I think my browsers have been hijacked
Solved/Closed
askatu
Posts
13
Registration date
Thursday September 16, 2010
Status
Member
Last seen
January 18, 2013
-
Jan 8, 2013 at 05:02 PM
Ambucias Posts 47356 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Jan 18, 2013 at 06:08 PM
Ambucias Posts 47356 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Jan 18, 2013 at 06:08 PM
Related:
- I think my browsers have been hijacked
- How do i update my browser on my phone - Guide
- I have internet connection but browsers won't work - Guide
- Lg tv browsers - Guide
- How do i make opera my default browser - Guide
- Top browsers - Guide
24 responses
askatu
Posts
13
Registration date
Thursday September 16, 2010
Status
Member
Last seen
January 18, 2013
Jan 16, 2013 at 05:04 PM
Jan 16, 2013 at 05:04 PM
Well, I'm here again. On Friday night I had to switch off the computer abruptly because it started to burnt. I disconnected it completely from the power, I cleaned it and left to rest for several days. Then I installed Microsoft Security Essentials, deleted many things. I thought everything was fine. But IE is hijacked completely.
This is what I got when I open it:
http://runonce.msn.com/runonce3.aspx
I didn't realize I had Silverlight and honestly I don't know what it is. The Google Chrome was installed when I upgraded FF. I would rather not have the Google Chrome but I thought I could do nothing.
I hope all this saga has soon an end.
Can I remove the IE?
(I haven't forgotten the stouts and will come with scones of course!)
This is what I got when I open it:
http://runonce.msn.com/runonce3.aspx
I didn't realize I had Silverlight and honestly I don't know what it is. The Google Chrome was installed when I upgraded FF. I would rather not have the Google Chrome but I thought I could do nothing.
I hope all this saga has soon an end.
Can I remove the IE?
(I haven't forgotten the stouts and will come with scones of course!)
Ambucias
Posts
47356
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,167
Jan 16, 2013 at 05:34 PM
Jan 16, 2013 at 05:34 PM
Okay, load me up with a new ZHP Diag,
Do you still get the rundll error ?
Removing IE is ill advised, it's part of Windows.
When you use CCleaner, check the Windows uninstall files in the advanced section, you should gain lots of Mb's.
What do you mean "it started to burnt" ?
Do you still get the rundll error ?
Removing IE is ill advised, it's part of Windows.
When you use CCleaner, check the Windows uninstall files in the advanced section, you should gain lots of Mb's.
What do you mean "it started to burnt" ?
askatu
Posts
13
Registration date
Thursday September 16, 2010
Status
Member
Last seen
January 18, 2013
Jan 18, 2013 at 05:26 PM
Jan 18, 2013 at 05:26 PM
Good evening Ambucias,
Here is the new link http://speedy.sh/xsjrF/ZHPDiag.txt
It's been a while of not getting the rundll error I think it had something to do with the sound system. I searched on the internet, and I can't remember what I did exactly, something with the regedit comand in run I then deleted a file, but it has been so stressful this last days that I cannot remember exactly all the steps I took to remove it.
The burning thing it was just a week ago today. I was just working on the computer when a strong burning smell came from the machine, and I just switched it off thinking well that's it, the end. But it's still fine and doing a good job.
Now if I could get rid of that annoying thing on the IE browser that would be wonderful.
Once again, many many thanks for your help.
Here is the new link http://speedy.sh/xsjrF/ZHPDiag.txt
It's been a while of not getting the rundll error I think it had something to do with the sound system. I searched on the internet, and I can't remember what I did exactly, something with the regedit comand in run I then deleted a file, but it has been so stressful this last days that I cannot remember exactly all the steps I took to remove it.
The burning thing it was just a week ago today. I was just working on the computer when a strong burning smell came from the machine, and I just switched it off thinking well that's it, the end. But it's still fine and doing a good job.
Now if I could get rid of that annoying thing on the IE browser that would be wonderful.
Once again, many many thanks for your help.
Ambucias
Posts
47356
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,167
Jan 18, 2013 at 06:08 PM
Jan 18, 2013 at 06:08 PM
Greetings again Monteserrat,
I really don't know what you are doing with this computer, but your memory status has gone beyond the critical point, in fact it's just on verge of jamming.
Please launch ZHP Fix, copy and paste the following lines (using the clipboard) and click on GO
O3 - Toolbar: (no name) - [HKLM]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Orphean Key => Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - https://us.search.yahoo.com/ => Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - https://us.search.yahoo.com/ => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] => Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Classes\Toolband.EB_ExplorerBar.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.IPM_PrintListItem.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_Launcher.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_PrintManager.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_BindStatusCallback.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_CancelButtonEventHandler.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.TBToolband.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.UserOptions.1] => Toolbar.Agent
Close it
You have stuff there about Kaspersky, you don't need it.
What is this ?
C:\Program Files\CartyStudios Corporation
C:\Program Files\CommentKahuna
C:\Program Files\PowerfulPDF
C:\Program Files\Sigil
C:\Program Files\Solar Accounts
C:\Program Files\Traffic Travis v3
C:\Program Files\WFX Website Builder
C:\Program Files\Whisper Technology
C:\Program Files\Common Files\SBSolutions
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Accessories
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Administrative Tools
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\RSS Announcer
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Startup
If you don't know, I suggest you remove.
You system is now virus free, all you need is space.
Good luck
I really don't know what you are doing with this computer, but your memory status has gone beyond the critical point, in fact it's just on verge of jamming.
Please launch ZHP Fix, copy and paste the following lines (using the clipboard) and click on GO
O3 - Toolbar: (no name) - [HKLM]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Orphean Key => Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - https://us.search.yahoo.com/ => Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - https://us.search.yahoo.com/ => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] => Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] => Toolbar.AVGSearch
[HKLM\Software\Classes\Toolband.EB_ExplorerBar.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.IPM_PrintListItem.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_Launcher.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_PrintManager.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_BindStatusCallback.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_CancelButtonEventHandler.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.TBToolband.1] => Toolbar.Agent
[HKLM\Software\Classes\Toolband.UserOptions.1] => Toolbar.Agent
Close it
You have stuff there about Kaspersky, you don't need it.
What is this ?
C:\Program Files\CartyStudios Corporation
C:\Program Files\CommentKahuna
C:\Program Files\PowerfulPDF
C:\Program Files\Sigil
C:\Program Files\Solar Accounts
C:\Program Files\Traffic Travis v3
C:\Program Files\WFX Website Builder
C:\Program Files\Whisper Technology
C:\Program Files\Common Files\SBSolutions
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Accessories
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Administrative Tools
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\RSS Announcer
C:\Documents and Settings\Montserrat Arda\Start Menu\Programs\Startup
If you don't know, I suggest you remove.
You system is now virus free, all you need is space.
Good luck
