administrator".Please download ATF Cleaner by Atribune & save it to your desktop.Double-click ATF-Cleaner.exe to run the program.Under Main "Select Files to Delete" choose: Select All.Click the Empty Selected button.If you use Firefox browser click Firefox at the top and choose: Select AllClick the Empty Selected button.
If you would like to keep your saved passwords, please click No at the prompt.If you use Opera browser click Opera at the top and choose: Select AllClick the Empty Selected button.
If you would like to keep your saved passwords, please click No at the prompt.Click Exit on the Main menu to close the program.Next run MBAM (MalwareBytes):Please download Malwarebytes Anti-Malware (v1.46) and save it to your desktop.Before you save it rename it to say zztoy.exe alternate download link 1alternate download link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.Make sure you are connected to the Internet.Double-click... Read more
An Introduction to Malware by CERT-UK:
An excellent, easily understood guide that covers the bare essentials of malware types - such as trojans, rasomware, phishing, keyloggers, rootkits, etc.
First rate infos.
Hello from a new member. I'm from Northern Ireland and have a problem with my desktop PC running XP Pro. The problem is as follows.
My PC has an 80GIG hard drive partitioned in half. Viewed in “My Computer” C:\ and D:\ drives are 38.3GIG each.
The D:\ drive is fine.
Viewed in “My Comp” then r/click properties it tells me 8.66GIG is used and 29.6GIG is free. Open D:\ drive and drag a box round all the contents then r/click properties tells me there is 8.11GIG used. All these figures are pretty close to each other.
The C:\ drive seems to have a lot of space missing.
Viewed in “My Comp” then r/click properties it tells me 14.3GIG is used and 24.0GIG is free. Now that means there is 3-4GIG missing somewhere. It gets worse because when I open C:\ drive and drag a box round all the contents then r/click properties tells me there is only 8.18GIG used. I’ve made sure that the hidden files are visible. I’ve done a disk clean up and defragmented the drive and it helped by approx 1GIG. The above figures are taken after this.
So any idea where my 6GIG have gone and how to get them back? Its probably more a case of where the 6GIG are hiding on the drive.
TIA for any advice ... John
15 more replies
What software would you guys suggest for 'customizing' a DVD file? By this I mean, if one has a DVD uploaded (e.g. a film) and wanted to add a menu, chapters, screenshot intro, whatever, to the file- what Windows 7 software would do the job?
DVD Author 3 with DivX Authoring
TMPGEnc Authoring Works
Hi firstly I'm new to bleeping , so a big "HI" to all Love the following :-gaming, YouTube vids (weird I know!) and music. The last one actually got me into the current situation. While trying to download a song from the site "mp3juices", I accidentally ran an exe file which installed "optimizer pro". I never ran the app and I noticed that it closed my chrome browser, so I tried uninstalling it through control panel ->add/remove program.also "ended process tree" in task manager, but by then I noticed the slowness (comp plus Internet) and I just couldn't open other browsers as well. So after uninstalling,using task mgr,using ccleaner,kaspersky and malware (ran scans) I thought it was over. But now I can't connect to the net and not able to open browser. So would like to know how to solve this issue! P.S: sorry for the detailed explanation. Also checked regedit,couldn't find any key/value with the name "optimizer pro". Installed revo uninstaller but nothing to uninstall :/*Moderator Edit: Moved topic from Introductions to the more appropriate forum. Everything I have read about Optimizer Pro calls it malware.~ Queen-Evie*
Hi, manicmoron! I'm going to try to help you out. Since you're not able to go on the internet on this computer, you'll need to use a removable device (like as USB or CD) to transfer the files I need you to download onto the sick PC. TDSSKillerI need you to run a scan using TDSSKiller.Download TDSSKiller from here, and save it to your desktop.Double click the file to launch the program. Once the program starts, click Start Scan. Don't change any default scan settings.Once the scan is finished, you'll find a log in your root drive (usually C: ) that will start with TDSS in the file name, please copy and paste it into your reply.AdwCleanerI need you to run AdwCleaner to see if it removes anything.Download AdwCleaner from here, and save it to your desktop.Close all open programs.Open the file on your desktop, and click the Delete button. Confirm operations at every prompt. Your PC will be rebooted after the final prompt.Once rebooted, a text file will open up. Please copy and paste it into your reply.RogueKillerI need you to run RogueKiller to see if it removes anything.Download RogueKiller from here, and save it to your desktop.Close all open programs.Double click the file on your desktop. Once the automatic check completes, hit the Scan button.Once the full scan has finished, click on the Delete button. Once it's done removing things, open the newest log on your desktop (should be called RKreport.txt) and copy and paste it into your reply.Gunto11 more replies
