Damn stuff never ends. I'm getting hijacked on my home pc. Click links and goes to other sites.

What's the best free thing out there now? I'm using avira antivirus and nothing in there is stopping this bs :smash:

Damn stuff never ends. I'm getting hijacked on my home pc. Click links and goes to other sites.

What's the best free thing out there now? I'm using avira antivirus and nothing in there is stopping this bs :smash:

I use ghostery in my browser,
malwarebytes, spybot, CCleaner, regcleaner, Symantec Anti-virus.

I can still get clapped, I need some av for my non-outlook email client.

When it comes to the internet you can't get enough protection.

i will agree with striperman, but i will not agree with non experienced people using ccleaner and regcleaner. windows clean up is a better alternarive imo. there is a program called hijack this that is great for these problems but its a bit advancedm however u can have the log file reviewedon the inet for free. if all else failes got to bleeping computer .com and look for combofix. its prob the single most powerful tool on the market. download run in safe mode and clean up with the rest. but that is just my 2.5 cents
Posted from my iPhone/Mobile device

i will agree with striperman, but i will not agree with non experienced people using ccleaner and regcleaner. windows clean up is a better alternarive imo. there is a program called hijack this that is great for these problems but its a bit advancedm however u can have the log file reviewedon the inet for free. if all else failes got to bleeping computer .com and look for combofix. its prob the single most powerful tool on the market. download run in safe mode and clean up with the rest. but that is just my 2.5 cents
Posted from my iPhone/Mobile device

Combofix installed and uninstalled as it is incompatible with most AV's including Symantec and Proventia.

I'm an old Com developer I've hacked my way out many a broken registry, but do back it up first.

I've always seen CCleaner as being pretty benign when just cleaning up your browser caches.

its the extra option in ccleaner that can be dangerous. as far as combofix that is why i run it in save mode. it will be fine with his antivirus. i would never again in my life install a symantic product on a machine.
Posted from my iPhone/Mobile device

its the extra option in ccleaner that can be dangerous. as far as combofix that is why i run it in save mode. it will be fine with his antivirus. i would never again in my life install a symantic product on a machine.
Posted from my iPhone/Mobile device

If I had a choice I wouldn't either.
I got friggin Bit9 on this too and it really beetches about removing stuff like that.

I just installed combofix and it was beetchin.
I don't use that extra registry option on CCleaner

If you use Firefox, download NoScript. Most browser hijacks are implanted with javascript. NoScript prevents javascript from executing and can protect you from most issues.

Read an article a few days ago... something like 98% of browser hijacks initiate from scumbags exploiting legitimate websites. Frequently, the malware is injected into the AdServer and any website that utilizes that advertising company is now vulnerable.

Long gone are the days when all you had to do was avoid shady porn websites and you'd be safe.


If you really want to put up a heavy layer of protection, check out Sandboxie - Sandbox software for application isolation and secure Web browsing (http://www.sandboxie.com/). It creates a virtual "Sandbox" on your hard drive for programs to "play" in. The programs can't install, edit or delete any files outside of the "Sandbox". Then when you close the browser, everything in the sandbox is deleted. It's not perfect, but pretty damn close to it. Only a matter of time before the feature is directly incorporated into web browsers.

If you use Firefox, download NoScript. Most browser hijacks are implanted with javascript. NoScript prevents javascript from executing and can protect you from most issues.

Read an article a few days ago... something like 98% of browser hijacks initiate from scumbags exploiting legitimate websites. Frequently, the malware is injected into the AdServer and any website that utilizes that advertising company is now vulnerable.

Long gone are the days when all you had to do was avoid shady porn websites and you'd be safe.


If you really want to put up a heavy layer of protection, check out Sandboxie - Sandbox software for application isolation and secure Web browsing (http://www.sandboxie.com/). It creates a virtual "Sandbox" on your hard drive for programs to "play" in. The programs can't install, edit or delete any files outside of the "Sandbox". Then when you close the browser, everything in the sandbox is deleted. It's not perfect, but pretty damn close to it. Only a matter of time before the feature is directly incorporated into web browsers.

Chrome has a similar feature built-in but you're right Mr. D. most hacks are exploits of existing sites, i.e. the Facebook, Like hack.

