bellringr

I already use Firefox, but thanks for that insightful advice.

When I opened my e-mail tonight, a trojan downloaded itself on my computer without me having done a single thing. AVG let me know about it, but it didn't stop it from downloading. The ONLY thing I had in my e-mail that was new was a notification from TCH about a new PM I had. It was a spam PM from some idiot named pinkwaves968 or something that made no sense. Now, I don't know how this happened, but right now all I care about is getting rid of this trojan. I ran AVG immediately which found it and quarantined it. I deleted it from the quarantined folder. Then I ran Spybot and AdAware. However, things are still popping up on my desktop. I did some Google research and evidentally there are things I need to clean up in the registry but I'm not sure what. I downloaded Hijack This and was wondering if anyone here is knowledgeable enough to tell me what needs to be fixed? Here is my file: Logfile of HijackThis v1.98.2 Scan saved at 9:07:48 PM, on 10/16/2004 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\System32\CTHELPER.EXE C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe C:\PROGRA~1\PANICW~1\POP-UP~1\PSFREE.EXE C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\PROGRA~1\Grisoft\AVG6\avgserv.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\Macromedia\Dreamweaver 4\Dreamweaver.exe C:\PROGRA~1\Grisoft\AVG6\AVGCC32.EXE C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\All Users\Desktop\Pictures\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://server224.smartbotpro.net/7search/?new-hkcu R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.totalchoicehosting.com/forums/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://server224.smartbotpro.net/7search/?new-hklm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://default-homepage-network.com/start.cgi?new-hklm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 F3 - REG:win.ini: run=C:\WINDOWS\cross\RESET.EXE O2 - BHO: Var1Helper Class - {1C4DA27D-4D52-4465-A089-98E01BB725CA} - C:\WINDOWS\System32\inetdctr.dll (file missing) O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [systemTray] SysTray.Exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe" O4 - HKLM\..\Run: [intdctrr] C:\WINDOWS\System32\idctup20.exe O4 - HKLM\..\Run: [lwb] C:\WINDOWS\lwb.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM32\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe O4 - HKLM\..\Run: [Computer Alarm Clock] C:\PROGRA~1\COMPUT~1\cac.exe O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFREE.EXE" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [PrivacyScanner] C:\Program Files\Privacy Champion\pscan.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O4 - Global Startup: Picture Package Menu.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\SYSTEM32\MSJAVA.DLL O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\SYSTEM32\MSJAVA.DLL O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\Aim95\aim.exe O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\IEExtension.dll O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\IEExtension.dll O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O16 - DPF: Win32 Classes - O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200207...meInstaller.exe O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab Any help you can provide is greatly appreciated. I'm more than a little upset at AVG for not stopping it before it downloaded, but I guess I need to tighten my settings in Outlook and just turn them off when someone needs to legitimately send me a file. Thanks everyone! Kristi

That is too bad. I'm sorry it didn't work out. I'm also sorry people have to be so spiteful towards people because of what their government does. A friend of mine in France told me that the general sentiment towards americans right now isn't the best either, and that's a shame. I found the french people to be very caring and wonderful and I was well treated when I lived there. As for anti-semitism, has something happened recently? In order to not hijack this thread even more, you can send me a PM if you want.

Cool is highs in the 80s?? hehe I think our highs will be in the lower 50s. But I'm fine with that - I like cool weather. Time to stay in and cook a big pot of homemade beef veggie soup or chili! It's also nice to be able to end the day with a hot cup of tea.

Just be aware that sometimes turning on hotlink protection can make your pictures not show up to other people. You might want to read this thread VI - speaking of pictures, did you have your seminar in France this fall? If so, how did it go?