Unhide.exe is a program that will revert many of the changes on your computer caused by the FakeHDD family of rogue anti-spyware programs. This family of rogues pretends to be a system optimization program that will solve errors with your computer’s hard disks, memory, and performance. It will also display fake alerts stating that your computer has numerous computer issues and prompt you to purchase the program in order to resolve these issues. Unhide can be downloaded from the following url: http://www.bleepingcomputer.com/download/unhide/A screen shot of one of the programs in this family is:As part of the infection process, this family of rogues will change the attributes of all the files on your computer's fixed hard disks so that they are hidden (+H). It will then change your Windows configuration to make it so that you do not see hidden files or hidden system files. By doing this, the rogue attempts to make you think that all of your files have been deleted in the hopes that this will trick you into purchasing the program in order to recover your files.This infection will also delete shortcuts in various folders on your computer so that you can no longer find them pinned to the taskbar, in the quick launch, or in your Start Menu. When the infection deletes the shortcuts it will store a backup copy of them in the folder %Temp%\smtmp. Using this backup, we can then restore the files to their proper location so you can find them once again under your ... Read more
Thank you. There is one workstation (x32 XP) that was hit with a variant of this a while ago and is still having hidden folder issues. The folders are back (due to malware removal and a system restore) but are only 'half' visible. I will try to restore them with this info.more replies
Well let me start off saying hi! I'm Manny, aka Nuke, like that name?
Now that's settled, I got some stuff on my mind that I think some of you might be able to answer. I know it might sound stupid and all, but I really want to get into computers.
The following questions might sound wierd and all, but it doesn't hurt asking. Copy and paste the questions and then answer them please.
1. What in the world is a barebone system? I see them floating around at tigerdirect.com and pricewatch.com (great sites). What is it? Is it a system that comes with only the harddrive, memory, proccessor and motherboard? Can some one explain it to me? I've come to a theory about what it might be. I believe that its a computer case (the tower) with a hard dish drive inside, cpu/motherboard/ and fan, and also it has memory in. No flopp disks or anything else. Am I correct or wrong?
2. If my theory is correct from question 1, can I do the following. I am short on cash (aren't we all?), so I was thinking that I could get a barebone (my theory idea) and then take everything out of my old computer (tower) such as the video card, the CDRW, DVD player, and everything else and install it into the barebone computer. The memory will be installed into my other computer and I'll give my hard disk drive to my ot her computer as well. I've heard that you can have two hard drives, is that true? If this can work, please answer it!
I'm just trying to save my self some mo... Read more
8 more replies
Greetings to the Community here.........Sad to see so many people are suffering from the same pain. Recently my laptop (O/S: Windows XP, Professional Version) has been attacked by the following virus: "iworm_attck_v122.02a", an urgent stem message keeps bleeping (popping) up. Irritating, to say the least. And yes, my browser has been "hijacked" too; none other than a company webpage -- syssecurity.net. Things are incredibly slow -- startup, opening regular (MS) programs, etc.I am not a savvy computer person, just use mostly Microsoft Applications; have tried all kinds of free shareware -- ad removal, bot removal, spywares, etc. Trying to Uninstall SystemDoctor 2006 right now, everything seems to be frozen, unresponding! I am in desperate need of being able to use my laptop soon since I will be laid off from my job in the next few days. I do need to update my resume, start sending it via e-mail, etc.Any help to remove this abovementioned help will be genuinely appreciated. I am thinking of reformatting my entire hard drive, then re-installing Windows XP; however, that may be an expensive proposition. With unemployment looming so near, things do seem a bit helpless.Can you blame me?Regards.........
