Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Internet Explorer Crash

Started by September4 , Sep 04 2004 06:55 AM

  • Please log in to reply

#1
September4
Posted 04 September 2004 - 06:55 AM

September4

    Member

  • Member
  • PipPip
  • 10 posts
Hi
Can anybody give me some advice?

Everytime I try to open Internet Explorer I get a message that MS Internet Explorer has encountered a problem and must close - send error report.

I have contacted McAfee and Microsoft Virus support and they have asked med to use a number of virus and spyware programs to see if that is the cause of the problem.

No viruses have been detected. HiJackThis asks to send log report to Geekstogo to get advise about what files can be deleted.

I also have logfiles from (programs updated yesterday):

Ad-aware.se 1.03
SpyBot
SpyKiller
SpySweeper

Thanks for your help
Andrew

Attached Files


  • 0

Advertisements

#2
September4
Posted 04 September 2004 - 06:58 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
See previous message (Is there a way of attaching several files at the same time)?

Log File Ad-Aware

Greetings
Andrew

Attached Files


  • 0

#3
September4
Posted 04 September 2004 - 07:00 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
See previous message (Is there a way of attaching several files at the same time)?

Log File SpyBot

Greetings
Andrew

Attached Files


  • 0

#4
September4
Posted 04 September 2004 - 07:01 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
See previous message (Is there a way of attaching several files at the same time)?

Log File Spy Killer

Greetings
Andrew

Attached Files


  • 0

#5
September4
Posted 04 September 2004 - 07:03 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
See previous message (Is there a way of attaching several files at the same time)?

Log File Spy Sweeper

Greetings
Andrew

Attached Files


  • 0

#6
September4
Posted 04 September 2004 - 07:05 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
See previous message (Is there a way of attaching several files at the same time)?

Log File SpySweeper?

Greetings
Andrew

Attached Files


  • 0

#7
admin
Posted 04 September 2004 - 08:04 AM

admin

    Founder Geek

  • Community Leader
  • 24,639 posts
Hi Andrew, you can only attach one file per post. We really only need the Hijack This log, unless we request something else.

Logfile of HijackThis v1.98.2
Scan saved at 11:12:33, on 2004-09-04
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\csrss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\McAfee\McAfee VirusScan\Avsynmgr.exe
C:\WINNT\system32\drivers\CDAC11BA.EXE
C:\WINNT\system32\drivers\dcfssvc.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\system32\nvsvc32.exe
C:\Program Files\KODAK\KODAK EASYSHARE Software\bin\ptssvc.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\Program Files\McAfee\McAfee VirusScan\VsStat.exe
C:\WINNT\System32\tcpsvcs.exe
C:\WINNT\system32\Smartscaps.exe
C:\WINNT\System32\snmp.exe
C:\WINNT\system32\stisvc.exe
C:\Program Files\McAfee\McAfee VirusScan\Vshwin32.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\McAfee\McAfee VirusScan\Avconsol.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\Program Files\McAfee\McAfee VirusScan\Webscanx.exe
C:\WINNT\System32\SCardSvr.exe
C:\Program Files\Common Files\Network Associates\McShield\Mcshield.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\RUNDLL32.EXE
C:\Program Files\DELL\AccessDirect\dadapp.exe
C:\WINNT\system32\PRPCUI.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe
C:\Program Files\McAfee\McAfee VirusScan\alogserv.exe
C:\iclogin1.2.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe
C:\Program Files\SpyKiller\spykiller.exe
C:\Program Files\BestPopUpKiller\BestPopupKiller.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\C Technologies\C-Pen 10\CPen10.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\KODAK\KODAK Software Updater\7288971\Program\backWeb-7288971.exe
C:\Program Files\SmartTrust\SmartTrust Personal\Csp\SmartCertmover.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.se/ny...fault.asp?Ath=f
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.msn.se/nyheter/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
O1 - Hosts: 193.125.201.50 ie.search.msn.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Replace Search Ctl - {832BEBED-C3DA-4534-A2C2-B2FFF220C820} - C:\WINNT\system32\replaceSearch.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [DadApp] C:\Program Files\DELL\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [PRPCMonitor] PRPCUI.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [McAfee Guardian] "C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe" /SU
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [Alogserv] C:\Program Files\McAfee\McAfee VirusScan\alogserv.exe
O4 - HKLM\..\Run: [IC Login] "C:\iclogin1.2.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [winmain] winmain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [McAfee.InstantUpdate.Monitor] "C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe" /startmonitor
O4 - HKCU\..\Run: [SpyKiller] C:\Program Files\SpyKiller\spykiller.exe /startup
O4 - HKCU\..\Run: [BestPopUpKiller] C:\Program Files\BestPopUpKiller\BestPopupKiller.exe /startup
O4 - HKCU\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /0
O4 - Global Startup: C-Pen 10.lnk = C:\Program Files\C Technologies\C-Pen 10\CPen10.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: Kodak EasyShare software.lnk = KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: KODAK Software Updater.lnk = KODAK\KODAK Software Updater\7288971\Program\backWeb-7288971.exe
O4 - Global Startup: Microsoft Office.lnk = Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Certificate Mover.lnk = SmartTrust\SmartTrust Personal\Csp\SmartCertmover.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINNT\System32\Shdocvw.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {034CC2DC-3245-4B26-B5C7-7B8777739CB7} - http://64.156.31.70/058623se.exe
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - http://akamai.downlo...UTH_1014_EN.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - http://akamai.downlo...IA/dtc32_EN.cab
O16 - DPF: {1EB17D1C-141D-4D9D-91CB-24D99215851D} - http://akamai.downlo.../netia32_EN.cab
O16 - DPF: {50AD557E-3426-41FD-AFDD-2AF39BB1C387} - http://akamai.downlo...ervice_5_EN.cab
O16 - DPF: {7EB15626-CB8E-4174-8A72-C055B12B4310} (CQD2Loader Object) - http://smartdownload...m/installer.dll
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://webcam.nerike...sCamControl.cab
O16 - DPF: {D1B80EBF-1A26-4FEC-B0B9-DCB934C6507E} - http://dialup.carped...AccesMembre.cab
O16 - DPF: {D22AC3EF-B7D8-11D5-A281-005056BF0101} (plug Class) - http://www.gxplugin....dll/gxbplug.dll
O16 - DPF: {EEECA057-AD0F-44A7-8BE5-8634CEDBDBD1} - http://akamai.downlo.../netpe32_EN.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{82AB0575-69AD-4767-8FF8-3B320E680AE4}: NameServer = 195.67.199.9,195.67.199.10
O18 - Protocol: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files\DIALux\System\DLXToolBox.dll


