Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problem With Hijackthis And Cpvfeed Redirection


  • Please log in to reply
No replies to this topic

#1 momof3canada

momof3canada

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 13 May 2007 - 09:59 PM

I hope that someone can help me out here. :thumbsup:

I've been reading through some of the posts on this board, and keep seeing "hijackthis" everywhere I look, so I figured I'd download it and try to post a log....BUT every single time I try to type "hijackthis" into the Google search bar, my Firefox shuts down. I even tried to type www.hijackthis.com into my browser, but the same thing happens.

This is the problem I've been having...

Every time I go to a website, and start to check things out, I get redirected to "page cannot be displayed" that I'm able to close out to get back to what I'm doing, but it's very annoying and I'm going crazy here; it's cpvfeed that's doing it...and I have no idea how to rid my pc of it...or the adware that's also popping up every now and then.

I've got a log here from CWShredder and hope that it's of use, seeing as I can't get Hijackthis...maybe one of you computer savvy people could take a look and suggest something?

**** Run Keys ****

RUN: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
RUN: [EPSON Stylus CX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P26 "EPSON Stylus CX3800 Series" /O6 "USB001" /M "Stylus CX3800"
RUN: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
RUN: [winlogon] "C:\Program Files\QuickTime\qttask.exe" -atboottime
RUN: [runner1] C:\WINDOWS\retadpu32.exe 61A847B5BBF72811308B2B27128065E9C084320161C4661227A755E9C2933154389A
RUN: [SpywareBot] C:\Program Files\SpywareBot\SpywareBot.exe -boot
RUN: [SSA.exe] "C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe"
RUN: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
RUN: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
RUN: [winlogon] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet


**** Browser Helper Objects ****

BHO: [Adobe PDF Reader Link Helper] C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
BHO: [PopKill Class] C:\Program Files\Bell\Security Manager\pkR.dll
BHO: [ZKBho Class] C:\Program Files\Bell\Security Manager\FBHR.dll
BHO: [ZKBho Class] C:\Program Files\Bell\Security Manager\FBHR.dll


**** IE Toolbars ****



**** IE Extensions ****

IEExt: []
IEExt: [PartyGammon.com] C:\Program Files\PartyGaming\PartyGammon\RunBackGammon.exe
IEExt: [Research] C:\Program Files\PartyGaming\PartyGammon\RunBackGammon.exe
IEExt: [PartyCasino.com] C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
IEExt: [PartyPoker.com] C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
IEExt: [PartyBingo.com] C:\Program Files\PartyGaming\PartyBingo\RunBingo.exe
IEExt: [Messenger] C:\Program Files\Messenger\msmsgs.exe