Welcome to Bleeping Computer shibleeFrom what you are describing here, it appears you have several different infections on your system. We have a self-help section for removing common malware.Please see the self-help tutorial How To Remove Systemdoctor 2006.When you have done that, print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.Then please download, install and update Ewido Anti-Spyware v4.0. DO NOT perform a scan yet.Print out the Ewido Install and Scan Instructions. Go here and follow the instructions for using SmitfraudFix. Read "How to create/extract a ZIP File in Win ME/XP/2003" if your not sure how to do this.After using the tool reboot again in "SAFE MODE" and Clean out your Temporary Internet files as follows:Quit Internet Explorer and quit any instances of Windows Explorer.Click Start, click Control Panel, and then double-click Internet Options.On the General tab, click "Delete Files" under Temporary Internet Files.In the Delete Files dialog box, tick the "Delete all offline content check box", and then click "OK".On the General tab, click "Delete Cookies" under Temporary Internet Files, and then click "OK".Click on the Programs tab then click the Reset Web Settings button. Click "Apply" then "OK".Click "OK".Next Click Start, click Control Panel and then double-click Display. Click on the Desktop tab, then click the Customize Desktop butto... Read more1 more replies
Hey, im making this thread to show you lot the excellent game Face of Mankind. The game is currently in beta stage and is free to download and play .
Face of Mankind (FoM) is an RPG set in the future. However it differs from other RPG games. It has a 3rd or 1st person view fighting system with nice graphics and is a completely human run economy/game. That means real people police laws, real criminals commit crimes and corporations fill up markets, however as it's human run you have corruptness, rogue faction members which makes everything all fun. Theres lots of different places to go on earth and off and theres too much to do. Im in the LED (Law enforcement Department) in the SWT (S.W.A.T. department) so most of this thread will be based on my experience in these fields.
Being a member of SWT i do prison sweeps (yes we have a prison where you go if your arrested. When most wanted players are arrested the criminals usually raid to try and break them free which is all possible by hacking the security doors to get into the prison). We perform take backs when cells or factions raid a colony, we protect teaching classes and lots more. There is seriously so much you can do in this game, its awesome .
However it can be hard for new players, so if you do decide to check out this game join missions to make money!
THe game also has a good community and the development team of the game are very quick at fixing things .
Heres some screenshots from my time in the LED:
Senate m... Read more
9 more replies
First off, hello, I just happened to stumble upon this site and was quite surprised at the level and quality of expertise lent by kind individuals looking out for those less informed; with a smile no less.
I have a brand new rig that I just put together and I wouldn't say I'm thee most tech savvy, nor the most informed when it comes to defense of my system. I did have my old CPU last for the past 3 years without a hitch and came to the decision to upgrade just recently. I also realize "without a hitch" is probably laughable; as much so as a person with clogged arteries and cancer, not dying instantly like a gunshot.
I'm here to learn and this looks like an excellent place to build knowledge. I would ultimately like to slowly, post by post, day by day, gain a better understanding as previously mentioned, on how to keep my investment, running at optimal condition.
To start I have a few questions. I have read up on the stickies and I have a few things I'd like to get going.
1. The initial post by dvk01 gave a lot of insight as to promoting safe browsing in IE. Would there happen to be any posts, or stickies with equal explanation for Firefox? Is IE safer than Firefox? Are any browsers safer than others?
2. Being that this is a new rig, I do think that hrmm, how to word.. my computer is at a "greater" risk of being infected as I become more aware of ways to acquire things I economically should not be able to. I oft see references from... Read more
Hi everyone,I found this forum because I was looking for a solution to a nasty virus/malware, (Antivrus XP Pro). http://www.bleepingcomputer.com/forums/t/200003/antivirus-xp-pro-2009-com/ I used Combofix as suggested, but my icons on my laptop have disappeared! Any suggestions?Thanks
Hello and welcome, please be advised of the Blue print at the top of this page...Let's do one more scanNext run MBAM:Please download Malwarebytes Anti-Malware (v1.32) and save it to your desktop.alternate download link 1alternate download link 2If you have a previous version of MBAM, remove it via Add/Remove Programs and download a fresh copy.Make sure you are connected to the Internet.Double-click on mbam-setup.exe to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan.If an update is found, the program will automatically update itself.Press the OK button to close that box and continue.If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install. Alternatively, you can update through MBAM's interface from a clean computer, copy the definitions (rules.ref) located in C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware from that system to a usb stick or CD and then copy it to the infected machine.On the Scanner tab:Make sure the "Perform Quick Scan" option is selected.Then click on the Scan button.If asked to select the drives to scan... Read more3 more replies
I'm looking for Holiday, birthday, etc to use for my video studio 11 software. These have to be
short so I can use as an introduction template. Ulead's product doesn't have very many choices
to use. I need to use these to start my DVD creations. Do you have any idea's where I can get
some WMV or AVI small introduction clips?
