Windows Support Forum

Hole in my bucket

Q: Hole in my bucket

I recently ran a couple firewall tests, shields up and auditmypc etc. They're both coming up with a port that's open. I think they called it Tram. It says this port is commonly used for trojans. But my biggest concern is that it is open and I would like to shut it. I have searched my firewall completely for port control options and cannot find the solution anywhere. It also said that my computer responded to Ping (ICMP Echo) Requests. Buy my firewall says that this is blocked, so I do not know how it is still responding. If anyone has had any similar experiences with these firewall test sites, because I don't know if it is my computer or the sites themselves. Please feel free to envelope me in the answer to my frustration.

http://www.vistax64.com/system-security/205933-hole-my-bucket.html
Relevancy 100%
Preferred Solution: Hole in my bucket

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/directdownload.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Relevancy 40.42%

hi

I asume its not safe to have thermal past over flow in to the hole on the cpu ...

Its on the corner wear the arow(<)(sorry cant spell) indicator is.
The hole is about 1/16th inch across .

What do I do.

I fell real dumb 4 asking this.Seeing there's many post on applying thermal past .
 

A:What to do for thermal paste on a CPU that has a hole on the plate?

So it's in one of the holes in the motherboard socket?
 

http://www.techspot.com/community/topics/what-to-do-for-thermal-paste-on-a-cpu-that-has-a-hole-on-the-plate.159686/
Relevancy 40.85%

I just built a computer and I'm stuck in the setup. This is what happened, I started up the computer and pressed F1 to continue. Now I'm stuck in setup, when I restart it goes strait back to this set up. It wont recognize the windows XP CD. What do I do?
 

A:Bios loop hole

Are you saying it goes back into the BIOS configuration each time you boot? There must be a setting that it doesn't like. Can you post the PC config?
 

http://www.techspot.com/community/topics/bios-loop-hole.97710/
Relevancy 40.85%

I was going to put a mm fan in the side of my antec P case to get good air flow with little noise but since I have little experience with cutting cases a while ago I made a side panel but thats it I thought I d practice on the case of my old PC first which needed steel for case Fan hole a case fan anyway I picked up some heavy duty cut of bits for a dremel thingy but when cutting I ground bits down to nothing and shattered another two and only got about of the way round the circle I then gave up on the dremel and hacksawed Fan hole for steel case and filed it to shape The case looks to be mm steel I just wanted to know will the antec case layers of aluminium and plastic be as hard to cut Has anyone found actual saw blades rather than grinding wheels for a dremel I couldnt I cant hacksaw and file the antec case as I want the fan hole in the centre of the side panel I was thinking maybe drill holes every mm and just dremel between them Thanks Chris ps dont suggest a jigsaw I spent mins trying to clamp it down so it didnt jump up and down and only managed to slightly reduce the amount of dents the panel ended up with nbsp

A:Fan hole for steel case

Just out of curiosity. Was the blade in the jigsaw a metal cutting blade? I have used a jigsaw before with a fine metal cutting blade with good results. The saw also had an adjustable speed motor. I would say that is your best bet! I only used a dremmel to smooth the edges after cutting. The aluminum case will be easier to cut also.
 

http://www.techspot.com/community/topics/fan-hole-for-steel-case.67898/
Relevancy 41.28%

left my computer on search and when I came back itwas black,no problem I thought it was power management,but it has never come back on?? reinstalled the vid card three times unplugged and repluggged everythinghave the green power light but it's doing a faint blinking thing,turned on and off a dozen times no luck, any ideas ,,,Thanks Rand

P.S viewsonic g800 ,windows xp sp2, amd 2800,
 

A:black hole ??

Try using a different monitor. If that doesn't work try a different graphics card.
 

http://www.techspot.com/community/topics/black-hole.57744/
Relevancy 39.56%

I ve been researching learning and still learning and I have finally found a computer that s relatively cheap but will blow a chunk out of brand name computers Here s the list I have and even now I m starting to order some of the parts Hope it helps ---------------------------------------- BAREBONES Raidmax Scorpio Aluminum Black Red ATX Mid-Tower Case Price http www newegg com app viewProduct asp description - - amp depa Asus P P Deluxe i PE P FSB Skt DDR ATX Motherboard w Audio LAN RAID Serial ATA Price http www newegg com app viewProduct asp description - - amp depa Intel Pentium C Ghz Mhz FSB HT Price http www newegg com app viewProduct asp description - - amp depa Zalman CNPS -AlCu Aluminum Copper CPU Cooler for AMD a that computer name a hole blow brand Building through computers will XP Socket amp and Intel Socket Price http www newegg com app viewProduct asp description - - amp depa Corsair XMS DDR GB TwinX Ultra Low-Latency DDR RAM Price http Building a computer that will blow a hole through brand name computers www newegg com app viewProduct asp description - - amp depa GB Western Digital Raptor RPM Serial ATA MB Cache use for OS and progs Price http www newegg com app viewProductDesc asp DEPA amp sumit Go amp description - - amp searchdepa Sapphire Atlantis ATI Radeon Pro MB Price http www newegg com app viewProduct asp description - - amp depa Lite On x x x CDROM CDRW DVD Combo Drive Price http www newegg com app viewProduct asp description - - amp depa Logitech Elite Keyboard amp Logitech MX Mouse Price http www newegg com app viewProduct asp description - - amp depa http www newegg com app viewProduct asp description - - amp depa Power Supply Cable Splitter x Price http www newegg com app viewProduct asp description - - amp depa Total FULL Creative MegaWorks THX Price http www newegg com app viewProduct asp description - - amp depa Sound Blaster Audigy ZS Price http www newegg com app viewProduct asp description - - amp depa My Total ---------------------------------------- Believe me this is cheap compared to what performance you will get Those speakers aren t what I ll be buying I ll be buying the GigaWorks speakers but NewEgg doesn t carry those yet Let s go through the parts shall we Case This case is almost exactly like the Thermaltake Xaser III but without all the extra fans and comes with a power supply Motherboard This motherboard is a P chipset motherboard The latest is P but Asus provides a quot Turbo quot mode on the P and besides the performance for both chipsets is almost identical CPU Why buy a Ghz CPU for when you can buy a Cghz for and overclock it to Ghz Fan This has the best reviews as a P fan and was recommended to me by a friend Memory A little pricy but you ll never have to worry about not having too little memory If you re a gamer it s a must since new games will be memory hoggers If you don t like the GB idea do NOT go below MB Corsair was the cheapest and seemed to have the best reviews Hard Drive You may opt for the smaller but cheaper GB version but the GB version is quieter and faster than its predecessor Look at the reviews for the Raptor series it is the fastest IDE hard drive and should be a requirement for high-performance desktop systems The motherboard comes with SATA support so no need for a controller card Video Card This is where your needs will differ If you are a gamer either go with the Pro or the Pro Don t bother with the overrated XT series or MB versions This has been a dream come true for me excellent performance and excellent quality CD-ROM Why spend for a CD-RW and a DVD drive when you can get both in one package for The Lite-On version was the best cheap version If you want the best of the best go with the Plextor drives Keyboard and Mouse Logitech is hands-down the best input device manufacturer The Elite keyboard coupled with the MX is a dream come true for gamers Splitters The case power supply has too few cables and it was recommended to by two splitters Speakers ... Read more

A:Building a computer that will blow a hole through brand name computers

Looks nice, and will definately cost less than a pre-built with the same specs...

But then again, building yourself will allmost allways end up being cheaper (if you can do without tech support)...
 

http://www.techspot.com/community/topics/building-a-computer-that-will-blow-a-hole-through-brand-name-computers.9511/
Relevancy 40.85%

I've been flippin pages in the internet tryin to find out the solution I was one of those people who fell for the Windows update free thingy So deep you windows go hole 10 the Down in tadaa here it Down in the deep hole you go windows 10 goes I have maaa free update and then realizing that all of my pirated softwares cannot be access Especially the games when I had windows it was totally working fine and all but the trouble comes when the windows walk it's way to annoy me so this is me not thinking twice what happened I tried Uninstalling my pirated programs and reinstalling I end up hitting maa head against the wall So I got back to Windows I tried reinstalling microsoft office plus again which was originally installed before I updated to windows then uninstalling it coz it wasss not working And now Imma try to reinstallin it to but there was this pop up that says the program has stop working windows is tryin to bla bla that So I thought the installer was corrupted or something so I downloaded a new Microsoft Office Plus and yes it is all pirated I've read the comments all of them said it was working fine all of them have positive comments so on So I downloaded it Now I tried to installed it but this pop up window again said i have a bit version of windows installed microsoft office plus i have to uninstall the programs before proceeding But in the first place I have uninstalled it so I tried to erase the registry keys cleaned the appdata and temp folder I have found a step by step turorial on this But it is still saying that I have installed MSOP eventhough I have cleaned it already I am a dummy at this kinds of things Pleasee someone help me thank you this all because of that windows it's giving me a headache

A:Down in the deep hole you go windows 10

The way I understand it, Windows 10 comes with a program that seeks out pirated software.and stops it from working
 
The Techs here on BC wont help people who use pirated software

http://www.bleepingcomputer.com/forums/t/587208/down-in-the-deep-hole-you-go-windows-10/
Relevancy 40.42%

We have windows Vista Home Basic. awhile back AVG detected Alureon. i scanned with AVG and MBAM, thought it was removed and used system restore to day prior to getting virus. i have done many scans since in and out of safe mode with both and they often clean trojan fake alerts, trojan downloaders, located in TEMP or system 32. many times they will find no threats and i think im ok but then ill get a black hole detection, or google will redirect, and more trojans show up on next scan. Also had "Internet Security" shortcut show up on my desktop one day. at this point im not even sure which is the root cause. A couple years back i had success using Rkill to get rid of My Security Engine. Any suggestions?

A:Bombarded with trojan, black hole etc.

Please follow the instructions at Preparation Guide, Before Using Malware Removal Tools and Requesting Help - http://www.bleepingcomputer.com/forums/topic34773.html and post the requested logs in the forum which is linked to in the Prep Guide.Once the requested logs are posted, it will be a short time before one of the BC Malware Response Team members attempt to assist you.Louis

http://www.bleepingcomputer.com/forums/t/448279/bombarded-with-trojan-black-hole-etc/
Relevancy 30.53%

I have done a bit of capturing using the Deep TCP analysis layout and there are several instances in Diagnostics that are listed as "Hole 1". what exactly does that mean?  It seems to come right after a duplicate ACK is sent.
For example:

 
MessageNumber DiagnosisTypes Timestamp Source Destination Module Summary 
1551736 Application 2015-09-14T10:03:51.6907112 192.168.0.32 192.168.0.84 TCP Flags: ...A...., SrcPort: 58500, DstPort: 9100, Length: 0, Seq Range: 2282745336 - 2282745336, Ack: 3616563598, Win: 65536(scale factor: 8)
Application\tTCP: Duplicate ACK of message #1551735, due to SACK update.
Application\tHole 1, (3616563597 ~ 3616563598)
and
MessageNumber DiagnosisTypes Timestamp Source Destination Module Summary 
1643623 Application 2015-09-14T10:05:07.0382201 192.168.0.32 192.168.0.84 TCP Flags: ...A...., SrcPort: 58671, DstPort: 9100, Length: 0, Seq Range: 753909108 - 753909108, Ack: 2201969785, Win: 65536(scale factor: 8) 
Application\tTCP: Duplicate ACK of message #1640018, due to SACK update.
Application\tHole 1, (2201969867 ~ 2201969949)

A:What does "Hole 1" mean

TCP will use Select Acknowledgments (SACKS) as a way to keep track of more than one missing range of segments.  TCP can negotiate a number of blocks to remember, which btw also show up in the RelBlock# column of the Deep TCP analysis
layout.  
For instance, seq=1-1000 are acked, but 1000-1100 are missing, yet 1100-2000 have been sent and received.  Without selective acknowledgments, TCP would have to resend seq=1000-2000 again.  However if you have at least one SACK block enabled, you
can remember 1100-2000 are complete, and the missing hole 1000-1100, can be filled in using retransmits. This can increase performance.
However, if you are getting a lot of SACKs, it's also possible this is an indication of a network problem.  By understanding how frequently these holes show up can help you understand if you are having network issues.
This wiki might be a good starting point to get a better understanding.

https://en.wikipedia.org/wiki/Transmission_Control_Protocol
Thanks,
Paul

https://social.technet.microsoft.com/Forums/en-US/0591df05-5c11-4126-b2f8-cc165d5a78cf/what-does-quothole-1quot-mean?forum=messageanalyzer
Relevancy 39.99%

I am running Win7/Pro x64.

I recently managed to unwittingly move a large branch (multiple levels of branching and many files) into my "My Documents" folder. I would like to undo what I did, but I have no idea how I did it. My guess is that I made a massive misuse of drag-and-drop

Said another way, I had a directory (very large, multi-branched folder) called "MyImageFiles" at the same level on my data drive as "My Documents." Now it is buried one level down in "My Documents."

What is the simplest way to undo this?

Thanks

baumgrenze

http://www.sevenforums.com/general-discussion/382400-move-large-branch-dont-dig-bigger-hole.html
Relevancy 40.85%

So my family lives in a semi rural area and we have GB of Verizon mobile data and GB of Hughesnet home WiFi data Our speeds are fast for both services unless we go over black Data hole our limit on the Hughesnet but it seems that we use WAY more data than we should be Our biggest concern is with our Verizon data because we pay the most for it and we have a lot of data in our plan We cant use our Verizon data for downloading streaming or anything of the sort without going over our limit which I believe is rather high If we download even just one TV episode we use a huge amount of our data The other day I was visiting my sister who lives just miles away and who has decent WiFi and I was going to download some things using it but I didn t notice I had the WiFi turned off and used our Verizon mobile data by mistake I downloaded three Data black hole forty minute TV episodes and an album of music before I realized I panicked because I Data black hole just knew we would go over our data limit and we d be up a creek I checked our data usage and it barely went up I didn t believe that could be right so the next morning I checked again and it hadn t changed What s interesting too is a family just recently moved to the area they have two teenage kids and they use verizon They have noticed that their mobile data usage has skyrocketed since moving here yet their habits haven t changed Also when my brother visits he notices that his data flies even though he isn t using it for anything more than scrolling down Facebook Which yes I understand Facebook and other little things do use data but its odd that in this one place it seems to use five times as much as it should It seems as though there s a data black hole that eats away more than should be used every time we use it at home We called Verizons support today and after an hour of them trying to explain to us that there s no way that one place could cause our data to be eaten up and that it must be that we use Facebook and Instagram too much we gave up Like I said we don t use our mobile data to download or stream so it seems insane to me that we are using nearly GB we get the warning almost every month by just using social media The Hughesnet gets used up extremely fast as well and when we go over our data allowence with it it changes to a snail pace thats somehow even worse than dialup so honestly its pretty much useless Because of our large plans we are paying about dollars a month and we can barely even use it without either going over and being charged even more Verizon or getting reduced to dialup speeds Hughesnet Does anyone know what could be causing this and what we might could do to fix it Any help would be greatly appreciated Thank you Sorry if this isn t the appropriate place to post this nbsp

A:Data black hole

KuroKitsune1 said:


Does anyone know what could be causing this and what we might could do to fix it?Click to expand...

