|
#1
July 10th, 2003, 08:07 AM
|
||||
|
||||
|
Not Going Anywhere
Lately I'll be on the net and I'll try to go to a site, my internet connection icon is lite up as though I'm going to the site but when I bring up the status window there is nothing being sent or received. does anyone know what could be causing this?
going nowhere 
|
|
#2
July 10th, 2003, 02:59 PM
|
||||
|
||||
|
Well you made it here, that's a start.
 "Internet conection icon" what is that? What browser do you use and what is your operating system?
__________________
|
|
#3
July 10th, 2003, 05:38 PM
|
||||
|
||||
|
tram- That icon is the 2 computers icon in the corner that Windows uses when a dial-up connection is present. If the computers are flashing it means data is being sent or received. For example the Windows Xp icon is next to the clock at the bottom of this picture that is what he's talking about. So the problem is either Windows thinks it is transfering data when it isn't...or something is actually transfering data. I think it's the second one.
kuzzz- Please Download Startup List and Hijack This Post both their logs here (don't remove anything with Hijack unless we tell you to)
|
|
#4
July 10th, 2003, 07:06 PM
|
||||
|
||||
|
enat66 I am going to put this as gentle as possible. Let kuzzz answer the questions. Do these programs you pointed to work with Apples? Get the point enat66?!? Have a pleasant day.
|
|
#5
July 10th, 2003, 10:13 PM
|
||||
|
||||
|
Like he said above it’s the flashing pc’s icon. I use IE. When you click on the icon a box comes up to show you how long you’ve been on the net and if data is being sent and received. When I click on a link the icon lights up as thought it is transmitting but when I bring up the box it shows nothing going out or coming in. and it does not take me to the link. The progress bar at the bottom of the page keeps going back in forth as if it’s loading something but I never go anywhere.
|
|
#7
July 11th, 2003, 12:31 AM
|
||||
|
||||
|
Logfile of HijackThis v1.95.0
Scan saved at 3:22:33 PM, on 7/10/2003 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\ati2evxx.exe C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\system32\qttask.exe C:\WINDOWS\System32\Atiptaxx.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe D:\MSOFFICE\Office\OSA.EXE C:\Program Files\Apoint\Apntex.exe D:\Image Expert\IXApplet.exe C:\Program Files\Juno\bin\juno.exe C:\Program Files\Yahoo!\Messenger\ypager.exe D:\WinZip\WINZIP32.EXE C:\DOCUME~1\DODIJO~1\LOCALS~1\Temp\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://red.clientapps.yahoo.com/customize/ie/defaults/sb/ymsgr/*http://www.yahoo.com/ext/search/search.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://red.clientapps.yahoo.com/customize/ie/defaults/sp/ymsgr/*http://www.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://my.juno.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://red.clientapps.yahoo.com/customize/ie/defaults/stp/ymsgr*http://my.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar=http://red.clientapps.yahoo.com/customize/ie/defaults/sb/ymsgr/*http://www.yahoo.com/ext/search/search.html R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://red.clientapps.yahoo.com/customize/ie/defaults/sp/ymsgr/*http://www.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL=http://red.clientapps.yahoo.com/customize/ie/defaults/stp/ymsgr*http://my.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL=http://red.clientapps.yahoo.com/customize/ie/defaults/su/ymsgr/*http://www.yahoo.com R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default)=http://red.clientapps.yahoo.com/customize/ie/defaults/su/ymsgr/*http://www.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=http://www.sony.com/vaiopeople O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [QuickTime Task] C:\WINDOWS\system32\qttask.exe O4 - HKLM\..\Run: [ZTgServerSwitch] c:\program files\support.com\client\lserver\server.vbs O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [AtiPTA] Atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe" O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exe O4 - HKLM\..\Run: [PopUpKiller] D:\PopUp Killer\PopUpKiller.EXE O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printra y.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet O4 - Startup: Camio Viewer.lnk = D:\Image Expert\IXApplet.exe O4 - Global Startup: Office Startup.lnk = D:\MSOFFICE\Office\OSA.EXE O4 - Global Startup: Microsoft Find Fast.lnk = D:\MSOFFICE\Office\FINDFAST.EXE O8 - Extra context menu item: Yahoo! Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM) O9 - Extra button: Related (HKLM) O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM) O9 - Extra button: Real.com (HKLM) O12 - Plugin for .bcf: C:\Program Files\Internet Explorer\Plugins\NPBelv32.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://download.yahoo.com/dl/installs/yinst.cab O16 - DPF: {A031D222-B496-11D2-9CC8-00105A10AAF6} (WONWebLauncher Class) - http://www.flipside.com/cab/WONWebLauncherControl.cab O16 - DPF: {A17E30C4-A9BA-11D4-8673-60DB54C10000} (YahooYMailTo Class) - http://us.dl1.yimg.com/download.yaho...ymmapi_416.dll O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/tech...a/SymAData.