I have ulead's video studio 11.5 plus.
They only have a few introduction video clips in wmv format that I can use for my slideshows.
Does anyone know where I can get either "WMV" or "AVI" or any other format video clips that are small to use for my slide shows? Thanks.
Multiple Postings - It is simply not acceptable to post your question more than once, or to post it in more than one forum. Choose the forum that your question or post best fits in, and place it there and only there. If, after posting, you feel it should be in another forum, use the "Report Thread" button at the bottom of the post and we'll move it. We also reserve the right to move posts to other forums and delete duplicates. Click to expand...
I use uleads "video studio 11.5". This program is very limited with their templates that are WMV files. They are short, and used for starting a video or jpg slide show, and creating a DVD.
Does anyone know where I can download a lot of short movie clips to use are introductions to my slide shows? They must be in any movie format, I have a converter that I can use to change the format, if ulead's program won't except it. They can be in cartoon form, or anything else like that.
Hi gang,New member here. I have visited this site many times and I am a regular user of Malwarebytes' Anti-Malware. Today I created a user account because I believe I have a rootkit attack and need some additional help.First off, I am running Windows XP (SP3). This morning I began recieving spyware warnings as well as a new progrem (Total Security) running and offering to fix all my problems. I immediately closed that and launched Malwarebytes'. First I ran the Updates and then initiated a Scan. The scan ran for about 10 seconds before abruptly closing. When I tried to re-open Malwarebytes', I was told I did not have permission, etc. I have read several other posts in this forum that sound simular to my problem. I have already downloaded a fresh copy of Malwarebytes'. The program will install fine, but once I try to run, I get the same as described above.Three other symptoms: 1) I cannot open the the Task Mangar (CTRL-ALT-DEL).2) PC performance has degraded so far now, that I can only run it in safe mode3) I also noticed that I have Window Police Pro listed in my Programs, but this one seems to be taking a back seat to "Total Security".I would appreciate any help you can provide and will provide anyother details that you need.thanksJohnnyEdit: Moved topic from XP to the more appropriate forum. ~ AnimalMore replies
This topic was created to provide a very brief introduction as to what RKill does and to provide a way a way for people to report false positives of processes that are terminated. Even though false positives may occur, this should not be considered a problem as you can always launch the programs again or reboot your computer as no files are removed by running RKill. This topic is not to be used as a support topic for removing malware. If you need help removing specific malware you can follow the steps here or ask in the Am I Infected? forum.RKill is a program developed at BleepingComputer.com that was originally designed for the use in our virus removal guides. It was created so that we could have an easy to use tool that kills known processes and remove Windows Registry entries that stop a user from using their normal security applications. Simple as that. Nothing fancy. Just kill known malware processes and clean up some Registry keys so that your security programs can do their job.So in summary, RKill just kills 32-bit and 64-bit malware processes and scans the registry for entries that would not allow you to run various legitimate programs. When scanning the Registry, Rkill will search for malicious Image File Execution Objects, DisallowRuns entries, executable hijacks, and policies that restrict your use of various Windows utilities. When changing Windows Registry entries it will create a backup of these entries and save them in the rkill folder on your desktop. Each reg... Read more
I found starting up and logging into the guest account stopped these malwares from stopping things from opening in windows se7en, would this be a way to allow rkill to run and kill the processes for other users?more replies
When the growth of a small network is being planned, which design element will include the physical and logical topology of the network?
a. network documentation
c. traffic analysis
d. device inventory
a. network documentation6 more replies
Hello All,New to the forum, and I consider myself to be just a little more knowledgeable that an average user for a guy almost 60. I've handled all sorts of issues for myself and novice friends, but I'm stuck today. I seem to have a version of a Google Redirect Virus (Find-Fast-Answers). My name is Fred and I'll be needing some redirecting myself to find some fast answers.(Moderator edit: moved thread to more appropriate forum. jgw)
hello. i got this malware only on my firefox browser and i was able to get rid of it. if you are experiencing the same thing this is what you do:
go to firefox start up menu>> help >> restart with adds on disabled (click)
click restart when it asks you if you want adds on disabled
it should show you a window saying you are now using firefox in safe mode
check everything in the box (i can live with re-starting everything since i got rid of it this way. for me, it's worth it)
after checking everything, click on make changes and re-start
TADAAAAAA.. it's gone
well at least mine is gone haha.. let me know if it works on yours too.
for internet explorer users and chrome, im assuming using safe mode in your browser and resetting everything back to default settings will work for you.. otherwise best of luck!!
i will post my response to this thread to all other threads that need help getting rid of this malware cuz im nice like that
Hello all.. I have been dealing with computers for several years now and considered myself tech savvy, until today..
Vista Administration Problems
I am an avid computer builder and bought an OEM vista premium 32bit OS.. Well turns out microsoft doesn't support me and wants me to pay a 59$ technical fee in order to answer my question.. So I am back from the 30minute waiting/call from an outsourced village worker in speak'engnot..
I guess I will get to my problem..
I recently restored my OS due to a faulty windows update(who would imagine such things) to only be greeted by a BLANK desktop and a "new" guest pass to my PC..
This guest pass not only doesn't let me view my contents from my admin folder, but every single button to even grant me access to an admin feature, is broken.. The buttons just do not work..
I have tried the "net user administrator /active: yes" and it just says failed.
Have also tried to run in safe mode to manually create a admin account by, cmd/ "control userpasswords2". This didnt work either. Nor did it let me create a standard account..
Now I am at the point where I just want my files back.. I am willing to do just about anything to acheieve this. Even a reformat..
I just don't know how I would go about doing that. Create a separate partition?
Any feedback would be appreciated.
6 more replies
Introduction to Firewall Leak-testing.
This article covers the basics of Firewall Leak-testing. If you do not know what leak-tests are, or why your firewall should be able to stop them, we recommend you to read this article. More skilled readers may be interested in the information about leak-testing techniques and/or in the list of currently available leak-testing software with download links.
* What is a Firewall?
* Why does a user need a firewall?
* What is a firewall leak-test?
* Techniques employed by leak-testing software
* Description of leak-test software
Related article: Using leak tests to evaluate the effectiveness of firewalls.
AMD talking about the RX480 (link below). I figured they wouldn't be matching 1080 performance and would be focusing on their pricing versus the competition. $199 U.S. for a RX480. You gotta love the comment they got from Marty Stratton (ID software - Doom developer):
"You are not going to need a $700 video card to enjoy Doom at fantastic frame rates". Then back to AMD for benchmarks of two 480's (<$500) compared to a $700 1080.
I'm no fan boy of either company. I've had both, no issues. Critical for pricing is competition so I hope both Nvidia and AMD do well. Just nice to see more than a number of us consumers take a shot at that $700 U.S. "Founders Edition REFERENCE" card pricing.
AMD Radeon RX480 with Polaris Architecture Graphics Card At Computex 2016 - YouTube
Hello My Friends...Good day to you!
I have a DVD that only starts to play.
I insert the DVD into the drive and it loads then shows the copyright warning and then the movie company that's made the movie - then it starts the video - an intro of sorts and it just keeps replaying the intro. It will not continue and play the DVD. It did play on my neighbors computer. And I even exchanged the DVD for another one of the same to see if the DVD was defective - same problem. I have three other DVD's that play fine.
I'm not confident about removing and replacing Codecs if that's what' needed here?!? Hopefully Not!
Any thoughts or suggestions deeply appreciated.
OS Name Microsoft Windows 7 Home Premium
Version 6.1.7601 Service Pack 1 Build 7601
Other OS Description Not Available
OS Manufacturer Microsoft Corporation
System Name R-HP
System Manufacturer Hewlett-Packard
System Model CQ5700F
System Type x64-based PC
Processor AMD Athlon(tm) II 170u Processor, 2000 Mhz, 1 Core(s), 1 Logical Processor(s)
BIOS Version/Date American Megatrends Inc. 6.08, 3/22/2011
SMBIOS Version 2.6
Windows Directory C:\Windows
System Directory C:\Windows\system32
Boot Device \Device\HarddiskVolume1
Locale United States
Hardware Abstraction Layer Version = "6.1.7601.17514"
User Name r-HP\r
Time Zone Eastern Daylight Time
Installed Physical Memory (RAM) 4.00 GB
Total Physical Memory 3.75 GB
Available Physical Memory 2.16 GB
Total Virtual Memory... Read more
11 more replies
PCI Express & CrossFire: Scaling Explored : Introduction
AMD’s CrossFire technology might be an excellent way to turn a mundane gaming machine into an FPS-shredding powerhouse, but with multiple Intel-based platforms supporting the feature across several different PCI Express lane configurations, not everyone is equally convinced. Putting aside the fact that many games only benefit from CrossFire at high resolutions and high-quality settings, many users are concerned about whether or not their motherboard can provide enough bandwidth to realize the full potential of CrossFire.
We hear questions like, “should I upgrade my motherboard first?” and “CrossFire Upgrade or New Build” in our user forums, with a different set of answers each time. It’s time to put some data behind those responses.
PCI Express & CrossFire: Scaling Explored : Introduction - Tom's Hardware
I was considering xfire, but with the drop down to x8 and ATI's questionable x64 driver support, I thinking saving for a faster card might be a better option.3 more replies
I feel obligated to intro myself since I moderate a forum and know how spammers and trollers don't bother to do that. Hope I'm observing forum protocol or not providing too much info at one time.
Got an HP G56-WM129 on Black Friday 2010. Know it's a budget computer, yet outperforms four prior Windows xp machines. I've already read some of the threads here to speed thing up by reducing the services booting up, deleting Windows updates, turning off Aero and the high graphics, etc.
My objective is to have this notebook running as fast and as stable as possible.
Notebook - 15.6 inch, 1366 x 768 (common)
DVD drive (standard)
3 USB ports, one of them USB 2.0
3 GB RAM (DDR2) - upgradeable to 6 GB
Windows 7 Home Premium, 64-bit
Intel Celeron 900 CPU - 2.2 GHz
250 GB disk - 97 GB used
Added 16 GB flashdrive with 4 GB Readyboost
500 GB external USB harddrive
Windows Experience: 3.3CPU: 4.4
Gaming Graphics: 3.3
Hard disk: 5.9
Run:System Mechanic Pro
COMODO internet security
SpeedFan - CPU is 106F to 130F
Aside from general tuning advise, is ReadyBoost going to help me? Would replacing the harddrive on this budget notebook with an SSD make sense?
It really boils down to what you want to do with this machine. If it is just for networking like surfing the web, watching youtube and doing emails then I would not worry to much about it.
With the cost factor of SSD drives I would say no because the main drain of your system is the graphics and there is nothing you can do about that.
IBM tutorial here (c 2004).
Threads strike fear into the hearts of many programmers. UNIX's process model is simple and well understood, but it is sometimes inefficient. Threading can often allow for substantial improvements in performance, at the cost of a little confusion. This article demystifies the POSIX thread interface, providing practical examples of threaded code for consideration.
I especially like this article because it has links to example .c software files and a tarball to download them all.
This is a sample Visual Studio .NET solution containing two custom Web Parts, written in C#. The first Web Part enables users to select a customer and see configurable information about the customer. The second Web Part displays the orders for a single customer. A user can add these Web Parts to a Web Part Page and connect them to each other, so that the second Web Part displays orders for the customer selected in the first Web Part.
Supported Operating Systems: Windows Server 2003
Microsoft® Windows® SharePoint™ Services
Microsoft® Visual Studio .NET
Now that we have released the first beta of Visual Studio 2005 (formerly referred to as "Whidbey") it's time to start brushing up on some of the new features and benefits that it includes. Some of these capabilities represent simply continuing with enhancements to this award-winning development environment, while others break new ground and add a whole new class of capabilities for enterprise developers.
In this episode, we talk with Jason Zander and Amnon Horowitz about the important improvements that have been added not only to Visual Studio 2005, but also to ASP.NET and the .NET Framework (v2.0) as well. Later, Rick LaPlante and Shanku Niyogi give us some hands-on examples of how these improvements can aid in the productivity of developing various styles of applications.
Supported Operating Systems: Windows 2000, Windows XP
Required disk space: 77 mb
Windows Media Player 6.x or later
Supported Operating Systems: Windows 2000, Windows NT, Windows XP
Required disk space: 64 mb
Windows Media Player 6.x or later
Supported Operating Systems: Windows 2000, Windows XP
Required disk space: 218 mb
Windows Media Player 6.x or later
http://www.microsoft.com/downloads/...68-4780-46a4-9d7d-9c91932... Read more
Hi. New Member and 1st post here, have looked around a bit but I can't locate anything similar to this situation.
We have a T1>Cisco 1600 Router>Cisco 515e PIX>10/100 switch>LAN. The idea has come up about setting up our office with wireless capabilities (Mostly for our conference rooms.)
Where in the setup could I place the router? Connected to the switch? or inbetween the switch and the PIX (connecting the LAN port on the router to the PIX.)
I would be using the same subnet. So I would be disabling DHCP on the wireless router and use my existing server for DHCP. (right?)
All you have to do is uplink the switch to any other switch or network jack on your internal LAN. It does have a range, so please keep this in mind when considering placement. Also, make sure you set up an encryption key (64 bit is usually sufficient). The encryption does cause the router to drop a little bit in performance, but especially for a business, you need it.
Hi, does anyone know how to bypass the introduction in Half Life: Counter Strike? This "Sierra" introduction always appears when I start the game. I know there's a way because in the pc rooms it bypasses it.
oh nevermind..i got it
first of all, hello to you all
as they thread title may allude; i am a little disgruntled at my first atempt to install my brand new genuine Windows 7 x64 Home Premium OEM
after the first 4 attempts at installing Win7 i managed to get around the installer asking for 'unknown device driver' by unplugging my card reader. I have been running XP x64 OEM for some time and have re-installed it at least 5 times and have never had any problems what so ever; if only the same were true for Win7!
having done some research it became clear that Win7 should take no more then 30-40 minutes to install; but here i am 23hrs later and it STILL hasn't even started installing yet; its still 'unpacking windows files' @ 99%...
has anyone else had this problem? if so, what did you do to fix it?
thanks in advance
Welcome to Seven Forums.
Nice job on the system specs.
Sorry your having problems.
How long has it been at 99%?
We've made a list of questions which are the result of reoccurring incidents seen so far.
If you can have a look at these and give us your answers we'll be able to give you better suggestions.
Questions to use for help with Installation Issues
We have also seen people with AMD mother boards having these problems, try taking out all memory cards except one, if that doesn't work then move the memory card to a different slot and try again.
Do you have HyperTransport function settings in your BIOS?
There are two options in the BIOS Setup called K8 -- KN HT Speed and K8 -- KN HT Width, both are normally set as Auto. Change them to K8 -- KN HT Speed to 1x and K8 <-> KN HT Width to 8 8. You can change them back after the install.
If this doesn't work, then reply with more details and we'll try again.
Just read a thread where a guy with an AMD board was having similar problems said he turned off 'Cool 'n Quiet' setting (the feature that turns down the fan RPM). He also found a bad RAM stick by running memtest86+. After that Win7 installed with no problem. Might be worth a try.
Hi... I was wondering if anyone else is having same problem as me when trying to install the 32-bit RC. I have created a 50 gigs logical partition on my hard drive to install windows 7 on (i'm using Vista Home Premium on my Dell laptop). on installation screen i select the drive for the new installation and so it goes to the next screen where it shows a list of bunch of stuff that it's supposed to do. The first one is "copying files" or something along those lines which gets checked and so it moves to the second thing that is i believe called unpacking the installation files (or something similar). My installation "freezes" there as it shows 0% for about an hour or two and then it errors and cancels the installation.
any help would be much appreciated.