I just installed combofix and it was beetchin.


did you install it in safe mode? and what anti virus was it crying about, i general tend to ignor that warning if i am in safe mode of i disable the services. I have however recently stumbled upon a root kit that will not allow you to disable or remove your anyvirus, it embeds itself in the " regedit.exe" file, ironicly just rename it and move over a cleanone will fix alot, it pooches permissions.

ok i downloaded no script.

Before I click anything here...is this site legit.

Removal (http://remove-malware.com/removal/) looks like it could be a spoof site

Malwarebytes' Anti-Malware 1.50.1.1100
Malwarebytes (http://www.malwarebytes.org)

Database version: 5469

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

1/6/2011 7:34:46 AM
mbam-log-2011-01-06 (07-34-46).txt

Scan type: Quick scan
Objects scanned: 241715
Time elapsed: 25 minute(s), 19 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

SO WTF :smash:

did you install it in safe mode? and what anti virus was it crying about, i general tend to ignor that warning if i am in safe mode of i disable the services. I have however recently stumbled upon a root kit that will not allow you to disable or remove your anyvirus, it embeds itself in the " regedit.exe" file, ironicly just rename it and move over a cleanone will fix alot, it pooches permissions.

It didn't give me a chance to do that. it fragged some of my GFE software too. VMPlayer.

Booger - do a FULL SCAN with the latest updates, not a quick scan.

Tnx bossman will do that now.

Booger - do a FULL SCAN with the latest updates, not a quick scan.

or do an advanced search for all files modified or created on a specific day

3 hours in on a full scan and still nada.

Now, download and run Prevx CSI

Also, go to your web browser and restore settings to default

It's still going 4.5 hours now

CSI oh boy what you getting me into

probably find dead bodies in my shop tomorrow

did u try and chage your home page ? are u using firefox and IE? if it opens in both your host file maybe modified.
Posted from my iPhone/Mobile device

scan just finished with nothing found. I know there's something there because every time I click on a google link it's a crapshoot what site comes up.

SKIPPY GUESS WHAT I FOUND TODAY

Booger is a tech moron. Don't go to that site again.

If all else fails reload OS.
Posted from my iPhone/Mobile device

I'm no expert, but it sounds like a worm. I had one that redirected my browsing to some obscure site, constantly. Did you try System Restore? It might work, taking your OS back to an earlier date.

can you bring it to the shop Sunday i will fix it in 1/2 hour

SKIPPY GUESS WHAT I FOUND TODAY

possibilities are endless

:rotf2::rotf2::rotf2::rotf2::rotf2::rotf2::rotf2:: rotf2::rotf2::rotf2::rotf2::rotf2::rotf2:

Skippy this is the machine with the os on two disks

If you can fix that in a 1/2 hour I will make an appt for you for a sweaty hummer from bar rafaeli :rotf2:

can you bring it to the shop Sunday i will fix it in 1/2 hour

THE MISSING DISCS

possibilities are endless

:rotf2::rotf2::rotf2::rotf2::rotf2::rotf2::rotf2:: rotf2::rotf2::rotf2::rotf2::rotf2::rotf2:

Skippy this is the machine with the os on two disks

If you can fix that in a 1/2 hour I will make an appt for you for a sweaty hummer from bar rafaeli :rotf2:


I told you to blow that up 3 years ago and use a clean slate, new machine, with the system padlocked and you removed from administrative rights.

Someone pointed to Sandboxie above - I think Booger 2.2 should be run in the Sandbox to protect the computer ;)

I've been told I don't play well in the sandbox

:hee:

I've been told I don't play well in the sandbox

:hee:


You in the sandbox is designed to protect the other kids, or in this case, your computer. :devil2::buds:

yea I am starting to think seriously about building another box. Just dreading taking all the stuff off here and transferring though.

ugh.

Before you build, list what you want and need it to do, and what you are looking for and what level of redundancy. Reason I say this is that a few us intervening (in a good way) early might stop you from going Frankenstein on it. Probably no different results that you'll notice but sure as #&@^# safer for the rest of us :tooth:

Seriously, I'm sure we could come up with a straight forward way of doing (say Dell or HP with Intel RAID1), Acronis or Storagecraft backup, yada, etc, yada

DOOD you could have just said I like wearing pink tutu's and frilly boots and it would mean the same to me in nerd speak :rotf2:

Before you build, list what you want and need it to do, and what you are looking for and what level of redundancy. Reason I say this is that a few us intervening (in a good way) early might stop you from going Frankenstein on it. Probably no different results that you'll notice but sure as #&@^# safer for the rest of us :tooth:

Seriously, I'm sure we could come up with a straight forward way of doing (say Dell or HP with Intel RAID1), Acronis or Storagecraft backup, yada, etc, yada

First i would try to restore to an ealier date. If that doesn't work , Kaspersky or Dr Web rescue disc will get it. Both have free downloads of the continuously updated .ISO file and then you use it to burn the drive image and create the bootable rescue disc. All free. I have had my search corrupted before and a restore fixed it. I have also had some where I needed to run the boot drive anti virus.

Absolutely no where is safe anymore. I once got a virus from a site that showed the names , numbers etc for Lawyers in NJ. I also got one once when looking up old Irish sayings on sites on St Patricks Day.

Its a jungle out there!! :)

Oh , BTW , after I set up my system , I clone the C drive. I then unplug the original and run my system off the cloned drive. Anything that gets me so bad the rescue discs won't fix , I simply F disc , reformat and clone the drive again from the original. To make this successful I also backup my email and other important files etc on a second hard drive which is a removeable USB drive.

In a disater , reclone from ground zero, unplug the original drive ahain, copy the files I backed up from the removeable USB and I'm back in action..

Oh, BTW , the Kaspersky also has an isolated environment to use while surfing similar to the "Sandbox" JD described. I don't like it as it seems to really slow things down.

ok it just did it again.

I was on google's home page, searched "waterman pen"

top link was waterman.com

it took me to:

Waterman Pens | Lowest US Prices | Buy Waterman Pens at DealParty.com (http://dealparty.com/ac/deals.php?phrase=Waterman+Pens&uid=3449e705ebb13e799b446ff105e9ae29&kuid=4766c8d09bfc80c5e594099aba1afb51&src=7s)

If I go back on the google page and right click the link I get this url:

Waterman : fine writing and luxury pen collections (http://google.ad.sgdoubleclick.net/pagead/nclk?sa=L&ai=1&fadurl=googleads.g.doubleclick.net&u=http%3A%2F%2Fgoogle.ad.sgdoubleclick.net%2Fpagea d%2Fnclk%3Fsa%3DL%26ai%3D1%26fadurl%3Dgoogleads.g. doubleclick.net%26u%3Dhttp%253A%252F%252Fwww.water man.com%252F&aclck=http%3A%2F%2Fsearch-advertising.net%2Findex.php%3Fsearch%3Dwaterman%2B pen)

I have the script blocker on...didn't do anything..

now any time I click the link again even if I reload it I get the real waterman site....

I'm not the only one...

MalWare Removal • View topic - Search Engine Browser Hijack/Redirect (http://www.malwareremoval.com/forum/viewtopic.php?f=11&t=51880&start=0)

http://www.bleepingcomputer.com/forums/topic336314.html

I wish something would fix your Caps Lock

heh? what's wroNG wiTh mY caPs LOcK

kaspersky TDSSKiller...

found this: Google-Something Strange (http://www.insurance-forums.net/forum/google-something-strange-thread24499.html)

I downloaded and ran, found nothing.

I told you to blow that up 3 years ago and use a clean slate, new machine, with the system padlocked and you removed from administrative rights.

Someone pointed to Sandboxie above - I think Booger 2.2 should be run in the Sandbox to protect the computer ;)

Deja vu

download LSP fix (http://www.bleepingcomputer.com/files/lspfix.php) and see what is says. also if you down load HiJack this (http://free.antivirus.com/hijackthis/) email me the log file or post it here,

I dumped avira last night and went back to avg this time.

78 redirect infections found. Still does dealparty though.

AVIRA ANTIVIRUS PAID EDITION IS GARBAGE. I think that's what started this whole thing.

oh there's that caps lock again :rotf2:

lsp says no problems found.

lsp says no problems found.

what .dll's where listed for a XP machine there should be 3 maybe 4?

78 infections... your only real hope of a clean machine is to blow it up and start over. Back up your important files to a removable hard disk, write down a list of all your programs and do a complete reinstall.

After you have a fresh machine, quit going to midget porn websites.

78 infections... your only real hope of a clean machine is to blow it up and start over. Back up your important files to a removable hard disk, write down a list of all your programs and do a complete reinstall.

