Jump to content

Build Theme!
  • Infected?


Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 92288 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Need Aall Sorts Of Help

  • Please log in to reply
8 replies to this topic

#1 Guest_dirty earl_*

Guest_dirty earl_*
  • Guests

Posted 11 November 2003 - 03:26 PM

G' day Need some help here please tried to register but I get error reports. Tried to manually register. Still get error reports. As a consequence of running Spybot I can open certain sites. Mostof the sites have boards or forums with a .cgi. This board is the same and I can't access or register. I can't get into the Spybbot forum because of Spybot....HELP


Register to Remove

#2 DroidC


    New Member

  • New Member
  • Pip
  • 18 posts

Posted 11 November 2003 - 03:57 PM

What version of IE are you using? Repair IE from the RUN line For IE 5 and 5.5 rundll32 setupwbv.dll,IE5Maintenace For IE 6 rundll32 setupwbv.dll,IE6Maintence Choose the repair option Reboot when prompted
Droid C

#3 Guest_dirty earl_*

Guest_dirty earl_*
  • Guests

Posted 11 November 2003 - 05:44 PM

I have IE 6 and have run repair through System information . Running Windows 98. IE repair no help Thanks, DE

#4 Galadriel


    CEO - Chief Elvish Officer

  • Visiting Fellow
  • PipPipPipPip
  • 528 posts

Posted 11 November 2003 - 07:54 PM

dirty earl,

Can you be a bit more specific..... Spybot did what exactly ?
Spybot cannot lock you out from cgi sites....

But let's see what may be lurking. Since you don't need to register to post here we'll start by looking at your config and see if all looks right.

Get Hijack This. Unzip using your favorite unzipping utility (http://www.winzip.com/)
Double click on the HijackThis.exe file. Press the "Scan" button, it will then change to "Save Log". Copy and paste its entire contents here. DO NOT fix anything yet, as most of what is listed is harmless or even needed.

I amar prestar aen. Han mathon ne nen. Han mathon ne chae. A han noston ne 'wilith. - Galadriel

'The world is changed; I can feel it in the water, I can feel it in the earth, I can smell it in the air.'

#5 Guest_dirty earl_*

Guest_dirty earl_*
  • Guests

Posted 11 November 2003 - 08:47 PM

Firstly Galadriel I am extremely grateful that you are trying to asssit me.Thank you. I am still trying to register in your site but the forum is still returning error notices.

When I first noticed that I could not access certain sites after I ran Spybot I ran "Restore". Unfortunately this did not repair the problem.
Secondly the following is the scan from Hijack : Sorry if dates and times appear out. I am in Sydney, Australia and we are a day ahead of you. Again thank you so much for your help.