Try re-burning the iso at 4X speed with imgburn
So my sound has recently stopped working. What I did was I uninstalled the driver and restarted my computer and the sound worked then it stopped working after that. The sound options are grayed out and I am unable to hear. Could a virus be causing this? Everytime I turn on my computer I always get 35362.exe and random numbers like that. What type of virus is this? Is this a cause of this?>
I have also lost sound after an XP upgrade. I was told it is because the sound card in 8760C will not work with XP and I need to install a new sound card.
I took the back off and everything is so covered and hidden (multiple screwed on panels with no obvious way to remove them). I used a flash light to get a better look at the sound card and it looks customized for HP. It does not look like the Dell sound card I pulled from another unit.
So... where can I take this PC to get a pro to replace the sound card with something that works? Dallas, TX
Tom’s Hardware readers know all about overclocking, of course. In fact, many processor and graphics card reviews would be deemed incomplete without coverage of overclocking potential. Indeed, articles such as the System Builder Marathon series have a long history of specifically valuing performance achieved through overclocking rather than just through stock performance.
If you already consider yourself an enthusiast, pardon a bit of background here--we'll get into the nitty-gritty technical stuff in just a second.
What exactly is overclocking? In a nutshell, the term is used to describe running a component at a higher speed than its specification in an attempt to increase performance. Various computer components can be overclocked, including the processor, memory, and graphics card. And the degree of overclocking can include anything from simply procuring small gains from an inexpensive component all the way to seeking a level of performance way beyond what could even be purchased at that point in time.
Read more here.
great site Tom has, and not just for the OC'ers.... I find many well written reviews of products on that site. One of the first places I visit before buying a new piece of HW9 more replies
The purpose of this post is to help anyone who requires a better understanding of using Windows Defender, including the removal of 3rd party antivirus programs if reverting to Defender. Hope this proves helpful, and thanks to Stephen Boots for the link:
Windows Defender on Windows 8 - Introduction and Frequently Asked Questions
SummaryThe purpose of this article is to address various issues, concerns, and address frequently asked questions, regarding Windows Defender on Windows 8, and to help you Protect your PC.
Windows Defender on Windows 8 - Introduction and Frequently Asked - Microsoft Community
Included in the link are some helpful pointers on registry cleaners by Ed Bott: Why I don't use registry cleaners | Ed Bott
Also, an MS support policy for registry cleaning: Microsoft support policy for the use of registry cleaning utilities
These are recommendations against using registry cleaners for all novice users, and a reminder to the more advanced user to use extreme caution when cleaning the registry.
There is also mention of obtaining a 'well-protected system', and talk of using more than one antivirus (and why you shouldn't!). Very well put together, Mr. Boots. Recommended reading
Hi Peoples of Cyberspace
Been rather obsessively cruising tech forums the past few months and this is by far the most interesting yet! Can't imagine how I missed it.
1. I was invited to introduce myself in the "Introduction forums". So I zipped all over this site and cannot find it. Even typed into search and came to recent intros moved from other locations. Am I just missing the obvious?
2. During signin/profile setup under avatar selection there is a reference to selecting custom avatar but there is no option for upload to this site. How did some of you guys do that? The upload I tried (apparently) went to my profile.
I happen to be using Opera 8.54 at this moment. If that is a problem as far as avatar options I have 5 other browsers I can try. Or not....not really that important, just curious.
Anyway...glad I found you, amigos.
Hi and welcome to the TSF family - glad you found us.
I'll move you to Introductions, which is normally near the bottom of the page in the 'Time Off' section.
Custom avatars are only available to staff, those who donate or those who reach more than 500 posts - that's the rules I'm afraid.
I just finished converting a cassette to CD, using Magix on CD and DVD. I have used it to convert many tapes, all without a hitch. This time, however, as soon as it finished burning the CD, an error message popped up saying "your CD is not recognized."
I immediately went to device manager, and, sure enough, my NEC DVD RW DL ND-3540A, and my ASUS CRW-4832AS had yellow exclamations. Checking properties for each, it said "Windows has loaded the correct drivers for this device, but cannot locate the device."
I have checked the power cables, checked, and even replaced, the IDE cable with a new one, but there is no change.
Windows problem? Anyone know? I'm stumped, and I NEED those drives! Please help, if you can. Thanks
Try uninstalling the drives from device manager. Reboot your computer, and let Windows redetect them.