After you have a fresh machine, quite going to midget porn websites.

i beleive there called little people not midgets you insensitive ....... lol :rotf2: jk no matter how u slice it midget = funny,

i beleive there called little people not midgets you insensitive ....... lol :rotf2: jk no matter how u slice it midget = funny,

Munchkins.

ComboFix has lunched my machine!! Will not boot in the docking station now, FRACK!!!!

It's Skippy's Fault!!!

munchkin porn :devil2:

I should add the 78 that were caught were infected files in my eudora attachments download directory....which I never run stuff off of unless I know it's clean or are very comfortable with who sent it to me.

I'm doing the shop machine right now and that one has 182 threats right now and it's only part done. Like I said previously Avira AV is CRAP.

like this. this is all crap from the 1000 spams (literally) I get a day.

like this. this is all crap from the 1000 spams (literally) I get a day.
Have you considered removing your email address from your website and putting a "Contact Form" instead? This will filter out some of the less sophisticated email spam scrapers. Basically, these spammers uses automated bots to look at the source code of your webpage and they add anything that has "mailto: " or looks like an email address onto their spam list.

If you remove your email address and use a contact form, it takes a more sophisticated automated bot to fill out the form. When a human clicks submit on the form, it'll send you an email. You'll still get spam, but probably much less.

Also, your web hosting/mail provider should have some spam filters as well that will prevent those messages from even getting to your email box. If you wanted, you should be able to set up preferences to auto-delete emails that contain attachments unless the sender is on your "Trusted" list.

My email address has been posted on our website for 7 or 8 years. I see maybe 2 spam messages/day.

johnny go look at how it's done now... How to contact Salty's Wooden Lures (http://www.saltys.co/contact.htm)

Problem is it's going to the original scott@ email. While I've taken it off the site it still means there are tons of sites I order from with this email addy and also it's on my cards etc too. So it's got to continue til I at least change my cards to remove it.

I have a vpn so i'm on my own. Their spam stuff was extra $10 a month and useless. I dumped it after one month. waste of money.

out sick 2 days plus today and there's 3028 junkmails in my junk folder right now.

I even setup dnsrbl using list one and two, problem is that it was rejecting valid emails from dealers etc. so I had to take it off.

what i'd like to do is clamp the whole thing down so you can't send email with anything else but an approved header/subject line, problem is too many people can't/don't read the first line on that page...and just send an email with any old subject title they want. Many times I have to go dig stuff out of the junk folder. I've stopped doing that in the last few months and I'm sure some people don't get replies as a result.

Munchkins.

ComboFix has lunched my machine!! Will not boot in the docking station now, FRACK!!!!

It's Skippy's Fault!!!

NVR! combo-brick as we use to call it has fail safes built in to prevent that now unless you or something interrupted it.

will it boot out of the docking station ? look at the log file and see if there was a corrupted driver. you may need to reinstall the serial driver. or Comm driver

here you go skippy.

What a freakin mess.




Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:29:47 PM, on 1/8/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\WINDOWS\system32\bgsvcgen.exe
D:\WINDOWS\system32\cisvc.exe
D:\WINDOWS\System32\GEARSec.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\ghost\Agent\GhostTray.exe
C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
D:\WINDOWS\system32\wfxsnt40.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\UPS\WSTD\UPSNA1Msgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
D:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
C:\UPS\WSTD\MSSQL$UPSWSDBSERVER\Binn\sqlservr.exe
C:\Program Files\WinFax\WFXCTL32.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\UPS\WSTD\WSTDMessaging.exe
C:\Eudora\Eudora.exe
C:\ghost\Agent\PQV2iSvc.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\WFXSVC.EXE
C:\Program Files\WinFax\WFXMOD32.EXE
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
D:\WINDOWS\system32\wscntfy.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Eudora\plugins\Spamnix\spamnix.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
D:\WINDOWS\system32\cidaemon.exe
D:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Verizon | MyVerizon 2.0 | Login (http://wapp.verizon.net/bookmarks/bmredir.asp?region=all&bw=dsl&cd=7.0unattached&bm=ho_central)
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = :0
F2 - REG:system.ini: UserInit=D:\WINDOWS\system32\userinit.exe,C:\WINDO WS\system32\userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [OM_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Norton Ghost 9.0] C:\ghost\Agent\GhostTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [WinFaxAppPortStarter] wfxsnt40.exe
O4 - HKLM\..\Run: [NA1Messenger] C:\UPS\WSTD\UPSNA1Msgr.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
O4 - Startup: Eudora.lnk = C:\Eudora\Eudora.exe
O4 - Global Startup: Controller.LNK = C:\Program Files\WinFax\WFXCTL32.EXE
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O4 - Global Startup: UPS WorldShip Messaging Utility.lnk = C:\UPS\WSTD\WSTDMessaging.exe
O4 - Global Startup: UPS WorldShip PLD Reminder Utility.lnk = C:\UPS\WSTD\wstdPldReminder.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1221691686937
O16 - DPF: {91CCA323-76C5-47F7-BCAB-49DF8D6BA761} (Cart32Control.ctlGenerateKeys) - https://secure.nedatavault.com/advantagecomm/cgi-bin/Cart32Control.CAB
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: GEARSecurity - GEAR Software - D:\WINDOWS\System32\GEARSec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\ghost\Agent\PQV2iSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WinFax PRO (wfxsvc) - Symantec Corporation - D:\WINDOWS\system32\WFXSVC.EXE

--
End of file - 8882 bytes

as messy as that look it all looks legit, man you have a lot of stuff loaded.

here is a nice updated post from Majorgeeks (http://74.86.201.210/showthread.php?t=230267) they have a awesome tool call ATF cleaner. follow that url and read that post its a update from 1/3/2011 with similar issues you are having, this will help you properly flush your DNS and clear search engine crapola. let me know how this works

OK NOW I'M SCARED. That site says it's going to eat my cookies...

That would be bad...very bad.

NVR! combo-brick as we use to call it has fail safes built in to prevent that now unless you or something interrupted it.

will it boot out of the docking station ? look at the log file and see if there was a corrupted driver. you may need to reinstall the serial driver. or Comm driver

Yup boots out of the dockin station. Never had a problem before Combi-brick

Yup boots out of the dockin station. Never had a problem before Combi-brick

jsut re install the com drivers u should be fine, that happens if there is a effected driver. i think its a com driver let me know.

OK NOW I'M SCARED. That site says it's going to eat my cookies...

That would be bad...very bad.
only a chubby guy would be scared.

johnny go look at how it's done now... How to contact Salty's Wooden Lures (http://www.saltys.co/contact.htm)
I saw how it's done. And the way you do it now makes it easy for the spammers to put you on their list and get through to your inbox.

Something like this:
http://pressplaymedia.files.wordpress.com/2007/11/contact12.jpg

will *help* cut down on the number of spam emails you receive. you can also change your email address that those emails are sent to whenever you want.

Just a suggestion...

jsut re install the com drivers u should be fine, that happens if there is a effected driver. i think its a com driver let me know.

I'll try on Wednesday, I aint goin there till then

johnny go look at how it's done now... How to contact Salty's Wooden Lures (http://www.saltys.co/contact.htm)

Problem is it's going to the original scott@ email. While I've taken it off the site it still means there are tons of sites I order from with this email addy and also it's on my cards etc too. So it's got to continue til I at least change my cards to remove it.

I have a vpn so i'm on my own. Their spam stuff was extra $10 a month and useless. I dumped it after one month. waste of money.


You are on a VPS you mean, right?

Still running on a Windows server, eh? A properly configured Linux box would reduce some of your exposure that you are suffering as Linux based boxes in your price range typically have much better baseline protection than Windows boxes do.

Scott, you need a digital makeover. A "Geek eye for the N00b Guy" episode in the making. A tech plan that will take you from your constant blowing up now, to a reduced incident environment.

Move Win to Linux in your carts and servers, change emails and R.I.P. the old one with no forwarding (this means running both concurrently with no linking while actively retiring the old one of the course of a year), and deep six the Frankenstein home / Office computers. How many hours a year do you waste / lose due to tech errors?

Not trying to be a plick, just saying "All of this has happened before and all of it will happen again." Until you break the cycle that is (channeling inner geek) :rotf2: .

At least; me, Striperman, Skippy, and Likwid have had a hand in that mix at one point or another and have probably all spoken along the same lines. Again, just trying to nudge you in the right direction.

not sure he's Nudgeble

yea I don't disagree John. Just wish the funds allowed it right now... One income on plugs sucks for what goes into it. The house computer is going to have to be done this spring and I'll let you know before I do anything so you can throw some input.

vps yea that's what I meant to say :smash:

john who makes a linux shopping cart. I can always keep using fp to ftp up to the site but the cart is the big thing. Got to be something I can cut n paste in fp like what cart32 is now... otherwise it gets so geeky nerd my eyes glaze over like I smoked a pound of columbian gold

Scott, you should look at switching to an online content management system. Much easier to deal with, significantly easier to manage, no more FrontPage (which I hate) and no more copy/pasting then uploading code just to find out it's all screwed up. As an added benefit, it may make your website easier to navigate for the customer and increase conversions, while also improving how Google ranks your pages.

It's definitely a bit of an undertaking. I could go on for hours about how to best optimize a website to increase conversions... but it all depends on your goals.

Scott, you should look at switching to an online content management system. Much easier to deal with, significantly easier to manage, no more FrontPage (which I hate) and no more copy/pasting then uploading code just to find out it's all screwed up. As an added benefit, it may make your website easier to navigate for the customer and increase conversions, while also improving how Google ranks your pages.

It's definitely a bit of an undertaking. I could go on for hours about how to best optimize a website to increase conversions... but it all depends on your goals.

What he said ^

What you are doing now is trying to find an oddball cart system to work with an even more oddball web editor (Frontpage) that most people hate. This is causing you to jump through some gawdawful hoops and suffer some oddball tech issues (VPS Windows Server :yak5: ).

I don't have an answer for you specifically as what I might do might not be best for you. But you should have a discussion with Pros or investigate from a clean slate.

There are plenty of packages out there that run well, reasonable costs, and are reliable. Miva, Zencart, just two quick examples. You would be well served to find a company that specializes in hosting these systems that can walk you through a bit of it.

All of which is going to cost so much as to make it prohibitive and you wonder why I'm still where I am doing donuts and tripping over the bar. It would involve shutting the whole thing down for an extended period of time. I'd be eating more peanut butters n jellies by weeks end. square one here we come:wall:

What he said ^

What you are doing now is trying to find an oddball cart system to work with an even more oddball web editor (Frontpage) that most people hate. This is causing you to jump through some gawdawful hoops and suffer some oddball tech issues (VPS Windows Server :yak5: ).

I don't have an answer for you specifically as what I might do might not be best for you. But you should have a discussion with Pros or investigate from a clean slate.

There are plenty of packages out there that run well, reasonable costs, and are reliable. Miva, Zencart, just two quick examples. You would be well served to find a company that specializes in hosting these systems that can walk you through a bit of it.

All of which is going to cost so much as to make it prohibitive and you wonder why I'm still where I am doing donuts and tripping over the bar. It would involve shutting the whole thing down for an extended period of time. I'd be eating more peanut butters n jellies by weeks end. square one here we come:wall:

You can build the entire website on a sub-domain before changing it all over to your main page. No shutting down, no loss of current sales. Then, when the website is complete, you make a couple small changes with regards to how the domain is setup in the Content Management System and the software does the rest of the work.

I bet it takes you at least an hour if not a couple hours to add new plugs to your website right now... you know how long an online CMS would take? Minutes.

According to a couple sources online, Saltys.co only has 13 pages of content. You could transfer that to a new CMS in a day or two. I also just noticed that there is a restaurant in Seattle that is Saltys.com. I guarantee you're losing some customers by them typing .com instead of .co.

Are you doing any tracking of your web traffic? That can tell you a lot. For instance, if tracking shows that a lot of people are loading items into their cart and then they start to checkout but you then they quit, some of those lost sales could be saved through testing and making adjustments but you won't know how without tracking.

Like I said before, I could go on for days about this stuff. If you're curious about looking more into it, let me know and I'll dig up some info for you to take a look at.

I can have a complete new plug page online right now in less than 5 minutes. Except for taking pictures..

I can add or remove plugs in the cart in less than 30 seconds.

saltys.co is not the main search engine site. It's what I've started moving everything towards however. Sometime by the end of the year I hope to have all the advertising changed to this. I like the .co url and think in the future it will be much easier to find as I map everything towards that. If you really want to mistype try stripersonline.co :hee:

#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&.com or saltwaterplugs.com should have the majority of the stuff. Probably #^&#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&.

Maybe it's time to have a geek convention at the shop :)

fyi I put joomla on the server a while ago. I know John has messed with that alot before but then he said he was liking other stuff. It changes so fast there's no way I can keep up with it myself I'd need a dedicated it nerd to do all the stuff and keep it current. FP I know like the back of my hand and have had great success with it. As with the cart which I've stuck with for like 13 years now. Problem is now all the nerds don't like windows hosting anymore so it's getting old.

When I looked at joomla all I saw was the glaze like they use on donuts. holy moly.

All of which is going to cost so much as to make it prohibitive and you wonder why I'm still where I am doing donuts and tripping over the bar. It would involve shutting the whole thing down for an extended period of time. I'd be eating more peanut butters n jellies by weeks end. square one here we come:wall:


No need to shut down at all, bring up two sites concurrently and when the new site is ready to go, more or less flip the switch.

Johnny is correct WRT a CMS system (Content Management System) that hooks your cart system. Look at SWE's site using Miva, pretty good job. You can make the changes over a web page, no need to create file in FP (5 times) and FTP up the site 5 times until you like it.

Anyway, not trying to go too much into this online, just saying it might be worth a different approach.

Google shows 160 pages ~ on #^&#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&, I'm not really sure how many there is anymore. It's alot.

understand John. So whose cms? if not joomla then who? wodpress?

No need to shut down at all, bring up two sites concurrently and when the new site is ready to go, more or less flip the switch.

Johnny is correct WRT a CMS system (Content Management System) that hooks your cart system. Look at SWE's site using Miva, pretty good job. You can make the changes over a web page, no need to create file in FP (5 times) and FTP up the site 5 times until you like it.

Anyway, not trying to go too much into this online, just saying it might be worth a different approach.

Joomla, Drupal, Wordpress, I'd say you should find a forum for people managing small ecommerce sites and read for a bit.

Joomla, Drupal, Wordpress, I'd say you should find a forum for people managing small ecommerce sites and read for a bit.
Take a look at true eCommerce solutions. I'd suggest avoiding Wordpress, as it is most susceptible to exploits if not kept up to date While there are ecommerce plugins for Wordpress, it really is just a blogging CMS.

For super easy to manage yourself, I'd suggest taking a look a Shopify — Create Your Online Store (http://www.shopify.com/)
also check out Ecommerce Software & Shopping Cart Software Solutions by BigCommerce (http://www.bigcommerce.com/)
A little bit more complex and you'd need someone to set it up, but locally hosted: Magento - Magento Community Edition - eCommerce Software for Growth (http://www.magentocommerce.com/product/community-edition)

The first two are the most secure and easiest to immediately get up and running.

The first two are out. Will not use something hosted by someone else. Got to be hosted on my own server. I want control over it so if something needs to be fixed I can get it fixed not be held hostage by another company.. Learned this first hand when I was with ixwebhosting when they refused to give me my files back when the site was inaccessible. Liquidweb has been fantastic in the 13 months I been with them. Their service is well worth the additional (not cheap) funds I pay them every month instead of going with a shared server setup with loads of other traffic on it.

I own my carts outright right now and would prefer to continue that way. Is miva shared or purchased?

Scott, there are quality hosting companies that specialize in hosting e-commerce. That's what you need. Whether you own it on your server means that you probably have less recourse when a problem comes by.

(And JohnnyD , I would not recommend Scott using those three CMSs to host the e-commerce portion. Probably should have clarified that a little better but I would consider Drupal or Joomla for the balance of the site.)

Glad Liquidweb has worked. I've been with them for 5-6 years now? On my second server and will probably do another next fall.

Ask Liquidweb what their options and support are for E-Commerce tools. You could theoretically go with a small shared hosting account to setup, and when ready roll that into a Linux based VPS - just a thought.

Already looked, os commerce. Really don't want shared though. That's one of the reasons I went on my own to begin with. I really want stuff kept in-house. If I own it and they don't give me good enough service I have a multitude of people that I can pay to work on it if necessary. If it's shared hosting then they typically take their own time to address the problem...you always hear the same thing, oh nobody else is having this problem...sure...as my site is down and people can't get what they want. It happened before with ixweb. Not saying I'd run into this with LW but if it ever did then I can still call Ryan the guy who moved it all last year and is familiar with how it's setup/whiz at working on it.

I'll take a peek at drupal later.

Is that installed on the server AND the local computer or just on the server and everything is done via browser?