Please go offline, close all browsers and any open Windows, making sure that only HijackThis is open. Scan and when it finishes, put an X in the boxes, only next to these following items, then click fix checked.
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.se/ny...fault.asp?Ath=f
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.msn.se/nyheter/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
O1 - Hosts: 193.125.201.50 ie.search.msn.com
O2 - BHO: Replace Search Ctl - {832BEBED-C3DA-4534-A2C2-B2FFF220C820} - C:\WINNT\system32\replaceSearch.dll
O4 - HKLM\..\Run: [winmain] winmain.exe
O4 - Global Startup: Microsoft Office.lnk = Microsoft Office\Office\OSA9.EXE
O16 - DPF: {034CC2DC-3245-4B26-B5C7-7B8777739CB7} - http://64.156.31.70/058623se.exe
O16 - DPF: {7EB15626-CB8E-4174-8A72-C055B12B4310} (CQD2Loader Object) - http://smartdownload...m/installer.dll
O16 - DPF: {D1B80EBF-1A26-4FEC-B0B9-DCB934C6507E} - http://dialup.carped...AccesMembre.cab
O16 - DPF: {D22AC3EF-B7D8-11D5-A281-005056BF0101} (plug Class) - http://www.gxplugin....dll/gxbplug.dll
O18 - Protocol: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files\DIALux\System\DLXToolBox.dll

Reboot in safe mode (by tapping F8 at startup and select safe mode from the menu).
Be sure you're able to view hidden files, and remove the following files in bold (if found):
C:\WINNT\system32\replaceSearch.dll
C:\WINNT\system32\winmain.exe
C:\Program Files\DIALux <- this folder

Reboot your PC.

If you would please, rescan with HijackThis and post a fresh log in this same topic, and let us know how your system's working. <_<
  • 0

#8
September4
Posted 06 September 2004 - 11:29 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
<_< Hi and thanks for answering.
I have carried out your requests but it has not helped..

I did not find C:\WINNT\system32\replaceSearch.dll or
C:\WINNT\system32\winmain.exe

I rebooted in safe mode. When I did a new scan with HijackThis the item
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings, ProxyOveride = localhost had reappeared on the log. I removed it again and tried to connect up to Internet Explorer but the problem was as before - just a message report to Microsoft that the program had encountered a problem. After removing it again and rebooting the item reapperared in the new log.

Any suggestions?

Thanks
Andrew

Attached Files


  • 0

#9
September4
Posted 07 September 2004 - 09:53 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
<_<

Hi Admin
Do you have any other suggestions?
See my last reply.

Thanks
Andrew
  • 0

#10
September4
Posted 08 September 2004 - 04:06 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Still can't get connected to Internet Explorer. Can connect to Outlook Express and the virus program updates via internet. But I don't get into Internet Explorer at all - just message that there's a problem and that I should contact Microsoft.

See my previous messages.

Thanks for all help
Andrew
  • 0

#11
admin
Posted 08 September 2004 - 07:23 AM

admin

    Founder Geek

  • Community Leader
  • 24,639 posts
Download and run this tool:
http://www.geekstogo...n=download&id=7

Also, let's see a new Hijack This log! <_<
  • 0

#12
September4
Posted 08 September 2004 - 10:23 AM

September4

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Hi again!

I have downloaded and run the program you sent.

Then I ran HijackThis. I send the new log file.

Still can't open Internet Explorer.

Regards
Andrew <_<

Attached Files


  • 0

#13
admin
Posted 08 September 2004 - 12:50 PM

admin

    Founder Geek

  • Community Leader
  • 24,639 posts
Try this, Start -> Run, type SFC /SCANNOW

Have your Windows or recovery CD handy.

P.S. Please paste your log into the topic instead of attaching it. <_<
  • 0
Back to Web Browsers and Email · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Software
  3. Web Browsers and Email

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP