Freezing Browser !

Hi guys

few days back i got bunch of adrwares which i cleaned using adaware, spybot and symentec. i had also installed spyware blaster at that time and it prompted me to put some active x related settings in the internet explorer( now i cannt say wat were those and i have unistalled it now). now pop ups r cleaned, but i have a prob with the internet explorer. when i open it, it opens very late and when behaves as if it has got hanged (though in tusk list after putting ctrl alt del, internet explorer doesnt show that it is "not responding"). then when i try to close the browser the message of "this program not responding, end tusk" comes. i have recently installed mozilla also, it opens well, though lil slow. rest all programs r opening and working at normal speed.

could any one plis tell wat may b the prob? if mozilla causing problem?

plis help !

best regards,
gene

 

Have you gone through the whole tutorial?

This site has alot of good tools for cleaning up your computer. It's very important that the first thing you do is the following:

First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal.
If you already have any of the programs linked in the tutorial please double check your version to make sure you have the latest one and that you have any/all updates for the programs.

NOTE: In order to resolve the issues you are having it is very important that you at least try to perform all the steps as outlined. If you have any difficulty please post back letting us know what steps you have completed, what you found while doing the scans if anything and details about any problems you have encountered in completing the steps. The more details you can provide the better.

If you have then PP or Chaslang will ask you to do the following:

After doing ALL of the above if you still have a problem:

Make sure you have HijackThis 1.99 and follow the guidelines on where to install it and how to post a log as an attachment. This is all covered in the sticky thread NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

Now post a HijackThis log as an attachment to your message (Do not post the log inline). All running programs should be closed, INCLUDING YOUR WEB BROWSER, e-mail. Close before running Hijack This!

To repeat: Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file. Place it in its own folder for example C:\Program Files\HJT

 

Hi Oldthug

thanx for replying! yes i have followed everything mentioned in the sticky thread, and after that only the broser freezing problem arised ( though i was able to clean the pop ups).
i have attached herewith the HJT log, plis check it out..
regards
gene

 

Chaslang and PP are the PROS on the HJT logs. They will get to it as soon as they can.

 

Dear Chaslang

After i did as u said, its working fine now! thanks man once again u have helped me, last week u helped me with another computer.. u r simply greeaat !

but i cudnt kill this :
O23 - Service: Miscrosoft Updates Service 5 - Unknown - C:\WINDOWS\System32\msupd5.exe

it says:
the following process cudnt b killed.it may have already closed or it may b protected by windows.this process may b a service wich u can stop from the services applet in the admin tools

 

Dear Chaslang
Sorry i am late in replying, was out of campus. i will post the HJT log in an hour, working on some sites now. anyway , i have seen some new prob with the recycle bin.
when i delete something and go to the recycle bin, i dont see the deleted items in there (my delete immediately without sending to trash bin option is off). moreover each and every time i right click on recycle bin , and click on empty recycle bin, i see "there r 90 items in the recycle bin, do u want to delete them". even if i delete those 90 items, and repeat the above process, again i see " u have 90 items in the recycle bin". how its happening? plis help me....

best regards
gene

 

Hi Gene,

Please download this tool: Generic Detection Tool - NT/2000/XP

NOW:
Unzip the Generic Detection Tool to a safe folder of your choice and run "find.bat" - Allow it as much time as it needs to run. You may get an error message of "File Not Found," but just let it go.

The tool should generate a long text file. Please attach that Log along with a fresh HJT and Chas will probably get back to you when free time rools around.

PP

 

Dear Chaslang and Philie,

Here i have attached the newest HJT and Generic log. Plis help me solving the Recycle Bin problem..

Thousand Thanks !
Gene

 

Hi Gene,

I think you might have additional issues, but do not have time right now to investigate further . . . . . Sorry! Busy weekend! Chas may drop in, though.

Try this for the problem at hand:

Please download the following tool: Pocket KillBox

NOW:
Please run Pocket KillBox and Copy & Paste the Following into the box: C:\RECYCLER\Desktop.ini - Click Red X to delete it using Standard File Kill.

Do the same for these 2:
C:\WINDOWS\system32\thinInstOIT61MegaV2s.dll
C:\WINDOWS\system32\innathlp.dll


NEXT:
Copy and paste the information below to notepad. Save it to your Desktop as type "all files" and name it fixrclr.reg


REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
"{FCDB0592-D244-425B-8707-D113725DDCA9}"=-
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Installer]



Now:
DoubleClick on the fixrclr.reg file you made and allow it to merge the registry entries into the registry.

See if that helps.

PP

 

Dear Philie

I did as u told, and i can see items, and delete them from recycle bin now.
by theway i cudnot kill the following using pocket kill box, says that file may not exist:
C:\WINDOWS\system32\innathlp.dll

Do u think my issue is solved, u mentioned there may b some other issues, cud u or Dr C tell me if i need to do something more..

moreover can i delete the fixrclr.reg file from desktop now?

best regards
gene

 

Hi Chaslang,
I was using the VCDCUT just b4 using HJT and the program window of VCDCUT just disappeared of its own and i didnt see it on the tuskbar. so i had no way to close. it happened twice like that, thats why there r 2 entries of it in the log.

anyway, i did as u told and cud fix msupd this time.
Thanks a lot for your kind help!

Do u think i need to do some more work? plis inform. also plis inform can i delete that fixrclr.reg file that Dr C told me to make to solve the recycle bin problem?

