Date: 08/07/07 (Computer Help)    Keywords: software, browser, java, virus, antivirus, web, microsoft, google

Okay, so somehow my laptop was infected with a fairly harmless, but annoying program that randomly pops up a web browser for "amerires.com".

I ran HijackThis but can't find anything that would be affecting any of my browsers. I've run LavaSoft's Ad-Aware with the latest updates and a full system scan with Avast Home with latest updates as well. Nothing is detected. I ran SpyBot Search and Destroy and nothing was detected either.

Here's my HiJack This log file for review:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:54:38 AM, on 8/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\TightVNC\WinVNC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Winamp\Winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\TightVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: distributed.net client.lnk = C:\Program Files\distributed.net\dnetc.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files\Semagic\copy.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Semagic - C:\Program Files\Semagic\link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} (Crystal Report Viewer Control) - http://www.spartancomputer.com/viewer/activeXViewer/activexviewer.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: VNC Server (winvnc) - TightVNC Group - C:\Program Files\TightVNC\WinVNC.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 4595 bytes

I have searched google but apparently this is a pretty new thing. There are mentions of the Amerires toolbar, but that's not installed, and I scanned my hard drive for an amerires.dll with no joy there either.

Any ideas? Thanks.

Source: http://community.livejournal.com/computer_help/804779.html

Date: 08/07/07 (Security)    Keywords: security, virus

I ran across three different articles on eVoting over the last little while that interested me:E-voting systems vulnerable to viruses and other security attacks, new report finds - This report documents the efforts of two teams of security researchers from UC Berkeley and UC Davis (my alma mater). The...

Source: http://blogs.zdnet.com/BTL/?p=5882

Date: 08/08/07 (Open Source)    Keywords: virus

Some well known virus signatures were run against the programs to test their engines. Some, like open source ClamAV (above), found them all. Others, like Watchguard, missed nearly all of them.

Source: http://feeds.feedburner.com/~r/zdnet/open-source/~3/141975604/

Date: 08/10/07 (Computer Geeks)    Keywords: browser, virus, web, linux, yahoo

I am a Linux man. I am familiar with most Linux's. I enjoy Linux and understand the filesystem layout etc.
Unfortunetly geing the Junior tech I sometimes have to be the computer whooping boy. So, when a Windows luser decides to install the latest virus on his laptop, I have to figure it out.
Unfortunetly I've been out of the Windows world for so long, I am challenged by this latest problem.
The CD rom is busted (firmware I think). It's a laptop, so no disk access. And now recently the web browser won't work. When I say won't work, I mean that the system pings www.yahoo.com, but the web browser (ie and FF) say that Unable to Connect.
Windows Firewall is on, off, it doesn't matter.
This is XP with sp2.
Oh btw, NOD32 said it does/did have a virus but I can't pull it up again.

So my question is, what is causing the browser to not be able to pull up pages.

Any help is appreciated. thx

Source: http://community.livejournal.com/computergeeks/1096690.html

Date: 08/17/07 (Computer Help)    Keywords: software, virus, antivirus, web, microsoft

I've always been able to switch between different users on the computer without having to log out, but for some reason it won't anymore. I've been to the Microsoft website but haven't found any help. As far as I can tell, there's something wrong with my Terminal Services and Fast User Switching and I cannot turn either of them on. I installed a new antivirus software that I think disabled them, but I still couldn't get it working after I uninstalled it and for some reason none of my backups make a difference. I'm using Windows XP Professional if that helps.

Could anybody offer any help? It's so annoying not being able to switch between accounts. I've been told that formatting the computer will fix the problem, but I really don't want to do that..

Thanks.

Source: http://community.livejournal.com/computer_help/808500.html

Date: 08/19/07 (Mozilla)    Keywords: software, virus

Help! I have downloaded the latest version of Thunderbird (already had it on my computer, but got a message saying there was an update available). Everything downloaded alright, but then when I tried to get into Thunderbird, it tries to add the latest updates, but then I get a message saying "Software Update Failed: One or more files could not be updated. Please make sure all other applications are closed and that you have permission to modify files, and then restart Thunderbird to try again." I click okay, and then it just tries to install the updates again, giving me the error message, on and on in a nasty cycle.

I've tried googling the problem, and I can find stuff about the same error message given for Firefox updates, but nothing on Thunderbird. Can anyone help?

Also, dunno if this matters, but right before I downloaded the new version, I renewed my subscription to my anti-virus protection and downloaded the software for that. Could that have anything to do with it? Thanks in advance!!

Source: http://community.livejournal.com/mozilla/396258.html

Date: 08/23/07 (Computer Help)    Keywords: security, virus, spyware

Hello. I have a Windows XP Professional system that is FUBAR.

* When I try to launch a shortcut from the desktop, start menu, or control panel, I get the following error:
"WINDOWS CANNOT ACCESS THE SPECIFIED DEVICE, PATH, OR FILE. YOU MAY NOT HAVE THE APPORPRIATE PERMISSIONS TO ACCESS THE ITEM."

* I can not launch regedit, and I get the same error
* I can not install applications, even as Administrator. (I tried installing AdAware 2007).

* I can navigate the hard drive and some things open, some things do not.
* I checked the Sharing & Security tab and set the EVERYONE account to FULL ACCESS
* I checked the Local Security Policy for anything that prevents me from installing applications, but I can't seem to find this setting.
* The computer is "protected" with TrendMicro PC-Cillin 2007 and nothing was detected as far as virus/spyware.

THANKS for any help.

Source: http://community.livejournal.com/computer_help/809722.html

Date: 08/23/07 (Computer Help)    Keywords: virus, google

I am going really crazy on this blue screen error message, and maybe someone has had a similar problem, and can help me.


When I start the computer it gives me this error Stop: 0x0000008e ( 0x0000005, 0x8064641a, 0xf8b4caa0, 0x00000000)

I can't not load on safe mode, when I try it gives me a similar message Stop:0X0000007B (0xf8b4d528, 0XC0000034, 0x00000000, 0x00000000)

I can load the computer when it says Last Known Good Configuration( Your most recent settings that worked)

I tried running a virus scan with Norton, and it wouldn't work. I tried uninstalling it through the control panel, and it would just get to the blue screen. I restarted the computer again with Last Know Good Configuration, and uninstall Norton using Norton removal tool, thinking I could just install it. Of course I couldn't reinstall Norton. I have looked all over Google for answers but I am confused even more.

Please I need some help! Thank you.

Windows Xp
512 ram
1.80 mzh
Dell dem 8200

Source: http://community.livejournal.com/computer_help/810118.html

Date: 08/28/07 (Computer Help)    Keywords: virus, spyware

I have been consistently experiencing video lag. It only happens while online (e.g. watching movies on netflix, playing computer games on a network), and only the video lags - the sound is fine. When I check, I find that my CPU is running at 100% during these lags. This never happens when running other programs. What could be causing the lag, and what can I do about it?

I have a Dell Inspiron 600m running Windows XP. I have a 1.6 GHz processor, 512 MB of RAM, 52 G hard drive, mobility radeon 9000. I have run speed tests and consistently get a download speed around 1.3-1.5 Mbps and an upload speed of 350-400 kbps. I don't need to defrag. I have checked for viruses/spyware, so that isn't the problem. I can get you any other info that might be helpful. (At first I thought it was the RAM, but I play games with my brother who has an older computer and less RAM and still has no lag problems ...)

Source: http://community.livejournal.com/computer_help/811508.html

Date: 09/02/07 (Computer Geeks)    Keywords: virus

I keep getting a bubble down near the lower right hand of the screen telling me of a System Alert. It says something about a virus or some such nonsense. I'm up-to-date, but it won't turn off. Actually, it keeps trying to sell me a product called VirusProtectPro.

Hmmm it almost sounds like adware, but why can't I get rid of it?

Source: http://community.livejournal.com/computergeeks/1102838.html

Date: 09/03/07 (Computer Help)    Keywords: software, virus

I have a Compaq Presario Sr1214nx running Windows XP-Home Edition.

I have a Samsung Writemaster DVD burner and have a Sony DVD ROM CD writer.

But this is the problem; I have already killed 2 DVD players, the original I think Toshiba and the DYNEX crap my Best Buy warranty provided when the first one died.
Both of those worked fine for a year or less, then they would not recognize specific DVDs. As time progressed I could view less and less of my DVDs until they would not read any at all.

Now my Samsung Writemaster is not recognizing the code or whatever of specific DVDs, DVDs that is has played before. If I take the DVD out and stick it in the Sony, it plays with no problem.

My question: Is there some sort of virus that can effect my DVD player? I don't illegally download movies or play any that have been, and I don't install any suspect software.

What is going on?

Source: http://community.livejournal.com/computer_help/813407.html

Date: 09/06/07 (Computer Help)    Keywords: virus, google

I recently had a serious virus infection and after running AVG, Spybot, and Ad-Aware in both regular and safe mode about 300,000 times, I finally managed to get rid of it. The only problem is that my control panel is now missing and I can't do anything even though from what I can tell, I'm still logged on as System Administrator. If I double click the time in the system tray or even go to Start/Set Program Access and Defaults, it says, "This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator."

From what I've googled, Spybot can change some of these things if ran in advanced mode. The only problem is that I never ran it in advanced mode until after my control panel went missing and I've learned the quirky things that Spybot can do.

Does anyone know how I can get my control panel back and what, if anything, I can do in Spybot's advanced mode to change these locked settings?

Source: http://community.livejournal.com/computer_help/814559.html

Date: 09/14/07 (Security)    Keywords: software, security, virus, antivirus

Customers are getting more demanding, while security market is seeing a gradual consolidation around fewer players. Spending on security software across Europe is expected to top 2.4 billion euros ($3.3 billion) this year, with antivirus software continuing to form the largest slice of the pie. Antivirus software will account...