Here are some links that might help a little. Don, I haven't had to change the permissions on the templates to change them - I just downloaded them in Dreamweaver, made the change, saved, and uploaded. But I'm sure it's different depending on where you do the edits. A useful thread Another thread Yet another thread And one more thread

Someone's going to need some extra bandwidth. That was an awesome article! Thanks so much for sharing. Thumbs Up

Don, This is probably a dumb question because I am not at all familiar with php, but how is using php for an include different than just doing a regular include with html? In Dreamweaver, I use the comment function to attach a disclaimer from a separate file at the bottom of all of my pages. If the disclaimer changes, I simply change it and upload the one file.

Let's compare apples to apples here. First, Yahoo customer service is the pits IMO, but aside from that, these are features that they do NOT provide with their 11.95 plan: PHP/MySQL Perl Limit of 25 e-mail addresses SSL secure server Create surveys and collect customer feedback Complete content management system If you have a site that needs that much space, chances are pretty darn good that you're going to want to use these features. Just my .02 looking at it from a newb web developer standpoint.

You don't need to post the same question in two different places. Setting up a blog on your TCH account is easy, but I don't know how to transfer a blog from Blogspot to a personal domain. You might want to ask that in the Blogger help.

*drool* Those are the BEST mashed potatoes!! My mom makes some that are similar - she uses butter, garlic, and sour cream and then mashes them with some of the skin still on.

Coming in a close second to my other post would have to be one of the following: Mom's awesome lasagne chicken tikka masala Good ol' fashioned comfort food of roast beef, mashed potatoes, carrots, and corn. Now I'm really hungry - good thing I'm going to Famous Dave's tonight!

We use SnagIt here at work and I really like it.

I didn't know they had a beta for Mac, but I'll wait til the next one to tell my mom about it. I use Skype quite a bit, mostly just to talk to a fellow TCHer I've become friends with, but I've had a few interesting conversations with other people around the world too. I think it works great! The sound is as clear as my phone.

Endive Jambon Fromage It's a dish I had while living in France. You take belgian endives, blanch them til just a bit tender, wrap a slice of good smoked ham around each one, place them in a casserole, then cover them with bechamel sauce and tons of gruyère cheese. Bake it until the cheese is browned and everything is bubbly. YUM! I've made it a few times here, but the stupid imported endives are usually $4/pound if you can even find them worth buying and the gruyère is probably $8/pound. Not that the cost stops me....it's just annoying.

Did you see what Ivan did to Grenada?? I feel so bad for those people - over 90% of the buildings were damaged or destroyed and looting has been a serious issue. Now Jamaica is sitting right in the path with the poor people of the DR and Haiti bound to get some nasty weather from it as well. This has certainly been a weird weather year, hasn't it? Everyone take care and be safe. :hug:

My hubby gets so many e-mails saying he's won the lottery of various third world countries that we should be rich by now!

Hi Sam If you have three different domains that point to different sites, then you would either have to have three separate accounts with TCH or put them all under a resellers account.

That is gorgeous! I never seem to have a camera handy for moments like that. Congrats on your anniversary!

I see it from here. Nice site - your invitations are just gorgeous! I will have to add it to favorites in case I have something special come up.

Hi Schussat It's mainly been the cd burning part that we've had issues with. Basically, it takes several tries to get it to actually START burning, and we've ruined a few CDs with it failing partway through. I don't think it's our burner because it works fine with other programs. As for the pepsi caps, we've already put the codes in our account (and they're hubby's anyway so I can't give them away). Sorry!

MikeJ - You can burn CDs with Itunes (and I assume you can rip them too), but we've had nothing but trouble with the Windows version of their software. It's really flaky IMO. We got a bunch of free downloads from Pepsi caps and haven't even used them because we get sick of the program not doing what it's supposed to.

I agree with Bruce - we really like Music Match (in fact, we're upgrading to the pay version).

The techs have already posted that they will be testing the upgrades at least through September. They're giving us tons of extra space and bandwidth for NOTHING. The least we could do is show some gratitude and patience so they can get it done right.

He needs to be holding a Mt. Dew in his hand. I'm finding it hard to do men's faces with this program. I tried to make one for hubby last night but failed bigtime. The one of Bruce is really good though!