Logfile of HijackThis v1.97.5
Scan saved at 1:38:58 PM, on 12/11/03
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://rd.yahoo.com/...//www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://rd.yahoo.com/...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.iprimus.com.au:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: (no name) - {CD4C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRAM FILES\GOZILLA\GOZILLA\GOIEHLP.DLL
O2 - BHO: (no name) - {601ED020-FB6C-11D3-87D8-0050DA59922B} - (no file)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\windows\downloaded program files\conflict.1\googletoolbar_en_2.0.95-deleon.dll
O3 - Toolbar: (no name) - {A58686ED-FC46-44C3-95C6-4A812AB776F1} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\windows\downloaded program files\conflict.1\googletoolbar_en_2.0.95-deleon.dll
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\SYSTEM\khooker.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [internat.exe] internat.exe
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\Run: [$EnterNet] C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\EnterNet.exe -AutoStart
O4 - HKLM\..\Run: [VetTray] C:\VET\VETTRAY.EXE
O4 - HKLM\..\Run: [AtiPTA] Atiptaxx.exe
O4 - HKLM\..\Run: [Dcfssvc] C:\WINDOWS\System32\Drivers\dcfssvc.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\CD Burner\InCD.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iamapp] D:\D-Program Files\Norton Firewall\IAMAPP.EXE
O4 - HKLM\..\Run: [Vet Alert] C:\WINDOWS\System\VetMsg9x.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [MiniLog] C:\WINDOWS\SYSTEM\ZONELABS\MINILOG.EXE -service
O4 - HKLM\..\RunServices: [ATIPOLAB] ati2evxx.exe
O4 - HKLM\..\RunServices: [nisserv] D:\D-Program Files\Norton Firewall\NISSERV.EXE
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [Nisum] D:\D-Program Files\NISUM.EXE
O4 - HKLM\..\RunServices: [ccPxySvc] D:\D-PROG~1\CCPXYSVC.EXE
O4 - HKLM\..\RunServices: [DkService] C:\Program Files\Executive Software\DiskeeperWorkstation\DkService.exe
O4 - HKLM\..\RunServices: [TrueVector] C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE -service
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - Startup: MICROS~1.LNK = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Startup: Microsoft Office.lnk = D:\D-Program Files\Office\OSA9.EXE
O4 - Startup: SHOCKW~1.LNK = C:\WINDOWS\SYSTEM\MACROMED\Shockwave\swinit.exe
O4 - Global Startup: ZoneAlarm.lnk = D:\D-Program Files\ZoneAlarm\zonealarm.exe
O8 - Extra context menu item: Open Frame in &New Window - C:\WINDOWS\WEB\frm2new.htm
O8 - Extra context menu item: &Highlight - C:\WINDOWS\WEB\highlight.htm
O8 - Extra context menu item: &Web Search - C:\WINDOWS\WEB\selsearch.htm
O8 - Extra context menu item: &Links List - C:\WINDOWS\WEB\urllist.htm
O8 - Extra context menu item: Zoom &In - C:\WINDOWS\WEB\zoomin.htm
O8 - Extra context menu item: Zoom O&ut - C:\WINDOWS\WEB\zoomout.htm
O8 - Extra context menu item: I&mages List - C:\WINDOWS\Web\imglist.htm
O8 - Extra context menu item: Color Text - C:\WINDOWS\webbrows\color.htm
O8 - Extra context menu item: Highlight Text - C:\WINDOWS\webbrows\hilite.htm
O8 - Extra context menu item: Increase Image Size - C:\WINDOWS\webbrows\resizeu.htm
O8 - Extra context menu item: Reduce Image Size - C:\WINDOWS\webbrows\resized.htm
O8 - Extra context menu item: Remove Background Bitmap - C:\WINDOWS\webbrows\colback.htm
O8 - Extra context menu item: &Google Search - res://C:\WINDOWS\DOWNLOADED PROGRAM FILES\CONFLICT.1\GOOGLETOOLBAR_EN_2.0.95-DELEON.DLL/cmsearch.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\WINDOWS\DOWNLOADED PROGRAM FILES\CONFLICT.1\GOOGLETOOLBAR_EN_2.0.95-DELEON.DLL/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://C:\WINDOWS\DOWNLOADED PROGRAM FILES\CONFLICT.1\GOOGLETOOLBAR_EN_2.0.95-DELEON.DLL/cmsimilar.html
O8 - Extra context menu item: Backward &Links - res://C:\WINDOWS\DOWNLOADED PROGRAM FILES\CONFLICT.1\GOOGLETOOLBAR_EN_2.0.95-DELEON.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate Page - res://C:\WINDOWS\DOWNLOADED PROGRAM FILES\CONFLICT.1\GOOGLETOOLBAR_EN_2.0.95-DELEON.DLL/cmtrans.html
O9 - Extra button: Real.com (HKLM)
O9 - Extra button: Net2Phone (HKLM)
O9 - Extra 'Tools' menuitem: Net2Phone (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM)
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O12 - Plugin for .mts: C:\Program Files\MetaCreations\MetaStream\npmetastream.dll
O12 - Plugin for .ivr: C:\PROGRA~1\INTERN~1\PLUGINS\NPRVRT32.dll
O16 - DPF: {E936C500-D12E-11D2-9E4D-0080C84BBDBB} (National Internet Banking Custom) - http://www.national....t/NABcustom.cab
O16 - DPF: {B8D69BC3-E4DE-11D1-9BA1-0000C006B0D8} (National Internet Banking Images) - http://www.national....inet/images.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macr...ash/swflash.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macr...ector/swdir.cab
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (IPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {4E330863-6A11-11D0-BFD8-006097237877} (InstallFromTheWeb ActiveX Control) - http://www.installfr...ll/iftwclix.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://download.yaho...s/yinst0309.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installen...gine/isetup.cab
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} (Live365Player Class) - http://www.live365.c...ers/play365.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akama...meInstaller.exe
O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} - http://fdl.msn.com/z...s/heartbeat.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupd...7868.5843055556
O16 - DPF: {597C45C2-2D39-11D5-8D53-0050048383FE} (OPUCatalog Class) - http://office.micros...ontent/opuc.cab
O16 - DPF: {DF6A0F17-0B1E-11D4-829D-00C04F6843FE} (Microsoft Office Tools on the Web Control) - http://officeupdate....nloads/outc.cab
O16 - DPF: {26AFD6EF-C017-4063-B2B1-E515DE98A1B7} - http://download.koda...2_1/install.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/p...t/msnchat45.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.syma...n/bin/cabsa.cab
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg...t/c381/chat.cab
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.s.../ActiveData.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.s...ta/SymAData.dll
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine) - http://office.micros...ontent/opuc.cab
O16 - DPF: {EFB22865-F3BC-4309-ADFA-C8E078A7F762} (SysWebTelecomInt Class) - http://www.sponsorad...sWebTelecom.cab

