trez8289 said:Hello...
I was using Internet Explorer. And im guessing i got some spyware.
I now have programs that block it and clean my comp.
I also used Mozilla, but i want to fix the IE problem.
I read and did some of the suggested things from here:
http://www.techist.com/showthread.php?s=&threadid=16781
I used the CWShredder which works, but only temperelory.
Here is the file report:
Code:**** Run Keys **** RUN: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe RUN: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" RUN: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe RUN: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime RUN: [Steam] **** Browser Helper Objects **** BHO: [CNavExtBho Class] C:\Program Files\Norton AntiVirus\NavShExt.dll **** IE Toolbars **** TOOLBAR: [Norton AntiVirus] C:\Program Files\Norton AntiVirus\NavShExt.dll **** IE Extensions **** IEExt: [AIM] C:\Program Files\AIM\aim.exe IEExt: [Messenger] C:\Program Files\Messenger\msmsgs.exe **** Hosts File Entries **** HOSTS: 127.0.0.1 localhost HOSTS: 127.0.0.1 localhost **** IE Settings **** Default Page: [url]http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome[/url] Default Search: [url]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch[/url] Local Page: C:\WINDOWS\System32\blank.htm Search Bar: about:NavigationFailure Search Page: about:NavigationFailure **** IE Context Menu (Right click) **** IEContext: [&AIM Search] res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm IEContext: [E&xport to Microsoft Excel] res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 **** Layered Service Providers **** LSP: MSAFD Tcpip [TCP/IP] LSP: MSAFD Tcpip [UDP/IP] LSP: RSVP UDP Service Provider LSP: RSVP TCP Service Provider LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C9FC73D5-BC2A-4DD1-A3E7-625146E3F908}] SEQPACKET 4 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C9FC73D5-BC2A-4DD1-A3E7-625146E3F908}] DATAGRAM 4 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{84B88EB4-2B64-4363-8BA9-A57BACEF7F2A}] SEQPACKET 3 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{84B88EB4-2B64-4363-8BA9-A57BACEF7F2A}] DATAGRAM 3 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B7BF8C8F-7131-4347-AA4D-F8D8BB62AC10}] SEQPACKET 0 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B7BF8C8F-7131-4347-AA4D-F8D8BB62AC10}] DATAGRAM 0 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{AC59549C-102E-46D8-A50B-ACD48CA728A0}] SEQPACKET 1 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{AC59549C-102E-46D8-A50B-ACD48CA728A0}] DATAGRAM 1 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{70B7DC6D-ECF4-40F3-B6AB-4308203E68ED}] SEQPACKET 2 LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{70B7DC6D-ECF4-40F3-B6AB-4308203E68ED}] DATAGRAM 2 **** Blocked Control Panel Items **** BLOCKED: [ncpa.cpl] No BLOCKED: [odbccp32.cpl] No **** Downloaded Program Files **** DirectAnimation Java Classes [file://C:\WINDOWS\Java\classes\dajava.cab] Microsoft XML Parser for Java [file://C:\WINDOWS\Java\classes\xmldso.cab] {6414512B-B978-451D-A0D8-FCFDF33E833C} [[url]http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1094260656929[/url]] C:\WINDOWS\System32\wuweb.dll {8AD9C840-044E-11D1-B3E9-00805F499D93} [[url]http://java.sun.com/products/plugin/1.3.1/jinstall-131_04-win.cab[/url]] {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA} [[url]http://java.sun.com/products/plugin/1.3.1/jinstall-131_04-win.cab[/url]] {D27CDB6E-AE6D-11CF-96B8-444553540000} [[url]http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab[/url]] **** Custom IE Search Items **** SEARCH: [SearchAssistant] about:NavigationFailure SEARCH: [CustomizeSearch] [url]http://ie.search.msn.com/[/url]{SUB_RFC1766}/srchasst/srchcust.htm SEARCH: [SearchAssistant] about:NavigationFailure
I made a copey of the "Hijack This" file.
Here it is:
Code:Logfile of HijackThis v1.97.7 Scan saved at 10:09:16 AM, on 12/25/2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton AntiVirus\SAVScan.exe C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Hijack This\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:NavigationFailure R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:NavigationFailure R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:NavigationFailure R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank O2 - BHO: (no name) - {66298D1C-FF20-40EB-BF1C-67E8BFCC2AA4} - C:\WINDOWS\system32\aof.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: AIM (HKLM) O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [url]http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1094260656929[/url] O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [url]http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab[/url]
I'm good at computers but I dont know how to do that MSDOS Safe Mode stuff that, that one guy was saying.
Help is greatly apreciated. Thank You.
Thank You.