Home

About Us

Contact Us

Product List

Service List

Calendar

Project List

Employee List

Related Links

Downloads

Old Comp-Tu Website

Click Here to go to the Recommended Videos

101 Recipes from God’s Garden

Celebrate Recovery!

Comp-Tu, Computer Technical Support and Consulting

Let me service your computer and you will get more than just a repaired machine.

Remote Control Software

 

Just follow these instructions exactly as typed:

 

Use Internet Explorer

Go to TeamViewer

 

Click run.

Click run.

Click next.

Click the little circle in front of Personal / Non Commercial Use

Click next.

Place a check mark in the bottom two license agreement boxes.

Click next.

Click next.

Click next.

Click finish.

(Note: If a box comes up asking you if you want to unblock, please do so.)

Leave the program open that pops up, so long as it remains open, I can get in.

 

The only thing I require now, is the ID and password.  They are in blue located in the program that was launched.  Please email that information to me and I will take control as time permits.

Related Links

To contact us:

Phone: 951-244-2718

Fax: 951-244-9768

E-mail: comptu@comptu.com

Disabled - The following is a list of Services that you can disable on most systems:

Disable Alerter
Disable Distributed Link Tracking Client
Disable Help and Support - (If you use Windows Help and Support leave this enabled)
Disable Indexing Service
Disable IPSEC Services
Disable Messenger - (Shoot the Messenger and installing SP2 or higher will disable this)
Disable Portable Media Serial Number - (Leave enabled for use with security dongles)
Disable Remote Registry Service
Disable Secondary Logon - (Required to use the "Run As" feature)
Disable SSDP Discovery Service - (Unplug n' Pray will disable this)
Disable Telnet
Disable Upload Manager

Automatic - The following is a list of Services that should always be set to automatic:

Automatic Application Layer Gateway Service - (Required by the Windows XP Firewall)
Automatic Automatic Updates - (Required by Windows Updates)
Automatic Background Intelligent Transfer Service - (Required by Windows Updates)
Automatic COM+ Event System - (Required by various applications)
Automatic Cryptographic Services - (Required to confirm the signature of Windows system files, protected root services and key services)
Automatic DCOM Server Process Launcher - (Required by the Disk Defragmenter)
Automatic DHCP Client - (Required for Cable/DSL connections and routers)
Automatic DNS Client - (Improves Internet performance)
Automatic Event Log - (Required by Windows and cannot be stopped)
Automatic Logical Disk Manager - (Required to manage and update your hard drives)
Automatic Network Connections - (Required by network connections)
Automatic Plug and Play - (Required by your system hardware, Never Disable This!)
Automatic Print Spooler - (Required by printers)
Automatic Protected Storage - (Required to protected sensitive data and to prevent access by unauthorized services, processes, or users.)
Automatic Remote Procedure Call (RPC) - (Required by Windows, Never Disable This!)
Automatic Security Accounts Manager - (Required to store security information for local user accounts)
Automatic Security Center - (Notifies you of your Firewall, Automatic Updates and Virus Protection status)
Automatic Shell Hardware Detection - (Required by the AutoPlay feature)
Automatic System Event Notification - (Required by various applications)
Automatic System Restore Service - (Required by the System Restore feature)
Automatic Task Scheduler - (Required by the Windows Prefetcher and other applications like Norton AV, Never Disable This!)
Automatic Terminal Services - (Required by the Security Center Alert feature)
Automatic Themes - (Required by the new look of Windows XP)
Automatic Windows Audio - (Required for sound)
Automatic Windows Firewall/Internet Connection Sharing (ICS) - (Required by the Windows XP Firewall)
Automatic Windows Management Instrumentation - (Required by Windows, Never Disable This!)

Network Services - The following is a list of Services that are required on home networks and LANs:

Network Services Computer Browser - (Locates local computers and resources on a LAN)
Network Services DHCP Client - (Required for Cable/DSL connections and routers)
Network Services Network Connections - (Required by network connections)
Network Services Server - (Required for network shares and managing local user accounts)
Network Services TCP/IP NetBIOS Helper - (Required for NetBIOS name resolution)
Network Services Wireless Zero Configuration - (Required if you are on a wireless network)
Network Services Workstation - (Required for access to LAN shares and servers)

Services: Disabled  / Automatic

How to install Itunes in a Windows XP 64-Bit System

How to Handle Scanfix Infection

 

1.         

Step One: Calm Down, Assess the Situation

The call comes in, the ground rules are laid, and of course you're in the middle of something really important. No, you can't beat the user to death with the severed limbs of the CEO, CIO, or other department heads. But you can give them a death-stare that'll make em wish you did!

Assess the situation. Determine what kind of virus it is you're dealing with. If it is the Scanfix/BackUp virus, continue along. If it's not, continue anyways, some info here might be of use.                 Calm-down-bro_big

2.         

Step Two: Registry Boogie

Oh no! The Hard-drive's been wiped clean!

Not really. 
It may look like the desktop was nuked, and all the programs were wiped, but everything has just been (within a matter of seconds mind you) set to hidden. Now it's you're task to find it all. Start the tower up, mash the F8 button and enter SafeMode with Cmd prompt.

First - The Desktop 
Run the regedit command in the Cmd Prompt. There's a nifty registry key that allows you to hide the desktop. This is usually located under 
HKCU -> Software -> Microsoft -> Windows ->Policies -> Explorer -> NoDesktop 
wherein the value will be set to 1. Set it to 0.

