Explorer Partially opening pages

[fred flinstone]

Hi I have IE6 Winxp with all updates and have scanned for viruses 3
times and ran adaware, spybot and microsofts anti spyware. What is
happening is when I go to certain webpages only the top portion of the
page will load or sometimes none at all except the background. I was
going to try firefox and opera so I could try to redownload IE as I
also can't get on to microsofts page. On some pages such as msn.com
the page loads except for the pic in the middle, microsofts site it
loads some stuff but not enough to get around. Can someone please help
as this is really frusterating.

 

[Jan Il]

Hi fred

If you ar sure your system is bug free, then you might try the following and
see if it helps:

If you have Zone Alarm Pro:

Zone Alarm Pro can block Images in IE

1. Go into IE>Tools>Internet Options>Security>Custom level>reset custom
level to Medium or Low
2. Go into IE>Tools>Internet Options>Privacy>set the slider to Medium or Low
3. Go to this site and read on adjusting the Privacy settings in ZA. It will
explain how to customize on a per site basis.
http://www.donhoover.net/privacy.html

also....

Cannot open webpages

Courtesy of MVP Doug Knox -

Go to Start|Run and type Cmd then OK.
In the Cmd window that opens, type (or just copy/paste all of
this with a return after the last one):

Regsvr32 SOFTPUB.DLL
Regsvr32 Wintrust.dll
Regsvr32 Initpki.dll
Regsvr32 Dssenh.dll
Regsvr32 Rsaenh.dll
Regsvr32 Gpkcsp.dll
Regsvr32 Sccbase.dll
Regsvr32 Slbcsp.dll
Regsvr32 Mssip32.dll
Regsvr32 Cryptdlg.dll

or....

"The Page Cannot Be Displayed" Error Message When You Try to View Web Page
on a Secure Web Site
http://support.microsoft.com/kb/303807/

How to troubleshoot problems accessing secure Web pages with IE6 SP2
http://support.microsoft.com/?kbid=870700

Problems accessing secure sites or cannot install 128 bit encryption
http://inetexplorer.mvps.org/answers2.htm

or..

Courtesy of Franks Saunders -

Check for a file named HOSTS with no extension (not Hosts.sam). It may be a
hidden file. Open it with Notepad and remove any line referencing the site.
Or, rename HOSTS to OLDHOSTS

Courtesy of Sandi -

For advice specific problems with secure sites
have a look at the first link -
http://inetexplorer.mvps.org/answers2.htm#secure_sites
for general advice, have a look at the second:
http://inetexplorer.mvps.org/answers.htm#dns

Hope this helps

Jan
Smiles are meant to be shared,
that's why they're so contagious.

Replies are posted only to the newsgroup for the benefit or other readers.
How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm

 

[fred flinstone]

Hi and Thanks,
I am using NIS2004 Thanks for posting the links to Microsoft but they
are useless to me as I can't open thier pages. I have attached a pic
of what i was refering to about msn.com and I also have a pic of what
i see on the microsoft website
Thanks

 

[fred flinstone]

Hi fred

If you ar sure your system is bug free, then you might try the following and
see if it helps:

If you have Zone Alarm Pro:

Zone Alarm Pro can block Images in IE

1. Go into IE>Tools>Internet Options>Security>Custom level>reset custom
level to Medium or Low
2. Go into IE>Tools>Internet Options>Privacy>set the slider to Medium or Low
3. Go to this site and read on adjusting the Privacy settings in ZA. It will
explain how to customize on a per site basis.
http://www.donhoover.net/privacy.html

also....

Cannot open webpages

Courtesy of MVP Doug Knox -

Go to Start|Run and type Cmd then OK.
In the Cmd window that opens, type (or just copy/paste all of
this with a return after the last one):

Regsvr32 SOFTPUB.DLL
Regsvr32 Wintrust.dll
Regsvr32 Initpki.dll
Regsvr32 Dssenh.dll
Regsvr32 Rsaenh.dll
Regsvr32 Gpkcsp.dll
Regsvr32 Sccbase.dll
Regsvr32 Slbcsp.dll
Regsvr32 Mssip32.dll
Regsvr32 Cryptdlg.dll

or....

"The Page Cannot Be Displayed" Error Message When You Try to View Web Page
on a Secure Web Site
http://support.microsoft.com/kb/303807/

How to troubleshoot problems accessing secure Web pages with IE6 SP2
http://support.microsoft.com/?kbid=870700

Problems accessing secure sites or cannot install 128 bit encryption
http://inetexplorer.mvps.org/answers2.htm

or..