I can have a complete new plug page online right now in less than 5 minutes. Except for taking pictures..

I can add or remove plugs in the cart in less than 30 seconds.

saltys.co is not the main search engine site. It's what I've started moving everything towards however. Sometime by the end of the year I hope to have all the advertising changed to this. I like the .co url and think in the future it will be much easier to find as I map everything towards that. If you really want to mistype try stripersonline.co :hee:

#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&.com or saltwaterplugs.com should have the majority of the stuff. Probably #^&#^&#^&#^&#^&#^&#^&#^&#^&#^&#^&.

Maybe it's time to have a geek convention at the shop :)

Yeah, power up the soldering irons

I'll take a peek at drupal later.

Don't worry about Drupal. Talk to LW and see what they say regarding commerce stuff. They support that too.

Is that installed on the server AND the local computer or just on the server and everything is done via browser?

Web browser. This is how most of the world does it now, excepting many larger systems.

Don't worry about Drupal. Talk to LW and see what they say regarding commerce stuff. They support that too.



Web browser. This is how most of the world does it now, excepting many larger systems.

Gee the web a browser? are you sure?

John os commerce is what they show on the site.

Don't worry about Drupal. Talk to LW and see what they say regarding commerce stuff. They support that too.



Web browser. This is how most of the world does it now, excepting many larger systems.

Scott, if you are hard set on hosting everything on your own server, then Joomla will probably be your best option. Take a look at some of these e-Commerce options:
e-Commerce - Joomla! Extensions Directory (http://extensions.joomla.org/extensions/e-commerce)

You'll use a web browser to access, add and edit your website, but it will all be hosted on your own VPS.

Hitman pro is my new best friend.

no more redirects

TRACKING COOKIES :smash::smash::smash::smash::smash:

Hitman pro is my new best friend.

no more redirects

TRACKING COOKIES :smash::smash::smash::smash::smash:

Cool Dude. I want to come look for plugs now.

Blow. That. Machine. Up.

At a minimum, back up everything and do a clean install. There's no way to guarantee you got it all and chances are pretty good that you didn't.

shhhhhhhhhhhhhhhh

Blow. That. Machine. Up.

At a minimum, back up everything and do a clean install. There's no way to guarantee you got it all and chances are pretty good that you didn't.

He likes the pain

mmmmm make it hurt bill you big studmuffin

bastids got me again. google re-directs. Same thing.

i tracked my oatmeal cookies right back to BJ's.

bastids got me again. google re-directs. Same thing.
Quit looking at midget porn.

But seriously, you probably never had the old machine 100% clean.

bastids got me again. google re-directs. Same thing.

You seem to be having some unresolvable problems.For what you use your computers for you might seriously want to take a look at a Linux OS.

OK,to all you geeks who beat me up last time for suggesting this...fire away.But in Scott's best interest a Linux OS is a viable solution.

It was clean before but it's infected again. hitman found 3 tracking cookies but not the virus this time. ugh. here we go again.

It's coming in via a script or image on a site somewhere. I have that script blocker on there now but there's alot of good midget porn that you have to unblock the script thing to see anything on the page. Must be the links nebe sends me :hee:

You seem to be having some unresolvable problems.For what you use your computers for you might seriously want to take a look at a Linux OS.

OK,to all you geeks who beat me up last time for suggesting this...fire away.But in Scott's best interest a Linux OS is a viable solution.

RHEL with firefox is pretty good

It's coming in via a script or image on a site somewhere. I have that script blocker on there now but there's alot of good midget porn that you have to unblock the script thing to see anything on the page. Must be the links nebe sends me :hee:
Don't worry about the tracking cookies... not really a big deal. If you are getting infected,it's probably from malware injected into a legitimate website's javascript.

Use FireFox and install the "No Script" addon. In a week or two, you'll filter through most sites you visit and have added enough exceptions that you'll rarely notice it in the background.

"No Script" is a good first line of defense. A good Network Security solution is needed to back it up. Get Kaspersky Internet Security Suite.

I have some software that I run that visits 50k-300k different websites/day and archives some data about the sites. I'll get at least 100+ sites that have malware on them and have not had an infection yet. Kaspersky is good stuff.

Or, like I said in the past, run your internet browser in Sandboxie - Sandbox software for application isolation and secure Web browsing (http://www.sandboxie.com/) and you'll never have to worry about malware getting onto your computer again.