I'm new to the board, I know a little bit about computers but not alot. But when I ask about computer help on other mb's I always get links to this place, so I figure I might as well sign up and see what you guys think..
This dialer that pops up in a box has "Please select your country" but with no "ok" or "accept" or anything like that, just a X to close the window. Now clicking that X all day long does nothing, I have to Ctrl+Alt+del to end the process on it. But 10 min later it comes back up..
I've got SypBot S&D and clean this thing about 2 times a week. I also have Hijack This which I've cleaned everything but like 3-4 things off of it. I dont run a virus protection software on this computer mostly because its slow enough, same with a firewall. (this is a laptop, Toshiba Staellite.)
Here is the Hijack List. (I dont know how to copy and paste it into here so I had to write this all out, so if there is a misspelled word sorry.)
RO-HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1-HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
RO-HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1-HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
RO-HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = http://213.159.117.134/index.php
RO-HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = http://213.159.117.134/index.php
02-BHO: (no name) - {4D9FE0E6-8C41-FA15-COCC-2760D6F9B85F} - C:WINDOWS\sysee.dll
04-HKLM\..\Run: [CeEPOWER] C:WINDOWS\System32\CePMTray.exe
04-HKLM\..\Run: [Pinger] c:\toshiba\ivp\ism\pinger.exe/run
04-HKLM\..\Run: [SysTime] C:\WINDOWS\System32\systime.exe
04-HKCU\..\Run: [SysTime] C:\WINDOWS\System32\systime.exe
017-HKLM\System\CCS\Services\Tcpip\..\{CA826FEB-6568-4D43-83F0-8A6889FBDED9}: NameServer = 205.188.146.146
The pop up dialer that I get, the only thing thats on the computer that I can find for it is the name its listed as on my C:.. "124715" When I looked at the prop's of the file I get a link something like this.."http://directplugin.com/124715" (I cant find the prop's of the file again to get the whole link, but thats most of it..
I dont know how to copy my Process list, so if someone will tell me how I'll post it.
Can someone tell me what this internet dialer is and how to kill it?? I run SP S&D and clean the computer. It says it cant get one or 2 things clean, so I rebot in safemod, and run SP S&D and it gets them clean, I restart, and it works fine, untill I get online and then the dialer pops back up after 10 min....
Someone please help??
This dialer that pops up in a box has "Please select your country" but with no "ok" or "accept" or anything like that, just a X to close the window. Now clicking that X all day long does nothing, I have to Ctrl+Alt+del to end the process on it. But 10 min later it comes back up..
I've got SypBot S&D and clean this thing about 2 times a week. I also have Hijack This which I've cleaned everything but like 3-4 things off of it. I dont run a virus protection software on this computer mostly because its slow enough, same with a firewall. (this is a laptop, Toshiba Staellite.)
Here is the Hijack List. (I dont know how to copy and paste it into here so I had to write this all out, so if there is a misspelled word sorry.)
RO-HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1-HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
RO-HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1-HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
RO-HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = http://213.159.117.134/index.php
RO-HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = http://213.159.117.134/index.php
02-BHO: (no name) - {4D9FE0E6-8C41-FA15-COCC-2760D6F9B85F} - C:WINDOWS\sysee.dll
04-HKLM\..\Run: [CeEPOWER] C:WINDOWS\System32\CePMTray.exe
04-HKLM\..\Run: [Pinger] c:\toshiba\ivp\ism\pinger.exe/run
04-HKLM\..\Run: [SysTime] C:\WINDOWS\System32\systime.exe
04-HKCU\..\Run: [SysTime] C:\WINDOWS\System32\systime.exe
017-HKLM\System\CCS\Services\Tcpip\..\{CA826FEB-6568-4D43-83F0-8A6889FBDED9}: NameServer = 205.188.146.146
The pop up dialer that I get, the only thing thats on the computer that I can find for it is the name its listed as on my C:.. "124715" When I looked at the prop's of the file I get a link something like this.."http://directplugin.com/124715" (I cant find the prop's of the file again to get the whole link, but thats most of it..
I dont know how to copy my Process list, so if someone will tell me how I'll post it.
Can someone tell me what this internet dialer is and how to kill it?? I run SP S&D and clean the computer. It says it cant get one or 2 things clean, so I rebot in safemod, and run SP S&D and it gets them clean, I restart, and it works fine, untill I get online and then the dialer pops back up after 10 min....
Someone please help??