I don't know, but I have a guess. It may be that you have a weak signal (talking about the cellular, but it could apply to the satellite as well) and hence many data packets have to be sent a second or third time before they are received without error. If you think there is any merit to this idea download something and then check to see how the data used* compares/contrasts to the size of the downloaded file.

*Note--may not be very easy to determine how much data is used with one download. I think that the iPhone measures data usage pretty well, but not everybody agrees and I've never tried to use it for something with this needed accuracy.
 

https://forums.techguy.org/threads/data-black-hole.1157344/
Relevancy 45.15%

I had to do a system recovery a week ago. Ever since then computer constantly Freezes and Crashes.
HP Pavillion Slimline s5713w, with Windows 7 Home Premium x64, SP-1.
Went to System Info: many Drivers are listed as "critical"
Went to Windows Error reporting: many "Fault bucket" (including: blue screen, AppCrash)
I think I need to wipe the whole thing out and start over???
Any help would be appreciated.

http://www.sevenforums.com/general-discussion/384983-freezes-crashes-sys-drivers-critical-windows-fault-bucket-reports.html
Relevancy 47.3%

AVIRA team accepted the ice bucket challenge from G Data, and they challenged AVG, Kaspersky, and Avast to do the same.....enjoy!!!

 

A:Avira Ice Bucket Challenge

https://www.facebook.com/video.php?v=10152266485235636

Gdata
 

https://malwaretips.com/threads/avira-ice-bucket-challenge.32844/
Relevancy 39.56%

H Security said Zero Day Initiative ZDI has released information on a security problem in McAfee s Security-as-a-Service products SaaS The vulnerability broker says that it told McAfee about the hole in April and that it has now decided to publicly release the information because the vendor still hasn t provided a patch The flaw is contained in the myCIOScn dll program library In this library the MyCioScan days open products McAfee in after hole than 180 Critical more still Scan ShowReport method insufficiently filters user input and executes embedded commands within the context of the browser The flaw can be exploited when a user opens a specially crafted file or web page ZDI rates the issue as very severe and has given it a CVSS score of maximum severity is ZDI s advisory doesn t state exactly which products are affected McAfee s range of SaaS products includes quot SaaS Email Encryption quot for encrypting emails and quot Vulnerability Assessment SaaS quot which checks software for potential vulnerabilities As a workaround ZDI recommends that users set the kill bit in the registry to prevent Internet Explorer from instantiating the affected ActiveX control To do so the quot Compatibility Flags quot DWORD entry in HKEY LOCAL MACHINE SOFTWARE Critical hole in McAfee products still open after more than 180 days Microsoft Internet Explorer ActiveX Compatibility EBDEE- C- D -A B - C F D B must be set to quot x quot Read more Click to expand nbsp

A:Critical hole in McAfee products still open after more than 180 days

Terrible. Glad I know not one person in real life that uses McAfee. Junkware, Hence why I've never bothered to make a video review on it.

Hopefully they'll step up and patch it ASAP now that's it public. Thanks.
 

https://malwaretips.com/threads/critical-hole-in-mcafee-products-still-open-after-more-than-180-days.5707/
Relevancy 38.7%

Dell admits installing security hole on laptops apologizes offers fix Network World Dell acknowledges a root certificate it installed on its laptops was a bad idea and is pushing a patch to Dell fix laptops, installing hole apologizes,offers admits security on permanently remove it In a blog post company spokesperson Laura Thomas says eDellRoot was installed as a support tool to make it faster and easier for customers to service the devices But some Dell admits installing security hole on laptops, apologizes,offers fix of those customers discovered the certificate and recognized it as a serious security threat We have posted instructions to permanently remove the certificate from your system here Thomas writes We will also push a software update starting on November that will check for the certificate and Dell admits installing security hole on laptops, apologizes,offers fix if detected remove it Commercial customers who reimaged their systems without Dell Foundation Services are not affected by this issue Additionally the certificate will be removed from all Dell systems moving forward For those who don t want to use the pushed patch instructions for removing eDellRoot manually is a -step process that takes up Word document pages including screenshots The patch - Click Here can also be downloaded Dell acknowledges security hole in new laptops http www reuters com article TC L

A:Dell admits installing security hole on laptops, apologizes,offers fix

How to remove Dell's 'Superfish 2.0' root certificate - permanently | ZDNet

http://www.tenforums.com/antivirus-firewalls-system-security/31303-dell-admits-installing-security-hole-laptops-apologizes-offers-fix.html
Relevancy 39.99%

I purchased a legal Windows CD from Amazon and wanted to install it on a PC I was rebuilding It installed and activated just fine by phone The disk says it's intended for refurbished PC's I started having trouble with the first program I tried to install Hole with the Black things happening Strange Malwarebytes it stopped working before it finished installing The same thing with Reg Cure then program after program stopped working Strange things happening with the Black Hole in one form or another I decided to connect to the internet and run Windows update That wouldn't work either When I checked the list for any updates that might have made it through I found that had been installed during the OS install KB websites call it the Black Hole It was put out November Strange things happening with the Black Hole th to stop piracy of MS Operating Systems In a short time the hard drives were disabled and all the browsers stopped Strange things happening with the Black Hole working and the PC became useless I thought there must be something wrong with the PC and installed the new OS on a different one and it did the same thing Before it became unusable I checked Windows update and there was that same KB This time the PC hadn't even been online I now have pieces of junk that were great working PC's just a few hours before Is this something Microsoft put out or is it Malware Microsoft doesn't list a Windows update with that number

A:Strange things happening with the Black Hole

Check whether there are restore points from before the installation of that KB and set back to those.

http://www.sevenforums.com/general-discussion/390544-strange-things-happening-black-hole.html
Relevancy 40.85%

i have an acer aspire with xp that was running like a slug i tried loading advanced system cure to see if it would help and loaded the max driver to update things i got a error message something about rundl it didnt help much so i decided to use my backup dvd i made when i first loaded all my stuff when it was new i thought this would fix everything it ran though ok but then stopped after the dvd was ejected and came up with this error message NTLDR missing press any key to restart well all this does is give me acer logo briefly before repeating the message i looked on the web and tried burning to a cd the cure listed on your forum but all it does is run the cd for a few seconds and returns to the error message i tried inserting the disks i got with the laptop and also an xp windows os cd to no avail i'm at a loss to figure out what to do now it wont go to in a [SOLVED] hole acer safe mode or respond in any way the boot sequence is cd drive then hard [SOLVED] acer in a hole drive help me obi one you're my only hope lol

A:[SOLVED] acer in a hole

Hello transam

First of all, using Advanced System Care was a bad idea. All kinds of such programs that claim to speed up your computer, create more problems than they can fix.

What happens when you boot through the Windows XP CD? Can you get into Command Prompt via the CD?

IMPORTANT: Before you proceed, backup all your data using a Linux Live CD. Use another Windows computer.

Post back.

http://www.techsupportforum.com/forums/f10/solved-acer-in-a-hole-760609.html
Relevancy 40.42%

hello I have a desktop computer and I do not know anything about it except that it is a Gateway Anyway I decided to do a destructive full system restore which I have successfully done before because I had too stuck is a loop-hole my in computer many things on it and wanted to start fresh It went through the process but once it rebooted it goes to a blue screen that says the following Checking file system on D The type of file system is FAT One of your disks needs to be checked for consistency You may cancel the disk check but it is my computer is stuck in a loop-hole strongly recommended that you continue I let it do the check and after a few seconds more information pops up Volume serial number is B- BDF windows is verifying files and folders File and folders verification is complete Windows has checked the file system and found no problems under that it shows numbers for the amount of disk space hidden files etc Once it is done it begins to load goes to the welcome screen and just restarts over again as if I had just turned on the computer It continues to do this over and over evan when I skip the disk check If anyone knows what is wrong with it please help

A:my computer is stuck in a loop-hole

Boot off of the XP CD and get to the Recovery Console. Here type chkdsk /R and press enter. The Check Disk utility will try and fix any file errors.

http://www.techsupportforum.com/forums/f10/my-computer-is-stuck-in-a-loop-hole-579023.html
Relevancy 47.3%

Hello,

I have a XP computer with SP2 that is getting a Fault Bucket error 126637809 when Internet Exploder hangs. Does anybody know how to resolve this issue?

-Sue

A:Fault Bucket Error

Run HiJackthis and post your log here.

http://www.techsupportforum.com/forums/f10/fault-bucket-error-372217.html
Relevancy 41.71%

Hi,
My computer ( win xp home edition) suddenly stopped running .exe files and then I noticed that there are few processes running with name 'Hole.zip', 'Zero.txt', 'unoccupied.reg' etc...

I searched on net and modified registry and removed these files from C:\Windows\system32\dllchache\ folder after turning off the System Restore.
For moment these processes were removed from my task manager but then they appeared again.

I even formatted my Windows (only C:\) twice but that didn't help.

Also, I'm getting 'Task manager has been disabled by administrator' and 'Registry editor has been disabled...'.

Please help to rectify these problems permanently.

regards,
Jitin

A:Hole.zip, zero.txt etc

Hello Jitin

That is definitely malware you have there. They will just keep startup up again every time you reboot. You will need to visit our Security Forum to get help with removing them totally

Please read this article; "Having problems with spyware and pop-ups? - First Steps"; follow the instructions very carefully; then, post all the requested logs and information; as instructed, in the HiJackThis Log Help Forum
Please ensure that you create a new thread in the HiJackThis Log Help Forum; not back here in this one.

When carrying out The 5 Steps, if you cannot complete any of them for whatever reason, just continue on with the next one until they are all completed.
However,it is extremely important to make mention of the fact that you could not complete any of the steps in your post to The HJT Help Forum; where an Analyst will assist you with other workarounds.

Don`t try to fix this yourself as you could do damage and lose all access to your system

Please be patient, as the Security Team Analysts are usually very busy; one of them will answer your request as soon as they can.

http://www.techsupportforum.com/forums/f10/hole-zip-zero-txt-etc-303642.html
Relevancy 47.3%

Bucket ID: 111712637 I keep having this error , is there a solution ?? Thanks a lot for your time..
Saludos
PT

A:[SOLVED] Bucket ID: 111712637

Hi -

We're going to need a little bit more information; there should be extra text - we could use a screen grab.


Saluti . . .

.

.

http://www.techsupportforum.com/forums/f217/solved-bucket-id-111712637-a-379524.html
Relevancy 48.16%

purchaed new HP lap top and are having problem with error code Bucket ID: 111712637
also in error report is :Service HP CUE DeviceDiscovery Service hung on starting.
Can you help

A:Bucket ID: 111712637

Welcome to TSF

Is this laptop still under warranty?

http://www.techsupportforum.com/forums/f217/bucket-id-111712637-a-295772.html
Relevancy 40.42%

My laptop is infected - it currently does not have an anti-virus software Whenever I try to download any antivirus software the webpage gets closed automatically Also I noticed that if I create a folder with a specific name it automatically creates another folder within the newly created folder with the same name Please help me spot and eliminate the spyware The DDS log is copied below and I have attached quot Attach zip quot I have included some of the suspicious process names in the title ------------------------------------------------------------------ DDS Ver - - - NTFSx Internet Explorer Run by Radhika at on - - Microsoft Windows XP Professional GMT Running Processes C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs svchost exe svchost Zero.Txt, Hole.Zip, Empty.jpg, Blank.doc, Unoccupied.reg exe C WINDOWS system spoolsv exe c program files idt wdm STacSV exe C WINDOWS Explorer EXE C WINDOWS system ctfmon exe C Program Files WIDCOMM Bluetooth Software BTTray exe C Program Files LSI SoftModem agrsmsvc exe C Program Files Java jre bin jqs exe C WINDOWS system svchost exe -k imgsvc C Program Files Yahoo SoftwareUpdate YahooAUService exe C Program Files WIDCOMM Bluetooth Software bin btwdins Zero.Txt, Hole.Zip, Empty.jpg, Blank.doc, Unoccupied.reg exe C WINDOWS system wscntfy exe C WINDOWS system wuauclt exe C WINDOWS system Notepad Zero.Txt, Hole.Zip, Empty.jpg, Blank.doc, Unoccupied.reg exe C WINDOWS system taskmgr exe C WINDOWS system dllChache Unoccupied reg C WINDOWS system dllChache Empty jpg C WINDOWS system dllChache Blank doc C WINDOWS system dllChache Zero txt C WINDOWS system dllChache Hole zip C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Program Files Internet Explorer iexplore exe C Documents and Settings tazebama dl Pseudo HJT Report uStart Page about blank uSearch Page uWindow Title Windows Internet Explorer provided by Yahoo uDefault Page URL hxxp www yahoo com fr fp-yie uInternet Connection Wizard ShellNext hxxp www tataindicom com hw uSearchAssistant mSearchAssistant mWinlogon Userinit c windows system userinit exe quot c windows system M VBVM EXE StartUp quot BHO amp Yahoo Toolbar Helper d -c f - efb- b - eca - c program files yahoo companion installs cpn yt dll BHO Adobe PDF Link Helper df c-e ad- -a -fa c ebdc - c program files common files adobe acrobat activex AcroIEHelperShim dll BHO Skype Browser Helper ae - e c- ed - f b-f f a - c program files skype toolbars internet explorer skypeieplugin dll BHO SingleInstance Class fdad da - a - fd - c - f ac - c program files yahoo companion installs cpn YTSingleInstance dll TB Yahoo Toolbar ef bd -c fb- d - f- d f - c program files yahoo companion installs cpn yt dll uRun Secure c windows system dllcache Regedit com StartUp uRun Secure c windows system dllcache Shell com StartUp uRun ctfmon exe c windows system ctfmon exe mRun Blank AntiViri C AUT EXEC BAT StartUp mRun Adobe ARM quot c program files common files adobe arm AdobeARM exe quot mRun KernelFaultCheck systemroot system dumprep -k StartupFolder c docume alluse startm programs startup blueto lnk - c program files widcomm bluetooth software BTTray exe IE Google Sidewiki - c program files google google toolbar component GoogleToolbarDynamic mui en D B AC dll cmsidewiki html IE Send to amp Bluetooth Device - c program files widcomm bluetooth software btsendto ie ctx htm IE Send To Bluetooth - c program files widcomm bluetooth software btsendto ie htm IE CCA CA-C - ef- - C D F - c program files widcomm bluetooth software btsendto ie htm IE e e dd -d - - b -f ba - windir Network Diagnostic xpnetdiag exe IE FB F -F - d -BB E- C F - c program files messenger msmsgs exe IE EA C -E FF- B- -AEC B E - EA C -E FF- B- -AEC B E - c program files skype toolbars internet explorer skypeieplugin dll DPF D B C - BF- -A -A B D - hxxp picasa... Read more

A:Zero.Txt, Hole.Zip, Empty.jpg, Blank.doc, Unoccupied.reg

Hello and welcome to TSF.

