weird iexplore.exe/internet access probs

Status
Not open for further replies.
bmxfreakrider

bmxfreakrider

G33K P0W3R!!!!
Messages
2,068
Location
HickTown, California (hesperia), and West Hollywoo
as soon as i turn my pc on, its downloadin or sendin crap to the internet....so i opened taskmanager, and iexplore.exe was open. i tried to end task, but it came back, soi searched for iexplore.exe, and denyed all for administrators, ended task and it went away. as soon as i gave full control back to administrators, it came back. sugestions?
 
heres a hijackthis logfile:

Logfile of HijackThis v1.99.1
Scan saved at 5:09:00 PM, on 9/13/2006
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Windows folder: C:\WINNT
System folder: C:\WINNT\SYSTEM32
Hosts file: C:\WINNT\System32\drivers\etc\hosts

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\System32\nvsvc32.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\WINNT\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINNT\explorer.exe
C:\Documents and Settings\USER\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.techist.com/usercp.php?s=
O1 - Hosts: localhost 127.0.0.1
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (filesize 63128 bytes, MD5 F17B2B264072B921FC66A0BE16626BAB)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx (filesize 844560 bytes, MD5 755AA1F85E3788C3C287FFA03CF58627)
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\System32\NvMcTray.dll,NvTaskbarInit (filesize 10000 bytes, MD5 1ED5274825CD1EEBBE102B9FF7C9EC31)
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install (filesize 1519616 bytes, MD5 7AC98888346124460CC78860A3C73DF3)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup (filesize 10000 bytes, MD5 1ED5274825CD1EEBBE102B9FF7C9EC31)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon (filesize 111376 bytes, MD5 9B2F5B9E745DEAAA57FB78329ED03061)
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (filesize 94208 bytes, MD5 149F53B6FEA3989CE8D4D8D010882FA6)
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm (filesize 646 bytes, MD5 89F88B5786ED82C3BD4E515B1B8D39D8)
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm (filesize 646 bytes, MD5 89F88B5786ED82C3BD4E515B1B8D39D8)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (filesize 3092480 bytes, MD5 5191B3AE89A93F815704CCC76B8467DE)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (filesize 3092480 bytes, MD5 5191B3AE89A93F815704CCC76B8467DE)
O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/poth_x.cab
O16 - DPF: {4EC8E993-32C1-47F5-A07A-5B0574655AD4} (WXcom Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/controls/ysftcntr/ysftcntr_current.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1156133044714
O17 - HKLM\System\CCS\Services\Tcpip\..\{A7E396E8-26F0-4988-BF96-C9E55781260A}: NameServer = 85.255.116.164,85.255.112.131
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.164 85.255.112.131
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.164 85.255.112.131
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.164 85.255.112.131
O21 - SSODL: IEFilter - {585F507C-CEAD-4C28-BE34-0AAF6103FED7} - C:\WINNT\system32\IEFilter.dll (filesize 36864 bytes, MD5 8C6257150F6F9957BB32F4BA231F68FE)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\System32\nvsvc32.exeC:\WINNT\System32\nvsvc32.exe
 
Status
Not open for further replies.

Similar threads

P
5G has arrived
Replies
1
Views
629
ShayWacky
ShayWacky
C
Major drops in internet speeds - PLEASE help
Replies
1
Views
2K
cctaylor88
C
K
Mouse Stutter at 100% CPU Usage NEED HELP
Replies
0
Views
2K
KhanG33
K
S
Psychos 'R' Us: A genuine tale of stalking!
Replies
2
Views
2K
Scissorman
S
P
Bitcoins?? and cryptocurrency....?
Replies
2
Views
2K
Sallymilr
Sallymilr
Back
Top Bottom