Source: http://news.zdnet.com/2100-1009_22-6207989.html

Date: 09/22/07 (Computer Help)    Keywords: virus, antivirus, spyware

Bought a desktop from a friend who reformatted the computer. Uuuuunfortunately he did so with a windows disc he'd already used once before (I'm completely technically illiterate so if I use a completely wrong phrase feel free to laugh) So the thing works pretty well and I haven't had any issues with the antivirus freewares he installed. But recently the computer froze and I had to restart it, and since then when I go to listen to something it tells me there's an audio error. My speakers are plugged in and in working condition. They worked before the crash! So anyone know what to do?

Also, on my shitty laptop I'm having TONS of problem with the internet. I use Firefox but still occasionally when I click on something it makes it open in IE. Well, now the stupid "This window requires you to be online blah blah connect or work offline" box pops up and doesn't take no for an answer! I'm almost ALWAYS on the internet, but it insists on asking me to connect to the old dial up my father had 3 years ago when it was his. And now I'm having pop-up upon pop-up (tongue twister) randomly... um... popping up... with IE whether or not I'm using it. My pop-up blocker is on so I'm assuming this is spyware or something... Also, my computer is having an awful lot of "fatal errors."

And problem 3, my laptop is RIDICULOUSLY slow, and my desktop is always on the internet. So I keep my music on the desktop and decided to delete it off of my laptop so I could connect my Iphone to the faster computer. Well, go figure, I get a pop-up on my desktop when I connect it saying I need Windows XP Service Pack 2 or higher. How do I get this, or is there a way around it?

xposted to computersupport

Source: http://community.livejournal.com/computer_help/820218.html

Date: 09/25/07 (Computer Help)    Keywords: virus

ok, so I just installed the new version of AVG Antil virus 7.5 free edition .. everything works fine except for the Resident Shield. It tells me on startup that the resident shield is not installed, and when I go to install it, I can't because the option to install it is greyed out. There is no way to enable it, and the avg system tray icon is grey .. avg is set to run at startup, so i'd like to know how to fix this.

I have win Xp home.

Thanks!

Source: http://community.livejournal.com/computer_help/821712.html

Date: 09/27/07 (Security)    Keywords: software, security, virus

Viruses targeting cell phones are on the increase but pose a much lower security danger than those aimed at PCs, says CEO. The threats from mobile malicious software are not particularly high--and are around 20 years behind those plaguing PCs now, according to a security company chief. ...

Source: http://news.zdnet.com/2100-1009_22-6210412.html

Date: 09/29/07 (Computer Help)    Keywords: software, browser, virus, google

A pox on virus writers. Damn you all, you complicate everything needlessly and should suffer accordingly! But you won't, which is the greatest injustice!

Anyway. I got some virus protection software from Verizon, my ISP. Ever since then, when I click the "send" button in my browser as I'm composing emails with gmail (google mail), *nothing* happens. Other than the little depression graphic for the actual button looks like its being activated. But it LIES! Cause as I've said, nothing, in fact, happens. As in, the mail is not sent.

Anyone know a fix for this? I've tinkered with the software, and haven't found a way to resolve this. I'm guessing its just a pesky setting, but I'm uber annoyed and if anyone has a fix I'd be much obliged. If not, I'll be satisfied with some sympathy. ^_^ I'm also open to the possibility that it might not be the software, and just a coincidence with something else, but I'm skeptical. I think the virus software is by far the most likely culprit.

X posted

Source: http://community.livejournal.com/computer_help/822751.html

Date: 10/01/07 (Security)    Keywords: software, security, virus

Cybercrooks are breaking down large botnets into smaller groups as they seek to increase their revenue, the security firm says. Cybercriminals are downsizing their botnets to make it harder for software security companies to track and contain botnet operations, researchers say. Computers infected with a virus unknowingly...

Source: http://news.zdnet.com/2100-1009_22-6210900.html

Date: 10/02/07 (Security)    Keywords: software, security, virus, spyware

Most have security software on their machines, but many haven't updated it or activated it, according to McAfee survey. Most Americans believe their computers are protected against viruses and spyware, but scans found that a large number had outdated or disabled security software, according to a poll released...

Source: http://news.zdnet.com/2100-1009_22-6211093.html

Date: 08/08/06 (Security)    Keywords: security, virus

Backdoors, pharming, botnets, phishing, rootkits, viruses, worms. Feeling vulnerable? CNET.com's Robert Vamosi will tell you about the latest security threats, what's coming, and how to protect your system. #story {width: 960px;margin: 0;} #newsContent {margin: ;padding: 0;} #main {float: left;width: 607px;margin: 0px 20px;display: inline;} #side {float: left;width: 310px;margin:...

Source: http://news.zdnet.com/2030-9595_22-6052904.html