Signs of infection are surely present in the DDS.txt. However, before proceeding with the cleaning process, I'd like to get an online scan if possible.

Please go here and click 'ESET Online Scanner'.If you are not using Internet Explorer, double-click esetsmartinstaller_enu.exe to install it, then click 'Run'.
Turn off the real-time scanner of any existing antivirus program while performing the online scan.
Tick the box next to YES, I accept the Terms of Use.
Click Start
If using Internet Explorer, allow the ActiveX control to install when asked.
Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
Click on Advanced Settings and ensure these options are ticked:Scan for potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth Technology

Next to 'Current scan targets: Operating memory, Local drives', click the Change.. button.
Tick all the boxes that correspond to your external/inserted drives.
Click Start
Wait for the scan to finish, then click 'Finish'.
Use Notepad to open the logfile located at C:\Program Files\Eset\Eset Online Scanner\log.txt
Copy/paste that log as a reply to this topic.

=============

If you are not able to do the online scan, please do the following:

Please go to: VirusTotalOn the page you'll find a "Browse" button.
Next to the browse button you'll see a box to enter text.
Please copy/paste the following:
c:\windows\system32\userinit.exe

Then click the "Send File " button just below.
This will scan the file. Please be patient.
If the file is analyzed before click Re-analyse file now button.
Wait until the file is analyzed.
Once scanned, copy and paste the link to the results page in your next reply.
Please repeat the process for the following files:

c:\windows\explorer.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\spoolsv.exe

http://www.techsupportforum.com/forums/f284/zero-txt-hole-zip-empty-jpg-blank-doc-unoccupied-reg-600231.html
Relevancy 41.71%

HI,

Please verify Log for Active Scan.

jitin

A:hole.zip / Zero.txt

Hello -

I see from your other thread you're planning on formatting and reinstalling Windows. With the infection presenting itself in the ActiveScan log, that will be for the best.

Sality and Virut are two very difficult to cure infections. Most security experts would say it's not worth the effort to try.

It seems the infections are on several partitions.


Quote:




H:\D\C_drive




All files you've backed up from this install are suspect.

Your system is infected with a polymorphic file infector called Virut. Virut is capable of infecting all the machine's executable files (.exe) and screensaver files (.scr). However, the problem is that the virus has a number of bugs in its code, and as a result, it may misinfect a proportion of executable files and therefore, the files are corrupted beyond repair. As of now, security experts suggest that a format and clean install, or destructive recovery if you have an OEM recovery partition, is the only way to clean the infection and it is the only way to return the machine to its normal working state.

Backup all your documents and important items (personal data, work documents, etc) only. DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable.

Also, avoid backing up compressed files (zip/cab/rar) files that have .exe or .scr files inside them. Virut can penetrate and infect .exe files inside compressed files too.

I would only save impossible to recreate documents and pictures, and flatten the rest of this install.

http://www.techsupportforum.com/forums/f284/hole-zip-zero-txt-304028.html
Relevancy 41.71%

My daughter's computer has been infect4ed with things like Hole.zip, EMpty.jpg, zero.txt, blank.doc, unoccupied, etc. Can you help?

A:Hole.zip

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

If you're not receiving help elsewhere and still require assistance for this issue, please follow the process outlined here:

NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help

After running through all the steps, you shall have a proper set of logs. Please post/attach as instructed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your next reply.

------------------------------------------------------

http://www.techsupportforum.com/forums/f100/hole-zip-308522.html
Relevancy 48.16%

I have had a Bit Torrent client "" Deluge "" crash on me 6 times today. On half of the crashes the Event viewer said it was

Fault Bucket 1205604003

Google doesn't have much to say about Fault Buckets.

Any help here?

Thanks

A:Fault Bucket???

As I understand it...fault buckets are basically program debug mistakes which cause the system/program to crash.See http://phorums.com.au/archive/index.php/t-210235.htmlWhen it happens on my system, I just assume that the program has damaged files, needs updating, or needs reinstalling. If it's a known program that I can't update and which I know has a history of being troublesome, I just ignore the error...since the resolution would probably involve removing the program.If I had a large number of these, due to the same application...I would remove the program permanently.Louis

http://www.bleepingcomputer.com/forums/t/264547/fault-bucket/
Relevancy 40.85%

Hi I hope this hasnt been answered because I couldnt find it using a search I found other people who had problems using a single file but the fixes didnt work for me Here is my problem Just recently the quot my documents quot folder started breaking all of my media files audio video pictures and word documents All of the files that have been there for a long Hole Black Folder time work Black Hole Folder IE I can still play my music and look at pictures Here is where things go wrong the second a file ENTERS my documents or any sub folder it stops working When I try and open media files WMP says it cant acess the file When I try to move or delete it XP tells me that acess is denied and to make sure the file is not in Black Hole Folder use and the disk is not write protected When I take one of the good files those in my documents that still work because I havent moved them I am able to move it out of the folder but once back in they too are locked Does this make sense to anyone What can I do

A:Black Hole Folder

For now as a work-around, create a different folder separate from the My Documents folder to save your documents.

Do you remember when you started to have this problem? Had you installed any files or programs about this time?

Idea - Use system restore: Choose a date and time just before you started having the problems and restore the computer to that time and see if that fixes the problem. If you have installed any software or done any updates or upgrades between then and now, you will need to do them over again. If it doesn't fix the problem, undo the system restore and you won't have to worry about all the reinstallation stuff.

If this doesn't work, I've still a couple other ideas, and I'm sure the other members have even more.

Orange Blossom

http://www.bleepingcomputer.com/forums/t/79909/black-hole-folder/
Relevancy 41.28%

HOORAY I got my MS XP SP upgrade in the mail YESTERDAY And only days after I ordered the CD from MS It was shipped in a flimsier envelope than the SP upgrade was sent in previously and the edges of the envelope were curled up around the disk I feared the disk was damaged - I lucked out - it was not damaged No thanks to the USPS Patching" Win with SP2 "Pot-Hole XP Since before I even ordered the disk I ve been searching and reading everything I could find about this quot "Pot-Hole Patching" with Win XP SP2 patch quot preparing to do the dirty deed I d been to the MS item lt http www microsoft com technet prodtechn sp preview mspx gt and read it all through as well as imported the info to my own files After some searching around I found the following item that I chose to use as a guide to do my quot pothole repairs quot lt http www telus net dandemar spackins htm gt I followed this guide almost to the letter with the following exceptions I backed up all my files on CDs gigs first I backed up all other ancillary programs I use also to separate CDs Then I set a fresh Restore Point I m using a issued version of XP Home amp Home Office with all updates from "Pot-Hole Patching" with Win XP SP2 MS to the release of SP I then began to follow the list from SPACKINS Except quot Run chkdsk to check file system quot and Perform Disk Cleanup all boxes checked except Compress old files quot I use a quot System Mechanic quot program to do these instead After completing item I set another Restore Point When accomplishing item - quot Disconnect all peripherals quot Do Not Disconnect your keyboard or mouse as I did initially You re going to need to use them both Tee-hee After one completes the last item I suggest you again set a Restore Point as I did After more than hours of operation with the SP update I ve had NO PROBLEMS - what-so-ever I ve run the gamut of programs on my system with the exception of the games which I m waiting for kids and grandkids to test out with out any noted glitches Questions I don t have the answers It would be nice if someone at quot BC quot would write up a tutorial like that at SPACKINS NOT to plagiarize but to flesh out the process possibly explaining a bit more of what is going on My thanks to all that contributed to my quot successful update quot - too numerous to mention by nickname -Koan

A:"Pot-Hole Patching" with Win XP SP2

Great read! It should also be stated that if your computer is infested spyware or other malware, XP SP2 has been known to have a lot of problems after installation.

http://www.bleepingcomputer.com/forums/t/2481/pot-hole-patching-with-win-xp-sp2/
Relevancy 40.42%

AVG reports warnings for exploit script injection type black hole exploit type exploit link to exploit site type Also Windows Update no longer works Have been through multiple sessions with Hole Exploit Suspected Black MS Update staff - no luck AVG MBAM and MRT all run to completion and report no problems Thanks in advance for any help Dalton Wiley DDS Ver - - - NTFSx Internet Explorer BrowserJavaVersion Run by Eileen at on - - Microsoft Windows XP Professional GMT - AV AVG Anti-Virus Free Edition Enabled Updated DDD - FF- F- E B- Suspected Black Hole Exploit D D BF Running Processes C PROGRA AVG AVG avgrsx exe C Program Files AVG AVG avgcsrvx exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs svchost exe svchost exe C WINDOWS system spoolsv exe C WINDOWS Explorer EXE C WINDOWS ehome ehtray exe C WINDOWS stsystra exe C Program Files AVG AVG avgtray exe C Program Files IncrediMail bin IncMail exe C WINDOWS system ctfmon exe C Program Files IncrediMail Bin ImApp exe svchost exe C Program Files AVG AVG avgwdsvc exe C WINDOWS eHome ehRecvr exe C WINDOWS eHome ehSched exe C Program Files Common Files Microsoft Shared VS Debug mdm exe C Program Files Google Update GoogleUpdate exe C WINDOWS system svchost exe -k imgsvc C Program Files AVG AVG avgnsx exe C Program Files AVG AVG AVGIDSAgent exe C Program Files AVG AVG avgemcx exe C WINDOWS system dllhost exe C WINDOWS eHome ehmsas exe C Program Files Internet Explorer IEXPLORE EXE C Program Files Internet Explorer IEXPLORE EXE C Program Files Internet Explorer IEXPLORE EXE Pseudo HJT Report uSearch Page hxxp www google com uSearch Bar hxxp www google com ie uInternet Connection Wizard ShellNext hxxp www malwarebytes org mbam-download php uInternet Settings ProxyOverride lt local gt uSearchAssistant hxxp www google com ie uSearchURL Default hxxp www google com search q s mSearchAssistant hxxp www google com ie BHO Adobe PDF Link Helper df c-e ad- -a -fa c ebdc - c program files common files adobe acrobat activex AcroIEHelperShim dll BHO AVG Safe Search ca f - f e- b -a e- e e c c - c program files avg avg avgssie dll BHO Google Toolbar Helper aa ed - dd- d - -cf f - c program files google google toolbar GoogleToolbar dll BHO Google Toolbar Notifier BHO af de - d - -b fa-ce b ad d - c program files google googletoolbarnotifier swg dll BHO Java Plug-In SSV Helper dbc -a - b-bc - c c c a - c program files java jre bin jp ssv dll BHO JQSIEStartDetectorImpl Class e e f - ce- c -bc -eabfe f c - c program files java jre lib deploy jqs ie jqs plugin dll TB Easy-WebPrint c -e d- c -aa d- ac baba c - c program files canon easy-webprint Toolband dll TB Google Toolbar c b - - d - b - a cd f - c program files google google toolbar GoogleToolbar dll TB CDD BF- FFB- - AD - DF B D - No File uRun IncrediMail c program files incredimail bin IncMail exe c uRun ctfmon exe c windows system ctfmon exe mRun ehTray c windows ehome ehtray exe mRun SigmatelSysTrayApp stsystra exe mRun ATIPTA quot c program files ati technologies ati control panel atiptaxx exe quot mRun AVG TRAY quot c program files avg avg avgtray exe quot mRun KernelFaultCheck systemroot system dumprep -k mRun QuickTime Task quot c program files quicktime qttask exe quot -atboottime dRun IncrediMail c program files incredimail bin IncMail exe c IE E amp xport to Microsoft Excel - c progra micros office EXCEL EXE IE Easy-WebPrint Add To Print List - c program files canon easy-webprint Resource dll RC AddToList html IE Easy-WebPrint High Speed Print - c program files canon easy-webprint Resource dll RC HSPrint html IE Easy-WebPrint Preview - c program files canon easy-webprint Resource dll RC Preview html IE Easy-WebPrint Print - c program files canon easy-webprint Resource dll RC Print html IE Google Sidewiki - c program files google google toolbar component GoogleToolbarDynamic mui en B E B FB dll cmsidewiki html IE e e dd -d - - b -f ba - windir Network Diagnostic xpnetdiag exe IE FB F -F - d -BB E-... Read more

A:Suspected Black Hole Exploit

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Double click on combofix.exe & follow the prompts. When finished, it will produce a report for you. Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stallNote 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer"information and logs"In your next post I need the following
Log from Combofixlet me know of any problems you may have had
How is the computer doing now?Gringo

http://www.bleepingcomputer.com/forums/t/429252/suspected-black-hole-exploit/
Relevancy 39.56%

