Security - July 2006

2006-07-18 02:25:20 · 15 answers · asked by staysane365 1

2006-07-18 01:51:59 · 9 answers · asked by Sly_Old_Mole 7

i had doubts about being hacked.. so i deleted my windows folder from the ms-dos application.. and then deleted all ms-dos files as well.. then i used a start up disk and installed a new windows on it.. and then installed norotn and zone alarm..

did this cure the problem of being hacked.. or would i better format my whole partition??

2006-07-18 01:36:27 · 6 answers · asked by helix 3

2006-07-18 01:31:36 · 2 answers · asked by The Way 4

Logfile of HijackThis v1.99.1
Scan saved at 3:52:25 PM, on 7/19/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5450.0004)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\csrss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\svchost.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\SOUNDMAN.EXE
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
E:\WINDOWS\System32\alg.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\mozilla\firefox.exe
D:\Program Files\DAP\DAP.EXE
E:\WINDOWS\system32\taskmgr.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Documents and Settings\techsavvy\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?linkid=54834
O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - D:\Program Files\DAP\dapbho.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: &Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - E:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: Toolbar Helper - {D44BBB61-E17F-4AE6-A502-8D7E0B29E616} - E:\WINDOWS\system32\s1940.dll
O3 - Toolbar: Stumble&Upon - {22D003CE-6952-46C5-80B9-D19B479620AB} - E:\WINDOWS\system32\s1940.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - E:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: iOpus Internet Macros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - D:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - D:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/1.0.0971.28/WinSSWebAgent.CAB
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1151254065953
O17 - HKLM\System\CCS\Services\Tcpip\..\{593DA206-9CC5-4CD0-AFC7-2C3C622D93F8}: NameServer = 202.79.32.35 202.79.32.33
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - E:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - E:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

2006-07-18 00:33:11 · 4 answers · asked by sulav.aryal 3

My friend has set his administrator account password, but has carelessly forgotten to write it down and has since then abandoned his computer. Well hes informed me that I can have his computer if I can figure out how to "crack" this password. I know very little about these matters so any help would be greatly appreciated. Thank you

2006-07-17 23:13:58 · 8 answers · asked by gerrie2005 1

2006-07-17 23:13:24 · 4 answers · asked by botheration2000 1

2006-07-17 22:53:12 · 5 answers · asked by Norka 1

2006-07-17 22:40:26 · 7 answers · asked by mr.cochin 3

2006-07-17 21:23:21 · 1 answers · asked by jcbrubi 1

2006-07-17 20:01:31 · 9 answers · asked by Anonymous

2006-07-17 18:25:06 · 4 answers · asked by Bettye Crocker 3

2006-07-17 17:49:49 · 1 answers · asked by Jeff A 1

2006-07-17 17:12:57 · 9 answers · asked by lilmouser2002 2

Do I need to resubscribe since Yahoo provides these protective services?

2006-07-17 17:10:47 · 10 answers · asked by hinkleke 2

Is there laws concerning this conduct? IE, can the person this happened to stick it to this guy?
Story: person is laid off, boss finds email password (private, NOT company email) of ex-employee, logs on, reads messages, and answers them, Emails all people on list and spreads propaganda. May have accessed sensitive personal information.
Basic A**hole behavior, but is it legally actionable? do you know the law involved? Took place in Hawaii.

Thanks

2006-07-17 17:07:41 · 11 answers · asked by cyphercube 3

2006-07-17 16:42:31 · 4 answers · asked by Anonymous

i changed the password on my administrator account on my pc and now i cant get in to make any changes. my desktop is a windows xp. the reason why i need to change this is because i cannot change anything with the system and the startup in selective. i dont want to mess my computer up because certain things dont start up with the computer. i tried everything to remember the password but i cant, and i also tried many ways to change the password or reset it but i have been unsuccessful, please help!

2006-07-17 16:00:17 · 11 answers · asked by Anonymous

Does anyone know of an effective popup blocker spam and adware/spyware blocker?

P.S. I have limewire pro

2006-07-17 14:08:35 · 9 answers · asked by TonyDaTiger 1

i dont have any spyware scanner and need one to use with it.

2006-07-17 13:55:47 · 4 answers · asked by cool123 1

2006-07-17 13:08:26 · 4 answers · asked by Petey 1

2006-07-17 12:57:39 · 24 answers · asked by rockoutdude85@sbcglobal.net 2

The people at spy sweeper told me to disable it for the install. Thanks

2006-07-17 11:56:13 · 5 answers · asked by niknak3 1

My brothers started playing this onlyne game called "Runescape" by Jegex. They play this game for many hours everyday and since then, I've been having some problems with my computer such as; adware, spyware, and even aTrojan Downloader virus (wich have made me restore my computer to factory settings twice). I like to think that these bugs have mothing to do with the fact they play this online game (because I don't want to force them to quit it) ...but I have to be sure it is not the problem before something major happens to my computer. I guess my question is if you know how safe is to play this game, if at all, or if I should tell my bros. to quit playin it. Thank for your help, I really appreciate it!

2006-07-17 11:40:56 · 12 answers · asked by Sir Excalibur 2

I tried everything for hours what can I do?
My ISP won't help with a cost$$
Can a Virus change your IP address and keep you from being able to RENEW it?

2006-07-17 10:24:31 · 3 answers · asked by TaylorProud 5

I have a new e-mail but I need the old one to have them mail me a password , I have tried it all .

2006-07-17 09:53:45 · 5 answers · asked by sidekick 1

when i clicked the arrow facin down by the white arrow in the green box fecing right i still see a website that i dont wanna see..how can i get it of

2006-07-17 09:18:45 · 7 answers · asked by ctanoyank 1

the websites show when i open the history file and they could b accesed.. I tried deleting them from there they deleted, but when i went to internet options agin to clear my history of websites i fond that they appeared in d history file again..How can i delete these websites for ever?

2006-07-17 09:06:49 · 1 answers · asked by ctanoyank 1

2006-07-17 08:58:43 · 6 answers · asked by Anonymous

it tried to open but it seid it cant that dont have administration priviledges...HHHHOw can i get administration priviledge

2006-07-17 08:55:44 · 6 answers · asked by ctanoyank 1