Thanks a lot for the time and effort u put to help me !!!
Best regards
Gene

 

Dear Chaslang

Today again suddenly the internet speed became very slow, then i put AVG antivirus, spybot and adaware. AVG and spybot cud get around 4-5 malwares and trojans. i think some traces are still left. i have attached herewith a new HJT log. i will be grateful if u or Philie have a look on it and let me know if some work is needed...
Best regards
Gene

 

Hi Chaslang

Actually i installed AVG yesterday only just after when i got some spywares in spybot. usually i install and uninstall it after one or two scan.

tonight i m gonna follow the instructions of "How to Protect yourself from malware!"

regarding all those processes u mentioned, no i dont need any of them. plis let me know how i can remove all those stuffs?

thanking you
gene

 

Dear Chaslang
actually the guy who was having the PC with him earlier, may b he had installed winamp and itunes. can u tell me wat r their works? so that i can decide shud i remove it or not, as far as i know i dont remember using those two.
gene

 

chaslang,

the pc was with one of my frend , but its with me now, he doesnt use it anymore. i think the 2 u told me to remove r related with real player and quicktime player. isnt it? i sometimes use these two players, so if i kill them will the players stop working ? lemme know plis..

thanx

gene

 

Dear Chaslang

winamp i use sometimes for music, itunes i dont use.

moreover i dont use any printer.

regards
gene

 

hi chaslang

i have uninstalled itunes and have killed those two things that u told, using HJT.
yahoo messenger i use.
regarding things related with hp, i cudnt get which r related.. i will post a screenshot of the add/remove program list for u to look.

by the way i m getting prob opening some sites in IE, all the things in the page doesnt get visible,
like this page:
http://www.timesofmoney.com/remittance/jsp/home.jsp#null

the page doesnt load properly.. why it is? wats its remedy?

plis inform.

gene

 

Dear chaslang
active x control is set exactly as per the instructions. but i cannt open certain pages, they still dont load fully..

mozilla also cannt open those sites. may b they r not optimized for mozilla,

wat can i do?

 

Hi Chaslang

while going thru my "add and remove program" section, i have noticed something called "arcsoft software suite" which is of a 573 MB size ! what is this?? i think i dont use it for any purpose. shud i remove this ?? plis advice.

regards
Gene

 

hi Chaslang

Thousand thanx for the lightening speed in replying. i really appreciate it !
I am goin thru the arcsoft software site u gave. m goin thru it, it seems its related with photo editing. but i dont see any icon of "arcsoft" on my desktop to see wat kinda work the arcsoft i my computer can do. so not being able to know if it may help me in some way or not.

regarding your earlier question, i think u r telling about removal of microsoft java and install of sun java. actually few days back when i wanted to get Netscape i got the option of installing Sun Java2. i opt to do that.. but the installing was going on for ever.. uptill about 1.5 hour it was saying "configuring sun java2". i got confused and stopped the install. now in "add and remove program" list i see "java 2 runtime environment", but thinking that i stopped java 2 install in between , i tried to remove that "runtime environment" but it doesnt get removed, the name is still there in "add remove program" list.

so i donno wat i m doin.. hehehe...plis help..

Regards
Gene

 

i didnt get properly wat u meant by "was the acrsoft installed in another user account". it was installed by my friend who no more uses the computer. i saw the program , it has some photo editing options, didnt seem to be very helpful to me, so shud i uninstall it? or there may b some prob in proper functioning of the computer if i remove it?

geneman

 

Dear Chaslang

Ok i will uninstall the arcsoft.

Moreover i saw a strange thing today while shutting on the compu. at first it didnt get booted, though the green light in the tower was on but there was nothing in the screen. then i put off the power, and again tried to start the compu. this time it booted but a message came at first, it was very long, but the first few lines that i cud read b4 it disappeared were like "we are sorry, your windows didnt start properly, a recent hardware or software change may have caused it. u can choose to start with last best windows configuration ...(or something like that)...
then the message disappeared and the compu booted..
now i was thinking wat change i made last night, i tried to uninstall that java 2 runtime environ. once again.. thats wat i did... though it is still there in the "add or remove program " list....
i know this question is better to b put in the software forum, but i thought it will b better to inform u also...
Regards
Gene

 

it happened only that one time.

 

ya everything ok now chaslang.

thanks a lot for your help !

gene

 

Dear Chasland,

How u doing man?

Was absent for long. back from a long tour throughout asia. i am getting some prob with my pc. when i open any program like a video editing program, the pc gets very slow. why it is? could u plis put some light in this matter/

Best Regards
Gene

 

Dear Chaslang

Sorry i posted it in the wrong place but as u were dealing with some other isues of this computer thats why i posted it here. anyway, my computer is 512mb ram, athlon processor , 80gb (i m using about 70gb now).

Regards
Gene

 

Dear Chaslang,

Thousand thanks for giving me some time in your very busy schedule in here. I think lately i got some spywares. day b4 yesterday i downloaded a torrent client and got these trojans packed with it..
I have ran adaware, spybot and AVG and they cleaned few trojans. But after few hours again if i run them i get some more, that means all traces havent got removed. i have followed all the primary guidelines given in this forum.

I have attached a Hijackthis Log for you to have a look.

Best Regards,
Gene

 

Dear Chaslang,

I did as u told, but cudnt find some of them to fix, like:

C:\WINDOWS\System32\nvstwh16.exe
C:\WINDOWS\System32\nv4stmib.exe
C:\WINDOWS\bfhgrlvf.exe

this one is of a site i visit: O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.nabausha.com/fonts/tdserver.cab

After i did everything, i cud see pop ups.. though very few..

i have attached the new log.

Regards,
Gene