Internet explorer not working

Welcome to Major Geeks!

I surprised that Vista let you install this. Did you have UAC (User Account Control) disable?

Try running the below procedure, you may have to select run as Administrator or you may even have to disable UAC to run this. See the below link if you do not know how to work with UAC:

http://technet2.microsoft.com/WindowsVista/en/library/0d75f774-8514-4c9e-ac08-4c21f5c6c2d91033.mspx?mfr=true


I'm going to post two sets of instructions below. Each will be enclosed in separate Quote boxes. Make sure to complete the first one 100% before moving on to the second one.

ATTACH THE FIRST LOG NOW BEFORE CONTINUING OR YOU WILL OVERWRITE IT!!!! And then immediately continue on to the below steps.

How are things working now?

 

First answer my question. Did you already have UAC disabled before you became infected? This is about the only way I have seen thus far that you could easily infect Vista. The other way is if you knowlingly override the security blocks put in place and choose to run malware and install it.

I'm not sure exactly what messages # 8 & 9 are talking about.

Skip SmitFraudFix and try running this: RogueRemover Free

 

I gave you a link in message # 4 that explains this.

You should have just followed the directions given. You are not supposed to be clicking on dumphive.exe. That is something that the SmiFraudFix program calls on its own. All we aksed you to run was smitfraudfix.cmd And there were two steps to run and each created a log with the same name which is why we say run step 1 and attach the log before continuing. Did the program run properly or not?

 

Yes! The Video ActiveX stuff is your SmitFraud infection. I'm not exactly sure what the stuff detected as 2-Antispyware is. It may or may not be a valid. Some sites indicate the VoucherReg.dll and VCHreg.dll are okay. Do they sound like they are related to anything you installed.

 

Then allow RogueRemover to fix them too. Afterwards make sure that UAC is enabled and let us know how things are working.

 

May or may not be a malware problem. The only way we could determine this now is by having you follow our standard cleaning procedures given below.

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, renaming, running, and posting HijackThis logs as attachments.

• Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
• Make sure you check version numbers and get all updates.
• Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

• After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis​

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.​

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
  • CounterSpy - only for Windows XP, 2K, & NT users
  • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy. - only for Windows XP, 2K, & NT users
  • Bitdefender - from step 6
  • Panda Scan - from step 6
  • runkeys.txt - the log from GetRunKey.bat
  • newfiles.txt - the log from ShowNew.bat
  • HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

 

It is one of the many things that could get installed with a SmitFaud infection. Yes SmitFraud is bad.

There are notes in the READ ME for exceptions with Vista. Everything runs except the two online scanners in step 6A. Also as noted in step 6B, UAC must be disabled so that GetRunKey and ShowNew will run.

 

Just say yes!

I need to see logs to know what you are talking about. Some are good and some are bad.

I'm not sure you ever answered my question and I need an answer now. Was UAC disabled before you got infected? I have not seen one Vista PC get these infections yet while UAC was enabled.

 

Have you read the link I gave you in message # 4. It is explained in that link.

 

No we don't ask for these logs because we don't need them. Ccleaner is not a malware scanner. It is just a disk cleaner.

What are you looking for?

You need to run them and also the rest of the READ ME and attach the requested logs.

What detected this?

 

If it keeps blocking this then you still have something trying to load and it sounds like UAC is disabled.

No I do not have Vista.

 

Well that is not necessarily true. Read this: http://www.tweak-uac.com/

 

You should complete all the steps in the READ & RUN ME and then post all the logs. The only two logs (out of the 6) that you will not be able to get are the two online scanners (BitDefender and Panda). CounterSpy is only one of the scans required.

 

What is "RUN"?

We don't ask for a Spybot log. Only the logs requested in the READ ME and itemized below in message # 21 are requested.

 

Do you mean Run command seen when you click the Start button and when you select Run the Run box opens?

 

Why did you delete and how?

You don't normally delete it. You just set an option to either show it or not show it. Right Click Start and select Properties. Then click Start Menu and click Customize. Then click the Advanced tab. Under Start menu items: put a check in the box for Run command

The above are directions for older Windows OS's. Hopefully Vista is still basically the same.