**** Hosts File Entries ****

HOSTS: 127.0.0.1 localhost
HOSTS: 127.0.0.1 all-tgp.org
HOSTS: 127.0.0.1 brazauskas.info
HOSTS: 127.0.0.1 centralgate.biz
HOSTS: 127.0.0.1 clickfast.biz
HOSTS: 127.0.0.1 code.jcash.biz
HOSTS: 127.0.0.1 code.trasferimento.biz
HOSTS: 127.0.0.1 cyber-search.biz
HOSTS: 127.0.0.1 download.accessmedia.tv
HOSTS: 127.0.0.1 download.jupitersatellites.biz
HOSTS: 127.0.0.1 exeloads.info
HOSTS: 127.0.0.1 forlink.biz
HOSTS: 127.0.0.1 game4all.biz
HOSTS: 127.0.0.1 get-access.host.sk
HOSTS: 127.0.0.1 musah.info
HOSTS: 127.0.0.1 picshunter.us
HOSTS: 127.0.0.1 prevedtraf.biz
HOSTS: 127.0.0.1 search-biz.biz
HOSTS: 127.0.0.1 searchx.cc
HOSTS: 127.0.0.1 sex-pics.biz
HOSTS: 127.0.0.1 snow410.info
HOSTS: 127.0.0.1 sp2admin.biz
HOSTS: 127.0.0.1 traff5all.biz
HOSTS: 127.0.0.1 traffbest.biz
HOSTS: 127.0.0.1 traffbucks.biz
HOSTS: 127.0.0.1 traffmoney.biz
HOSTS: 127.0.0.1 ultra-search.biz
HOSTS: 127.0.0.1 www.all-tgp.org
HOSTS: 127.0.0.1 www.lattefresco.biz
HOSTS: 127.0.0.1 www.picshunter.us
HOSTS: 127.0.0.1 www.procounter.biz
HOSTS: 127.0.0.1 www.searchx.cc
HOSTS: 127.0.0.1 www.sex-pics.biz
HOSTS: 127.0.0.1 www.sp2admin.biz
HOSTS: 127.0.0.1 www.spamcatchero.biz
HOSTS: 127.0.0.1 www.traff4ppc.biz
HOSTS: 127.0.0.1 www.zgallery.us
HOSTS: 127.0.0.1 ybbwxlxytz.biz
HOSTS: 127.0.0.1 yepjnddqpq.biz
HOSTS: 127.0.0.1 yhvoo.eseconsult.info
HOSTS: 127.0.0.1 zchxsikpgz.biz
HOSTS: 127.0.0.1 zgallery.us
HOSTS: 1.1.1.1 f-secure.com
HOSTS: 1.1.1.1 www.f-secure.com
HOSTS: 1.1.1.1 ftp.f-secure.com
HOSTS: 1.1.1.1 ftp.sophos.com
HOSTS: 1.1.1.1 liveupdate.symantec.com
HOSTS: 1.1.1.1 customer.symantec.com
HOSTS: 1.1.1.1 dispatch.mcafee.com
HOSTS: 1.1.1.1 download.mcafee.com
HOSTS: 1.1.1.1 rads.mcafee.com
HOSTS: 1.1.1.1 mast.mcafee.com
HOSTS: 1.1.1.1 my-etrust.com
HOSTS: 1.1.1.1 www.my-etrust.com
HOSTS: 1.1.1.1 nai.com
HOSTS: 1.1.1.1 www.nai.com
HOSTS: 1.1.1.1 networkassociates.com
HOSTS: 1.1.1.1 secure.nai.com
HOSTS: 1.1.1.1 securityresponse.symantec.com
HOSTS: 1.1.1.1 service1.symantec.com
HOSTS: 1.1.1.1 sophos.com
HOSTS: 1.1.1.1 www.sophos.com
HOSTS: 1.1.1.1 support.microsoft.com
HOSTS: 1.1.1.1 symantec.com
HOSTS: 1.1.1.1 www.symantec.com
HOSTS: 1.1.1.1 update.symantec.com
HOSTS: 1.1.1.1 updates.symantec.com
HOSTS: 1.1.1.1 us.mcafee.com
HOSTS: 1.1.1.1 vil.nai.com
HOSTS: 1.1.1.1 viruslist.com
HOSTS: 1.1.1.1 www.viruslist.com
HOSTS: 1.1.1.1 grisoft.com
HOSTS: 1.1.1.1 www.grisoft.com
HOSTS: 1.1.1.1 free.grisoft.com
HOSTS: 1.1.1.1 trendmicro.com
HOSTS: 1.1.1.1 housecall.trendmicro.com
HOSTS: 1.1.1.1 www.trendmicro.com
HOSTS: 1.1.1.1 pandasoftware.com
HOSTS: 1.1.1.1 www.pandasoftware.com
HOSTS: 1.1.1.1 usa.kaspersky.com
HOSTS: 1.1.1.1 ewido.net
HOSTS: 1.1.1.1 www.ewido.net
HOSTS: 1.1.1.1 zonelabs.com
HOSTS: 1.1.1.1 www.zonelabs.com
HOSTS: 1.1.1.1 bitdefender.com
HOSTS: 1.1.1.1 www.bitdefender.com
HOSTS: 1.1.1.1 download.bitdefender.com
HOSTS: 1.1.1.1 upgrade.bitdefender.com
HOSTS: 1.1.1.1 spywareinfo.com
HOSTS: 1.1.1.1 www.spywareinfo.com
HOSTS: 1.1.1.1 merijn.org
HOSTS: 1.1.1.1 www.merijn.org
HOSTS: 1.1.1.1 sysinternals.com
HOSTS: 1.1.1.1 www.sysinternals.com
HOSTS: 1.1.1.1 onguardonline.gov
HOSTS: 1.1.1.1 www.onguardonline.gov
HOSTS: 1.1.1.1 avast.com
HOSTS: 1.1.1.1 www.avast.com
HOSTS: 1.1.1.1 safety.live.com
HOSTS: 1.1.1.1 www.paretologic.com
HOSTS: 1.1.1.1 paretologic.com
HOSTS: 1.1.1.1 virusscan.jotti.org
HOSTS: 1.1.1.1 services.google.com
HOSTS: 1.1.1.1 www.webroot.com
HOSTS: 1.1.1.1 webroot.com
HOSTS: 1.1.1.1 webroot.com


**** IE Settings ****

Default Page: http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
Default Search: http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
Local Page: \blank.htm
Search Bar: http://www.google.com/ie
Search Page: http://www.google.com


**** IE Context Menu (Right click) ****

IEContext: [E&xport to Microsoft Excel] res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000