#6 Maddoktor2


    Staff Emeritus

  • Authentic Member
  • PipPip
  • 21 posts

Posted 11 November 2003 - 09:12 PM

Hi, dirty earl, and welcome. :) Could you also please copy and paste the error notice you get when you try and register? TIA :)
*Dok's Law*: The simplicity of a solution is directly proportionate to its elusiveness.

#7 Galadriel


    CEO - Chief Elvish Officer

  • Visiting Fellow
  • PipPipPipPip
  • 528 posts

Posted 11 November 2003 - 09:22 PM

OK.... Well I can tell you right off the bat, your problem does not stem from using Spybot. You are running two or parts of two firewalls simultaneously..... and that can mean bad news. You should always uninstall fully one before installing another when making the change. You have both Zone Alarm and Norton Internet Security running..... You should choose one, keep that one and uninstall the other. Both have info on uninstalling on their websites. Make sure that the uninstall is complete! Or you may just find yourself having more problems.... I can't really help you there because I never used neither Zone Alarm nor Norton's Firewall, so I am unaware of their uninstall procedures but I do know that a lot of people had trouble if both were present on the system at the same time. I am almost positive this problem will resolve itself once uninstall of one of the above is done.
I amar prestar aen. Han mathon ne nen. Han mathon ne chae. A han noston ne 'wilith. - Galadriel

'The world is changed; I can feel it in the water, I can feel it in the earth, I can smell it in the air.'

#8 Guest_Guest_*

  • Guests

Posted 11 November 2003 - 10:14 PM

Man don't you guys ever sleep? It must be late where you are. Anyway here is the message when I first click where indicated: An error occured, not all of the required fields were sent from the validation link. Please ensure that they whole link was entered, it's possible that your email clients auto-wrapper cut the link in half. Please try again. You are NOT logged in When I go to the manual registration where directed because the first log in registration failed I get this message: An error occured, not all of the required fields were sent from the validation link. Please ensure that they whole link was entered, it's possible that your email clients auto-wrapper cut the link in half. Please try again. You are NOT logged in The above message is returned a millisecond aafter hitting the send . Also I removed the Norton. I had it disabled before. Never did like the Norton. Anyway. No chaange to accessing some sites. I'm thinking of removining and reinstalling IE 6. What do you think....am I asking for trouble. Because the IE 6 had upgrades to Outlook Express, will I loose my messages? I guess I'll have to figure out a way to back them all up. They are important. Thanks for all of your help. Let me know what I should do to register on the site. Cheers, dirty earl L....Sydney

#9 Coyote



  • Authentic Member
  • PipPipPipPip
  • 979 posts

Posted 12 November 2003 - 05:22 AM

An error occured, not all of the required fields were sent from the validation link. Please ensure that they whole link was entered, it's possible that your email clients auto-wrapper cut the link in half. Please try again.

You are NOT logged in

send me an email with the NAME you used to try to register from the EMAIL ADDRESS you used to try to register to Chaos @ TomCoyote.org

I will see what I can do after verifying this

Tom Coyote Wilson

Galadriel will return to complete the help on the other matters
Go forth and conquer your goals with the renewed spirit of Coyote and do not let small setbacks stop you from Your Dreams

Microsoft MVP 2006-2007

May your day be blessed by those you love and those you love be blessed by HIM ;-)

Related Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users