Guest JMA Report post Posted January 2, 2004 Recently when I've been coming to TSM I've been redirected to porn sites. I have Pop-up Stopper, Ad Aware, and Hijick This but they don't seem to help. Another thing is that it only happens at TSM. Can anyone help? Share this post Link to post Share on other sites
the max 0 Report post Posted January 2, 2004 Have Spybot? Share this post Link to post Share on other sites
MrRant 0 Report post Posted January 2, 2004 Do a search for your HOSTS file on your computer and delete it and then reboot. See if that helps. Share this post Link to post Share on other sites
Guest JMA Report post Posted January 2, 2004 Do a search for your HOSTS file on your computer and delete it and then reboot. See if that helps. I have two. lmhosts and hosts Should I delete them both? Share this post Link to post Share on other sites
MrRant 0 Report post Posted January 2, 2004 Just HOSTS. Share this post Link to post Share on other sites
Guest JMA Report post Posted January 2, 2004 Ugh. It still keeps happening. It mostly happens when I view that thread Yuna started in the Movies-DVDs-Television folder. Not only that, my browser keeps getting hijacked. What's going on here? Share this post Link to post Share on other sites
MrRant 0 Report post Posted January 2, 2004 I wonder if there is something in that thread..... Run HiJack this and post the log. Share this post Link to post Share on other sites
Guest JMA Report post Posted January 2, 2004 Damn. Now my computer is moving very slow (and I have Charter High-Speed). I've been running HiJack and fixing the files but sometimes they come back. Anyway, here's the log... Logfile of HijackThis v1.97.7 Scan saved at 12:24:43 AM, on 1/2/04 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\COMPAQ\CPQINET\CPQINET.EXE C:\COMPAQ\INTERNET\ISDBDC.EXE C:\WINDOWS\CPQDIAG\CPQDFWAG.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\EXPLORER.EXE C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\BTTNSERV.EXE C:\WINDOWS\TASKMON.EXE C:\WINDOWS\SYSTEM\SYSTRAY.EXE C:\MOUSE\SYSTEM\EM_EXEC.EXE C:\PROGRAM FILES\COMPAQ\EASY ACCESS BUTTON SUPPORT\CPQEADM.EXE C:\PROGRAM FILES\MOTIVE\MOTIVEASSISTANT\MOTMON.EXE C:\PROGRAM FILES\AIM\AIM.EXE C:\WINDOWS\WINLOGON.EXE C:\PROGRAM FILES\PANICWARE\POP-UP STOPPER FREE EDITION\PSFREE.EXE C:\WINDOWS\SYSTEM\WMIEXE.EXE C:\PROGRAM FILES\COMPAQ\ON-SCREEN DISPLAY\OSD.EXE C:\WINDOWS\SYSTEM\PSTORES.EXE C:\WINDOWS\SYSTEM\MSHTA.EXE C:\WINDOWS\SYSTEM\MSHTA.EXE C:\PROGRAM FILES\WINZIP\WINZIP32.EXE C:\UNZIPPED\HIJACKTHIS\HIJACKTHIS.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = res://mshp.dll/index.html#10213 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = res://mshp.dll/index.html#10213 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://mshp.dll/index.html#10213 O2 - BHO: . - {587DBF2D-9145-4c9e-92C2-1F953DA73773} - C:\WINDOWS\APPLICATION DATA\IEFEATSL\IEFEATSL.DLL O2 - BHO: (no name) - {FD9BC004-8331-4457-B830-4759FF704C22} - C:\WINDOWS\APPLICATION DATA\IEFEATSL\MSIESH.DLL O2 - BHO: (no name) - {2E9CAFF6-30C7-4208-8807-E79D4EC6F806} - C:\PROGRAM FILES\SUBMIT\SUBMITHOOK.DLL O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O4 - HKLM\..\Run: [scanRegistry] c:\windows\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [systemTray] SysTray.Exe O4 - HKLM\..\Run: [EM_EXEC] c:\mouse\system\em_exec.exe O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\Compaq\Easy Access Button Support\cpqeadm.exe O4 - HKLM\..\Run: [EACLEAN] C:\Program Files\Compaq\Easy Access Button Support\eaclean.exe O4 - HKLM\..\Run: [service Connection] c:\cpqs\bwtools\sccenter.exe O4 - HKLM\..\Run: [AvconsoleEXE] C:\Program Files\Network Associates\McAfee VirusScan\avconsol.exe /minimize O4 - HKLM\..\Run: [VsecomrEXE] C:\Program Files\Network Associates\McAfee VirusScan\VSECOMR.EXE O4 - HKLM\..\Run: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE O4 - HKLM\..\Run: [VsStatEXE] C:\Program Files\Network Associates\McAfee VirusScan\VSSTAT.EXE /SHOWWARNING O4 - HKLM\..\Run: [MotiveMonitor] C:\Program Files\Motive\MotiveAssistant\motmon.exe O4 - HKLM\..\Run: [Windows Shell Library Loader] load shell.dll /c /set O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [CPQInet Runtime Service] c:\compaq\CPQInet\CpqInet.exe O4 - HKLM\..\RunServices: [isdbdc] c:\compaq\internet\isdbdc.exe O4 - HKLM\..\RunServices: [CPQDFWAG] C:\WINDOWS\cpqdiag\CpqDfwAg.exe O4 - HKLM\..\RunServices: [Vshwin32EXE] C:\PROGRAM FILES\NETWORK ASSOCIATES\MCAFEE VIRUSSCAN\VSHWIN32.EXE O4 - HKCU\..\Run: [AIM] C:\PROGRAM FILES\AIM\aim.exe -cnetwait.odl O4 - HKCU\..\Run: [winlogon] c:\windows\winlogon.exe O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRAM FILES\PANICWARE\POP-UP STOPPER FREE EDITION\PSFREE.EXE" O4 - HKCU\..\RunServices: [AIM] C:\PROGRAM FILES\AIM\aim.exe -cnetwait.odl O4 - HKCU\..\RunServices: [winlogon] c:\windows\winlogon.exe O4 - HKCU\..\RunServices: [PopUpStopperFreeEdition] "C:\PROGRAM FILES\PANICWARE\POP-UP STOPPER FREE EDITION\PSFREE.EXE" O4 - HKLM\..\RunOnce: [delsubmit] rundll32.exe advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\APPLICATION DATA\IEFEATSL\submit.exe" O4 - HKCU\..\RunOnce: [iefeatslUpdate] rundll32 C:\WINDOWS\APPLIC~1\IEFEATSL\iefeatsl.dll,UpdateDll s O8 - Extra context menu item: AltaVista Home - http://jump.altavista.com/avie5/home O8 - Extra context menu item: AV Search This Term - http://jump.altavista.com/avie5/search O8 - Extra context menu item: AV Translate this Web Page - http://jump.altavista.com/avie5/babelfish O8 - Extra context menu item: AV Translate Selection - http://jump.altavista.com/avie5/babelfish O9 - Extra button: Related (HKLM) O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM) O9 - Extra 'Tools' menuitem: &AltaVista Home (HKLM) O9 - Extra button: Translate (HKLM) O9 - Extra 'Tools' menuitem: AV &Translate (HKLM) O9 - Extra 'Tools' menuitem: &Find Pages Linking to this URL (HKLM) O9 - Extra 'Tools' menuitem: Find Other Pages on this &Host (HKLM) O9 - Extra button: AIM (HKLM) O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/...7986.7447453704 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwa...ash/swflash.cab Share this post Link to post Share on other sites
