Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

Author Topic: Browser/defrag/safe mode issues!  (Read 6400 times)

0 Members and 1 Guest are viewing this topic.

rainyinid

    Topic Starter


    Starter

    Browser/defrag/safe mode issues!
    « on: September 13, 2008, 01:51:16 PM »
    Hi all...I'm new here and I'm so glad I found this site. Please help!

    First of all, here is my information:

    Computer: AMD Athlon XP 2500+
    1.85 GHz, 1.25GB of RAM
    Windows XP Platform Win32
    (Please let me know what else you need).

    Here are my problems.

    1.)  When I go to certain web sites, for instance, when I log into myyearbook.com or myspace, the graphics do not fully load on the page and my playlist on my home page says there are no songs to play. There aren't any red X's, there's just a few things that load on the page. Before about a week ago, everything loaded just fine. I'm currently using Firefox but I've also tried this on IE and have the same issues. Plus the pages load VERY slow. Also I am unable to send Yahoo mail with and without attachments.

    2.) When I click on a link (for instance, if I did a google search on something and a list of links come up) it takes me to a different page altogether and an IP address like 206.161.121.82 shows up in the web address window. But if I copy and paste the web address into a new browser window, I can get to it that way. It also takes forever, the new browser tab says "searching" with the moving circle for quite some time. While it's "searching" the bottom left of the page says "www.analitic-checks.google.com" the entire time. I have a very fast broadband connection and everything loaded quickly about a week ago.

    3.) I cannot get my computer into Safe Mode, I've tried F8 while rebooting...holding it down or tapping on it several times. Once it worked but it would not highlight Safe Mode...tried the up and down arrows, mouse, etc. and it ends up loading normally. I've tried just shutting my computer off as well, to force it to give me the Safe Mode option but it loads up as normal every time. I also am unable to do System Restore. It tells me that there are no restore points are available.

    4.) I cannot Defrag from my computer. I have almost 6GB of space left. I ended up downloading Smart Defrag and there are a TON of fragmented files (mostly red boxes) but it seems like it doesn't completely defrag because only a few boxes turn green, then it gives me the report and some of the results say "needs more space" or something like that. I've uninstalled programs and have tried to get more space. I was however, able to do "disk cleanup" from my computer and ended up with 2 more GB's of space, totaling almost 6GB.

    I have ran registry cleaners, virus scan (AVG), malware programs, spyware programs (yahoo anti spyware caught about 12 items) and still, after all of this, nothing. I've uninstalled Firefox and reinstalled it.  I've downloaded new versions of Java (which by the way, sometimes it shows that I have it on the "system information" page of this website and sometimes it says i don't have it). I have it as "enabled" in Firefox and the sun java icon is in the bottom right toolbar.

    I know this is a LOT of info and I probably left some things out but please bear with me. I would like to do a total WIPE but do not have a CD Rom Drive to reinstall Windows. Would I be able to save Windows to a 4GB Flash drive and reinstall it that way?

    Thanks for listening. I'm so eager to find out what you all think...I can't afford a new computer just yet but trust me...I'm saving up!

    Oh 1 more thing, I now have 2 Firefox shortcuts on the bottom toolbar, one has a (2) behind it. That's the one that works, the other one does not.

    BaRR

    • Guest
    Re: Browser/defrag/safe mode issues!
    « Reply #1 on: September 13, 2008, 10:50:10 PM »
    I have found multiple references of this on the internet. The web address, "analitic-checks.google.com" apparently contains a list of websites to block you from visiting, most of which include anti-virus websites, anti-apyware websites, etc. It also causes your internet to run slowly, and may/may not change your desktop background or bombard you with popups. Out of all the websites that say this was fixed, they all refer to http://www.malwarebytes.org/mbam.php as the tool to remove it. If that doesn't work, I'm sure the computer experts in the Virus/Malware forum section would be more than happy to help you.

    In case the virus blocks you from visiting the website with the tool I just gave the link to, here's the direct link:
    http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html

    And another: http://www.majorgeeks.com/Malwarebytes_Anti-Malware_d5756.html

    Hopefully one of those links won't be blocked.


    ~ BaRR

    Broni


      Mastermind
    • Kraków my love :)
    • Thanked: 614
      • Computer Help Forum
    • Computer: Specs
    • Experience: Experienced
    • OS: Windows 8
    Re: Browser/defrag/safe mode issues!
    « Reply #2 on: September 13, 2008, 11:24:49 PM »
    Download HijackThis:
    http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
    Click on Download HijackThis Installer
    Post HijackTHis log.

    I'd like to see what's going on there.

    rainyinid

      Topic Starter


      Starter

      Re: Browser/defrag/safe mode issues!
      « Reply #3 on: September 14, 2008, 01:05:32 AM »
      Thank you both for checking on this for me!

      Broni, when I clicked on the link for Hijackthis, it took me to a page that would not load so I was not able to download it. I'm sure it's because of my issues.

      Barr, I was able to download Malwarebytes and it found over 300 infected objects and guess what?? Everything works great!!! You are a genious. Thank you so much. I'm even able to "defrag" now and websites  load fast again.

      Broni now I can load Hijackthis for future reference :)

      Thanks again you guys...I'm so thrilled that I found this site!!  Take care!

      patio

      • Moderator


      • Genius
      • Maud' Dib
      • Thanked: 1769
        • Yes
      • Experience: Beginner
      • OS: Windows 7
      Re: Browser/defrag/safe mode issues!
      « Reply #4 on: September 14, 2008, 07:07:54 AM »
      You need to free up some space on that hard drive for Windows to run properly...
      You should also still post a hJT log as it's possible you're still infected even though things are running better...
      " Anyone who goes to a psychiatrist should have his head examined. "

      rainyinid

        Topic Starter


        Starter

        Re: Browser/defrag/safe mode issues!
        « Reply #5 on: September 14, 2008, 09:17:38 AM »
        Ah, okay Patio. Here is the log from HJT. Let me know what you all think.   Thanks!


        Logfile of Trend Micro HijackThis v2.0.2
        Scan saved at 9:14:13 AM, on 9/14/2008
        Platform: Windows XP SP3 (WinNT 5.01.2600)
        MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
        Boot mode: Normal

        Running processes:
        C:\WINDOWS\System32\smss.exe
        C:\WINDOWS\system32\winlogon.exe
        C:\WINDOWS\system32\services.exe
        C:\WINDOWS\system32\lsass.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\System32\svchost.exe
        C:\WINDOWS\system32\LEXBCES.EXE
        C:\WINDOWS\system32\spoolsv.exe
        C:\WINDOWS\system32\LEXPPS.EXE
        C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
        C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
        C:\WINDOWS\system32\nvsvc32.exe
        C:\WINDOWS\System32\svchost.exe
        C:\WINDOWS\system32\SearchIndexer.exe
        C:\WINDOWS\Explorer.EXE
        C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
        C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
        C:\WINDOWS\system32\ctfmon.exe
        C:\WINDOWS\system32\devldr32.exe
        C:\Program Files\Mozilla Firefox\firefox.exe
        C:\WINDOWS\system32\SearchProtocolHost.exe
        C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

        R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
        R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
        R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
        R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
        R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.metacrawler.com/crawler?general=%s
        R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
        R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
        R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
        R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
        O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
        O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\ActiveX\AcroIEHelper.dll
        O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
        O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
        O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
        O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
        O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll
        O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
        O2 - BHO: (no name) - {CE3DD15C-DF9C-4FA3-BD2D-414A61E43329} - (no file)
        O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
        O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll
        O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
        O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
        O4 - HKLM\..\Run: [SmartDefrag] "C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe" /StartUp
        O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
        O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
        O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
        O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
        O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
        O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
        O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
        O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
        O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
        O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
        O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
        O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
        O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
        O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
        O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
        O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
        O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
        O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
        O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
        O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
        O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
        O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
        O9 - Extra button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\WINDOWS\System32\shdocvw.dll
        O9 - Extra 'Tools' menuitem: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\WINDOWS\System32\shdocvw.dll
        O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
        O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
        O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\WINDOWS\System32\shdocvw.dll
        O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\WINDOWS\System32\shdocvw.dll
        O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
        O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
        O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} (FunGamesLoader Object) - http://www.worldwinner.com/games/v47/shared/FunGamesLoader.cab
        O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
        O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - http://www.pogo.com/cdl/launcher/PogoWebLauncherInstaller.CAB
        O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www.clarkcolor.com/ClarkActivia.cab
        O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab
        O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} (Bejeweled Control) - http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab
        O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
        O16 - DPF: {9903F4ED-B673-456A-A15F-ED90C7DE9EF5} (Sol Control) - http://www.worldwinner.com/games/v46/sol/sol.cab
        O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
        O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
        O16 - DPF: {C52439A0-2693-4E40-B141-9F9AD5257241} (Lexmark eDiagnostics Class) - https://ediagnostics.lexmark.com/serval.cab
        O16 - DPF: {E12EB891-D000-421B-A8ED-EDE1BDCA14A0} (GolfSol Control) - http://www.worldwinner.com/games/v44/golfsol/golfsol.cab
        O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
        O17 - HKLM\System\CCS\Services\Tcpip\..\{AAFBAF06-4AE1-4D41-BDC1-CBCE71C6F0B7}: NameServer = 208.67.222.222,208.67.220.220
        O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
        O20 - Winlogon Notify: mmtvxx - mmtvxx.dll (file missing)
        O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
        O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
        O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
        O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
        O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
        O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

        --
        End of file - 10252 bytes

        BaRR

        • Guest
        Re: Browser/defrag/safe mode issues!
        « Reply #6 on: September 14, 2008, 09:36:24 AM »
        Thank you both for checking on this for me!

        Broni, when I clicked on the link for Hijackthis, it took me to a page that would not load so I was not able to download it. I'm sure it's because of my issues.

        Barr, I was able to download Malwarebytes and it found over 300 infected objects and guess what?? Everything works great!!! You are a genious. Thank you so much. I'm even able to "defrag" now and websites  load fast again.

        Broni now I can load Hijackthis for future reference :)

        Thanks again you guys...I'm so thrilled that I found this site!!  Take care!

        Glad I could help. I sort of figured that the HJT site would be blocked, considering it is anti-spyware/anti-virus, which is why I didn't post it. It's much easier to find alternate websites to download mainstream applications from. I'm no malware expert, but I know how to search the internet.  ;D Anyway, as Broni said, you should always post a followup HJT log to make sure nothing was missed. I hope when he reviews the log you posted, that everything looks clean to him. Good luck!

        ~ BaRR

        Broni


          Mastermind
        • Kraków my love :)
        • Thanked: 614
          • Computer Help Forum
        • Computer: Specs
        • Experience: Experienced
        • OS: Windows 8
        Re: Browser/defrag/safe mode issues!
        « Reply #7 on: September 14, 2008, 10:21:04 AM »
        The log doesn't look bad, but still some more cleaning needs to be done. Go here: http://www.computerhope.com/forum/index.php/topic,46313.0.html