Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Problem With Hijackthis And Cpvfeed Redirection

  • Please log in to reply
No replies to this topic

#1 momof3canada


  • Members
  • 2 posts
  • Local time:01:46 AM

Posted 13 May 2007 - 09:59 PM

I hope that someone can help me out here. :thumbsup:

I've been reading through some of the posts on this board, and keep seeing "hijackthis" everywhere I look, so I figured I'd download it and try to post a log....BUT every single time I try to type "hijackthis" into the Google search bar, my Firefox shuts down. I even tried to type www.hijackthis.com into my browser, but the same thing happens.

This is the problem I've been having...

Every time I go to a website, and start to check things out, I get redirected to "page cannot be displayed" that I'm able to close out to get back to what I'm doing, but it's very annoying and I'm going crazy here; it's cpvfeed that's doing it...and I have no idea how to rid my pc of it...or the adware that's also popping up every now and then.

I've got a log here from CWShredder and hope that it's of use, seeing as I can't get Hijackthis...maybe one of you computer savvy people could take a look and suggest something?

**** Run Keys ****

RUN: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
RUN: [EPSON Stylus CX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P26 "EPSON Stylus CX3800 Series" /O6 "USB001" /M "Stylus CX3800"
RUN: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
RUN: [winlogon] "C:\Program Files\QuickTime\qttask.exe" -atboottime
RUN: [runner1] C:\WINDOWS\retadpu32.exe 61A847B5BBF72811308B2B27128065E9C084320161C4661227A755E9C2933154389A
RUN: [SpywareBot] C:\Program Files\SpywareBot\SpywareBot.exe -boot
RUN: [SSA.exe] "C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe"
RUN: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
RUN: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
RUN: [winlogon] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet

**** Browser Helper Objects ****

BHO: [Adobe PDF Reader Link Helper] C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
BHO: [PopKill Class] C:\Program Files\Bell\Security Manager\pkR.dll
BHO: [ZKBho Class] C:\Program Files\Bell\Security Manager\FBHR.dll
BHO: [ZKBho Class] C:\Program Files\Bell\Security Manager\FBHR.dll

**** IE Toolbars ****

**** IE Extensions ****

IEExt: []
IEExt: [PartyGammon.com] C:\Program Files\PartyGaming\PartyGammon\RunBackGammon.exe
IEExt: [Research] C:\Program Files\PartyGaming\PartyGammon\RunBackGammon.exe
IEExt: [PartyCasino.com] C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
IEExt: [PartyPoker.com] C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
IEExt: [PartyBingo.com] C:\Program Files\PartyGaming\PartyBingo\RunBingo.exe
IEExt: [Messenger] C:\Program Files\Messenger\msmsgs.exe

