Need help! Nasty bugs in my system. Heres LOG FILE

Okay, I got some nasty little errors poping up everywhere. I'm getting two little pop-ups, it either saids ERROR:OBJECT or ERROR:IFRAME. I get either everytime I open a new window or page.
Here's the log:

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\Logi_MwX.Exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\smltr452.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\WINDOWS\System32\mdm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AIM\aim.exe
C:\Documents and Settings\user\Local Settings\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bealenet.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bealenet.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bealenet.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Bealenet
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: URLLink Class - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet6_38.dll
O2 - BHO: (no name) - {BC295A8D-1054-ADD2-7921-4933BA265D3F} - C:\WINDOWS\System32\huxuqo.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,NewDotNetStartup -s
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [smltr452] C:\WINDOWS\System32\smltr452.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: ICQ 4 - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O16 - DPF: Yahoo! Literati - http://download.game...nts/y/tt3_x.cab
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {8FA9D107-547B-4DBC-9D88-FABD891EDB0A} (shizmoo Class) - http://playroom.icq....yssey_web11.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE93BB80-7086-445F-9C09-DC7D82553B83}: NameServer = 66.63.192.2 66.63.192.3
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

Welcome to Geeks to Go, gwende1!

Download this first: LSPFix unzip it to your Desktop. Don't do anything with it. It is VITAL that you download this program BEFORE removing New.Net just incase you can not get back online after removing New.Net.

Get rid of NewDotNet by going to: Start > Control Panel > Add/Remove Programs and remove it (i.e. New.Net Application or New.Net Domains). If it is not there, go here and follow Procedure 4: NewDotNet. At the very bottom of that page, it says:

For NewDotNet removal instructions, please click here

That's where you need to click to get to removal procedure 4 (if you can't find the New.Net in Add/Remove programs).

If you can not connect to the Internet after removing New.net, please run the LSP-Fix (the program I had you download at the beginning of my message), and click on the finish button. Reboot and you should be able to get back on.

After that is done please post a new HiJack This log. Someone will be by as soon as possible to help you clean your system. Also, when you post your new log, please be sure to paste the FULL log (you cut off the top part that has information about HJT version, platform, browser etc.)

Michelle :tazz:

#1
gwendel

Posted 13 March 2005 - 10:40 PM

Advertisements

#2
Michelle

Posted 14 March 2005 - 12:34 AM

#3
Michelle

Posted 05 April 2005 - 11:12 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us