Courtesy of Franks Saunders -

Check for a file named HOSTS with no extension (not Hosts.sam). It may be a
hidden file. Open it with Notepad and remove any line referencing the site.
Or, rename HOSTS to OLDHOSTS

Courtesy of Sandi -

For advice specific problems with secure sites
have a look at the first link -
http://inetexplorer.mvps.org/answers2.htm#secure_sites
for general advice, have a look at the second:
http://inetexplorer.mvps.org/answers.htm#dns

Hope this helps

Jan
Smiles are meant to be shared,
that's why they're so contagious.

Replies are posted only to the newsgroup for the benefit or other readers.
How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm

 

[fred flinstone]

Hi and Thanks,
I am using NIS2004 thanks for posting the links but they are useless
to me as I can't seem to open any microsofts web pages, I tried the
cmd thingy to no avail

Any other suggestions ? Please !!

 

[Jan Il]

Hi fred

Hi and Thanks,
I am using NIS2004 thanks for posting the links but they are useless
to me as I can't seem to open any microsofts web pages, I tried the
cmd thingy to no avail

Any other suggestions ? Please !!

Can you get access to another machine that you can look up the links I
posted? They may be the help you need to resolve your problem.

I'm afraid that I don't have any further suggestions at this point, but,
perhaps someone else here will have a Registry fix that will help so that
you don't have to go to the Internet.

Hope you find the answer to your problem soon Good luck!

Jan
Smiles are meant to be shared,
that's why they're so contagious.





I

 

[fred flinstone]

On Sun, 27 Feb 2005 01:36:19 GMT, fred flinstone <[email protected]>
wrote:
I now have reinstalled NIS thinking it maybe a firewall problem but no
luck, Anyone have suggestions (thanks Jan)

 

[Don Varnau]

Hi,
A few other things you might try...
Clear the IE cache (TIF folder.) IE> Tools> Internet Options> General>
Delete files (and delete offline content when that dialog pops up) It's
often recommended that the TIF folder be kept at about 50 MB (Settings.)

Deleting the TIF folder may help.
See: http://mvps.org/winhelp2002/delcache.htm

Since you mentioned a missing image at msn.com, see if anything at
http://www.fjsmjs.com/IE/redx.htm helps.

Put microsoft in Trusted Sites. From Internet Options> Security> Trusted
Sites> Sites> uncheck "Require server verification (https for all sites"
then add (for example) " *.microsoft.com " (without the quotes) to this
zone.

Disable NIS- right-click the systray icon or get into NIS settings and
restart with NIS disabled.

Are you running any other security/privacy/ad-blocker programs that might be
causing this? Take a look at programs running in the background. It's easy
to forget that they're there. ;-)

Are you sure that you're free of malware? Start at
http://forum.aumha.org/viewtopic.php?t=4075 Then go to
http://www.aumha.org/a/quickfix.htm work through the preliminary cleaning
steps and post a HijackThis log to the forum at
http://forum.aumha.org/viewforum.php?f=30

A repair/reinstall of IE may help. http://windowsxp.mvps.org/IEFAQ.htm >>>
tip #12

Hope this helps,
Don
[MS MVP- IE/OE]

 

[fred flinstone]

Hi and Thanks Also,
I cleared the cache before, I don't thinks its a trusted problem as
part of the page opens (just the banner) when I went to mvps.org like
you suggested all i got was a gray banner with a computer on the left
side and a sliver of a blue I assume dialog box. It's almost as if
someone put a piece of paper over the bottom 3/4 of the screen. It's
appearing as if the pages load as it shows on the bottom left images
downloaded (or whatever it is) and then when thats done its just a
blank screen. As i mentioned some sites will partially load like
msn.com and others like Opera.com, firefox.com pretty much all of
microsofts are blank except the background color. I disabled NIS and
even reinstalled as my ISP thought that may be a problem. I went to
windowsxp.mvps.org and d/l IE again and still the same thing is
happening, however it appears I have a nice looking search bar and
some nice colorful icons on the tool bar now lol. All I am running is
NIS 2004 and I just installed Microsoft antispyware after this
started, And I always used adaware and I just ran spybot. I am sure
this will be something quite simple but in the mean time it is driving
me to drink lol

Hi,
A few other things you might try...
Clear the IE cache (TIF folder.) IE> Tools> Internet Options> General>
Delete files (and delete offline content when that dialog pops up) It's
often recommended that the TIF folder be kept at about 50 MB (Settings.)

