How much does your brother know about computers? Does he have your password or the password to an administrator's account? There are varying levels of invisibility. For example, he could create a user than delete it, leaving the data behind and making it unreadable. That's easy to detect if you know what you're looking for.
You can try changing your password and see if that makes a difference.
I don't know how much he knows about computers. His windows user profile is a limited account just like my user profile is limited account.
I am the Administrator and I am the only one who has password for this account.
Whether he knows someone who can do this for him is another thing.
How can a limited user account create another profile and leaving behind unreadable data?
How can you detect this? I would like to make sure that he has a lot of limitations on his account.
That is, free music downloads. There is no category for that in NIS 2009 Add-On Pack (Parental and Privacy Control).
And no porn. Total grossness!! There is a lot of viruses from those sites on my computer that NIS 2009 is not detecting. It seems that when I key in my user profile for Administrator or my user profile, I have to type it in twice even though I click on the box where I have to type in my password. I find that I am typing in my password and see that it is not being keyed into that box I just clicked on.
Well, I have to go now. Housesitting duties call and I don't want to run into a black or a grizzly bear with my Havanese dog.
I don't know how much he knows about computers. His windows user profile is a limited account just like my user profile is limited account.
I am the Administrator and I am the only one who has password for this account.
Whether he knows someone who can do this for him is another thing.
How can a limited user account create another profile and leaving behind unreadable data?
How can you detect this? I would like to make sure that he has a lot of limitations on his account.
That is, free music downloads. There is no category for that in NIS 2009 Add-On Pack (Parental and Privacy Control).
And no porn. Total grossness!! There is a lot of viruses from those sites on my computer that NIS 2009 is not detecting. It seems that when I key in my user profile for Administrator or my user profile, I have to type it in twice even though I click on the box where I have to type in my password. I find that I am typing in my password and see that it is not being keyed into that box I just clicked on.
Well, I have to go now. Housesitting duties call and I don't want to run into a black or a grizzly bear with my Havanese dog.
Thanks again in advance for your help.
It sounds like you have malware that keeps track of the keys you strike.
Or that you have a false log-in screen. One log-in screen is fake but is a replica of the real one. You enter your password and it traps and save it, either before or after you encounter the real log-in screen.
This could be software that your brother installed on the machine. I don't know enough about this to tell you how to detect it or remove it -- if it really is there.
I just came back from housesitting and found that the completed Full Scan results showed a smaller amount of files scanned than yesterday.
So they must have taken off the free music download program and music. I saw the files in my Command Prompt search yesterday. So I will check again later on today for those files.
I have to check later on with the log-on screen whether I have to re-type my password in or not. I will let you know what happens if I am still experiencing log-in problems.
Adware/Spyware NOT detected by NIS
I also found a way to delete the Dell/Google junkers that came with this computer. I found out about this adware/spyware file (BAE.dll)through my searches yesterday and today through a site called PCDecrapifier.com. So hopefully this Browser Address Error Redirector file is removed.
I uninstalled the SearchAssist and URL Assistant through the Add/Remove Program function. I just checked to see if the BAE.dll (Application Extension) was truly uninstalled and I still see the file located in my Program Files with its own folder. Apparently, from the information on the Properties section of the file, it came from Dell, Inc.
1) Can I delete this BAE.dll file?
2) Will deleting BAE.dll wreck my computer? I don't know if it is associated with other core Windows files or programs.
Thanks again for your help and gotta run. I smell cake cooking.
I also found a way to delete the ...Dell/Google junkers that came with this computer. I found out about this adware/spyware file (BAE.dll)through my searches yesterday and today through a site called PCDecrapifier.com. So hopefully this Browser Address Error Redirector file is removed.
I uninstalled the SearchAssist and URL Assistant through the Add/Remove Program function. I just checked to see if the BAE.dll (Application Extension) was truly uninstalled and I still see the file located in my Program Files with its own folder. Apparently, from the information on the Properties section of the file, it came from Dell, Inc.
1) Can I delete this BAE.dll file?
2) Will deleting BAE.dll wreck my computer? I don't know if it is associated with other core Windows files or programs.
Thanks again for your help and gotta run. I smell cake cooking.
I don't use PCDecrapifier myself because I've read that it is too aggressive; so it is good to ask about it.
You can do a further google search for BAE.dll.
