stephen

November 26, 2006

Hey,

im on a fairly old laptop, and when i try to open anything with the internet, (IE, Firefox, AIM) it takes a few tries for it to work

for example firefox, i open it the first time and it says "server not found"

the second time same message

until finally MAYBe the 3rd time it will work

the only way for it to work everytime, is go to CMD, and release and renew the ip

if anyone knows why, and could help that would be great!

HJT LOG:

Logfile of HijackThis v1.99.1

Scan saved at 11:48:02 PM, on 11/25/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpomau08.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe

C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Vongo\VongoService.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe

C:\WINDOWS\system32\dllhost.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoFXM08.exe

c:\program files\common files\installshield\updateservice\isuspm.exe

C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe

C:\Program Files\AIM\aim.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Mom\Desktop\TaxiDriver.exe

C:\PROGRA~1\WinZip\winzip32.exe

C:\Documents and Settings\Mom\Desktop\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hgtv.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: Starware - {CA356D79-679B-4b4c-8E49-5AF97014F4C1} - C:\Program Files\Starware\bin\Starware.dll

O3 - Toolbar: Starware - {D49E9D35-254C-4c6a-9D17-95018D228FF5} - C:\Program Files\Starware\bin\Starware.dll

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

O4 - HKLM\..\Run: [iSUSPM Startup] "c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [svcmon] C:\WINDOWS\system32\PIN\svcmon.exe

O4 - HKLM\..\Run: [winlogons.exe] C:\Program Files\Free KGB Key Logger\winlogons.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: hp officejet 4100 series.lnk = ?

O4 - Global Startup: hpoddt01.exe.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: RsaService - Emco Software Ltd. - C:\WINDOWS\system32\RsaServer.exe

O23 - Service: Vongo Service - Starz Entertainment Group LLC - C:\Program Files\Vongo\VongoService.exe

-Stephen

July 17, 2006

Hey,

I was wondering how to create a shortcut to shutdown a computer on my home network remotely. Something like SHUTDOWN (namehere) -s -t 01 or somehting. but i dont know the exact command. Could some one help plz that would be great thanks!

-Stephen

July 9, 2006

Logfile of HijackThis v1.99.1

Scan saved at 11:24:30 PM, on 2/8/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\AIM\aim.exe

C:\Program Files\xampp\apache\bin\apache.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\Program Files\ewido anti-spyware 4.0\guard.exe

C:\Program Files\FileZilla Server\FileZilla Server.exe

C:\Program Files\xampp\apache\bin\apache.exe

C:\WINDOWS\system32\inetsrv\inetinfo.exe

C:\WINDOWS\system32\tcpsvcs.exe

C:\WINDOWS\System32\snmp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\ehome\mcrdsvc.exe

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\System32\alg.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe

C:\Program Files\BearShare\BearShare.exe

C:\WINDOWS\system32\atmclk.exe

C:\WINDOWS\system32\dcomcfg.exe

C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe

C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

C:\WINDOWS\explorer.exe

c:\program files\warcraft iii\war3.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Sean\My Documents\malware removal\HijackThis.exe

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,eifcqmp.exe

O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll

O2 - BHO: (no name) - {5f4c3d09-b3b9-4f88-aa82-31332fee1c08} - C:\WINDOWS\system32\hp101.tmp

O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

O4 - HKLM\..\Run: [system service79] C:\WINDOWS\\\etb\\pokapoka79.exe

O4 - HKLM\..\Run: [susse] "C:\WINDOWS\system32\hpsw.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [spySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [i downloaded pirated Software from P2P] C:\WINDOWS\system32\Battlefield2 .exe

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1139095246\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [HJB] C:\Program Files\HJB\HJB.exe

O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"

O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"

O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe

O4 - HKLM\..\Run: [EFTP3Server] C:\Program Files\EFTP\EFTP3Server.exe

O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe

O4 - HKLM\..\Run: [bearShare] "C:\Program Files\BearShare\BearShare.exe" /pause

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe

O4 - HKLM\..\Run: [6104308] tskmgr.exe /ibpm

O4 - HKLM\..\Run: [0oqw0ct0.dll] RUNDLL32.EXE 0oqw0ct0.dll,b 4967156

O4 - HKLM\..\RunOnce: [AAW] "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe" "+b1"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl

O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [rkfu] C:\PROGRA~1\COMMON~1\rkfu\rkfum.exe

O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\mozilla.org\Mozilla\Mozilla.exe" -turbo

O4 - HKCU\..\Run: [klop] C:\WINDOWS\25.tmp

O4 - HKCU\..\Run: [iNetBooster] C:\Program Files\Robust\Internet Booster\ISpBos.exe

O4 - HKCU\..\Run: [CU2] C:\Program Files\Common Files\VCClient\VCMain.exe

O4 - HKCU\..\Run: [CU1] C:\Program Files\Common Files\VCClient\VCClient.exe

O4 - HKCU\..\Run: [bandwidth Monitor Pro] "C:\Program Files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe" /minimized

O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp

O4 - Startup: AbsoluteShield Internet Eraser.lnk = C:\Program Files\SysShield Tools\Internet Eraser\cseraser.exe

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Startup: Quick'n Easy FTP Server.lnk = C:\Documents and Settings\Sean\Desktop\ftpserver3lite\FTPServer.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: AutoCAD Startup Accelerator.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000

O8 - Extra context menu item: Open Client to monitor &1 - C:\WINDOWS\web\AOpenClient.htm

O8 - Extra context menu item: Open Client to monitor &2 - C:\WINDOWS\web\AOpenClient.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1139889000593

O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab

O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: altmannsberger - {210b4043-35ca-4aa0-8796-191f9663dfb3} - C:\Documents and Settings\Sean\Application Data\Microsoft\Web Server Extensions.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Apache - Unknown owner - c:\eZpublish\apache\apache.exe" --ntservice (file missing)

O23 - Service: Apache2 - Unknown owner - C:\Program Files\xampp\apache\bin\apache.exe" -k runservice (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O23 - Service: EFTP3 Server (EFTP3Server) - Unknown owner - C:\Program Files\EFTP\EFTP3ServerService.exe (file missing)

O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe

O23 - Service: FileZilla Server FTP server (FileZilla Server) - Unknown owner - C:\Program Files\FileZilla Server\FileZilla Server.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe

O23 - Service: MySQL - Unknown owner - c:\eZpublish\mysql\bin\mysqld-nt.exe (file missing)

O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

O23 - Service: Windows XP-SP2 FW (XP-P2FWD) - Unknown owner - C:\WINDOWS\algm.exe (file missing)

June 28, 2006

IMO means In my opinion
And with cPanel + Agora shopping cart you just click and install.
But, you know there are always other scripts out there. Research.
I belive, http://vstoremarket.com/ you can setup your own shop, heard it was pretty easy too...

hey, i was looking at vstoremarket, and could not really find anything. If you could give a more specific link that would be great.

June 27, 2006

It is possible. It's either the memory or the Windows installation, but I highly doubt that it's the installation

other than getting new memory, is there anyway to fix/help the problem?

June 27, 2006

The MSi mobo probanly doesn't like that crap brand memory. That is one area to never scrimp on.

it would case it to lock up though?

June 27, 2006

Hey,

I just built my friend a budget computer. It has an AMD athlon 64 3000+, MSI K8NGM2-L Socket 939 MB, CHAINTECH 256-SE73GS-G2 Geforce 7300GS, WINTEC AMPO 1GB, XP HOME, Western Digital Caviar SE WD2500JS 250GB, LITE-ON DVD burner. Its new, nothing is installed. The internet has not been used. (so its not a virus). Did it opening MY Computer, and other basic windows. If you know why, that would be greatly appricated.

-Stephen

June 27, 2006

IMO means In my opinion
And with cPanel + Agora shopping cart you just click and install.
But, you know there are always other scripts out there. Research.
I belive, http://vstoremarket.com/ you can setup your own shop, heard it was pretty easy too...

June 27, 2006

IMO, if your host offers eCommerce scripts like Agora Shopping card or something of the like, your fine.

i dont really know script and dont really want to learn. I just wanted an easy to use, cheep, ecommerce website. (What IMO?)

