cj18

Everything http://www.voidtools.com/ Its a tool that searches your computer for the file name you ask for. Good if you have a large amount of files like me on your computer that you can forget where you put easy. Teamviewer http://www.teamviewer.com/index.aspx Lets you see or control someone's computer from your own. Media Player Classic http://mpc-hc.sourceforge.net/ Good video player and can play .mkv videos with subs that vlc can't unless there was some extra things to install on vlc i didn't look into. Zoom Player http://www.inmatrix.com/files/zoomplayer_download.shtml Same as Media Player Classic just different look and controls. I like this for the playlist that sits next to where the video plays, but i still use both.

I am helping someone buy a laptop for her school but she cant spend to much on it im looking for something around $400 or less with a dual core cpu in it so i know it wont be slow. http://www.overstock.com/Electronics/Dell-Latitude-D820-Core-Duo-1.66GHz-60GB-Laptop-Refurbished/5113027/product.html This is what i found so far but i was wondering if anyone knew about a better computer that wont cost much or the same as this one but cost less?

I'll give that a try but i think i may have removed it and its called ernel32.dll the file seems to be stored in my system folders next to where kernel32.dll should be. If you want to still see the logs but i knew most of this from before. Registry Data Items Infected: HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\User\Local Settings\Application Data\ave.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe") Good: (firefox.exe) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\User\Local Settings\Application Data\ave.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode) Good: (firefox.exe -safe-mode) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\User\Local Settings\Application Data\ave.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe") Good: (iexplore.exe) -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 93.188.162.163,93.188.166.194 -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{85970873-2a37-482c-9a2b-9edf76476164}\DhcpNameServer (Trojan.DNSChanger) -> Data: 93.188.162.163,93.188.166.194 -> No action taken. Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\User\Application Data\6aecb3c2.exe (Trojan.Dropper.Gen) -> No action taken. C:\Documents and Settings\User\My Documents\64kbmovie(http://www.albinoblacksheep.com).exe (Malware.Packer.Krunchy) -> No action taken. C:\Documents and Settings\User\Local Settings\Temp\Qrf.exe (Trojan.Dropper.Gen) -> No action taken. C:\System Volume Information\_restore{12FC219E-10C6-4A08-9A4B-55E8682B8E9B}\RP807\A0188164.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\ernel32.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\179oC7.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\317y3c7s.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\555q5.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\9317mY1cE.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\e79317.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\G3iQ93cE9.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\GM79317m.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\wSKUO7.dll (Trojan.Dropper.Gen) -> No action taken. C:\WINDOWS\system32\spool\prtprocs\w32x86\yW7u31i9.dll (Trojan.Dropper.Gen) -> No action taken. G:\Software\setupxv.exe (Rogue.Installer) -> No action taken. G:\Documents and Settings\Compaq_Administrator\Software\MAX2010.FIX.INSTINCT\xf-a2010.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\Tasks\MSWD-6aecb3c2.job (Trojan.DNSChanger) -> No action taken.

Here's another virus im trying to remove but this one i cant seem to get rid of myself so far ive tracked it down to being ernel32.dll from what i can tell it started out being something called qrh.exe then i removed that but this part still remains. So far i haven't seen any change in my computer and everything seems normal since i removed the qrh.exe but this is still reading as a virus as a trojan and backdoor rootkit after checking around there doesn't seem to be much about this other then what it is. Got a few things saying its best just to reinstall and reformat but i was hoping for a different way other then that. Anyone got any ideas on how to remove it, it seems like superantispywear isn't removing it or its just reinfecting itself somehow when i reboot. Im kinda lost now but im still going to be looking into it for a bit. I can post more information in a bit if someone needs it

So does this mean that even the full admins have to do BAT and AAT now even though they are full admins before the rule was made?

Not sure if they will help but it sounds like the malware virus i got before just a different one. Maybe something in this thread might help if it's not to late. http://www.steam-gamers.net/forum/showthread.php?t=33260

I might have a idea where it came from then.

I had it removed but im more looking for ways to find where it came from since it came back once so i had to remove it twice. Ill try to use that if it comes back again.

because i never installed it or seen it before and it was spamming me random viruses while it kept telling me to register for the program so I looked into it and found out it was a malware virus looking for me to give it some information. http://deletemalware.blogspot.com/2010/01/how-to-remove-xp-internet-security-2010.html

Just got the XP internet security 2010 pop up on my computer spamming me with messages saying I was infected with random viruses making it clear this was the virus not what it was telling me since I've never seen this program before. After awhile of working on find out what it was and how to remove it and somehow after awhile with some problems its all cleared up for now. I would like to know how everyone else would remove it and how to track down the source of the problem since I am still not sure where this even came from. I am normally careful about everything that comes to my computer since I've been through viruses before so now I have everything scanned twice and virus scans once to twice a day, normally just once. Just wanted to ask this though I am still going to ask my teacher when I get to class about this but I like to get the opinion of different people.