If it's sitting alone in the folder, I would guess it is okay to delete.
Even if you delete, you will still be able to undelete it in the future if you find you need it.
So, if it were my computer, I would delete it and immediately reboot to see if there are any problems. If my computer behaves okay for a week or two, then I would delete it from the recycle bin.
Concerning activity showing up on view web history in parental controls:
That is how it seems to be working on my computer, on my kids accounts,only blocked items are shown. Also that is what it says under the help section in Parental Controls. The help section explains alot about how Norton's parental control works. After you log onto parental controls and the parental control user list screen appears, click on the help icon in the upper right.
Also, you said this started after May, 6. If you still have the history before May 6, does it show all internet activity or do only blocked items appear?
When I look at my kids activity in the view web history in parental controls, it shows the date/time, website, and the category( reason for it being blocked) it doesn't show any normal internet activity.
Message Edited by TooStrong on 05-10-2009 03:20 PM
Message Edited by TooStrong on 05-10-2009 03:28 PM
Message Edited by TooStrong on 05-10-2009 03:39 PM
I logged in to my surfing only profile after May 6-8, 2009, and these days do not show my log in activites. But, of course, I do not access the blocked sites except trying to get to the Microsoft page with "IE" in its path with no success. Now I am finding that I cannot change a folder name that I log into as as Administrator. I notice that there are two Administrators as it shows in my post of today's date in this thread and I cannot change the folder name under Documents and Settings:
was made as a Bookmarked site, which I did not do.
Yesterday, I deleted a folder called: c:\Program Files\BAE with a BAE.dll Application Extension in it. This morning I deleted this file in the Recylce Bin. Whether these two instances are connected or not is another thing.
The behavior you're describing sounds viral. Redirection, program degradation -- all these are symptoms of malware. Remind us, please, of what scans you have already tried:
I login to my Administrator account and do the following:
Dear Not,
The behavior you're describing sounds viral. Redirection, program degradation -- all these are symptoms of malware. Remind us, please, of what scans you have already tried:
NIS full system? Daily before I surf.
NIS full system in Safe Mode? I have not done this. How do you do this type of scan? I did log in in Safe Mode after hitting F8 the other day and I noticed that the screen was very large and the Administrator Login Screen did not ask for my password as well.
Malwarebytes? No. Don't know how.
Malwarebytes in Safe Mode? No.
BTW, there are two Administrators: One in my Name and Another called Administrator.
"Administrator" is a status as well as a user. You should not be able to log in with the user name "administrator" unless you are in Safe Mode.
Your computer is completely vulnerable if the "administrator" user is not password protected. Anyone can boot in Safe Mode, access through administrator and change the status of any other user.
I am surprised that you do a full system scan daily before you surf. Full system scans are time-consuming and can take hours if you have a lot of files on your computer, which most people do. Are you sure you mean "full system scan"?
You do exactly what you said to get into Safe Mode and then launch a full system scan from there.
Malwarebytes is a free scanning program that we use as a backup to "scan-on-demand". In other words, it is not active but only used as we require it. You can get it from their website.
I'm sorry I can't help you with your issues, I am only a computer novice. All I can tell you is what shows up on my computer under parental controls,, and hope that helps, some.
"Administrator" is a status as well as a user. You should not be able to log in with the user name "administrator" unless you are in Safe Mode. When I hit F8 to get to Safe Mode Login only the Administrator and another user's name (I can't recall whose name) displays. When I click on the Administrator Log In, it logs in right away without asking for my password.
Your computer is completely vulnerable if the "administrator" user is not password protected. Anyone can boot in Safe Mode, access through administrator and change the status of any other user. I cannot figure out where this "Administrator" in Safe Mode takes me to on my computer. Is this "Administrator" my Administrator when I log in as Computer Administrator in regular Log In Mode?
I am surprised that you do a full system scan daily before you surf. Full system scans are time-consuming and can take hours if you have a lot of files on your computer, which most people do. Are you sure you mean "full system scan"? When I click on the NIS 2009 Tray Icon, a NIS window pops up and where it says Scan Now, I select Run Full System Scan in the dialog box. Then I take I feed my pets myself then walk my dogs while this scan is running. This scan usually takes about 1 hour and 45 minutes to run.
You do exactly what you said to get into Safe Mode and then launch a full system scan from there. This is where the Administrator and another user (I can't recall if it is my name or my brother's log in name displays here) shows up. When I click on the Administrator Log In, it does not ask for my password.
Malwarebytes is a free scanning program that we use as a backup to "scan-on-demand". In other words, it is not active but only used as we require it. You can get it from their website. Can you give me address of this site?
I'm sorry I can't help you with your issues, I am only a computer novice. All I can tell you is what shows up on my computer under parental controls,, and hope that helps, some.
At the moment there are three users on your computer:
Administrator
You
Your Brother
When you do a normal log-on, you are given two options: You or Your Brother. Each of these users are password protected.
When you do a Safe Mode log-on, you are also given two options. These are the two users who have administatrive rights:
You or Administrator. You has a password protection. Administrator does not.
If you really want to keep others from having access to your computer:
Log-on in Safe Mode, click on Run>Settings>Control Panel>Users>Change an account
Then click on Administrator and Passwords and assign the Administrator account a password. Write this down somewhere safe and permanent. This is your ultimate access to your computer in times of trouble and you don't want to lose the ability to access this account. XP has a protective measure built in where you can create a password recovery floppy if your computer takes floppies. I don't know if it offers one for USB memory sticks (perhaps it does).
Again, I will try and answer your questions in order. I will be in red replying to the concerns. I hope this helps.
NotPleasedAtAll wrote:
mijcar wrote:
"Administrator" is a status as well as a user. You should not be able to log in with the user name "administrator" unless you are in Safe Mode. When I hit F8 to get to Safe Mode Login only the Administrator and another user's name (I can't recall whose name) displays. When I click on the Administrator Log In, it logs in right away without asking for my password. Then your Administrator account has no password setup for it.
Your computer is completely vulnerable if the "administrator" user is not password protected. Anyone can boot in Safe Mode, access through administrator and change the status of any other user. I cannot figure out where this "Administrator" in Safe Mode takes me to on my computer. Is this "Administrator" my Administrator when I log in as Computer Administrator in regular Log In Mode? This is the same account, so the answer is yes.
I am surprised that you do a full system scan daily before you surf. Full system scans are time-consuming and can take hours if you have a lot of files on your computer, which most people do. Are you sure you mean "full system scan"? When I click on the NIS 2009 Tray Icon, a NIS window pops up and where it says Scan Now, I select Run Full System Scan in the dialog box. Then I take I feed my pets myself then walk my dogs while this scan is running. This scan usually takes about 1 hour and 45 minutes to run. This is a normal scan time for a full system scan that happens every day. Good practice; good for you.
You do exactly what you said to get into Safe Mode and then launch a full system scan from there. This is where the Administrator and another user (I can't recall if it is my name or my brother's log in name displays here) shows up. When I click on the Administrator Log In, it does not ask for my password. Then, again, the Administrator account has no password login requirement or no password for the account. Does it do this in a regular boot up?
Malwarebytes is a free scanning program that we use as a backup to "scan-on-demand". In other words, it is not active but only used as we require it. You can get it from their website. Can you give me address of this site? The current address is www.malwarebytes.org . Clicking on the Free version download will take you to MalwareBytes authorized download place (could be their web site or another such as CNET.com or Download.com (which I just checked out and see is now download.cnet.com ) . Some companies will use a certified offsite hosting service to help lessen the load on the company's servers. CNET has been doing this service for many years and is very reputable is hosting other companies downloads. This is not a hijacking in this case (just so you won't worry) .
Thanks Mijcar and everyone in this forum.
I hope this helps you understand some more about your computer system. Please logon to your Administrator account in a normal boot up and Go To Users in the Control Panel. There you will find the setting for the Administrator account. Please check that it has a password. If not ad one to the account by using the Change the Password for this Account wizard. When it asks for the current password leave it blank and just enter the new password you want to use.
... Please logon to your Administrator account in a normal boot up and Go To Users in the Control Panel. There you will find the setting for the Administrator account. Please check that it has a password. If not ad one to the account by using the Change the Password for this Account wizard. When it asks for the current password leave it blank and just enter the new password you want to use.
Dbris, once a user has been created, Administrator will no longer be accessible through normal boot. You can only get there through Safe Mode.
I saw the files in my Command Prompt search yesterday. So I will check again later on today for those files.
.