| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 50197 | 2004-10-13 19:20:00 | NZ Herald/Stuff 127.0.0.1 problem | skinner (464) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 280872 | 2004-10-17 01:01:00 | Would it help if I posted my HiJack this log file ? Cheers Skinner |
skinner (464) | ||
| 280873 | 2004-10-17 01:33:00 | >Would it help if I posted my HiJack this log file ? it wouldn't hurt ;-) |
tweak'e (174) | ||
| 280874 | 2004-10-17 01:35:00 | Common problem with web-accelerator software, and as mentioned ad blocking software as well. | whtafo (156) | ||
| 280875 | 2004-10-17 01:38:00 | Here tis : Logfile of HijackThis v1.98.2 Scan saved at 2:36:59 PM, on 10/17/2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVG6\avgserv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Grisoft\AVG6\avgcc32.exe C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe C:\Program Files\Windows SyncroAd\SyncroAd.exe C:\Program Files\Windows SyncroAd\WinSync.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O4 - HKLM\..\Run: [AVG_CC] C:\Program Files\Grisoft\AVG6\avgcc32.exe /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe O4 - HKLM\..\Run: [Windows SyncroAd] C:\Program Files\Windows SyncroAd\SyncroAd.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - public.windupdates.com a9fea1ab5417ebf4567652938024c35ae0e009695da9ede81e 04a327d6562dfd5f504cd639ebbf2e73:e135dfcf3e8658d4c 1290992e9c18074 O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - go.microsoft.com O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - messenger.zone.msn.com O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - mirror.worldwinner.com O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - messenger.zone.msn.com O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - messenger.msn.com O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - messenger.zone.msn.com O17 - HKLM\System\CCS\Services\Tcpip\..\{EB18AD57-6DC7-4703-9762-D31E97017835}: NameServer = 202.27.158.40 202.27.184.3 |
skinner (464) | ||
| 280876 | 2004-10-17 01:51:00 | have a look here (forums.majorgeeks.com) and here (securityresponse.symantec.com) | tweak'e (174) | ||
| 280877 | 2004-10-17 02:36:00 | Well, I've gotten rid of syncroAd but still no luck. Cheers Skinner |
skinner (464) | ||
| 280878 | 2004-10-17 04:32:00 | @ skinner This might help. Looking at your hijack log, it appears you have Sun's JIT java engine installed on your pc and it seems be set to run automatically whenever you log on to your pc. Go into the control panel and double click on the java icon. (I'm guessing the rest since I ditched that iteration of Sun's just in time java engine some time ago, so bear with me, I'm trying to recall what I vaguely remember about the java control panel!) I think there is an option to allow you to clear the contents of the cache folder. If so, and if there are indeed files within this directory, clear the contents (the sort of files found in this folder just represent the files that were downloaded onto your pc when you visted sites containing java applets) I'm only suggesting this because there's a slim possibility that one of these cached files might be interfering with your ip/dns resolutions. While your at it, if java is set to run automatically at start up, turn it off. It's only necessary when you visit java sites, your browser should know to fire it up anyway. If there is no option to turn it off, then it might be running as a service. In which case, access your services console and set it to run manually. |
blank_harry (1661) | ||
| 1 2 | |||||