Hello - First Thank You for your help Last week I was apparently infected with a Redirect Virus noticed as I was doing a Bing search AVG had me update to the latest version as I was running their now On Tuesday upon opening an email my computer screen suddenly showed multiple threats blocked all of them of quot Exploit Black Hole quot virus Trojan House The computer is now a quot barely crawling quot speed and frequently locks up and requuires a cold reboot I had to run DDS in safe mode because the computer would lock before finishing but I was able to run it and the two generated logs are below I had much difficulty getting GMER to run but finally did I ran it three times in regular mode and each time I received a blue screen stating quot A problem has been detected and windows has been shut down to prevent damage DRIVER IRQL NOT LESS OR EQUAL quot I have the rest Black infection virus and Exploit Redirect Hole of the message screen if you would like to see the wording and technical data I then switched to safe mode and attempted to run the software but was unable to complete the scan save because the save button was not available due to the large display I switched back to normal mode after having used CCLeaner to clear files etc and quot correct quot the registry and the first time I ran GMER the machine showed an error stating Windows detected a problem and shut must close the application I re-ran the scan and this time made it through and was able to save the log Additionally when running the GMER scan I noticed a huge number of cookies and temporary internet files in a directory C Documents and Settings Network Services local settings Temporary Internet Files content IE which I cannot access I have cookies and temp files erased on exit so why are these things still around and how do I get rid of them Here are the DDS the attach and ark files are attached per instructions Exploit Black Hole and Redirect virus infection DDS Ver - - - NTFSx NETWORK Internet Explorer BrowserJavaVersion Run by Richard Gray at on - - Microsoft Windows XP Professional GMT - AV AVG Internet Security Enabled Updated DDD - FF- F- E B- D D BF FW Norton Internet Worm Exploit Black Hole and Redirect virus infection Protection Disabled FW AVG Firewall Enabled Running Processes C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS system svchost exe -k netsvcs svchost exe svchost exe C Program Files Intel Wireless Bin ZcfgSvc exe C WINDOWS Explorer EXE C Program Files EarthLink TotalAccess TaskPanl exe C Program Files Internet Explorer IEXPLORE EXE C WINDOWS system ctfmon exe C Program Files Internet Explorer IEXPLORE EXE C Program Files Internet Explorer IEXPLORE EXE Pseudo HJT Report uStart Page hxxp my earthlink net uSearch Page hxxp www google com uWindow Title Windows Internet Explorer provided by Comcast mWindow Title Windows Internet Explorer provided by Comcast BHO Adobe PDF Link Helper df c-e ad- -a -fa c ebdc - c program files common files adobe acrobat activex AcroIEHelperShim dll BHO AVG Safe Search ca f - f e- b -a e- e e c c - c program files avg avg avgssie dll BHO ElnkPubBHO Class acf b- d - -b -a f db - c program files earthlink totalaccess toolbar ElnkPub dll BHO DriveLetterAccess ca d e- - cf- e - - c windows system dla tfswshx dll BHO Windows Live Sign-in Helper d - c - abf- ecc- c - c program files common files microsoft shared windows live WindowsLiveLogin dll BHO ElnkProtectionBHO Class d -d d - - -fe a bd - c program files earthlink totalaccess toolbar ProtctIE dll BHO AVG Security Toolbar b c- c f- bf -b - a - c program files avg secure search AVG Secure Search toolbar dll BHO Skype Plug-In ae - e c- ed - f b-f f a - c program files skype toolbars internet explorer skypeieplugin dll BHO Java Plug-In SSV Helper dbc -a - b-bc - c c c a - c program files java jre bin jp ssv dll BHO ElnkLegacyUninstBHO Class e c-df - c -bbad- db be - c program files earthlink totalaccess toolbar uninsttb dll BHO JQSIEStartDetectorImpl Class ... Read more

A:Exploit Black Hole and Redirect virus infection

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Double click on combofix.exe & follow the prompts. When finished, it will produce a report for you. Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stallNote 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer"information and logs"In your next post I need the following
Log from Combofixlet me know of any problems you may have had
How is the computer doing now?Gringo

http://www.bleepingcomputer.com/forums/t/424649/exploit-black-hole-and-redirect-virus-infection/
Relevancy 39.99%

First time poster Thank you in advance Windows XP SP -bit AVG reports warnings for exploit script injection type black hole exploit type exploit link to exploit site exploit infection hole black suspected type AVG scan instantly finishes with files scanned GMER closes before i can save the final log but i suspected black hole exploit infection did multiple saves throughout and posted the suspected black hole exploit infection most complete one i could get MBAM will not open do not have permission even though permission is granted uninstall reinstall mbam initial run works but closes a few seconds into scan DDS Log DDS Ver - - - NTFSx Internet Explorer Run by Client at on - - Microsoft Windows XP Professional GMT - AV AVG Anti-Virus Free Edition Enabled Updated DDD - FF- F- E B- D D BF AV Symantec AntiVirus Corporate Edition Enabled Outdated FB E- B - A- F -E D C Running Processes C PROGRA AVG AVG avgchsvx exe C PROGRA AVG AVG avgrsx exe C WINDOWS system Ati evxx exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS System svchost exe -k netsvcs svchost exe svchost exe C WINDOWS exe C WINDOWS system Ati evxx exe C Program Files Common Files Symantec Shared ccSetMgr exe C Program Files Common Files Symantec Shared ccEvtMgr exe C Program Files Common Files Symantec Shared SPBBC SPBBCSvc exe C WINDOWS system spoolsv exe C WINDOWS Explorer EXE C Program Files Common Files AOL ee AOLSoftware exe C Program Files Common Files Pure Networks Shared Platform nmctxth exe C Program Files HP HP Software Update HPWuSchd exe C Program Files AVG AVG avgtray exe C PROGRA FILMFA bar bin pabrmon exe C WINDOWS system ctfmon exe C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Program Files HP Digital Imaging bin hpqtra exe C Program Files AVG AVG Identity Protection agent bin avgidsmonitor exe svchost exe C Program Files AVG AVG avgwdsvc exe C Program Files WIDCOMM Bluetooth Software bin btwdins exe C Program Files Symantec AntiVirus DefWatch exe C Program Files AVG AVG avgnsx exe C WINDOWS system svchost exe -k hpdevmgmt C Program Files Google Update GoogleUpdate exe C Program Files Java jre bin jqs exe C Program Files Common Files LightScribe LSSrvc exe C Program Files Linksys Linksys Updater bin LinksysUpdater exe C Program Files Common Files Microsoft Shared VS Debug mdm exe C WINDOWS System svchost exe -k HPZ C WINDOWS System svchost exe -k HPZ C WINDOWS system java exe C WINDOWS system svchost exe -k imgsvc C Program Files QSC Audio QSControl net Server VenueService exe C WINDOWS system MsPMSPSv exe C Program Files Hewlett-Packard Shared hpqwmiex exe C Documents and Settings Client Local Settings Application Data Google Chrome Application chrome exe C Documents and Settings Client Local Settings Application Data Google Chrome Application chrome exe C WINDOWS system wbem wmiapsrv exe C Documents and Settings Client Local Settings Application Data Google Chrome Application chrome exe C Documents and Settings Client Local Settings Application Data Google Chrome Application chrome exe C Program Files HP Digital Imaging bin hpqSTE exe C Program Files HP Digital Imaging bin hpqbam exe C Program Files HP Digital Imaging bin hpqgpc exe Pseudo HJT Report uStart Page hxxp home mywebsearch com index jhtml n C F F amp ptnrS Z xdm Cus amp ptb C F - EB - DC - FC - A E BDE uSearchURL Default hxxp search alot com web q amp pr auto amp client id E F CB F C A F amp src id amp camp id amp tb version uURLSearchHooks AOL Toolbar Search Class f e - e - c c- b a- ab f d - c program files aol toolbar aoltb dll uURLSearchHooks H - No File uURLSearchHooks N A b f - - e - f f-c e e e - c program files filmfanatic bar bin paSrcAs dll mURLSearchHooks AOL Toolbar Search Class f e - e - c c- b a- ab f d - c program files aol toolbar aoltb dll BHO HP Print Enhancer c e- - -bf - c - c program files hp digital imaging smart web printing hpswp printenhancer dll BHO Adobe PDF Reader Link Helper e f-c d - d -b d- b d be b - c program files com... Read more

A:suspected black hole exploit infection

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Please download DummyCreator.zip and unzip it.Run the tool.Copy and paste the following into the edit box:

C:\WINDOWS\3414190290
Press Create button and post the content of the Result.txt.

Important: Restart the computer.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Double click on combofix.exe & follow the prompts. When finished, it will produce a report for you. Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stallNote 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer"information and logs"In your next post I need the following
Log from Combofixlet me know of any problems you may have had
How is the computer doing now?Gringo

http://www.bleepingcomputer.com/forums/t/421691/suspected-black-hole-exploit-infection/
Relevancy 40.42%

Hello folks My AVG has identified a threat called quot Exploit Blackhole Exploit kit type quot Process name - quot C WINDOWS SYSTEM svchost exe quot Since then one quot svchost exe quot or another there Trojan Hole Exploit Black with Help are always several running at the same time has been eating cpu resources up too and obviously slowing everything else to a stop I have a logs from DDS but running GMER results in a blue screen quot bad pool header quot and I have to reboot Also I have posted my most recent Malwarebytes log DDS Ver - - - NTFSx Internet Explorer Run by Help with Exploit Black Hole Trojan aaaaaaaaa at on - - Microsoft Windows XP Professional GMT AV AVG Internet Security -pack Enabled Updated DDD - FF- F- E B- D D BF FW AVG Firewall Enabled Running Processes C WINDOWS system nvsvc exe C WINDOWS system svchost -k DcomLaunch svchost exe C WINDOWS system svchost exe -k WudfServiceGroup C Program Files AVG AVG avgchsvx exe C Program Help with Exploit Black Hole Trojan Files AVG AVG avgrsx exe svchost exe C Program Files AVG AVG avgcsrvx exe svchost exe C WINDOWS system spoolsv exe C Program Files AVG AVG Identity Protection Agent Bin AVGIDSAgent exe C WINDOWS Explorer EXE C WINDOWS RTHDCPL EXE C PROGRA AVG AVG avgtray exe C WINDOWS system ctfmon exe C Program Files Google GoogleToolbarNotifier GoogleToolbarNotifier exe C Program Files AVG AVG Identity Protection agent bin avgidsmonitor exe svchost exe C Program Files Common Files ArcSoft Connection Service Bin ACService exe C Program Files Virgin Broadband Wireless AffinegyService exe C Program Files AVG AVG avgwdsvc exe C Program Files AVG AVG avgfws exe C WINDOWS system FsUsbExService Exe C Program Files AVG AVG avgam exe C Program Files AVG AVG avgnsx exe C Program Files Java jre bin jqs exe Help with Exploit Black Hole Trojan C Program Files CDBurnerXP NMSAccessU exe C WINDOWS system svchost exe -k imgsvc C Program Files TomTom HOME TomTomHOMEService exe C Program Files AVG AVG avgemc exe C WINDOWS system taskmgr exe C Program Files AVG AVG avgcsrvx exe C WINDOWS system wscntfy exe C WINDOWS System svchost exe -k HTTPFilter C Program Files AVG AVG avgcsrvx exe C WINDOWS System svchost exe -k netsvcs Pseudo HJT Report uSearchMigratedDefaultURL hxxp www google com search q searchTerms amp sourceid ie amp rls com microsoft en-US amp ie utf amp oe utf uStart Page hxxp my ebay co uk ws eBayISAPI dll MyEbay amp gbh amp CurrentPage MyeBaySummary amp ssPageName STRK ME LNLK MESUMX uInternet Settings ProxyOverride lt local gt uInternet Settings ProxyServer http hxxp www-cache freeserve com ftp http www-cache freeserve com uSearchURL Default hxxp www google com search q s BHO IEPlugin Class - b- e -bd -efb b - c progra arcsoft mediac intern ARCURL DLL BHO Adobe PDF Link Helper df c-e ad- -a -fa c ebdc - c program files common files adobe acrobat activex AcroIEHelperShim dll BHO BitComet Helper f e - a- b a-bcaf- b bfdfea - c program files bitcomet tools BitCometBHO dll BHO AVG Safe Search ca f - f e- b -a e- e e c c - c program files avg avg avgssie dll BHO EWPBrowseObject Class f e- - e - aaf- bc a a be - c program files canon easy-webprint EWPBrowseLoader dll BHO Groove GFS Browser Helper - c - d -b f - bbc d a e - c progra micros office GRA E DLL BHO Google Toolbar Helper aa ed - dd- d - -cf f - c program files google google toolbar GoogleToolbar dll BHO Google Toolbar Notifier BHO af de - d - -b fa-ce b ad d - c program files google googletoolbarnotifier swg dll BHO Java Plug-In SSV Helper dbc -a - b-bc - c c c a - c program files java jre bin jp ssv dll BHO JQSIEStartDetectorImpl Class e e f - ce- c -bc -eabfe f c - c program files java jre lib deploy jqs ie jqs plugin dll TB Easy-WebPrint c -e d- c -aa d- ac baba c - c program files canon easy-webprint Toolband dll TB Google Toolbar c b - - d - b - a cd f - c program files google google toolbar GoogleToolbar dll TB CDD BF- FFB- - AD - DF B D - No File TB E BD F- B D- E-A F -F B BBB A - No File TB CCC A -B CA- -B A -... Read more

A:Help with Exploit Black Hole Trojan

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Double click on combofix.exe & follow the prompts. When finished, it will produce a report for you. Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stallNote 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer"information and logs"In your next post I need the following
Log from Combofixlet me know of any problems you may have had
How is the computer doing now?Gringo

http://www.bleepingcomputer.com/forums/t/418339/help-with-exploit-black-hole-trojan/
Relevancy 41.71%

I'm sure that I am not the first to do everything wrong first before seeking advice here Still it's embarrassing My sincerest apologies for being stupid I had a virus How get this I of can out hole? on my PC After struggling to clear it I How can I get out of this hole? formatted the HD and reinstalled the OS from a genuine CD The virus was still present Months of disbelief and despair later as well as several new machines I am at a complete loss If I purchase a new pc and bring it home within half an hour I am back where I started Same virus same stalemate Or so it seems As I mentioned I am aware that I have tackled this issue completely backwards I would appreciate a helping hand to drag me out of this Bermuda Triangle Nightmare I now find myself in If you think that you can help please let me know what I need to post details-wise etc At the moment I am on an older pc with XP Pro installed I can access the internet sporadically though as soon as I turn the pc off it refuses to reboot and I find myself reinstalling the OS again Thank you for your time and patience I am most definitely ready to follow any and all instructions to the letter

A:How can I get out of this hole?

