| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 90081 | 2008-05-22 09:16:00 | Help Required WIN XP Pro Locked out Admin? | EX-WESTY (221) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 671640 | 2008-05-22 09:16:00 | Hi guys I've been handed a PC to get running and update for an elderly couple, it seems it came from their son's business but it's been locked down and I can't install antivirus or spybot as both programs terminate within seconds of running the install. It's running WIN XP Pro, I've created a new account with admin priviledges etc but occasionally on rebooting, changing accounts I'm seeing a message saying that some linux prog can't run under windows, I'm assuming this is how the access has been locked down. How can I get around this to configure & update the box to their requirements? TIA |
EX-WESTY (221) | ||
| 671641 | 2008-05-22 09:32:00 | I'd just do a full rebuild to be honest - or is there stuff on the laptop you need to keep?? | nofam (9009) | ||
| 671642 | 2008-05-22 09:55:00 | Hi guys It's running WIN XP Pro, I've created a new account with admin priviledges etc but occasionally on rebooting, changing accounts I'm seeing a message saying that some linux prog can't run under windows, I'm assuming this is how the access has been locked down. What is the program seems odd that it would be a Linux program, can you not stop it from starting in MSConfig assuming you have already tried removing it in add remove programs? |
Morgenmuffel (187) | ||
| 671643 | 2008-05-22 10:27:00 | Nothing on the PC as far as I can tell Nothing to save in that respect either I could install CCleaner OK but Spybot and the antivirus exe's won't load. A virus is another thought.... |
EX-WESTY (221) | ||
| 671644 | 2008-05-22 11:58:00 | Try trojan remover , and see if it installs in safe mode / networking. Then scan, then see if it updates, if its on a network / connected to the net If it boots into safe mode see if ccleaner installs. Then tell us whats under tools / startup |
Speedy Gonzales (78) | ||
| 671645 | 2008-05-23 08:08:00 | ARRRRRRRRRGGGGGGGGGGGGGGGGGHHHHHHHHHHHHHHH I've scanned the drive, Stinger found a couple of beasties when run on the machine. Removing the drive and installing it in my box found a few more. What's really interesting/ frustrating is I can surf the web read PC World for instance or go to Filehippo or Google that's fine. If I go to an antivirus site Explorer terminates within seconds I was able to install and run CCleaner, nothing of note found Stinger ran as above If I try to install Spybot, TrRemover or Antvir the installer terminates before you can even click anything and the message if displayed is gone in a microsecond. Can I borrow a sledgehammer :badpc: |
EX-WESTY (221) | ||
| 671646 | 2008-05-23 08:10:00 | Did u try installing trojan remover in safe mode? | Speedy Gonzales (78) | ||
| 671647 | 2008-05-23 08:30:00 | Yep tried installing all the above in safe mode no go Even tried under different admins with protect the pc unticked. Somethings going on in the background.... |
EX-WESTY (221) | ||
| 671648 | 2008-05-23 08:42:00 | Seen that sort of thing before, what its doing is there is some sort of infection thats killing any sort of antispyware/antivirus. From memory - try this, open my computer, go to tools/Folder Options/View, untick Hide hidden files and folders. then navigate to C:\Windows\System32\Drivers\etc\ Double click the hosts file, select open with Notepad, it should look like this here: ( in Blue) # Copyright (c) 1993-1999 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost Delete any entries from the file that are extra. From My sig, then download all the cleaners, Malewarebytes, Spybot, and spyware doctor. Install all and run. While at it, get Superantispyware (http://www.superantispyware.com/) - Install and run that to. Download Hijackthis from Speedys sig, run it and save a file , copy/paste teh complete file back here. |
wainuitech (129) | ||
| 671649 | 2008-05-23 08:48:00 | So, what did stinger find?? | Speedy Gonzales (78) | ||
| 1 2 | |||||