1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Browsers Hijacked?!

Discussion in 'Web & Email' started by rakesh14021983, Apr 27, 2010.

Thread Status:
Not open for further replies.
Advertisement
  1. rakesh14021983

    rakesh14021983 Thread Starter

    Joined:
    Apr 27, 2010
    Messages:
    4
    Hi,

    I have been facing a weird problem for the last 3 days now and after trying endlessly I have given up on this one. Please help!

    My browsers seem to have suddenly stopped working. I am able to establish a connection to the Internet and also download (P2P etc.). But the minute I open my browser, it just gets stuck at "waiting for www.google.com". The page just doesnt load. This happens with every single webpage.

    I have scanned my system with Avast, Avira and AVG --> no infections found
    Ran MBAM, SUPERAntispyware and Sophos Anti-Rootkit --> no infections found
    Used WinsockXPFix and LSPFix (from MajorGeeks.com) --> din't solve the issue
    Used CCleaner and TuneUp Utilities to clean up the system --> din't work.

    I am able to ping my gateway and also websites, but none of my browsers load any pages (I have tried FF, IE and Chrome. Same problem in all of them).

    Have attached the HJT log below. I don't see nothing unusual here... Please help. This is extremely urgent, since I run my business online.


    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 6:50:05 PM, on 4/26/2010
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    F:\AVG9\avgchsvx.exe
    C:\WINDOWS\system32\spoolsv.exe
    F:\AVG9\avgrsx.exe
    F:\AVG9\avgcsrvx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\WINDOWS\ALCWZRD.EXE
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    F:\AVG9\avgtray.exe
    F:\AVG9\avgwdsvc.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
    F:\AVG9\avgemc.exe
    F:\AVG9\avgnsx.exe
    C:\WINDOWS\system32\wuauclt.exe
    F:\AVG9\avgcsrvx.exe
    C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
    E:\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - F:\AVG9\avgssie.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [AVG9_TRAY] F:\AVG9\avgtray.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O17 - HKLM\System\CCS\Services\Tcpip\..\{2EBF4652-F89D-405A-B0F2-2E6FB88FAE92}: NameServer = 192.168.200.19 203.153.47.251
    O17 - HKLM\System\CS1\Services\Tcpip\..\{2EBF4652-F89D-405A-B0F2-2E6FB88FAE92}: NameServer = 192.168.200.19 203.153.47.251
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - F:\AVG9\avgpp.dll
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
    O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - F:\AVG9\avgemc.exe
    O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - F:\AVG9\avgwdsvc.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
    O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

    --
    End of file - 3539 bytes



    Note: Of late (when my browsers we working, Avira would throw a lot of pop-ups about some .jpg / .bmp files being disguised as Pavleko.abki or Crypt.X something... )

    The same connection works perfectly well on my friend's laptop.

    I am desperate to fix this so please help out here..

    Mods: I apologise if this is in the wrong section. This is my 1st post here.
     
  2. rakesh14021983

    rakesh14021983 Thread Starter

    Joined:
    Apr 27, 2010
    Messages:
    4
    Not a single post... Folks... please realise that my bread and butter is dependent on my online business. I know you folks are pro's at solving issues so please help me out here.
     
  3. Phantom010

    Phantom010 Trusted Advisor

    Joined:
    Mar 9, 2009
    Messages:
    34,796
    TCP/IP stack repair options for use with Windows XP with SP2 or SP3.

    Click Start > Run > type CMD

    In the Command Prompt, type in the bolded text, one command after the other, pressing Enter between each of them:

    Reset WINSOCK entries to installation defaults: netsh winsock reset catalog

    Reset TCP/IP stack to installation defaults: netsh int ip reset reset.log

    Reboot the machine.
     
  4. rakesh14021983

    rakesh14021983 Thread Starter

    Joined:
    Apr 27, 2010
    Messages:
    4
    Hi Phantom,

    Tried the above but no luck. Can still download but no browsing whatsoever.
     
  5. rakesh14021983

    rakesh14021983 Thread Starter

    Joined:
    Apr 27, 2010
    Messages:
    4
    Looks like I wont be getting an answer on this one. anyway.. thanks..
     
  6. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/919505

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice