| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 89757 | 2008-05-11 00:12:00 | IE launches itself with spam sites | bruce666 (8727) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 668220 | 2008-05-25 05:12:00 | Yeah, I'm a Linux lover, wainuitech. Is there anything wrong with that? I've never had to scan my computer for trojans or spyware... What's to love about Windows (I guess you could be called a Windows lover?). Spartan 860, I also use Opera alongside Firefox - it's a great browser, too. Both are way ahead of MS's low-grade offerings. As a commercial web developer, I've formed a deep hatred for MS browsers which don't adhere to standards and are a thorn in the side of all web developers worldwide who want to support web standards. As such, I recommend to all users that they at least try Firefox. Firefox 3 (which I have been using for months in beta) is an outstanding browser. So is Opera - both are running on my machine at the moment. In my business, my colleagues and I also support dozens of businesses who primarily use MS Windows on the desktop. Most of our customers' employees now use Firefox... and we haven't installed it for them. As soon as one person at a company starts using it and does stuff like installing a few key add-ons, the rest do, too. It's simply better than IE. Cheers, Dave The reply from Jamuz says it all - what I hate is as soon as someone has a problem some Other OS automatically some people suggest they swap to a different OS, I have nothing against Linux, I use it all the time but I dont go suggesting people change. Thats not helping the poster one bit. Edit: just read Spartons Reply :thumbs: - I use IE7 Pro and find I can do a lot more with that than firefox, but I use both depending on what I am doing. All the links he mentions are in My Sig - Here is Nod32 Trial download (www.eset.com) & HijackThis (www.trendsecure.com) |
wainuitech (129) | ||
| 668221 | 2008-05-25 05:13:00 | I personally, find IE 7 to be better than Firefox 2.0, and its not far behind Opera, thanks to some great addons. As for Windows vs Linux, I'd take Windows anyday (as long as it isnt before XP), since almost no games work properly on Linux. Also, linux is troublesome, I mean, when is the last time you had to go into a command prompt equivalent to install something, or to make the OS show the proper res for your monitor. Anyone who is smart enough will not get infected with viruses and spyware anyway. /end rambling Now back to topic Just post a hijackthis long, and wait for speedy, or download spybot search and destroy, trial NOD 32, spyware doctor starter edition, and then scan with them one at a time. |
SPARTAN 860 (2618) | ||
| 668222 | 2008-05-25 11:45:00 | SPARTAN 860 & wainuitech, You guys are quite right . Humble apologies for suggesting such a worthless alternative to a Windows user . For the record, SPARTAN 860, I guess I'm too busy implementing commercial open source solutions on Linux to have time for games . . . And, I agree that FF2 isn't ideal . FF3, however, makes up for all of FF2's memory hogging tail dragging . I've just set up two KVM virtual instances of Win XP sp3 (one with IE6 and the other IE7) on my Linux laptop to make testing websites in various IE variants easier . I just wish they supported web standards like all the other browsers seem to - IE6 is absurdly buggy . I guess we'll just have to wait to see what MS do with IE8 . . . Guess my colleagues and I'll have to set up more XP virtual machines to run it, easy to do in Linux . Right, back to work - good luck to all of you . |
dlane (11847) | ||
| 668223 | 2008-06-06 11:33:00 | Hi all, and sincere apologies for being away so long. I've read everyone's posts. Yes, I still have IE on my computer although for years I've used only Opera. It's just that I do a lot of research in my work and have got so used to Opera it's second nature. When I got it, it was so much better than the then version of IE, especially the popup blocker and tabbed browsing, that I never gave the matter another thought. Maybe it's been surpassed, but I'm too old to learn a new trick. Here's the HijackThis log. I'm also working through the suggested cleanup applications. Thanks to everyone for the help. ============ Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:34:18 p.m., on 6/06/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Symantec Shared\ccProxy.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\WINDOWS\system32\CTSvcCDA.EXE C:\Program Files\Norton Personal Firewall\ISSVC.exe C:\WINDOWS\runservice.exe C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\system32\UAService7.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9 BP.EXE C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\IPWireless Inc\IPWireless PC Software\UEStatus.exe C:\Program Files\Opera\Opera.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\explorer.exe C:\PMAIL\Programs\winpm-32.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.iesearch.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: Norton Personal Firewall - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\s wg.dll O3 - Toolbar: Norton Personal Firewall - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [EPSON Stylus CX3500 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9 BP.EXE /P26 "EPSON Stylus CX3500 Series" /O6 "USB001" /M "Stylus CX3500" O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [ avast! ] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [stupid creative poll axis] C:\Documents and Settings\All Users\Application Data\Memo save stupid creative\Rect Phone.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [C:\WINDOWS\system32\kdbog.exe] C:\WINDOWS\system32\kdbog.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe O4 - HKCU\..\Run: [MessPing] C:\DOCUME~1\BRUCEF~1\APPLIC~1\ABOUTB~1\junk mix 2.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: PIMEX Reminder.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - www.fileplanet.com O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - picasaweb.google.co.uk O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com O17 - HKLM\System\CCS\Services\Tcpip\..\{14BE5FDA-EF42-4BD5-9718-791127E6E9AC}: NameServer = 202.74.207.10 202.74.207.100 O17 - HKLM\System\CS1\Services\Tcpip\..\{14BE5FDA-EF42-4BD5-9718-791127E6E9AC}: NameServer = 202.74.207.10 202.74.207.100 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTSvcCDA.EXE O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Personal Firewall\ISSVC.exe O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe O24 - Desktop Component 0: (no name) - www.lionking.org -- End of file - 9790 bytes |
bruce666 (8727) | ||
| 668224 | 2008-06-07 03:41:00 | Tick these entries then tick fix checked Close browser/s Uninstall all versions of Java, yours is out of date. Uninstall Symantec IS. O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [stupid creative poll axis] C:\Documents and Settings\All Users\Application Data\Memo save stupid creative\Rect Phone.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [C:\WINDOWS\system32\kdbog.exe] C:\WINDOWS\system32\kdbog.exe O4 - HKCU\..\Run: [MessPing] C:\DOCUME~1\BRUCEF~1\APPLIC~1\ABOUTB~1\junk mix 2.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O24 - Desktop Component 0: (no name) - www.lionking.org Then reboot, then get trojan remover in my sig, update then click on scan Then update Avast then scan the whole hdd |
Speedy Gonzales (78) | ||
| 668225 | 2008-06-14 10:20:00 | Thanks Speedy, I did all that with the exception of [Uninstall Symantec IS] because I wasn't sure what that was or how to get at it . The only Symantec thing I could find was the firewall . The spam sites kept coming . Then 4 days ago they stopped . Yay! and thanks again . Now I don't have Google Desktop Search . Is GDS a gateway for malware? If so, is there a safer alternative, as I found it useful . cheers Bruce |
bruce666 (8727) | ||
| 668226 | 2008-06-14 10:29:00 | I always just use the standard search companion, but i dont know if the google one is safe or not. | rob_on_guitar (4196) | ||
| 668227 | 2008-06-14 11:25:00 | No, GDS can slow a system down like XP's or Vista Indexing Service. If either are enabled / both should be disabled |
Speedy Gonzales (78) | ||
| 1 2 | |||||