**** Layered Service Providers ****

LSP: MSAFD Tcpip [TCP/IP]
LSP: MSAFD Tcpip [UDP/IP]
LSP: RSVP UDP Service Provider
LSP: RSVP TCP Service Provider
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B9C171EF-A04B-46B8-A75F-BD19F4B5192C}] SEQPACKET 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B9C171EF-A04B-46B8-A75F-BD19F4B5192C}] DATAGRAM 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F7F9D06C-622A-40E5-89E8-0FB5D271FD15}] SEQPACKET 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F7F9D06C-622A-40E5-89E8-0FB5D271FD15}] DATAGRAM 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1C383CC9-DDC9-426B-9FEB-8DB80747CD49}] SEQPACKET 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1C383CC9-DDC9-426B-9FEB-8DB80747CD49}] DATAGRAM 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8AB01288-76E7-4BE4-A85E-F5CEE1CC1A75}] SEQPACKET 3
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8AB01288-76E7-4BE4-A85E-F5CEE1CC1A75}] DATAGRAM 3
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F8A05234-6AB1-4D2F-88CD-CA2AFB8EB79E}] SEQPACKET 4
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F8A05234-6AB1-4D2F-88CD-CA2AFB8EB79E}] DATAGRAM 4


**** Blocked Control Panel Items ****

BLOCKED: [ncpa.cpl] No
BLOCKED: [odbccp32.cpl] No


**** Downloaded Program Files ****

{5F8469B4-B055-49DD-83F7-62B522420ECC} [http://upload.facebook.com/controls/FacebookPhotoUploader.cab] C:\WINDOWS\system32\unicows.dll C:\WINDOWS\Downloaded Program Files\FacebookPhotoUploader.ocx
{D27CDB6E-AE6D-11CF-96B8-444553540000} [http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab]


**** Windows Services ****



**** Custom IE Search Items ****

SEARCH: [SearchAssistant] http://www.google.com/ie
SEARCH: [CustomizeSearch] http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
SEARCH: [CustomSearch] http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html


**** Complete IE Options ****

IEOPT: [NoUpdateCheck]
IEOPT: [NoJITSetup]
IEOPT: [Disable Script Debugger] yes
IEOPT: [Show_ChannelBand] No
IEOPT: [Anchor Underline] yes
IEOPT: [Cache_Update_Frequency] Once_Per_Session
IEOPT: [Display Inline Images] yes
IEOPT: [Do404Search]
IEOPT: [Local Page] \blank.htm
IEOPT: [Save_Session_History_On_Exit] no
IEOPT: [Show_FullURL] no
IEOPT: [Show_StatusBar] yes
IEOPT: [Show_ToolBar] yes
IEOPT: [Show_URLinStatusBar] yes
IEOPT: [Show_URLToolBar] yes
IEOPT: [Start Page] http://securityresponse.symantec.com/avcenter/fix_homepage/
IEOPT: [Use_DlgBox_Colors] yes
IEOPT: [Search Page] http://www.google.com
IEOPT: [Check_Associations] No
IEOPT: [FullScreen] no
IEOPT: [Window_Placement] ,
IEOPT: [NotifyDownloadComplete] yes
IEOPT: [Use FormSuggest] no
IEOPT: [AddToFavoritesExpanded]
IEOPT: [Error Dlg Displayed On Every Error] no
IEOPT: [Use Search Asst] no
IEOPT: [FormSuggest PW Ask] no
IEOPT: [ShowedCheckBrowser] Yes
IEOPT: [Expand Alt Text] no
IEOPT: [Move System Caret] no
IEOPT: [NscSingleExpand]
IEOPT: [DisableScriptDebuggerIE] yes
IEOPT: [NoWebJITSetup]
IEOPT: [Page_Transitions]
IEOPT: [FavIntelliMenus] no
IEOPT: [Enable Browser Extensions] no
IEOPT: [UseThemes]
IEOPT: [Force Offscreen Composition]
IEOPT: [AllowWindowReuse]
IEOPT: [Friendly http errors] yes
IEOPT: [ShowGoButton] yes
IEOPT: [SmoothScroll]
IEOPT: [Enable AutoImageResize] yes
IEOPT: [Enable_MyPics_Hoverbar] yes
IEOPT: [Play_Animations] yes
IEOPT: [Play_Background_Sounds] yes
IEOPT: [Display Inline Videos] yes
IEOPT: [Show image placeholders]
IEOPT: [Print_Background] no
IEOPT: [AutoSearch]
IEOPT: [Use Custom Search URL]
IEOPT: [Search Bar] http://www.google.com/ie
IEOPT: [Default_Page_URL] http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
IEOPT: [Default_Search_URL] http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
IEOPT: [Search Page]
IEOPT: [Enable_Disk_Cache] yes
IEOPT: [Cache_Percent_of_Disk]
IEOPT: [Delete_Temp_Files_On_Exit] yes
IEOPT: [Local Page] %SystemRoot%\system32\blank.htm
IEOPT: [Anchor_Visitation_Horizon]
IEOPT: [Use_Async_DNS] yes
IEOPT: [Placeholder_Width]
IEOPT: [Placeholder_Height]
IEOPT: [Start Page] http://www.yahoo.com/
IEOPT: [CompanyName] Microsoft Corporation
IEOPT: [Custom_Key] MICROSO
IEOPT: [Wizard_Version] 6.0.2600.0000
IEOPT: [FullScreen] no
IEOPT: [Search Bar] http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html

Thank you for any suggestions :flowers:

BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users