uskyonline, command service, duce6, thiselt, media-motor, WinAntiVirus, etc.

[cesarper]

Running HJT on the guest account encountered two problems:

1st error

For some reason your system denied write access to the hosts file.
If any hijacked domains are in this file, HijackThis man NOT be able to fix this.

If that happens, you need to edit the file yourself. To do this, click Start, Run and type:

notepad "C:\WINDOWS\System32\drivers\etc\hosts"

and press Enter. Find the line(s) HijackThis reports and delete them. Save the file as "hosts." (with quotes) and reboot.

2nd error

An unexpected error has occurred at procedure: modMain_checkOther1Item()
Error #75 - Path/File access error

Please email me at merijn@spywareinfo.com, reporting the following:
*What you were trying to fix when the error occurred, if applicable
*How you can reproduce the error
*A complete HijackThis scan log, if possible

Windows version: Windows NT 5.01.2600
MSIE version 6.0.2900.2180
HijackThis version 1.99.1

Both happened shortly after clicking the "Scan Now" button, after a few entries had already been reviewed. I'm assuming this happened because the guest account has no access to access or write to certain files, but I'd thought I'd throw that in just in case.

Anyways, thanks for all your help so far, we really appreciate it. I'm just happy that my wife's 16yr old cousin (the Typhoid Mary who inflicted all this damage on my computer in the course of an evening) lives several hundred miles away and thus will never, ever, ever, EVER get her grubby little paws on my computer ever again as long as I live. My wife waits until AFTER she's done trashing our computer to mention the irrelevant fact that her family has 4 or 5 dead computers/paper weights/door stoppers due to her equal opportunity clicking and surfing. I've had this computer for 4 years, no problems. 3 hours in her hands and :buried: :thud: ! Ok, I'm done complaining. Thanks for reading.

 

[teacup61]

Hello,

For the new account you're seeing, this will explain it for you: http://www.mvps.org/marksxp/WindowsXP/aspdot.php

Don't mess with the registry or the hosts file.

Download the Hoster Here
http://www.funkytoad.com/download/hoster.zip

Unzip Hoster to your desktop

Open up the Hoster program.

* Make sure that the "make hosts writable?" button in the upper right corner is enabled.
* Click back up Host files
* then click Restore orginal host files
* close program

Ah yes, Typhoid Mary syndrome. Personally I think this is the most frustrating and maddening situation to be in....to have someone who doesn't live with you come in and destroy something that is not theirs. We have 3 computers here and keep them all locked unless we are on them. There is no way we're turning our 3 teens loose on them. They just don't get that they have to be careful where they go and what they download. They think that because their friends do it, it should be all right. NOT!! Your rant is understandable, and be my guest any time you like.

On the unused guest account, I see old AOL stuff that can be uninstalled via Add/Remove Programs. Run HijackThis and check the following entries:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cus.../sbcydsl/*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/*http://www.yahoo.com
O4 - Global Startup: America Online Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe

Close all browsers and other windows except for HijackThis!, and click "Fix Checked".

delete the following, if present:

C:\Program Files\America Online 9.0
C:\PROGRA~1\COMMON~1\AOL

Reboot

Get out your disk and let's check IE.

Click start>run> copy and paste SFC /scannow click OK

Give it the disk when it asks for it. It will check for missing or corrupted files (including IE) and fix them.

Let me know how this goes and how everything is running now.

Regards,
tea

 

[tashi]

How is it going cesarper.

 

[cesarper]

How is it going cesarper.

Sorry for the long delay. The wife has been monopolizing the computer for the last 2 weeks as she has several papers due this week. I will post again once I get the opportunity.

 

[LonnyRJones]

Let one of us know via a pm when/if you need your thread opened.