Deleting the TIF folder may help.
See: http://mvps.org/winhelp2002/delcache.htm

Since you mentioned a missing image at msn.com, see if anything at
http://www.fjsmjs.com/IE/redx.htm helps.

Put microsoft in Trusted Sites. From Internet Options> Security> Trusted
Sites> Sites> uncheck "Require server verification (https for all sites"
then add (for example) " *.microsoft.com " (without the quotes) to this
zone.

Disable NIS- right-click the systray icon or get into NIS settings and
restart with NIS disabled.

Are you running any other security/privacy/ad-blocker programs that might be
causing this? Take a look at programs running in the background. It's easy
to forget that they're there. ;-)

Are you sure that you're free of malware? Start at
http://forum.aumha.org/viewtopic.php?t=4075 Then go to
http://www.aumha.org/a/quickfix.htm work through the preliminary cleaning
steps and post a HijackThis log to the forum at
http://forum.aumha.org/viewforum.php?f=30

A repair/reinstall of IE may help. http://windowsxp.mvps.org/IEFAQ.htm >>>
tip #12

Hope this helps,
Don
[MS MVP- IE/OE]

Hi and Thanks,
I am using NIS2004 thanks for posting the links but they are useless
to me as I can't seem to open any microsofts web pages, I tried the
cmd thingy to no avail

Any other suggestions ? Please !!

 

[fred flinstone]

Hi Don,
I can't "see" the webpage forum.aumha.org so I am posting my hijack
log here, if you could please help me it would be greatly appreciated
Thanks

Logfile of HijackThis v1.99.1
Scan saved at 1:11:06 PM, on 2/27/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\sstray.exe
C:\PROGRA~1\DATACA~1\FLashKsk.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Norton Internet Security\Norton
AntiVirus\navapsvc.exe
C:\PROGRA~1\TELUSE~1\SMARTB~1\MotiveSB.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Common Files\Symantec Shared\Security
Center\SymWSC.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\DvzCommon\DvzMsgr.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Silicon Image\SiISATARaid\SATARaid.exe
C:\Program Files\Palm\HOTSYNC.EXE
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\TELUS eCare\bin\mpbtn.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Mark\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = 127.0.0.1
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} -
C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: AcroIEToolbarHelper Class -
{AE7CD045-E861-484f-8273-0445EE161910} - C:\Program
Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} -
C:\Program Files\Norton Internet Security\Norton
AntiVirus\NavShExt.dll
O2 - BHO: ToolHelper - {CDEEC43D-3572-4E95-A2A5-F519D29F00C0} -
C:\PROGRA~1\ADVANC~1\Toolbar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -
C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} -
C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus -
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton
Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Advanced Searchbar -
{43F02779-6D88-4958-8AD3-83C12D86ADC7} - C:\Program Files\Advanced
Searchbar\Toolbar.dll
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [DataCaching] C:\PROGRA~1\DATACA~1\FLashKsk.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI
Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program
Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program
Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program
Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft
AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [Motive SmartBridge]
C:\PROGRA~1\TELUSE~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec
Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet
Security\UrlLstCk.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor]
C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe"
/background
O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI
Multimedia\RemCtrl\ATIRW.exe
O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI
Multimedia\main\launchpd.exe"
O4 - Startup: HotSync Manager.lnk = C:\Program Files\Palm\HOTSYNC.EXE
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program
Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program
Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program
Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Dataviz Messenger.lnk =
C:\WINDOWS\DvzCommon\DvzMsgr.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program
Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft
Office\Office10\OSA.EXE
O4 - Global Startup: SATARaid.lnk = ?
O4 - Global Startup: TELUS eCare.lnk = C:\Program Files\TELUS
eCare\bin\matcli.exe
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
- C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Advanced Searchbar -
{43F02779-6D88-4958-8AD3-83C12D86ADC7} - C:\Program Files\Advanced
Searchbar\Toolbar.dll
O9 - Extra 'Tools' menuitem: Advanced Searchbar -
{43F02779-6D88-4958-8AD3-83C12D86ADC7} - C:\Program Files\Advanced
Searchbar\Toolbar.dll
O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} -
C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL
O9 - Extra button: @btrez.dll,-4015 -
{CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 -
{CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683}
- C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger -
{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider
'xfire_lsp_9028.dll' missing
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
-
http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1099973950874
O20 - Winlogon Notify: LBTServ - C:\Program Files\Common
Files\Logitech\Bluetooth\lbtserv.dll
O23 - Service: Ati HotKey Poller - Unknown owner -
C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner -
C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. -
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec
Corporation - C:\Program Files\Common Files\Symantec
Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation
- C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec
Corporation - C:\Program Files\Common Files\Symantec
Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec
Corporation - C:\Program Files\Common Files\Symantec
Shared\ccSetMgr.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. -
C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) -
Symantec Corporation - C:\Program Files\Norton Internet
Security\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program
Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec
Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec
Corporation - C:\Program Files\Common Files\Symantec
Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program
Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation -
C:\Program Files\Common Files\Symantec Shared\Security
Center\SymWSC.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner -
C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)

