General discussion

? re: The Registry

Gateway 400 Select PC; Windows 98SE; 160MB RAM; IE 6 SP 1

I think the Registry is one of the most interesting places on the Computer ---- and also one of the most dangerous, if you don?t know what you?re doing. That?s why when I go there, I do nothing more than browse ? because I do not know very much about it. Guess I know enough to be dangerous and I sure don?t want to render my PC inoperable because of a keystroke I made. A couple of years ago, I did try to uninstall MGI PhotoSuite and was unable too. Members of this forum walked me through the process of getting rid of EVERY entry having to do with that program. It did involve going into the Registry and deleting an entry --- which did take care of the problem. That?s the only time I?ve ever done anything in The Registry.

A couple of months ago, I was browsing and came across an area that had a list of websites ? at least I think that is what they were. I was only in that area for a very short time because I didn?t know what it was. I do remember that many of those sites or whatever the list was looked like porn sites or ?bad? titles. At that time, I thought hum, can I go in there and remove those items.

Not knowing where I was; what these items were, etc., I left rather quickly before my face became anymore blushed than it already was. I do not visit porn sites and wondered how that junk got there. I do frequent signature forums at Delphi Forums. Other than that, about the only other places we visit is a newspaper site and a couple of places where I have images stored. Sometimes we do research on a product we want to purchase; but we are careful surfers.

We do get a lot of emails in the spam area. Our ISP provides a spam filter where spam email goes; however, I happen to be one that checks that area because once in awhile a legit email ends up in the spam area. Just like once in a while a spam email will slip past the spam filter. If I did not view these, our ISP deletes them automatically after so many days. Since I?m in that area anyway, I go ahead and delete myself. This is a different issue I think than whatever I saw in The Registry; but I wondered with all that junk in there, would that have anything to do with the terrible stuff that goes to our spam box.

Anyway, I cannot remember where I was in the Registry that I saw the list of things I?m thinking of. Would anyone know where I might have been? I would like to find them again and see what they are and then perhaps post more questions about what I find.

Thank you --- Julea

Discussion is locked

Follow
Reply to: ? re: The Registry
PLEASE NOTE: Do not post advertisements, offensive materials, profanity, or personal attacks. Please remember to be considerate of other members. If you are new to the CNET Forums, please read our CNET Forums FAQ. All submitted content is subject to our Terms of Use.
Reporting: ? re: The Registry
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Comments
- Collapse -
Clearing TypedURLs

Hi Julea,

The key is:

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\TypedURLs

You needn't have visited any of the sites to have the values entered into your registry, simply hitting an otherwise innocuous page that is, in whole or in part, supported by a porn site can result in the porn address being entered into your registry.

The fast way to get rid of them in Regedit is to select the TypedURLs folder icon and press F2; that will put you into rename mode. Press Control-C to copy the name to the clipboard and then Esc. Now press Delete and answer Yes to the delete query. Finally scroll up to the Internet Explorer folder, right-click and select New->Key. The key will be created selected for renaming. Press Control-V to paste the name in from the clipboard and press Enter.

John

- Collapse -
Clearing typed URLs

Is it reasonably safe to do this task and still have my PC come up in the morning (LOL)?

Thanks for your response John.

Julea

- Collapse -
A safety net. . .

Editing the registry is not that hard. As long as you stick to entries like you are looking at. But a safety net is easy to unfurl.

With the registry open, make sure the first entry on the left is highlighted, it should be the My Computer. At the top, open File, and click Export. Choose a destination filder, or just leave it in the root directory. I have created a folder called registry_backup for my backups. Choose a name for the file (not the extension, just a name), I use backup. Export the registry. You now have a copy of a properly working registry.

If the worst happens, you can reboot into safe mode, open regedit, click File, Import, find your backed up file, and import it. Done, back to a good version.

Don't ask me how I know all this. Wink

Wayne

- Collapse -
"The registry in Win9x"

1. The registry is backed up daily for the last five days in Win9x (default set in the BackupDirectory key in SCANREG.INI).

2. The compressed x.CAB files (rb00x.cab, where "x" can be 0 to 5) are stored in the \SYSBCKUP folder by default but you may set this to anywhere you want. When the computer is booted each new day, the next number is created and after the default number (5) is reached, the older file is replaced.

Note: Increasing the number of stored backups may be useful but be aware that they require a lot of drive space. Even though the backups are stored in compressed form each could still require between 700kb to a couple of megs or more. If space on a drive becomes critical, you can edit SCANREG.INI and change the default to a smaller number or change the default location to a different drive, besides adding other files to it (Use Help Scanreg for further information).

Caveat: Setting the "Backup=" line to 0 (zero) in the SCANREG.INI file will circumvent Windows 98 from backing up the Registry totally. However, if the Registry isn't being backed up and this is not the cause, please read the Microsoft Knowledge Base article, subject "Registry Is Not Backed Up Automatically at Startup (Q198864)."

3. If the box labeled "ScanRegistry" is disabled in the "Startup" tab menu (System Configuration Utility (MSCONFIG)), the system registry will not be backed-up during boot.

4. From the MS-DOS prompt any of the backups can be restored, [Q184023]. Boot to the command prompt and type Scanreg /restore and then press enter. Follow the directions to select which backup you want based on date saved.

5. To perform a manual backup, click Start, Run, type scanreg, press Enter, and then follow the prompt.

- Collapse -
Using SS+D ?

Using the immunize feature?

If so that will place a whole bunch of blocked sites in the reg.

I don't use the immunize feature so I can't tell you the location.

- Collapse -
What "Bob" is saying . .

1. Hypothetically, you'll find that the S&D Immunization feature entries in the system registry equals approximately 44 lines of addresses and at least that many values. Please note in addition should you decide to un-immunize these addresses, the values are not removed only nulled which isn't a problem -- just stating the fact.

2. Considering SpywareBlaster's feature for Internet Explorer protection . . . and the Restricted Sites protection is . . ., it adds approximately 1,400 addresses and probably that many or double in value lines.

3. If concerned and specifically desire to see an example in your computer's registry, -- I'm only pretty sure it will be there provided the above features have been enabled, and you can step further through the Domains or History or ActiveX Compatibility address(s) on your system to see more. To review the captured information in text file format for the two subjects, use the hyperlinks:

a. "S&D" (The approach for this software instead of detecting or removing targets, it inoculates a computer from executing certain software, stops you from downloading some types of parasite, and stops other things from working)

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com

b. "SpywareBlaster"

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\ActiveX Compatibility\{00000000-0000-0000-0000-000000000000}

and

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P\History\ad08.focalink.com

Note: "Registry fixes" which you may find useful at the S&D site are:

Spybot-S&D Wizard disable
Spybot-S&D SDHelper uninstall
Spybot-S&D system start run entry (uninstall)
Spybot-S&D full settings removal
Context menu for DLL files (install)
Context menu for DLL files (uninstall)
Internet Explorer Settings lock (install)
Internet Explorer Settings lock (uninstall)

4. Further, I do not know what the circumstances are IF/when using Norton but I assume from the information published that prevent HTML strings and/or specified pop-up or pop-under ad windows items, they are most likely written to the system registry also which may compound situations, "Norton Internet Security or Norton Personal Firewall."

- Collapse -
OK all --- thanks for info -- I'll take a look at what

I have from you all ----- then decide if I really do want to do this (LOL). I may get cold feet!

I do appreciate your responses and I've copied and pasted all the info to "digest."

Thanks again.

Julea

- Collapse -
Julea, Read Bob B. post about Spybot BEFORE
- Collapse -
Tks Roddy --- will do ---- I did go into

The Registry this morning just to "browse" some more. I tried following the path that John provided ---

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\TypedURLs

I have no such folder -- i.e., TypedURLs. I get as far as the IE folder and there is no Typed URLs folder.

I think I'm going to leave well enough alone. I do use Spybot and feel good about it. I think it's doing it's job --- especially now that I know about the immunize part. I used for several months before I knew I had to immunize -- immunize twice in fact. (LOL)

Anyway, guess I'm just curious more than anything. Mainly I'd remembered seeing all that junk stuff -- bad stuff -- somewhere in the Registry and didn't like that. I probably shouldn't have been snooping around anyway. It might bite me!

I probably won't "react" as I'm really uncertain about all this stuff with The Registry. I do back up the registry periodically however. Not sure I would know what to do with it if I had to use it. I know Coryaphus discussed that in his post; however, even that is an unknown for me.

Thanks for your help.

Julea

- Collapse -
(NT) (NT) You're welcome Julea. :D
- Collapse -
Julea this is the key

(h-key current users\software\microsoft\windows\current version\Internet settings\zonemap\domains. This subkey has com org net and other ext entries that have been identified as spyware and just plain old web sites that are no longer being used.

Bob Profits answer to this was that it is part of your spyware protection from Spybot.

I did not like the items being in the registry but left them along per his recommendations.
HTH
Ray

- Collapse -
(NT) (NT) Thanks Ray 4 your info -- I'm done with this one!

CNET Forums

Forum Info