Second - Task Manager 
The task manager also gets disabled in the (you guessed it) registry editor. Navigate to the Policies folder once more but click on System ->DisableTaskMgr instead. Set this value to 0 as well.

For those of you who no longer have the %Temp%\Smtmp folder, you will not be able to use Unhide to restore your Start Menu items. With this in mind, I have created some scripts to restore the default Start Menu for specific versions of Windows that I have access to. You can view the available versions below. I will be adding more as time goes on.

Windows XP Pro 32-bit US English - This should also work in other 32 bit version of Windows XP but I have nothing to compare against.
http://download.bleepingcomputer.com/grinler/fakehdd/winxp-pro-32bit-sm-reset.exe 

Windows Vista 32-bit US English
http://download.bleepingcomputer.com/grinler/fakehdd/vista-32-sm-reset.exe

Windows 7 32-bit US English
http://download.bleepingcomputer.com/grinler/fakehdd/win7-32-sm-reset.exe

Windows 7 64-bit US English
http://download.bleepingcomputer.com/grinler/fakehdd/win7-x64-sm-reset.exe

Please let us know if you have any questions. 

 

Third - Suspicious looking stuff 
Everyone knows viruses like to hide little versions of themselves within the registry in case you delete the original .exe file. That way after a restart the fun times will commence aaallll over again (I've had this happen and had several hours of work reduced to nothing for not checking the registry completely). If you remember the name of the program, search for the file name in the registry under Edit -> Find. Continue to erase any trace of the program within the registry. 
Now sometimes, to be an even bigger pain, the virus will leave its little spawns in places under random registry names (a search wont do you much good here). Generally, the best places to look are HKCU/HKLM > Software > Microsoft > Windows > Run/RunOnce. You can run a registry cleaner later when access to folders and files becomes available.

Now restart             Regedit_big

3.         

Step Three: Hidden in Plain Sight

Where'd the files go?!?

They're still there, just set to hidden. Every folder had its attributes changed to hidden in a flash of an instant the moment the user clicked that .exe file and unleashed hell. Great thing is it's easy to unhide them. You can either download and run unhide.exe or manually go in like a boss.

First - Start Menu 
So their start menu is completely blank. That's okay, in the start menu's properties, select "Customize" and just tick the boxes/bubbles of things you want displayed. This will bring up the utilities (Pictures, Documents, Search, Run, etc) but the programs are still missing...Not a problem!

Second - Start Menu shortcuts 
Those have actually been deleted. But that's okay! They still exist. They're all under the smtmp file located in %SystemRoot%\Documents and Settings\%username%\Local Settings\Temp\smtmp\1,2,4 <-(these numbers are individual folder names which hold all of the startup menu shortcut files). Copy and paste them into the Start Menu folder in %SystemRoot%\Documents and Settings\%username%\Local Settings\ Start Menu and tadah! The Start Menu has returned!

Third - Hidden Files 
The easiest way to go about this is to unhide all hidden folders (Control Panel -> Appearances and Themes -> Folder Options -> View (tab) -> Show all hidden files/folders). Once you've done this, navigate to all the folders that should be visible and open their properties. Uncheck "Hidden" in the attributes and click "Apply". A message will ask if you wish to apply this change to all sub-folders within this folder, which you do. Continue until all files are restored. This step will vary in length depending on how much information is stored on the user's computer.       

4.         

Step Four: Last Minute Details

You've taken care of all of the major issues. The computer runs spiffily and nothing's exploded in your face. But just to be sure you should always run some last minute scans/registry cleaners to be sure. Also, a using the search function to find any stray bits of the virus program is advisable (such as links, temp files, etc). At this point, if everything has gone well, I DO NOT recommend a ComboFix. That's just overkill on top of a stack of overkill flapjacks with some overkill truffle butter. Also be sure to run msconfig and check under Startup and Services to make sure nothing suspicious is still lying around.                 Kaspersky-online-free-anti-virus-scanner_big

5.         

Step Five: Celebrate

Because now, for the next few minutes you will look like a god.

Then everyone will go back to abusing your time and taking you for granted. 

Conclusion

So hopefully I've managed to save you quite a bit of time spent troubleshooting and searching. The only reason I finally decided to make this how-to was because I've hit this virus on multiple occasions within the last month; two of which required I go through the motions and save everything (the first time this virus struck I was stuck repairing a computer for 4.5 hours, second time around, 45 mins tops). 
If you have any other questions, leave ‘em in the comments or message me. 

New Verizon Email Settings

Online scanners

 

Eset Online Scanner

PC Pitstop Online Scan

Trend Micro Online Scan

Panda Software Online Scan

BitDefender Online Scan

FSecure

Kaspersky Online Scanner

Microsoft Safety Scanner

Symantec Online Scan

CoolWebSearch Online Scan & Removal

Quick Parasite Online Detector

Browser Security Online Check

Security Vulnerabilities Online Scan

Security Shield Online Port Scanner for 

PCPitstop Full Online Scanning and Testing

Freedom Online Scanner

Trojan Horse Scanner 1

Trojan Horse Scanner 2

Trojan Horse Scanner 3

Vulnerability Online Scan 1

Vulnerability Online Scan 2