Internet Explorer Hijacked (read&run first sticky completed)

Hello Everyone,

*Read Me & Run Me First Sticky* COMPLETED​

Over the weekend April'01'06 I was infected with some spyware the symptoms of which were :-

A search toolbar in my IE
All searches when clicked upon were being redirected to various sites

Note: When I would search from Yahoo or Google the search yieled perfect results only when I would click on them I would end up on spyware sites.

I ran Adware, Spybot and fixed everything they came up with. VOILA the spyware toolbar was removed. I thought "wow all my problems are solved" unlike last time when I was effected with Spysherrif and had to format my PC. But I was wrong, my PC is still running slower than before and my IE still redirects me when I click on search results from search engines like Yahoo and Google.

By the way the spyware ToolBar had no particular name it just read REMOVE TOOLBAR on the left side of the search box where it says Google on the Google toolbar. Obviously when I clicked on it, it didn't remove.

I also ran HijackThis and deleted dubious DLLs and files such as redirection addresses they started off with 85.117.***.** but still my IE is the same. I then removed IE from Add/Remove and Windows Components and re-installed it again from there and that didnt work either. I have Norton 2004 with updated definations, Norton firewall and I scanned my system and it found nothing.

Then I found about majorgeeks.com I read other people's problems and was happy for everyone that thanked MODs for solving them I can imagine how they must feel. So I went to the Read Me & Run Me First Sticky and tried everything from Windows Denfender and it found nothing. Ran Windows Malicious software removal which found nothing. Bitdefender didnt find anything but Panda did.

Here is my Panda and Hijack log.

 

I deleted manually all the files that Panda mentioned cookies, the dll file and the exe file and it WORKED. Panda is seriously amazing for sure and also thanks to everyone at Major Geeks for helping me in the right direction. I have a 3ghz p4 with HT, 1.5GB ram, 200GB HDD and when a system like this slows down it really hurts because I spent lots of $$$ on this. Still anyone is more than welcome to tell me what exactly this malware was and anything else, more than welcome. thanks again.

P.S Opps in the confusion I forgot to upload the Activison log, sorry about that. But it mentioned about 25 files which I deleted manually and everything seems cool now.

 

I have another problem now, anytime I try I open my My Computer and then and go to the C drive and press CTRL F to search for a particualr file the window freezes computer is fine so I have to CRTL ALT DEL to close the window but the PC operates fine after that. Any suggesstions.

 

any suggestions, any one?

 

Hello

I ran fixit the program for WareOut as you said I might have had it. I had attachted the log, I deleted the files it mentioned to search by name or size manually apparently now the search window when CTRL F is pressed doesnt freeze that window any more. everything is cool for now. I have nother problem that I didnt have before. Even though I have real player 10 websites that play songs on real player suggest that I upgrade to 6.7 above but I already am. Before these sites would just play the songs. any ideas. thanks for suggested wareout really appreciate it.

 

Hello Chaslang,

All the files in the post from fixit attached in my last post.

 

I will be posting my Panda ActiveScan log very soon.

 

here it is

 

​

Oh I am sorry I might have forgotten that part even though I was reading everything and Yes I did delete IPSEC6.EXE What can I do now?


Okay I just checked my C:\WINDOWS\SYSTEM32\ for IPSEC6.EXE and it is there.... 43KB

 

Great I appreciate your help greatly. Would you know why my real player wouldnt be working even though I have the latest free version which is 10. the program works fine but some sites are telling me to upgrade it to a 6.7 version or later when I try to stream songs before the virus this never happened.