Hi,
A few other things you might try...
Clear the IE cache (TIF folder.) IE> Tools> Internet Options> General>
Delete files (and delete offline content when that dialog pops up) It's
often recommended that the TIF folder be kept at about 50 MB (Settings.)

Deleting the TIF folder may help.
See: http://mvps.org/winhelp2002/delcache.htm

Since you mentioned a missing image at msn.com, see if anything at
http://www.fjsmjs.com/IE/redx.htm helps.

Put microsoft in Trusted Sites. From Internet Options> Security> Trusted
Sites> Sites> uncheck "Require server verification (https for all sites"
then add (for example) " *.microsoft.com " (without the quotes) to this
zone.

Disable NIS- right-click the systray icon or get into NIS settings and
restart with NIS disabled.

Are you running any other security/privacy/ad-blocker programs that might be
causing this? Take a look at programs running in the background. It's easy
to forget that they're there. ;-)

Are you sure that you're free of malware? Start at
http://forum.aumha.org/viewtopic.php?t=4075 Then go to
http://www.aumha.org/a/quickfix.htm work through the preliminary cleaning
steps and post a HijackThis log to the forum at
http://forum.aumha.org/viewforum.php?f=30

A repair/reinstall of IE may help. http://windowsxp.mvps.org/IEFAQ.htm >>>
tip #12

Hope this helps,
Don
[MS MVP- IE/OE]

Hi and Thanks,
I am using NIS2004 thanks for posting the links but they are useless
to me as I can't seem to open any microsofts web pages, I tried the
cmd thingy to no avail

Any other suggestions ? Please !!

 

[Don Varnau]

Here's the HJT analysis from PA Bear. I hope it's still readable in plain
text.
http://aumha.net/viewtopic.php?t=11986

<IMHO>Got enuff heavy-handed Symantec crapware on there? (NAV's Script
Blocking may be causing some, but certainly not all, of his problems.)
</IMHO>

The hijacker is Unknown Toolbar. All of the manual removal steps on that
page may be necessary. YMMV.
http://www3.ca.com/securityadvisor/pest/pest.aspx?id=453078631

1. If listed in Add/Remove Programs, uninstall <spit> Advanced Search
Toolbar (cf. C:\Program Files\Advanced Searchbar). Safe Mode/ShowHiddenFiles
environment may be necessary; If so, do not reboot into Windows!

2. [Still in Safe Mode, if necessary above,] Close all browser, messenger
and mediaplayer windows/applications and scan again with HijackThis (HT).
Check-to-fix:
O2 - BHO: ToolHelper - {CDEEC43D-3572-4E95-A2A5-F519D29F00C0} -
C:\PROGRA~1\ADVANC~1\Toolbar.dll
O3 - Toolbar: Advanced Searchbar - {43F02779-6D88-4958-8AD3-83C12D86ADC7} -
C:\Program Files\Advanced Searchbar\Toolbar.dll*
O9 - Extra button: Advanced Searchbar -
{43F02779-6D88-4958-8AD3-83C12D86ADC7} - C:\Program Files\Advanced
Searchbar\Toolbar.dll*
O10 - Broken Internet access because of LSP provider 'xfire_lsp_9028.dll'
missing
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner -
C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)
Do not close HT or reboot!

*MS Windows AntiSpyware Beta v1.0.509 with current definitions would, I
imagine, have fixed these two entries (same CSLID) cos Giant AntiSpyware
did. YMMV.

3. In case #1 above failed, HT: Config > Misc Tools > Delete a file on
reboot > navigate to and select:
C:\Program Files\Advanced Searchbar\Toolbar.dll <=this file (if found)
Do not close HT!