I should add... Each time I install the OS the "x" drive that seems impossible to delete attaches a sources folder to the install, and I end up with a new install that's identical to the infected one I already had.

http://www.bleepingcomputer.com/forums/t/515672/how-can-i-get-out-of-this-hole/
Relevancy 41.28%

Hi,

I was looking at two separate websites (neither was twitter), both of which have been very safe in the past. Suddenly I got an AVG pop up warning me about Black Hole. The computer either jammed at this point or was going slowly. I panicked a bit and closed all the windows before I read what was written very thoroughly.

After I closed my windows, I disconnected the internet and cleared my search history. I have now been doing multiple scans (both in an out of safe mode) with AVG and Malwarebytes Anti-malware. None of these searches are finding any viruses, malware, or kits on my computer.

Do I have the virus or not? And what can I do to make sure?

A:Black Hole

DownloadTDSSkillerLaunch it.Click on change parameters-Select TDLFS file systemClick on "Scan".Please post the LOG report(log file should be in your C drive) Do not change the default options on scan resultsDownloadaswMBRLaunch it, allow it to download latest Avast! virus definitionsClick the "Scan" button to start scan.After scan finishes,click on Save logPost the log results here.If you get crashes in normal mode,run it in safemode with networkingDownloadESET online scannerInstall itClick on START,it should download the virus definitionsWhen scan gets completed,click on LIST of found threatsExport the list to desktop,copy the contents of the text file in your reply

http://www.bleepingcomputer.com/forums/t/469874/black-hole/
Relevancy 46.01%

I ve been getting a lot of error messages lately on my desktop Dell XPS running Vista I ve run several anti-virus amp Malware programs but they have come up clean Errors include corrupted files application error and on reboot the file system wasn t working I ran Mini Toolbox and will post the log here Any help hard virus bucket is my to I'm infected about with kick sure or drive Not a the would be greatly appreciated MiniToolBox by Farbar Version - - Ran by John administrator on - - at Microsoft Windows Vista Home Premium Service Pack X Boot Mode Normal Flush DNS Windows IP Configuration Successfully flushed the DNS Resolver Cache IE Proxy Settings Proxy is not enabled No Proxy Server is set quot Reset IE Proxy Settings quot IE Proxy Settings were reset FF Proxy Settings quot Reset FF Proxy Settings quot Firefox Proxy settings were reset Hosts content localhost localhost IP Configuration Broadcom g Network Adapter Wireless Network Connection Connected Intel reg DC- Gigabit Network Connection Local Area Connection Media disconnected ---------------------------------- IPv Configuration ---------------------------------- pushd interface ipv reset set global icmpredirects enabled popd End of IPv configuration Windows IP Configuration Host Name MY-PC Primary Dns Suffix Node Type Hybrid IP Routing Enabled No WINS Proxy Enabled No Wireless LAN adapter Wireless Network Connection Connection-specific DNS Suffix Description Broadcom g Network Adapter Not sure I'm infected with a virus or my hard drive is about to kick the bucket Physical Address - E- C- D- E- B DHCP Enabled Yes Autoconfiguration Enabled Yes Link-local IPv Address fe ee e ef e f Preferred IPv Address Preferred Subnet Mask Lease Obtained Monday June AM Lease Expires Wednesday June PM Default Gateway DHCP Server DHCPv IAID DHCPv Client DUID - - - - E-F -B - - - D- - B- - DNS Servers NetBIOS over Tcpip Enabled Ethernet adapter Local Area Connection Media State Media disconnected Connection-specific DNS Suffix Description Intel reg DC- Gigabit Network Connection Physical Address - D- - B- - DHCP Enabled Yes Autoconfiguration Enabled Yes Tunnel adapter Local Area Connection Connection-specific DNS Suffix Description Teredo Tunneling Pseudo-Interface Physical Address - - - - E- DHCP Enabled No Autoconfiguration Enabled Yes IPv Address e c f fe a Preferred Link-local IPv Address fe c f fe a Preferred Default Gateway DHCPv IAID DHCPv Client DUID - - - - E-F -B - - - D- - B- - NetBIOS over Tcpip Disabled Tunnel adapter Local Area Connection Media State Media disconnected Connection-specific DNS Suffix Description isatap E - - D F- C D- F D Physical Address - - - - - - -E DHCP Enabled No Autoconfiguration Enabled Yes Tunnel adapter Local Area Connection Media State Media disconnected Connection-specific DNS Suffix Description isatap D C -C EE- B - A E- A A DDC Physical Address - - - - - - -E DHCP Enabled No Autoconfiguration Enabled Yes Server vdns srv hcvlny cv net Address DNS request timed out timeout was seconds Name google com Addresses Pinging google com with bytes of data Reply from bytes time ms TTL Reply from bytes time ms TTL Ping statistics for Packets Sent Received Lost loss Approximate round trip times in milli-seconds Minimum ms Maximum ms Average ms Server vdns srv hcvlny cv net Address DNS request timed out timeout was seconds Name yahoo com Addresses Pinging yahoo com with bytes of data Reply from bytes time ms TTL Reply from bytes time ms TTL Ping statistics for Packets Sent Received Lost loss Approximate round trip times in milli-seconds Minimum ms Maximum ms Average ms Server vdns srv hcvlny cv net Address DNS request timed out timeout was seconds Name bleepingcomputer com Address Pinging bleepingcomputer com with bytes of data Request timed out Request timed out Ping statistics for Packets Sent Received Lost loss Pinging with bytes of data Reply from bytes time lt ms TTL Reply from bytes time lt ms TTL Ping statistics for Packets Sent Received Lost loss... Read more

A:Not sure I'm infected with a virus or my hard drive is about to kick the bucket

Hello, the ESET online scan was also clean?Please download TDSSKiller.zip and and extract it.Run TDSSKiller.exe. Click on Change Parameters Put a check in the box of Detect TDLFS file system Click Start scan.When it is finished the utility outputs a list of detected objects with description.
The utility automatically selects an action (Cure or Delete) for malicious objects.
The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click ContinueLet reboot if needed and tell me if the tool needed a reboot.Click on Report and post the contents of the text file that will open.

Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.[/lis

Please download aswMBR ( 511KB ) to your desktop.
[list]Double click the aswMBR.exe icon to run itClick the Scan button to start the scanOn completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

http://www.bleepingcomputer.com/forums/t/456011/not-sure-im-infected-with-a-virus-or-my-hard-drive-is-about-to-kick-the-bucket/
Relevancy 39.99%

Help - I have an HP Laptop running Windows 7. The other day I came up with 34 items in AVG and Malware has 2 that won't go away. I also continually get a pop up noting "Successfuly blocked access to potentionally malicious website: outgoing Process: svchost.exe" Any recommendations?

Thank you

http://www.bleepingcomputer.com/forums/t/435733/infected-with-trojan-horseblack-hole/
Relevancy 40.85%

The Malware is not on the System --- It IS the SystemMy computer was infected by a device driver I will call HarlanHugo Hack since nobody has ever heard of it On - - approx Central America Time a malicious device driver installed on my computer newly purchased when I plugged my LAN cable into my router NETGEAR Wireless-G WGR to set up it s configuration At the time the router was physically disconnected from the DSL modem TENDA D R Microsoft Hole Security which was powered down The computer is in Spanish and the hacked files are in English The WindowsUpdate log in the Windows folder captures the sequence of events Identifies whether Windows Microsoft Security Hole Update access is disabled and enables it then it installs it s own Windows Update package Identifies the operating system computer brand model and BIOS Enables remote services auto play and firewall rules Reboots with replaced Windows system files Sends it s report home after I connected to the internet the next day Continues downloading it s quot Windows Updates quot until the entire operating system and Acer OEM programs are replaced Downloads and installs replacement BIOS Changes IP freely secretly enables WiFi so it looks like it s off Installs malicious driver code to every device connected by USB and network Remote Desktop stays enabled and once all the Windows files are replaced they are in complete control Troubleshooting I Used every brand of AV software scans reveal nothing wrong because everything passes as authentic Microsoft During the time I was troubleshooting the hackers made it apparent that they were paying attention and changed locations of their files They watch and listen through the camera and microphone even when no user is logged in Their BIOS installs a permanent X Bootdrive which won t even be DBAN d away I sent a sample of their explorer exe file to Microsoft months ago It downloads updates from it s own server That s not all since I have been trying to upload their files for analysis the hackers track my moves and corrupt my friend s computers immediatelywithout any downloading by us at all Apparently they have the ability to hack any computer they want hack any phone tap my calls and drop and reroute them etc Please somebody track these hackers because they seriously interfere with my life I am on my rd replacement computer and have lost other devices by WiFi corruption Vivitar camera OTA downloads to my HP Veer which unfortunately I could not pull the battery from All law enforcement agenciessay they won t help because I m not being threatened and nothing was stolen from me Please somebody out there help me Sincerely TinaP S Find the note quot Microsoft Security Hole quot on Facebook

A:Microsoft Security Hole

Hello,And welcome to BleepingComputer.com, before we can assist you with your question of: Am I infected? You will need to perform the following tasks and post the logs of each if you can.Please download and run Security Check from HERE, and save it to your Desktop. * Double-click SecurityCheck.exe * Follow the onscreen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt; please post the contents of that document.Malwarebytes Anti-MalwareNOTEMalwarebytes is now offering a free trial of their program, if you want to accept it you will need to enter some billing information, so that at the end of the trial you would be charged the cost of the product. Please decline this offer, if you are unable to provide billing information. If you want to try it out, then provide the billing information.Please download Malwarebytes Anti-Malware and save it to your desktop.Download Link 1Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.Make sure you are connected to the Internet.Double-click on mbam-setup.exe to install the application.
For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan.If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.On the Scanner tab:Make sure the "Perform Full Scan" option is selected.Then click on the Scan button.If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".Click OK to close the message box and continue with the removal process.Back at the main Scanner screen:Click on the Show Results button to see a list of any malware that was found.Make sure that everything is checked, and click Remove Selected.When removal is completed, a log report will open in Notepad.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.Exit MBAM when done.Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.SUPERAntiSpyware:Please download and scan with SUPERAntiSpyware FreeDouble-click SUPERAntiSypware.exe and use the default settings for installation.An icon will be created on your desktop. Double-click that icon to launch the program.If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you enco... Read more

http://www.bleepingcomputer.com/forums/t/430928/microsoft-security-hole/
Relevancy 40.42%

I was cleaning my desktop of viruses yesterday, and I noticed that TeamViewer was always running a nasty backdoor to a remote computer. I uninstalled, but I noticed that the 'Network' tab (The one containing the TCP/HTTP/Other request logs) in Killswitch showed a different IP for the local address then my loopback, either my router or 127.0.0.1

The actual IP for the local address was: 169.254.131.124 and connecting on ports 139 (Listening,TCP),138(UDP),and 137(Also UDP)
Is that the default config? Or is it a remote access/backdoor/something, and if so what should I run to remove?

A:Remote Access hole? Or is this just default?

Since I was there to help him I would like to say that when he did a mbam scan, it found 500 pieces of malicious software, he says that after he clicked remove threats and he rebooted the computer he can no longer connect to his network, he is running windows xp 32bit, and the computer he is working on, the windows xp one usually connects through wifi to his home network. Since his desktop, which he is trying to clean, is no longer able to connect to the internet, after the first cleaning he is now having to use his laptop to connect to the internet, he also claims he does not have any type of portable media device that he could use to transfer the logs over.

http://www.bleepingcomputer.com/forums/t/415574/remote-access-hole-or-is-this-just-default/
Relevancy 39.99%

Hello.

My Win XP pro sp2 machine is apparently infected with something. Yesterday, whenever I would go to google and click on any link from the page of results, I was redirected all over the place. I had avg free on the machine. It had warned me about something, when I went to check (can't remember what it was, sorry), it said it was related to the black hole exploit 1384. I uninstalled and reinstalled avg, did a scan, it came up with nothing. rebooted my computer, and it would not boot back up.

Anyway, I read through the preparation guide, which really seemed to not be relevant, as I cannot boot my machine to install the programs needed. I wanted to confirm what my first step should be. Should I start with the recovery console tutorial?

Thanks in advance for any knowledge you can impart.

A:black hole exploit on my winxp machine

I will ask for assistance from the more knowledgeable...be patient .

Louis

Placed on unbootable thread.

http://www.bleepingcomputer.com/forums/t/389050/black-hole-exploit-on-my-winxp-machine/
Relevancy 39.99%

Hi all I ve used this site as a resource several times in the past so thank you to everyone Fix it Combo virus...is A-hole Super time? who puts this together and posts comments My computer recently had unprotected sex Super A-hole virus...is it Combo Fix time? with a prostitute or something because it has a some kind of super-hybrid-gonorrhea virus that just won t go away I am running Windows Pro SP on a Dell Latitude E D A few weeks ago that PC-raping AntiMalware Doctor program just automatically popped up and started its nonsense so I shut down and restarted in Safe Mode and did a scan I ran Super-Anti Spyware and my Norton AntiVirus and came up with a few different things I called Norton and they helped me delete some things here and there but the problem is still on my computer I tried contacting Norton again but they Super A-hole virus...is it Combo Fix time? said I d have to open a new case since it had been days since my last contact with them Needless to say I m through with that process So I am running Symantec Endpoint Super A-hole virus...is it Combo Fix time? Protection which catches nothing during a scan however will frequently fire a pop up that says SID quot Http Tidserv Request Detected quot So I ve done some research on that and found different answers but several point to this ComboFix software that I have yet to DL but it is looking more and more like I should But there are these apocalyptic warnings that I keep seeing that say I need to get the OK from a professional before I run that So here I am wondering if that is the next step PS - I just ran a quick scan from Malwarebytes and this is the log Malwarebytes Anti-Malware www malwarebytes org Database version Windows Service Pack Safe Mode Internet Explorer AM mbam-log- - - - - txt Scan type Quick scan Objects scanned Time elapsed minute s second s Memory Processes Infected Memory Modules Infected Registry Keys Infected Registry Values Infected Registry Data Items Infected Folders Infected Files Infected Memory Processes Infected No malicious items detected Memory Modules Infected No malicious items detected Registry Keys Infected HKEY CLASSES ROOT chkaqpyxhst chkaqpyxhst Trojan BHO - gt Quarantined and deleted successfully HKEY CLASSES ROOT chkaqpyxhst chkaqpyxhst Trojan BHO - gt Quarantined and deleted successfully HKEY CLASSES ROOT CLSID ca fb- b - -a -befd d Trojan BHO - gt Quarantined and deleted successfully HKEY CURRENT USER SOFTWARE Microsoft Internet Explorer SearchScopes fe c c -edc - c -b - c cf ba Adware Adshot - gt Quarantined and deleted successfully HKEY CURRENT USER SOFTWARE Microsoft Windows CurrentVersion Ext Settings b ba a - f - bd-f - b a c Trojan ErtFor - gt Quarantined and deleted successfully HKEY CURRENT USER SOFTWARE Microsoft Windows CurrentVersion Ext Stats b ba a - f - bd-f - b a c Trojan ErtFor - gt Quarantined and deleted successfully Registry Values Infected No malicious items detected Registry Data Items Infected No malicious items detected Folders Infected No malicious items detected Files Infected C WINDOWS system msrun exe Trojan Agent - gt Quarantined and deleted successfully C WINDOWS system umwmrbe dll LSP Hijacker - gt Quarantined and deleted successfully C WINDOWS msynbjet dll Trojan Hiloti - gt Quarantined and deleted successfully C Documents and Settings Administrator Local Settings Temp skaioejiesfjoee tmp Malware Trace - gt Quarantined and deleted successfully C Documents and Settings j kubach Application Data Microsoft Internet Explorer Quick Launch Antimalware Doctor lnk Rogue AntimalwareDoctor - gt Quarantined and deleted successfully C Documents and Settings j kubach Start Menu Antimalware Doctor lnk Rogue AntimalwareDoctor - gt Quarantined and deleted successfully C Documents and Settings j kubach Local Settings Application Data Windows Server admin txt Malware Trace - gt Quarantined and deleted successfully Thanks Jason

A:Super A-hole virus...is it Combo Fix time?

Are you running both Norton anti virus and Symantec Endpoint Protection anti virus at the same time? If so, this could be part of your problem. You should only run one anti virus at a time as running two together will cause false positives.

http://www.bleepingcomputer.com/forums/t/342994/super-a-hole-virusis-it-combo-fix-time/
Relevancy 40.85%

I dont know how can a hacker find a security hole in a system? For example:
When you connect to a system, how can you find the hole on it?
I dont tell about you can find one when you connect to that web site and you can read the source code.
I mean in the .... ( he he , i dont know what layer it is) command layer

A:How Can I Find A Security Hole?

Is anyone know about that? Please help me!

http://www.bleepingcomputer.com/forums/t/40199/how-can-i-find-a-security-hole/
Relevancy 39.99%

 

Summary

A critical vulnerability (CVE-2015-0313) exists in Adobe Flash Player 16.0.0.296 and earlier versions for Windows and Macintosh.  Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system.  We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below. 
Adobe expects to release an update for Flash Player during the week of February 2.
 
 

https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

A:New Zero-day hole for latest Adobe Flash Player

I will be having a metting to discuss removing this off all machines in the LAN from the powers that be at work, im personally getting sick of the constant patching that takes up time.
This is the new java and its timje to say "You are the weakest link....... Good Bye"

http://www.bleepingcomputer.com/forums/t/565474/new-zero-day-hole-for-latest-adobe-flash-player/
Relevancy 39.99%

Internet Explorer 6 through 11 are all at risk, on all current versions of Windows from Vista to 8 and Windows Server 2003 to 2012 R2. The bug is thought to be present in IE on Windows XP, although that operating system is no longer supported.

http://www.theregister.co.uk/2014/04/27/oops_we_did_it_again_microsoft_warns_of_ie_zero_day/

A:New hole in Internet Explorer already under attack to hijack PCs

 

Internet Explorer 6 through 11 are all at risk, on all current versions of Windows from Vista to 8 and Windows Server 2003 to 2012 R2. The bug is thought to be present in IE on Windows XP, although that operating system is no longer supported.

http://www.theregister.co.uk/2014/04/27/oops_we_did_it_again_microsoft_warns_of_ie_zero_day/
 
The fact that Windows 2003 is in that list, pretty much confirms that XP would be if it was still supported.
 
Without this, XP would probably have been as protectected had recently been through until the next patch Tuesday (13th May), but this brings its final party to an end two weeks earlier than that.(I suppose that some might argue that if they don't use IE for browsing and don't have it set as the default web browser, then they can eek a little more lifeout of the old beast - however given the reliance that XP and Office have on IE components, that is d dodgy strategy)
 
x64

http://www.bleepingcomputer.com/forums/t/532516/new-hole-in-internet-explorer-already-under-attack-to-hijack-pcs/
Relevancy 39.99%

Internet Explorer Could Have a Huge Security HoleUsers of several Internet Explorer versions are being urged on Monday to switch to other browsers such as Chrome or Firefox amid news of a major security hole.According to Rapid7 security forum, a new zero-day exploit for Internet Explorer 7, 8, and 9 has hit computers running Windows XP, Vista and 7. Zero-day exploits involve software that takes advantage of a security hole within a site to carry out an attack.This means that computers actively using Internet Explorer can be compromised by visiting a malicious site and give cybercriminals ?the same privileges as the current user.?Full story here: http://mashable.com/2012/09/17/internet-explorer-security-hole/

A:Internet Explorer Could Have a Huge Security Hole

Hi.

this has been confirmed by MS: http://www.bleepingcomputer.com/forums/topic468924.html/page__view__getnewpost

regards myrti

http://www.bleepingcomputer.com/forums/t/468896/internet-explorer-could-have-a-huge-security-hole/
Relevancy 39.99%

Okay this security hole is fixed now but its still security news ;)

The exploit worked like this : if you are logged into Gmail in your browser and visit a specially designed web site, then the malicious site can steal your Gmail email address and can send you an email with genuine Google headers (as if sent by Google, no spoofing).

http://techcrunch.com/2010/11/20/whoa-google-thats-a-pretty-big-security-hole/
http://www.examiner.com/technology-in-national/security-hole-allows-harvesting-of-your-gmail-address-if-you-are-logged-in

A:Google fixed serious security hole and very fast

god, terrible... how long did it take before it was patched?

http://www.bleepingcomputer.com/forums/t/362200/google-fixed-serious-security-hole-and-very-fast/
Relevancy 39.99%

Everyone with FireFox 3.5 urged to update to Version 3.5.1 as soon as Possible.http://news.cnet.com/8301-1009_3-10289205-83.html

A:Mozilla closes Security hole with FireFox 3.5.1

Thanks for the information DSTM. I just updated. Good to know the B/C Cops are always on the look out for the rest of us.

http://www.bleepingcomputer.com/forums/t/242306/mozilla-closes-security-hole-with-firefox-351/
Relevancy 39.99%

Exploits allowing hackers to break into Gmail accounts are likely to occur, if they're not already circulating, after security researchers released details of a hole that Google has reportedly declined to patch....Make sure you have a strong password Many PC users select weak passwords that consist of common names or dictionary words, leaving them susceptible to brute-force discovery and configure Gmail to use SSL by default:To benefit from encryption when accessing Gmail, you should configure the service to use SSL by default. To do so, click Settings in the top-right corner of the main Gmail window, select Always use https in the "Browser connection" section at the bottom of the General tab, and click Save Changes.http://windowssecrets.com/comp/090423/

A:Gmail accounts hacked via unpatched hole

Or you can stop using a browser for accessing Gmail and start using Thunderbird for having all your emails delivered to your desktop.

http://www.bleepingcomputer.com/forums/t/221731/gmail-accounts-hacked-via-unpatched-hole/
Relevancy 40.85%

Yahoo! is urging users of its Yahoo! Messenger instant messaging software to update the program with a patch plugging a serious security hole that bad guys could use to break into PCs. Anyone who downloaded the program prior to Mar. 13, 2007 should download and install the latest version fixing the problem...blog.washingtonpost.com

http://www.bleepingcomputer.com/forums/t/87451/security-hole-in-yahoo-im/
Relevancy 39.99%

A Dutch Web developer has discovered a vulnerability in Microsoft's Internet Explorer 6 (IE6) Web browser that could allow a PC to be taken over after a user is lured to a malicious Web site. Microsoft has confirmed the vulnerability.See the complete article at NIST.orgPlease post all comments back here.

A:Microsoft Confirms Serious New Hole In Internet Explorer 6

Thank you Firefox!
Thanks for the link SG!

http://www.bleepingcomputer.com/forums/t/47460/microsoft-confirms-serious-new-hole-in-internet-explorer-6/
Relevancy 39.99%

By Ryan Naraine June 30, 2005  Microsoft late Thursday confirmed a security flaw in its dominant Internet Explorer browser could be potentially exploited by malicious hackers to take "take complete control of the affected system." The software giant released a security advisory acknowledging the vulnerability and recommended that IE users set Internet and local intranet security zone settings to "High" before running ActiveX controls in these zones.Full Read at eweekMicrosoft Security Advisory

http://www.bleepingcomputer.com/forums/t/23245/microsoft-confirms-code-execution-hole-in-ie/
Relevancy 46.44%

I have a free private registration at PhotoBucket, . .

And uploaded an MPV but when I download it back to my PC

It is now an MPEG-4 Movie and needs MS plug-ins etc.

Problem I don't want that, . . where is my MPV download

since it ask for choice before the download.

Anybody know how this can be done ?

A:Photo Bucket Video Download is Mpeg-4

Jove, have you researched PB Help? If you can't find an answer there, click on the Ask A Question tab and fire away.PhotoBucket Help and SupportRosie

http://www.bleepingcomputer.com/forums/t/439736/photo-bucket-video-download-is-mpeg-4/
Relevancy 41.28%

for the most part ive tried to fix problems when the arise on my computer but recently ive been bombarded with numerous hard to remove spyware now i did get rid of a lot of it myself and even overcame having Ad-Aware delete me userinit exe but not even Malwarebyts as been able to get rid of the elusive google-redirect com or find how all this spyware just suddenly showed up so im breaking down and asking for assistance i think that somewhere in the depths of this issue it will also fix the classic quot you dont have flash or java quot problem that plagues YouTube and the quot Gmail loading freeze quot problems i tried some other program that screwed up my proxy settings and while Firefox didnt seem to mind my IE and MSN have yet to recover Security somewhere hole someoen told me to try Combofix but the internet says it has some seriously potential to ruin my system inadvertantly so im not going to touch that without someone telling me how to use it here is the Hijackthis log take note no i do not have anti-virus installed but ive been running this rig since with upgrades in including the change to XP without anti-virus and with minimal Security hole somewhere to no problems at all ---- Logfile of Trend Micro HijackThis v Scan saved at PM on Platform Windows XP Security hole somewhere SP WinNT MSIE Internet Explorer v Boot mode Normal Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass exe C WINDOWS system Ati evxx exe C WINDOWS system svchost exe C WINDOWS System svchost exe C WINDOWS system Ati evxx exe C WINDOWS system spoolsv exe C Program Files ATI Technologies ATI Control Panel atiptaxx exe C Program Files PopUp Killer PopUpKiller EXE Security hole somewhere C Program Files Java jre bin jusched exe C Program Files Windows Live Messenger MsnMsgr Exe C WINDOWS system ctfmon exe C Program Files Common Files Ahead Lib NMBgMonitor exe C Program Files Common Files Ahead Lib NMIndexingService exe C Program Files Common Files Ahead Lib NMIndexStoreSvr exe C WINDOWS system wscntfy exe C WINDOWS System svchost exe C Program Files Pidgin pidgin exe C Program Files Mozilla Firefox firefox exe C WINDOWS explorer exe globalroot C WINDOWS system rundll exe C Documents and Settings buscuit Desktop HijackThis exe R - HKCU Software Microsoft Internet Explorer Main Search Bar http www flpfszxzpvzoxwlrsdhkgjfg LZz TUbBZiREnOl GQj esBQwxjnBfrbQDxx FP html R - HKCU Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Page URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Default Search URL http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Search Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Main Start Page http go microsoft com fwlink LinkId R - HKLM Software Microsoft Internet Explorer Search SearchAssistant R - HKLM Software Microsoft Internet Explorer Search CustomizeSearch R - HKCU Software Microsoft Internet Explorer Main First Home Page http go microsoft com fwlink LinkId R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyServer http localhost R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride local lt local gt O - Toolbar Pop-Up Stopper amp Companion - F B A - D - B F-AF - B F - C PROGRAM FILES PANICWARE POP-UP STOPPER COMPANION POPUPUS DLL O - Toolbar Norton AntiVirus - CDD BF- FFB- - AD - DF B D - C Program Files Norton AntiVirus NavShExt dll O - Toolbar LiveInfoPro - E D B-D - -AE - F AAE - C Program Files Internet Explorer LiveInfoPro toolbar v w-jsinside-affid- dll O - HKLM Run SystemTray SysTray Exe O - HKLM Run ATIPTA C Program Files ATI Technologies ATI Control Panel atiptaxx exe O - HKLM Run PopUpKiller C Program Files PopUp Killer PopUpKiller EXE O - HKLM Run UpdReg C WINDOWS UpdReg EXE O... Read more