**** Hosts File Entries ****

HOSTS: localhost
HOSTS: all-tgp.org
HOSTS: brazauskas.info
HOSTS: centralgate.biz
HOSTS: clickfast.biz
HOSTS: code.jcash.biz
HOSTS: code.trasferimento.biz
HOSTS: cyber-search.biz
HOSTS: download.accessmedia.tv
HOSTS: download.jupitersatellites.biz
HOSTS: exeloads.info
HOSTS: forlink.biz
HOSTS: game4all.biz
HOSTS: get-access.host.sk
HOSTS: musah.info
HOSTS: picshunter.us
HOSTS: prevedtraf.biz
HOSTS: search-biz.biz
HOSTS: searchx.cc
HOSTS: sex-pics.biz
HOSTS: snow410.info
HOSTS: sp2admin.biz
HOSTS: traff5all.biz
HOSTS: traffbest.biz
HOSTS: traffbucks.biz
HOSTS: traffmoney.biz
HOSTS: ultra-search.biz
HOSTS: www.all-tgp.org
HOSTS: www.lattefresco.biz
HOSTS: www.picshunter.us
HOSTS: www.procounter.biz
HOSTS: www.searchx.cc
HOSTS: www.sex-pics.biz
HOSTS: www.sp2admin.biz
HOSTS: www.spamcatchero.biz
HOSTS: www.traff4ppc.biz
HOSTS: www.zgallery.us
HOSTS: ybbwxlxytz.biz
HOSTS: yepjnddqpq.biz
HOSTS: yhvoo.eseconsult.info
HOSTS: zchxsikpgz.biz
HOSTS: zgallery.us
HOSTS: f-secure.com
HOSTS: www.f-secure.com
HOSTS: ftp.f-secure.com
HOSTS: ftp.sophos.com
HOSTS: liveupdate.symantec.com
HOSTS: customer.symantec.com
HOSTS: dispatch.mcafee.com
HOSTS: download.mcafee.com
HOSTS: rads.mcafee.com
HOSTS: mast.mcafee.com
HOSTS: my-etrust.com
HOSTS: www.my-etrust.com
HOSTS: nai.com
HOSTS: www.nai.com
HOSTS: networkassociates.com
HOSTS: secure.nai.com
HOSTS: securityresponse.symantec.com
HOSTS: service1.symantec.com
HOSTS: sophos.com
HOSTS: www.sophos.com
HOSTS: support.microsoft.com
HOSTS: symantec.com
HOSTS: www.symantec.com
HOSTS: update.symantec.com
HOSTS: updates.symantec.com
HOSTS: us.mcafee.com
HOSTS: vil.nai.com
HOSTS: viruslist.com
HOSTS: www.viruslist.com
HOSTS: grisoft.com
HOSTS: www.grisoft.com
HOSTS: free.grisoft.com
HOSTS: trendmicro.com
HOSTS: housecall.trendmicro.com
HOSTS: www.trendmicro.com
HOSTS: pandasoftware.com
HOSTS: www.pandasoftware.com
HOSTS: usa.kaspersky.com
HOSTS: ewido.net
HOSTS: www.ewido.net
HOSTS: zonelabs.com
HOSTS: www.zonelabs.com
HOSTS: bitdefender.com
HOSTS: www.bitdefender.com
HOSTS: download.bitdefender.com
HOSTS: upgrade.bitdefender.com
HOSTS: spywareinfo.com
HOSTS: www.spywareinfo.com
HOSTS: merijn.org
HOSTS: www.merijn.org
HOSTS: sysinternals.com
HOSTS: www.sysinternals.com
HOSTS: onguardonline.gov
HOSTS: www.onguardonline.gov
HOSTS: avast.com
HOSTS: www.avast.com
HOSTS: safety.live.com
HOSTS: www.paretologic.com
HOSTS: paretologic.com
HOSTS: virusscan.jotti.org
HOSTS: services.google.com
HOSTS: www.webroot.com
HOSTS: webroot.com
HOSTS: webroot.com

**** IE Settings ****

Default Page: http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
Default Search: http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
Local Page: \blank.htm
Search Bar: http://www.google.com/ie
Search Page: http://www.google.com

**** IE Context Menu (Right click) ****

IEContext: [E&xport to Microsoft Excel] res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

**** Layered Service Providers ****

LSP: RSVP UDP Service Provider
LSP: RSVP TCP Service Provider
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B9C171EF-A04B-46B8-A75F-BD19F4B5192C}] SEQPACKET 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B9C171EF-A04B-46B8-A75F-BD19F4B5192C}] DATAGRAM 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F7F9D06C-622A-40E5-89E8-0FB5D271FD15}] SEQPACKET 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F7F9D06C-622A-40E5-89E8-0FB5D271FD15}] DATAGRAM 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1C383CC9-DDC9-426B-9FEB-8DB80747CD49}] SEQPACKET 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1C383CC9-DDC9-426B-9FEB-8DB80747CD49}] DATAGRAM 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8AB01288-76E7-4BE4-A85E-F5CEE1CC1A75}] SEQPACKET 3
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8AB01288-76E7-4BE4-A85E-F5CEE1CC1A75}] DATAGRAM 3
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F8A05234-6AB1-4D2F-88CD-CA2AFB8EB79E}] SEQPACKET 4
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F8A05234-6AB1-4D2F-88CD-CA2AFB8EB79E}] DATAGRAM 4

**** Blocked Control Panel Items ****

BLOCKED: [ncpa.cpl] No
BLOCKED: [odbccp32.cpl] No

**** Downloaded Program Files ****

{5F8469B4-B055-49DD-83F7-62B522420ECC} [http://upload.facebook.com/controls/FacebookPhotoUploader.cab] C:\WINDOWS\system32\unicows.dll C:\WINDOWS\Downloaded Program Files\FacebookPhotoUploader.ocx
{D27CDB6E-AE6D-11CF-96B8-444553540000} [http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab]

**** Windows Services ****

**** Custom IE Search Items ****

SEARCH: [SearchAssistant] http://www.google.com/ie
SEARCH: [CustomizeSearch] http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
SEARCH: [CustomSearch] http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html

**** Complete IE Options ****

IEOPT: [NoUpdateCheck]
IEOPT: [Disable Script Debugger] yes
IEOPT: [Show_ChannelBand] No
IEOPT: [Anchor Underline] yes
IEOPT: [Cache_Update_Frequency] Once_Per_Session
IEOPT: [Display Inline Images] yes
IEOPT: [Do404Search]
IEOPT: [Local Page] \blank.htm
IEOPT: [Save_Session_History_On_Exit] no
IEOPT: [Show_FullURL] no
IEOPT: [Show_StatusBar] yes
IEOPT: [Show_ToolBar] yes
IEOPT: [Show_URLinStatusBar] yes
IEOPT: [Show_URLToolBar] yes
IEOPT: [Start Page] http://securityresponse.symantec.com/avcenter/fix_homepage/
IEOPT: [Use_DlgBox_Colors] yes
IEOPT: [Search Page] http://www.google.com
IEOPT: [Check_Associations] No
IEOPT: [FullScreen] no
IEOPT: [Window_Placement] ,
IEOPT: [NotifyDownloadComplete] yes
IEOPT: [Use FormSuggest] no
IEOPT: [AddToFavoritesExpanded]
IEOPT: [Error Dlg Displayed On Every Error] no
IEOPT: [Use Search Asst] no
IEOPT: [FormSuggest PW Ask] no
IEOPT: [ShowedCheckBrowser] Yes
IEOPT: [Expand Alt Text] no
IEOPT: [Move System Caret] no
IEOPT: [NscSingleExpand]
IEOPT: [DisableScriptDebuggerIE] yes
IEOPT: [NoWebJITSetup]
IEOPT: [Page_Transitions]
IEOPT: [FavIntelliMenus] no
IEOPT: [Enable Browser Extensions] no
IEOPT: [UseThemes]
IEOPT: [Force Offscreen Composition]
IEOPT: [AllowWindowReuse]
IEOPT: [Friendly http errors] yes
IEOPT: [ShowGoButton] yes
IEOPT: [SmoothScroll]
IEOPT: [Enable AutoImageResize] yes
IEOPT: [Enable_MyPics_Hoverbar] yes
IEOPT: [Play_Animations] yes
IEOPT: [Play_Background_Sounds] yes
IEOPT: [Display Inline Videos] yes
IEOPT: [Show image placeholders]
IEOPT: [Print_Background] no
IEOPT: [AutoSearch]
IEOPT: [Use Custom Search URL]
IEOPT: [Search Bar] http://www.google.com/ie
IEOPT: [Default_Page_URL] http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
IEOPT: [Default_Search_URL] http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
IEOPT: [Search Page]
IEOPT: [Enable_Disk_Cache] yes
IEOPT: [Cache_Percent_of_Disk]
IEOPT: [Delete_Temp_Files_On_Exit] yes
IEOPT: [Local Page] %SystemRoot%\system32\blank.htm
IEOPT: [Anchor_Visitation_Horizon]
IEOPT: [Use_Async_DNS] yes
IEOPT: [Placeholder_Width]
IEOPT: [Placeholder_Height]
IEOPT: [Start Page] http://www.yahoo.com/
IEOPT: [CompanyName] Microsoft Corporation
IEOPT: [Wizard_Version] 6.0.2600.0000
IEOPT: [FullScreen] no
IEOPT: [Search Bar] http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html

Thank you for any suggestions :flowers:

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users