Question:

Malware/Virus? Help!!!?

by  |  earlier

0 LIKES UnLike

hey everyone! I've been having some issues with my computer. Sometimes, while I am online, I get re-directed to a google page with searches such as www.rockyou.com, but I didn't search them. I thought that this was malware (malicious software), so I downloaded SpyBot - Search and Destroy, HijackThis, and Malwarebytes. When I performed searches on these and on my McAffee, no viruses, malware, or spyware have been found and yet this STILL keeps happening!! What is going on? Also, sometimes while I am online for about 30 minutes (and I am on my home wireless network which gets 4 bars), my internet suddenly stops working and says "Limited Connectivity", even though I haven't moved from my spot and still have 4 bars! Could these two be related? Is this a virus or spyware or some sort of malware?

Please Help Me!!!

Thanks

:o)

P.s. I just got my computer this past February. It has Vista installed on it

P.p.s Here are the results from my latest HijackThis scan, which one should I fix/delete?

--------------------------------------...

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 2:02:21 PM, on 8/29/2008

Platform: Windows Vista (WinNT 6.00.1904)

MSIE: Internet Explorer v7.00 (7.00.6000.16711)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

c:\PROGRA~1\mcafee.com\agent\mcagent.e...

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Common Files\AOL\1202941350\ee\aolsoftware.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\BigFix\bigfix.exe

C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe

C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files\AIM6\aim6.exe

C:\Program Files\AIM6\aolsoftware.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchFilterHost.e...

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=BB&Br=GTW&Loc=ENG_US&Sys=PTB&M=MT6728

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=BB&Br=GTW&Loc=ENG_US&Sys=PTB&M=MT6728

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gateway.com/g/sidepanel.html?Ch=Retail&SubCH=BB&Br=GTW&Loc=ENG_US&Sys=PTB&M=MT6728

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentV... Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper...

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll

O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [NapsterShell] C:\Program Files\Napster\napster.exe /systray

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1202941350\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /run

 Tags:

   Report
Answer The Question I've Same Question Too

4 ANSWERS

Sort By: Date  |  Rating

  1. Enable spybot advance features.

    Spybot host file locking is a tool which locks the hosts file to prevent unauthorized changes.

    Locking the hosts file will prevent most hosts hijackers (even unknown) from doing harm;

    Locking the IE settings will prevent other users of your computer to change your preferences.

    These files seem to be suspicious. Disable them and see if the problem still occurs.

    O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll

    O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)

    If the problem still occurs and no viruses/spywares are detected.

    I suspect that your neighbours may be using your wireless network.

    Set a password for your wireless network.


  2. You should receive professional Malware removal support from a site like http://geekpolice.net/

    I recommended it because they provide real fast support and a cure is guaranteed.

  3. I have used all of the programs you listed and none of them are any good. I have been using Spyware Terminator for a couple of years now and I love it. It's free and works everytime.

    http://www.SpywareTerminator.com

    Be sure to uninstall all of the Virus/Spyware/Malware removal tools before you install Spyware Terminator. Having too many of these type of programs will cause the computer to freeze or work slow.

    After you install Spyware Terminator be sure to run the Update Program. Run a full Virus and Spyware scan and watch it go.

    Good Luck!

  4. I suggest you use a comprehensive killing NOD

    Then clean up your registry repair documents can be resolved

    Please visit

    http://www.Easy-Registry-Clean.info

    Can help you

    Good luck

You're reading: Malware/Virus? Help!!!?

Question Stats

Latest activity: earlier.
This question has 4 answers.

BECOME A GUIDE

Share your knowledge and help people by answering questions.
Register Now