Relevancy 41.28%

SOmething must be eating a hole in my memory space here is a log file from HJT do you see anything that could be the culprit I ve removed my NAV and installed AVG due to a problem with the NAV and I Hole HELP! memory!!! my in am running Firefox now instead of IE see any problems Thanks Logfile of HijackThis v Scan saved at AM on Platform Windows SP WinNT MSIE Internet Explorer v SP Running processes C WINDOWS System smss exe C WINDOWS system winlogon exe C WINDOWS system services exe C WINDOWS system lsass HELP! Hole in my memory!!! exe C WINDOWS system svchost exe C WINDOWS system spoolsv exe C Program Files Symantec LiveUpdate ALUSchedulerSvc exe C PROGRA Grisoft AVGFRE avgamsvr exe C PROGRA Grisoft AVGFRE avgupsvc exe C PROGRA Grisoft AVGFRE avgemc exe C Program Files Common Files Symantec Shared ccSetMgr exe C WINDOWS System svchost exe C Program Files ewido anti-malware ewidoctrl exe C WINDOWS system regsvc exe C WINDOWS system MSTask exe C WINDOWS system stisvc exe C WINDOWS System WBEM WinMgmt exe C WINDOWS system svchost exe C Program Files Windows Defender MsMpEng exe C WINDOWS Explorer EXE C Program Files HP hpcoretech hpcmpmgr exe C Program Files HP HP Software Update HPWuSchd exe C Program Files iTunes iTunesHelper exe C Program Files QuickTime qttask exe C Program Files Common Files Real Update OB realsched exe C Program Files Windows Defender MSASCui exe C Program Files Java jre bin jusched exe C PROGRA Grisoft AVGFRE avgcc exe C Program Files HP Digital Imaging bin hpqtra exe C Program Files HP hpcoretech comp hptskmgr exe C WINDOWS system HPZipm exe C Program Files iPod bin iPodService exe C WINDOWS System svchost exe C WINDOWS System SCardSvr exe C Program Files Symantec LiveUpdate ALuNotify exe C Program Files ewido anti-malware oldewido exe C Program Files Mozilla Firefox firefox exe C Program Files HijackThis HijackThis exe R - HKLM Software Microsoft Internet Explorer Main Start Page http msn com R - HKCU Software Microsoft Internet Explorer Main Window Title Microsoft Internet Explorer provided by BellSouth R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyServer http localhost R - HKCU Software Microsoft Windows CurrentVersion Internet Settings ProxyOverride localhost O - BHO no name - - F - D - - D F - C PROGRA SPYBOT SDHelper dll O - BHO SSVHelper Class - BB-D F - C-B EB-D DAF D D - C Program Files Java jre bin ssv dll O - Toolbar amp Radio - E - F- D - E- A C - C WINDOWS System msdxm ocx O - HKLM Run Symantec NetDriver Monitor C PROGRA SYMNET SNDMon exe Consumer O - HKLM Run Synchronization Manager mobsync exe logon O - HKLM Run HP Component Manager quot C Program Files HP hpcoretech hpcmpmgr exe quot O - HKLM Run HP Software Update C Program Files HP HP Software Update HPWuSchd exe O - HKLM Run iTunesHelper quot C Program Files iTunes iTunesHelper exe quot O - HKLM Run QuickTime Task quot C Program Files QuickTime qttask exe quot -atboottime O - HKLM Run TkBellExe quot C Program Files Common Files Real Update OB realsched exe quot -osboot O - HKLM Run Windows Defender quot C Program Files Windows Defender MSASCui exe quot -hide O - HKLM Run SunJavaUpdateSched quot C Program Files Java jre bin jusched exe quot O - HKLM Run AVG CC C PROGRA Grisoft AVGFRE avgcc exe STARTUP O - HKLM Run taskmgr C WINNT system explorer exe O - HKCU Run RealPlayer quot C Program Files Real RealPlayer realplay exe quot RunUPGToolCommandReBoot O - Global Startup HP Digital Imaging Monitor lnk C Program Files HP Digital Imaging bin hpqtra exe O - Global Startup LUMIX Simple Viewer lnk C Program Files Panasonic LUMIXSimpleViewer PhLeAutoRun exe O - Extra context menu item amp AIM Search - res C PROGRAM FILES AIM TOOLBAR AIMBAR DLL aimsearch htm O - Extra button no name - B E C - FCB- CF-AAA - C - C Program Files Java jre bin ssv dll O - Extra Tools menuitem Sun Java Console - B E C - FCB- CF-AAA - C - C Program Files Java jre bin ssv dll O - Extra button AIM - AC E - - d -BC D- B D A DE - C Program File... Read more

A:HELP! Hole in my memory!!!

sis you put the proxy there?
 

https://forums.techguy.org/threads/help-hole-in-my-memory.524707/
Relevancy 41.28%

undefinedundefinedundefined

I found the strangest folder in the AllUsers/Applicationdata,

it was named date kind eggs one and when I opened it there was Wipe. Hole.exe inside.

Is anyone familiar with this?

It certainly isn't something I downloaded intentionally.

And my System Restore won't work.

LisaR
 

A:Wipe Hole.exe?

SpywareBlaster http://www.javacoolsoftware.com/spywareblaster.html
AdAware SE http://www.majorgeeks.com/download506.html
SpyBot S&D http://www.safer-networking.org/en/download/

DL them (they are free), install them, check each for their

definition updates and then run AdAware and Spybot, fixing anything

they say.

Do these before the next step.

Then get HiJack This http://www.majorgeeks.com/download3155.html,
put it in a permanent folder, run it , DO NOT fix anything, post the log here.
 

https://forums.techguy.org/threads/wipe-hole-exe.309518/
Relevancy 40.42%

Don't panic Folks, the patch is up and ready for installation. Just installed it and followed the instructions to see if the patch "took". It did. Found this info on www.cnet.com>tech news>security tab. "This security hole theoretically allows attackers to crash computers or launch unauthorized programs.." Follow the links back to Mozilla.org. It's for Mozilla and Mozilla Firefox browsers. Tiny patch having to do with "shell". Their instructions are clear. The process takes a minute or two. Have to restart browser but not reboot computer.
 

Relevancy 41.28%

When i run spybot, it says dso exploit..security hole in IE...what do i do to solve this problem??!
cheers
 

A:security hole in IE

Explanation here:
http://forums.net-integration.net/index.php?showtopic=17159
 

https://forums.techguy.org/threads/security-hole-in-ie.245945/
Relevancy 40.85%

My computer started running slow..so I pressed ctrl, alt, del to see what programs were running. One was called 01Army. I searched where this was located. It is in C:\Program Files\startdebugpile. In this folder is 01Army.exe, Hole.exe, and Sectplus.exe. I cannot find out anything on these. I've run spy-bot, Ad-aware and Norton Antivirus. I'm running Windows 98 SE. Any ideas where it came from and what it is? I deleted it once before but after my daughter was on the internet it came back.
 

Relevancy 40.85%

My daughter had been on the internet. When I went to use the computer it was running really slow. I did ctrl, alt, delete to see what was running. There was a program called 01Army. I searched and found it was in C:\Program Files\startdebugfile. Also in this file is hole.exe and sectplus.exe. Does anyone know what these files are? I have run spy-bot, ad-aware and norton and found nothing that was related to this. I am running Windows98 SE.
 

A:hole.exe, 01army.exe, sectplus.exe

I replied to your other post on April 17th and asked you to download Hijack This and post a scan log for the experts to look at.

Please stick with one thread until your problem is resolved.

Please post that scan log as requested.

Please do this. Click here: http://www.sherrylynn.us/HijackThis.exe to download Hijack This. Save it to it’s own folder (not temporary files or the desktop).

Close all open windows and open HIJACK THIS. Click “Scan”. When the scan is finished (it only takes a second), the scan button will change to “Save Log”. Click on “Save Log” and save it to NotePad. Copy the entire log and paste it here.

DO NOT FIX ANYTHING YET, most items that appear in the log are harmless or even needed. Wait for someone to analyze the scan and advise.

Cookie
 

https://forums.techguy.org/threads/hole-exe-01army-exe-sectplus-exe.221847/
Relevancy 39.99%

Microsoft patches critical Hotmail hole By Sam Varghese March Microsoft has responded promptly to the discovery of a critical vulnerability in its Hotmail service and issued a patch in less than two days according critical Hotmail hole patches Microsoft 3/24/04 to an advisory posted by GreyMagic Software an Israel-based security company However GreyMagic said in its posting to the Bugtraq list that it had found a similar flaw in Yahoo s webmail service but found it impossible to contact the company GreyMagic said it had started work on the issue with Microsoft on March quot They have quickly confirmed our findings and were able to produce a fix less than two days later As a result Hotmail is no longer vulnerable to this method of exploitation quot the advisory said quot All attempts to contact Yahoo unfortunately failed Mail was Microsoft patches critical Hotmail hole 3/24/04 sent to security and secure at yahoo com and at yahoo-inc com no replies were received to date quot The vulnerability is a cross site scripting or XSS flaw To exploit such a flaw a web application is sent with a script that activates when it is read Microsoft patches critical Hotmail hole 3/24/04 by an unsuspecting user s browser or by an application that has not protected itself against cross-site scripting GreyMagic found that it was possible to exploit the flaw when people accessed their Hotmail or Yahoo mail accounts using Internet Explorer The company said a malicious attacker could exploit the flaw and it could result in theft of login and password disclosure of the content of any email in the user s mailbox automatic dispatch of emails from the mailbox exploitation of known vulnerabilities in the browser to access the user s file system and eventually take over the machine distribution of a web-based email worm or disclosure of all contacts within the address book Here nbsp

https://forums.techguy.org/threads/microsoft-patches-critical-hotmail-hole-3-24-04.214301/
Relevancy 39.56%

My friend hooked up a brand-new computer XP Home a few days ago and got all the Critical Updates available Today he downloaded Spybot with updates He d used Spybot a lot on his old computer using SE and IE and expected no surprises But he got about red entries for DSO Exploit HKEY USERS Software Microsoft Windows Current Version Internet Settings Zones The additional info says Company Microsoft Product Internet Spybot hole security IE DSO finds Exploit caused by Explorer Threat Security hole Then some stuff about how IE has a security hole that allows malicious code to be executed He d gotten all the Critical Updates first thing but to be on the safe side he went back to the MS Update site but no Critical Updates came up We both kind of remember installing some patch on our IE s in the past that had to do with malicious code execution it kind of rings a bell I m not sure if Spybot finds DSO Exploit caused by IE security hole it was a Critical Update or a patch we had to seek out But MS has so many Anyway Spybot said this site would give further info on the threat but it s WAY too technical for me http security greymagic com adv gm -ie Hoping you can help us nbsp

Relevancy 40.42%

According to recent news releases of late. Microsoft has (apparently) shifted it's focus to training it's programmers about security proofing their code.

Microsoft has also released a Microsoft product security analyzer which will check your system for holes and report to you potential security threats/holes etc.

The tool can be used over a network and can scan multiple computers. It's actually quite useful and provides fairly good info on how to fix any problems.

Download the tool here and give'er a whirl:

Microsoft Windoze Security Analyzer

Hope it helps.

GOTz
 

Relevancy 41.28%

Hello, All

I hope someone can use this so here gos

for more info & the patch go here
The patch removing the security hole in Internet Explorer (making the attck possible) can be downloaded from: http://www.microsoft.com/windows/ie/downloads/critical/q290108/default.asp
Good Luck to All
I like to give thanks to jrb for posting this first
 

A:Security Hole in IE

Thanks AAPlus, we welcome your contributions here.
 

https://forums.techguy.org/threads/security-hole-in-ie.57051/
Relevancy 39.99%

Thousands of Sites Hacked Via vBulletin Hole - http://krebsonsecurity.com/2013/10/thousands-of-sites-hacked-via-vbulletin-hole/ 35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole
 

https://forums.techguy.org/threads/thousands-of-sites-hacked-via-vbulletin-hole.1110813/
Relevancy 38.7%

Adobe to fix critical Reader hole on Tuesday dated September 30, 2010

-- Tom
 

A:Adobe to fix critical Reader hole on Tuesday dated September 30, 2010

Wow
 

https://forums.techguy.org/threads/adobe-to-fix-critical-reader-hole-on-tuesday-dated-september-30-2010.953462/
Relevancy 39.99%

Adobe warns of zero-day hole in Flash Player.

The critical vulnerability affects Adobe Flash Player 10.1.82.76 and earlier versions for Windows, Mac, Linux, Solaris, and Android. It also affects Adobe Reader 9.3.4 and earlier version for Windows, Mac, and Unix and Adobe Acrobat 9.3.4 and earlier versions for Windows and Mac. Adobe is not aware of any attacks exploiting the hole against Adobe Reader or Acrobat, the company said in its security advisory.

Adobe is finalizing a fix for the hole and expects to provide an update for Flash Player for Windows, Mac, Solaris, and Android during the week of September 27, the advisory said. Updates for Adobe Reader are expected during the week of October 4.Click to expand...

-- Tom
 

A:Adobe warns of zero-day hole in Flash Player

Thanks for alerting us.
Vicks
 

https://forums.techguy.org/threads/adobe-warns-of-zero-day-hole-in-flash-player.949901/
Relevancy 39.13%

Microsoft tool blocks attacks on Adobe Reader hole.

-- Tom
 

A:Microsoft tool blocks attacks on Adobe Reader hole

Follow the links to MS blogs.technet.com and you will see that MS released a new version of EMET on Sep 10, 2010. New version is 2.0.0.1
 

https://forums.techguy.org/threads/microsoft-tool-blocks-attacks-on-adobe-reader-hole.949711/
Relevancy 40.85%

DLL hole now affects EXE files.

-- Tom
 

Relevancy 39.56%

Critical Adobe Reader hole to be patched Thursday dated August 18, 2010

Adobe will release a patch on Thursday for a critical hole in Reader that was disclosed at the Black Hat conference late last month, the company said on Wednesday.

Note: Thursday is Today!

-- Tom
 

A:Critical Adobe Reader hole to be patched Thursday

Yep. The 9.3.4 update for Adobe Reader was released today.

http://fileforum.betanews.com/detail/Adobe-Reader-Update-for-Windows/942951453/5

I stopped using it myself and have switched to Foxit Reader.

---------------------------------------------------------------
 

https://forums.techguy.org/threads/critical-adobe-reader-hole-to-be-patched-thursday.944187/
Relevancy 39.99%

Apple to fix security hole in iPhone software.

Apple is planning to release a fix for a security hole in the software that runs on its iPhone, iPad and iPod Touch devices.

Related article: Theoretical attacks exploit iOS browser flaw.

The new browser security flaw in iPhones, iPods, and iPads could be more dangerous than initially suspected.

-- Tom
 

https://forums.techguy.org/threads/apple-to-fix-security-hole-in-iphone-software.941045/
Relevancy 40.42%

WPA2 security hole discovered.

Security experts at AirTight Networks have discovered a hole in the WPA2 Wi-Fi security protocol. The security hole was named as Hole 196 after the number of the relevant page in the IEEE 802.11 (2007) standard document. At the bottom of page 196, the IEEE standard introduces the keys used by WPA2: the PTK (Pairwise Transient Key), which is unique for every Wi-Fi client and used for unicast traffic, and the GTK (Group Temporal Key) used for broadcasts. While data forgeries and spoofed mac addresses can be detected with the PTK, the GTK does not offer this functionality.

-- Tom
 

A:WPA2 security hole discovered

WPA/WPA2 encryption: A possible workaround.

It seems using WPA or WPA2 is not as secure as we would like to believe. It&#8217;s not the end of the world, but important enough to learn what&#8217;s going on.

-- Tom
 

https://forums.techguy.org/threads/wpa2-security-hole-discovered.938432/
Relevancy 39.99%

Mozilla fixes security hole with Firefox 3.6.3.

Download for Firefox 3.6.3.

-- Tom
 

Relevancy 39.13%

Hackers target freshly uncovered Internet Explorer hole dated March 9, 2010

Microsoft on Tuesday warned that hackers are targeting a freshly-uncovered weakness in some earlier versions of its Internet Explorer (IE) Web browser software.

Microsoft said it is investigating a hole that cyber attackers are taking advantage of in IE 6 and IE 7.Click to expand...

-- Tom
 

A:Hackers target freshly uncovered Internet Explorer hole

Yep. I had previously read about it here.

Another good reason for upgrading to IE8.

---------------------------------------------------------------
 

https://forums.techguy.org/threads/hackers-target-freshly-uncovered-internet-explorer-hole.909289/
Relevancy 34.4%

Please go to this link for full info:

http://news.bbc.co.uk/2/hi/technology/8499859.stm

The next MS update will include a "fix," along with other important updates.

{redoak}
 

https://forums.techguy.org/threads/ms-to-fix-17-year-old-security-hole.900826/
Relevancy 41.28%

Fixing a Hole in the Web It could take a year to patch up a flaw to a key Internet protocol The patch repairs a a Web the in Hole Fixing flaw in the protocol that encrypts sensitive communications including most banking Fixing a Hole in the Web and credit-card transactions It repairs the Transport Fixing a Hole in the Web Layer Security TLS protocol which has superseded the Secure Socket Layer SSL protocol TLS is built into Web browsers and Web servers and protects high-value information The current flaw discovered by Marsh Ray and Steve Dispensa of a Kansas-based authentication company called Phone Factor gives an attacker the ability to hijack the first moment of the encrypted conversation between a Web browser and a Web server This allows the attacker to add a command of his own which could be as serious as an order to withdraw money from the victim s account One security researcher demonstrated the attack on Twitter showing that the flaw could be used to command the server to reveal a user s password Click to expand -- Tom nbsp

A:Fixing a Hole in the Web

gnarly.

Peace...
 

https://forums.techguy.org/threads/fixing-a-hole-in-the-web.893356/
Relevancy 40.85%

Microsoft to fix critical hole in IE.

In a rare move, Microsoft on Friday said it would be releasing security updates on Tuesday--outside of its monthly patch cycle--for a critical vulnerability in Internet Explorer and a moderate vulnerability in Visual Studio.

The two security bulletins will address one overall issue and are being released separately "to provide the broadest protections possible to customers," Microsoft said in a statement.Click to expand...

-- Tom
 

Relevancy 39.99%

Microsoft warns of serious computer security hole.

Microsoft Corp. has taken the rare step of warning about a serious computer security vulnerability it hasn't fixed yet. The vulnerability disclosed Monday affects Internet Explorer users whose computers run the Windows XP or Windows Server 2003 operating software. It can allow hackers to remotely take control of victims' machines.

-- Tom
 

Relevancy 39.99%

Exploits allowing hackers to break into Gmail accounts are likely to occur, if they're not already circulating, after security researchers released details of a hole that Google has reportedly declined to patch.Click to expand...

http://windowssecrets.com/comp/090423/
 

A:Gmail accounts hacked via unpatched hole

Is web mail safe, or is your mail safer when retrieved to your PC ? What is your opinion?
 

https://forums.techguy.org/threads/gmail-accounts-hacked-via-unpatched-hole.821147/
Relevancy 39.99%

Reference Slashdot org article Internet's Security Biggest Hole The Revealed The Internet s Biggest Security Hole Revealed At DEFCON Tony Kapela and Alex Pilosov demonstrated a drastic weakness in the Internet The Internet's Biggest Security Hole Revealed s infrastructure that had long been rumored but wasn t believed practical They showed how to hijack BGP the border gateway protocol in order to eavesdrop The Internet's Biggest Security Hole Revealed on Net traffic in a way that wouldn t be simple to detect Quoting quot It s at least as big an issue as the DNS issue if not bigger said Peiter Mudge Zatko noted computer security expert and former member of the L pht hacking group who testified to Congress in that he could bring down the internet in minutes using a similar BGP attack and disclosed privately to government agents how BGP could also be exploited to eavesdrop I went around screaming my head about this about ten or twelve years ago We described this to intelligence agencies and to the National Security Council in detail The man-in-the-middle attack exploits BGP to fool routers into re-directing data to an eavesdropper s network quot Here s the PDF of Kapela and Pilosov s presentation KB Click to expand -- Tom nbsp

Relevancy 39.99%
Relevancy 39.99%

I have a cheap digital camera that was given to me by Earthlink when I originally started using them for my ISP. (actually they unknowingly sent me two so I have an extra) I took a lot of B & W photography in college and learned the how-to's of building a pin hole camera but would like to modify one of these camera's I have into a pin-hole digital. Is this possible? Any suggested websites? I have read about people converting a standard single lens reflex camera to a pin-hole so why not a digital! The camera I have is a 640 x 480 made by True Digital w 2 MB storage. Thanks! any input is appreciated.
 

A:Pin Hole Photography-Converting Over a Digital Camera

Where you will have trouble is with the time exposure especially with a cheaper camera as they have a real problem with noise and pinhole cameras require quite lengthy exposure times.

When I was at school (a few years ago;-) our photo club built a pinhole camera out of wood which produced a resonable image. The shutter was a small slide door and the film was cut from 120 film. From memory our main conclusion was that it was a worth while experiment, but that was about it.
 

https://forums.techguy.org/threads/pin-hole-photography-converting-over-a-digital-camera.285550/
Relevancy 41.28%

Hi there, just a quick question from a total computer noob.

I recently ordered a headset online so I could use a mic for PC gaming. When it came in the mail I discovered that it has two cords... one for audio input and one for output. My computer, unfortunately, only has one audio jack. I'm running 10.6.4 (mac).

Is there any way I can configure my settings so that I can use my headset with only one cord plugged in? The headset was rather expensive and I know I can't return the item. ):

Thanks in advance.
 

A:Two jacks... one hole

Probably want to get a cheap,mac compatable usb audio adapter.
 

https://forums.techguy.org/threads/two-jacks-one-hole.935721/
Relevancy 32.68%

hi --
I have a Apevia X Jupiter G Type full tower case
http://www.tigerdirect.com/applicat...p?EdpNo=3424759&sku=A107-1094&srkey=A107-1094

it comes with--
1 intake 120mm fan in the front--
1 intake 120mm fan on left side panel--
2 exhaust 120mm fans on the rear panel--
plus the exhaust fan that came on my power supply.

with 3 fans blowing out and 2 fans blowing in---I wondered if I should install a fan
in the blow hole slot.

this case has the screw holes in the top of the case for a blow hole.
but didn't come with a fan preinstalled.

should I go ahead a install a fan here and would it be better to turn
the fan around to make it a intake fan instead of a exhaust fan????
do I need more air coming in to my case with 3 fans blowing out??

or just leave the blow hole slot empty.
 

A:should I turn a "blow hole" exhaust fan port into a intake fan port??

my case came with fan speed control knobs on the front of the case.
I have bought replacement Antec fans to connect to the motherboard.

during my vacation next week I'm going to through away the fans that
came with the case and install the Antec's

I'm starting to believe the motherboard controlling the fans would be a better
set-up than having the control knobs on the case controlling the fans.

at least the motherboard would slow the fan Rpm's at idle
I have turned the knobs to max and left them.
 

https://forums.techguy.org/threads/should-i-turn-a-blow-hole-exhaust-fan-port-into-a-intake-fan-port.715994/
Relevancy 40.42%

My m2n-sli deluxe (asus, nf570sli) refuses to post if I have my Sandisk Sansa m240 (low end 1gb mp3 player) plugged in. This isnt a problem because i can just kill the power and unplug it, but I am really itching to know why it will not post when the mp3 player is plugged in. I get the AI Lifestyle screen and it says press del to enter setup though when I press delete it doesnt react as it normally does. The rest of my system's specs:
athlon 5200+ stock @ 2.6
2x1gb crappy offbrand ram
x-fi xtremegamer
wd caviar 250
evga 8800gts 640
Thanks all!
-lag1tup
 

https://forums.techguy.org/threads/posting-black-hole-any-thoughts.609765/
Relevancy 41.28%

ok so the other night i was playing counter-strike and much to my annoyance there was a in monitor! hole my a :( Help! there's bug just flying around my screen until i get really annoyed and smashed it Help! there's a hole in my monitor! :( on my screen The screen was dark so i never noticed that it was still on the screen After about an hour or so i was about to shut off my computer when i noticed that there was a dark spot on my screen As i tried to wipe it off it wouln t come off finally i decided to get a flashlight and take a look at it much to my demise that spot was not going away because it was a hole in my monitor about the size of a dot you would make with a ballpoint pen but me being the perfectionist that i am i m going insane and i m so sad don t laugh but i cried myself to Help! there's a hole in my monitor! :( sleep because i don t have enough money to get another CRT right now or anytime soon by the way its a CRT quot emachines flat screen monitor ummm please anyone who knows any kind of stuff that could help reply to this i would apprciate any suggestions its a tiny hole but it looks bad and i can feel the rigidity of it because it IS a hole is there a way to put something in the hole or something some kind of repair thank you nbsp

Relevancy 46.87%

i went and looked up the event id on the web and they said to dowload the latest nvidia driver.... which one??? the event log says that i have an application error 1001 and the description says it is the fault bucket. HELP!
 

A:nvidia driver for fault bucket?

ms had the latest certified drivers on windows update
 

https://forums.techguy.org/threads/nvidia-driver-for-fault-bucket.144419/
Relevancy 41.28%

This isn't life threatening, but. . . I get a "black hole", 1 inch square, which appears on the screen. It is "transparent" to the cursor operations: does not affect function of cursor or clickable stuff under the hole. It usually is centered on screen, but, sometimes lands on other areas. I have a Samsung monitor and S3 Virge video. Machine is 2+ years old. AMD 300mhz w/ win98. Thanks
 

A:hole in CRT screen

Can you get hold of another monitor? Try it and see if it is the monitor or the video card. That will narrow it down some.
 

https://forums.techguy.org/threads/hole-in-crt-screen.35071/
Relevancy 41.28%

I work as a PC Tech in a small shop. We have recently and consistantly been getting ATA 66 cables is a small hole in one of the conducting wires. When I asked the distributor, he said this was normal. However, when we build systems the cables that are suppolied dont have the hole. Is this right?
 

A:Hole in ATA cable !???

Some do and some don't.

We had a discussion about this a few months ago, with me not believing that a cable should be like that. When the other person involved got his system working with it I figured it had to be ok. I finally saw one myself not too long ago.

I think it just has to do with what company makes it - kind of like how some IDE cables come with a notch in them so you can't put them in backwards while some don't.

------------------
Get free stuff and help out a poor computer tech

6/6 added pay for home page site - nothing to install!
5/20 new, unlimited, pay to surf site added
5/21 added interactive story site - it's fun!
http://www.rkfdcore.com/ebaypics/referrals.htm
 

https://forums.techguy.org/threads/hole-in-ata-cable.33144/
Relevancy 40.42%

I've run into many problems trying to solve my 100% disk usage problem. I found that the Superfetch service was causing the issue, and that running chkdsk /s /f could fix the problem. I tried that, and it hangs at 12%, and the computer restarts itself after about 2 hours. So that leads me to doing a sfc /scannow, which tells me it found corrupt files and was unable to fix some of them. So I was attempting to do DISM /Online /Cleanup-Image /RestoreHealth, but ran into an error there.. the error 0x800f0906, the source files cannot be downloaded. I don't know what to do now. Somebody sort this out for me If logs are helpful, ask for which ones you need and I will post them.
 

A:100% disk usage rabbit hole

Seems like the disk has started failing and needs to be replaced. Try copying all your important files to another drive and perform clean install to check and see if the drive start behaving as it was previously.

Note: Alternatively, you can also clone the existing drive to another drive of same or higher capacity.

Good luck though!!
 

https://forums.techguy.org/threads/100-disk-usage-rabbit-hole.1146562/
Relevancy 40.85%

I have windows 7 ult and i have a little hole in my monitor because i accidently threw a wood at it but its not that big of a hole its like the size of a dot like a ballpoint pen and i can see just white in it and im scared that it leaks radiation. What should i do and does it leak radiation?
 

Relevancy 46.87%

Hi Been having problems with this computer for a couple of weeks now Whenever I am playing a game there is a good chance that it will randomly freeze and lock up the entire system requiring a restart Windows Error Reporting gives Windows Error Reporting Fault bucket type amp x d amp x a Event Name ServiceHang amp x d amp x a Response Not available amp x d amp x a Cab Id amp x d amp x a amp x d amp x a Problem signature amp x d amp x a P KService amp x d amp x a P KService exe quot amp x d amp Computer keeps freezing - Fault Bucket x a P amp x d amp x a P amp x d amp x a P amp x d amp x a P amp x d amp Computer keeps freezing - Fault Bucket x a P amp x Computer keeps freezing - Fault Bucket d amp x a P amp x d amp x a P amp x d amp x a P amp x d amp x a amp x d amp x a Attached files amp x d amp x a amp x d amp x a These files Computer keeps freezing - Fault Bucket may be available here amp x d amp x a amp x d amp x a amp x d amp x a Analysis symbol amp x d amp x a Rechecking for solution amp x d amp x a Report Id b e - d - df-a a- d fd d amp x d amp x a Report Status Anyone shed some light on how to fix the accursed thing nbsp

A:Computer keeps freezing - Fault Bucket

Kservice.exe is a P2P service installed by Sky Broadband and others for streaming video. If you don't know what kservice.exe is, you probably don't need it. See if this helps: http://www.opinionatedgeek.com/Blog/blogentry=000175/BlogEntry.aspx
 

https://forums.techguy.org/threads/computer-keeps-freezing-fault-bucket.937672/