SPECIAL NOTICE
Malicious code was found on the site, which has been removed, but would have been able to access files and the database, revealing email addresses, posts, and encoded passwords (which would need to be decoded). However, there is no direct evidence that any such activity occurred. REGARDLESS, BE SURE TO CHANGE YOUR PASSWORDS. And as is good practice, remember to never use the same password on more than one site. While performing housekeeping, we also decided to upgrade the forums.
This is a site for discussing roleplaying games. Have fun doing so, but there is one major rule: do not discuss political issues that aren't directly and uniquely related to the subject of the thread and about gaming. While this site is dedicated to free speech, the following will not be tolerated: devolving a thread into unrelated political discussion, sockpuppeting (using multiple and/or bogus accounts), disrupting topics without contributing to them, and posting images that could get someone fired in the workplace (an external link is OK, but clearly mark it as Not Safe For Work, or NSFW). If you receive a warning, please take it seriously and either move on to another topic or steer the discussion back to its original RPG-related theme.

XP Problem - we did something to the registry I think

Started by walkerp, April 10, 2008, 06:00:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

walkerp

April 10, 2008, 06:00:47 PM
Hey gang.  I assume that after your excellent advice with the chairs, we probably have some XP geeks here.

Unbeknownst to me, one of my colleagues downloaded and started to install some small .reg file.  It was supposed to automatically create an account in Outlook.  I suspect they interrupted the process or that there was some conflict.  Anyhow, Outlook freaked out and then the whole computer freaked out.  Now it won't boot.  I think that little .reg file went in to the Register database or whatever the hell it's called and screwed something up in the startup.  It won't even boot in safe mode.

I'm running CHKDSK /r right now (at the internet's suggestion) but is there some way I can just get in here and delete this register key?

Here is the contents of the suspect file:



REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook\OMI Account Manager\Accounts\c517@waterford.ca]"DCEmail"=dword:00000002"POP3 Server"="mail.waterford.ca""POP3 Port"=dword:0000006e"SMTP Server"="mail.waterford.ca""SMTP Port"=dword:0000001a"Connection Type"=dword:00000003"POP3 User Name"="c517@waterford.ca""SMTP Display Name"="c517@waterford.ca""SMTP Email Address"="c517@waterford.ca""SMTP Reply To Email Address"="c517@waterford.ca""SMTP Organization Name"="""Account Name"="c517@waterford.ca""POP3 Timeout"=dword:0000003c"SMTP Timeout"=dword:0000003c"POP3 Secure Connection"=dword:00000000"Leave Mail On Server"=dword:00000000"POP3 Skip Account"=dword:00000000"POP3 Prompt for Password"=dword:00000001"SMTP User Name"="c517@waterford.ca""SMTP Use Sicily"=dword:00000002"SMTP Secure Connection"=dword:00000000"SMTP Split Messages"=dword:00000000"SMTP Prompt for Password"=dword:00000000


Thanks!
"The difference between being fascinated with RPGs and being fascinated with the RPG industry is akin to the difference between being fascinated with sex and being fascinated with masturbation. Not that there\'s anything wrong with jerking off, but don\'t fool yourself into thinking you\'re getting laid." —Aos

dar

#1
April 10, 2008, 06:35:49 PM
Do you have the XP install media from Microsoft? Can you get ahold of a copy?

If so there is a mode you can use that will reinstall the OS over the top of your current partition... It is pretty intelligent but it may force you to have to reinstall some apps.

http://www.michaelstevenstech.com/XPrepairinstall.htm

Try that.

Yes, first make sure the hard drive is ok, then make sure the file system is ok, then if you can, back up as much shit as you can.

dar

#2
April 10, 2008, 06:38:57 PM
After that you may need to muck about with the email accounts.

If outlook is still fubar try doing it from the 'Mail' control panel in settings.

dar

#3
April 11, 2008, 12:50:07 PM
did any of this help? Or did I only state the obvious or already tried?

walkerp

#4
April 11, 2008, 04:10:56 PM
Dar, it did help.  I used the Last Workable Configuration and was able to get in and get rid of that script.  Your link was helpful too, but I need some time to really absorb it.  It seems insane to me how vulnerable the registry is in Windows.  I mean no wonder it gets hacked so much.  It's an incredibly irresponsible OS structure.  So thanks!
"The difference between being fascinated with RPGs and being fascinated with the RPG industry is akin to the difference between being fascinated with sex and being fascinated with masturbation. Not that there\'s anything wrong with jerking off, but don\'t fool yourself into thinking you\'re getting laid." —Aos
Print
Go Up Pages1
User actions