4. Leaving HT open, reboot the machine.

5. If still present, manually delete
C:\Program Files\Advanced Searchbar <=this folder
6. Run the following command to reset winsock2 (WinXP SP2 only!):
Start > Run > (type in) cmd > (type or paste in) netsh winsock reset catalog

[Enter] > OK your way out and reboot.

7. Scan again with HT. Post the new log to this thread.

Don
[MS MVP- IE/OE]

Hi Don,
I can't "see" the webpage forum.aumha.org so I am posting my hijack
log here, if you could please help me it would be greatly appreciated
Thanks

Logfile of HijackThis v1.99.1
Scan saved at 1:11:06 PM, on 2/27/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

[SNIP]

 

[Fred]

Thanks Don I appreciate what you did for me I am not certain but the
toolbar thing that PA bear mentions I think is from when I went to a site
that had IE so I could try reinstalling but this was after all the problems.
In the end I did what was probably the quickest and definetly would do the
best job......Good old trusty format It's a pain in the butt but I had
only formatted a few months ago and have 3 drives so most everything is on
my other drives. Thanks Again for the help it was most appreciated

Here's the HJT analysis from PA Bear. I hope it's still readable in plain
text.
http://aumha.net/viewtopic.php?t=11986

<IMHO>Got enuff heavy-handed Symantec crapware on there? (NAV's Script
Blocking may be causing some, but certainly not all, of his problems.)
</IMHO>

The hijacker is Unknown Toolbar. All of the manual removal steps on that
page may be necessary. YMMV.
http://www3.ca.com/securityadvisor/pest/pest.aspx?id=453078631

1. If listed in Add/Remove Programs, uninstall <spit> Advanced Search
Toolbar (cf. C:\Program Files\Advanced Searchbar). Safe Mode/ShowHiddenFiles
environment may be necessary; If so, do not reboot into Windows!

2. [Still in Safe Mode, if necessary above,] Close all browser, messenger
and mediaplayer windows/applications and scan again with HijackThis (HT).
Check-to-fix:
O2 - BHO: ToolHelper - {CDEEC43D-3572-4E95-A2A5-F519D29F00C0} -
C:\PROGRA~1\ADVANC~1\Toolbar.dll
O3 - Toolbar: Advanced Searchbar -

{43F02779-6D88-4958-8AD3-83C12D86ADC7} -

C:\Program Files\Advanced Searchbar\Toolbar.dll*
O9 - Extra button: Advanced Searchbar -
{43F02779-6D88-4958-8AD3-83C12D86ADC7} - C:\Program Files\Advanced
Searchbar\Toolbar.dll*
O10 - Broken Internet access because of LSP provider 'xfire_lsp_9028.dll'
missing
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner -
C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)
Do not close HT or reboot!

*MS Windows AntiSpyware Beta v1.0.509 with current definitions would, I
imagine, have fixed these two entries (same CSLID) cos Giant AntiSpyware
did. YMMV.

3. In case #1 above failed, HT: Config > Misc Tools > Delete a file on
reboot > navigate to and select:
C:\Program Files\Advanced Searchbar\Toolbar.dll <=this file (if found)
Do not close HT!

4. Leaving HT open, reboot the machine.

5. If still present, manually delete
C:\Program Files\Advanced Searchbar <=this folder
6. Run the following command to reset winsock2 (WinXP SP2 only!):
Start > Run > (type in) cmd > (type or paste in) netsh winsock reset catalog

[Enter] > OK your way out and reboot.

7. Scan again with HT. Post the new log to this thread.

Don
[MS MVP- IE/OE]

Hi Don,
I can't "see" the webpage forum.aumha.org so I am posting my hijack
log here, if you could please help me it would be greatly appreciated
Thanks

Logfile of HijackThis v1.99.1
Scan saved at 1:11:06 PM, on 2/27/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

[SNIP]

 

[Guest]

Well i don't know if it is usefull, but i have the same problem than Fred
BUT: it is an Internet connection wich is shared by Xp. The DSL modem is on
USB port. The others PC are connected via Ethernet. The thing which is
"funny" is that the problem (IE doesn't display some sites or display
partially, and some others are perfectly displayed) only occurs on the
peripherals PC! More, i have connected a laptop which works perfectly at
another place, and which show the same problem when connected here!?! And
now: what to do? (i don't want to by a routeur-modem in place of my USB
modem!)