Thanks

-stephen

June 27, 2006

Hey,

Does anyone know of a good e-commerce website hosting place. It has to have some sort of sitebuilder, templates, and i would also need a domain. I was making a computer store to sell custom computers. So if you guys could get back to me ASAP that would be great!

Thanks!

-Stephen

June 22, 2006

Please download Look2Me-Destroyer to your desktop.
Close all windows before continuing.
Double-click Look2Me-Destroyer.exe to run it.
Put a check next to Run this program as a task.
You will receive a message saying Look2Me-Destroyer will close and re-open in approximately 1 minute. Click OK
When Look2Me-Destroyer re-opens, click the Scan for L2M button, your desktop icons will disappear, this is normal.
Once it's done scanning, click the Remove L2M button.
You will receive a Done Scanning message, click OK.
When completed, you will receive this message: Done removing infected files! Look2Me-Destroyer will now shutdown your computer, click OK.
Your computer will then shutdown.
Turn your computer back on.
Please post the contents of Look2Me-Destroyer.txt and a new HiJackThis log.

Look2Me-Destroyer V1.0.12

Scanning for infected files.....

Scan started at 6/22/2006 1:10:01 PM

Infected! C:\WINDOWS\system32\fp0m03d1e.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071496.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071498.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071499.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071504.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071505.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071514.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071544.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072551.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072552.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072553.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072554.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072555.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072557.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072558.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073388.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073389.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073584.dll

Infected! C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073585.dll

Infected! C:\WINDOWS\system32\fp0m03d1e.dll

Infected! C:\WINDOWS\system32\j04o0ah3ed4.dll

Infected! C:\WINDOWS\system32\uhdmxfrm.dll

Infected! C:\WINDOWS\system32\guard.tmp

Attempting to delete infected files...

Attempting to delete: C:\WINDOWS\system32\fp0m03d1e.dll

C:\WINDOWS\system32\fp0m03d1e.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071496.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071496.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071498.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071498.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071499.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071499.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071504.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071504.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071505.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071505.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071514.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071514.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071544.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0071544.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072551.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072551.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072552.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072552.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072553.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072553.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072554.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072554.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072555.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072555.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072557.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072557.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072558.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0072558.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073388.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073388.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073389.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073389.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073584.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073584.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073585.dll

C:\System Volume Information\_restore{490691A7-BAA0-40C0-88B9-0F2F99DB2E60}\RP258\A0073585.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\fp0m03d1e.dll

C:\WINDOWS\system32\fp0m03d1e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j04o0ah3ed4.dll

C:\WINDOWS\system32\j04o0ah3ed4.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\uhdmxfrm.dll

C:\WINDOWS\system32\uhdmxfrm.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\guard.tmp

C:\WINDOWS\system32\guard.tmp Deleted successfully!

Making registry repairs.

Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\URL

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{29647E95-3B73-4716-8EFF-3A1886CDFC26}"

HKCR\Clsid\{29647E95-3B73-4716-8EFF-3A1886CDFC26}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{13EDF38C-316C-43E3-A09A-BD78A5D0B0CD}"

HKCR\Clsid\{13EDF38C-316C-43E3-A09A-BD78A5D0B0CD}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{BA45171F-08CC-45F2-A35F-6AF0BFEF7640}"

HKCR\Clsid\{BA45171F-08CC-45F2-A35F-6AF0BFEF7640}

Restoring Windows certificates.

Replaced hosts file with default windows hosts file

Restoring SeDebugPrivilege for Administrators - Succeeded

HERE IS THE HJT LOG...

Logfile of HijackThis v1.99.1

Scan saved at 1:17:22 PM, on 6/22/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\xampp\apache\bin\apache.exe

C:\Program Files\AIM\aim.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\Program Files\ewido anti-spyware 4.0\guard.exe

C:\Program Files\FileZilla Server\FileZilla Server.exe

C:\WINDOWS\system32\inetsrv\inetinfo.exe

C:\WINDOWS\system32\tcpsvcs.exe

C:\Program Files\xampp\apache\bin\apache.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

C:\WINDOWS\system32\dllhost.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Sean\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ebay.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com