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/s...sh/swflash.cab O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/tech...ActiveData.cab StartupList report, 7/10/2003, 3:24:03 PM StartupList version: 1.52 Started from : C:\DOCUME~1\DODIJO~1\LOCALS~1\Temp\StartupList.EXE Detected: Windows XP (WinNT 5.01.2600) Detected: Internet Explorer v6.00 (6.00.2600.0000) * Using default options ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\ati2evxx.exe C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\system32\qttask.exe C:\WINDOWS\System32\Atiptaxx.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe D:\MSOFFICE\Office\OSA.EXE C:\Program Files\Apoint\Apntex.exe D:\Image Expert\IXApplet.exe C:\Program Files\Juno\bin\juno.exe C:\Program Files\Yahoo!\Messenger\ypager.exe D:\WinZip\WINZIP32.EXE C:\DOCUME~1\DODIJO~1\LOCALS~1\Temp\HijackThis.exe C:\DOCUME~1\DODIJO~1\LOCALS~1\Temp\StartupList.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Dodi Jones\Start Menu\Programs\Startup] Camio Viewer.lnk = D:\Image Expert\IXApplet.exe Shell folders Common Startup: [C:\Documents and Settings\All Users\Start Menu\Programs\Startup] Office Startup.lnk = D:\MSOFFICE\Office\OSA.EXE Microsoft Find Fast.lnk = D:\MSOFFICE\Office\FINDFAST.EXE -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run Apoint = C:\Program Files\Apoint\Apoint.exe QuickTime Task = C:\WINDOWS\system32\qttask.exe ZTgServerSwitch = c:\program files\support.com\client\lserver\server.vbs ATIModeChange = Ati2mdxx.exe AtiPTA = Atiptaxx.exe ccApp = "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" ccRegVfy = "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe" NeroCheck = C:\WINDOWS\System32\NeroCheck.exe PopUpKiller = D:\PopUp Killer\PopUpKiller.EXE PrinTray = C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printra y.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background Yahoo! Pager = C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=(None) drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry key not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll - {BDF3E430-B101-42AD-A544-FADC6B084872} -------------------------------------------------- Enumerating Task Scheduler jobs: Critical Battery Alarm Program.job Norton SystemWorks One Button Checkup.job Norton AntiVirus - Scan my computer.job Symantec NetDetect.job -------------------------------------------------- Enumerating Download Program Files: [YInstStarter Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\yinsthelper.dll CODEBASE = http://download.yahoo.com/dl/installs/yinst.cab [WONWebLauncher Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\WONWebLauncherControl.ocx CODEBASE = http://www.flipside.com/cab/WONWebLauncherControl.cab [YahooYMailTo Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ymmapi.dll CODEBASE = http://us.dl1.yimg.com/download.yaho...ymmapi_416.dll [HeartbeatCtl Class] InProcServer32 = C:\WINDOWS\DOWNLO~1\hrtbeat.ocx CODEBASE = http://fdl.msn.com/zone/datafiles/heartbeat.cab [ActiveDataInfo Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\SymAData.dll CODEBASE = https://www-secure.symantec.com/tech...a/SymAData.dll [Shockwave Flash Object] InProcServer32 = C:\WINDOWS\System32\macromed\flash\swflash.ocx CODEBASE = http://download.macromedia.com/pub/s...sh/swflash.cab [ActiveDataObj Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ActiveData.dll CODEBASE = https://www-secure.symantec.com/tech...ActiveData.cab -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- End of report, 6,244 bytes Report generated in 0.080 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only
|
|
#8
July 11th, 2003, 01:05 AM
|
||||
|
||||
|
Hi kuzzz - I have had a look at your startups and I can not see anything that is obviously causing your problem. If you dont use the Vaio support agent, you could permanently disable the below entry via msconfig. It is regarded as spyware.
ZTgServerSwitch = c:\program files\support.com\client\lserver\server.vbs To find out whether not it's a software conflict, you could try disabling all running 3rd party programs and rebooting. If the problem does not occur, enable each (one at a time) and reboot until you find the culprit.
__________________
Moderator: Vista Forum Microsoft MVP - Windows Desktop Experience 2004-2008 If we have helped you, please consider supporting Cyber Tech Help with a subscription Please do not send me Emails or Private Messages for personal support. Last time I checked, there were still only 24 hours in a day. Thank you. How to help prevent re-infection
|
|
#9
July 11th, 2003, 05:45 AM
|
||||
|
||||
|
1. Clear your Internet Temp files:
-- Tools | Internet Options - Delete Files 2. Check Security TAB - MEDIUM?? 3. Check Privacy TAB - MEDIUM??
__________________
Help at Murf's Garage Microsoft MVP - 2004-2008 "Moderator - Windows 98, XP, Vista, Hardware" Posting results - helps othersPlease consider supporting CTH with a Subscription.
|
|
#11
July 13th, 2003, 05:44 AM
|
||||
|
||||
|
Hi kuzzz - Start > Run and type:
msconfig then OK. Uncheck ZTgServerSwitch and reboot. Did you try Murf's suggestions?
__________________
Moderator: Vista Forum Microsoft MVP - Windows Desktop Experience 2004-2008 If we have helped you, please consider supporting Cyber Tech Help with a subscription Please do not send me Emails or Private Messages for personal support. Last time I checked, there were still only 24 hours in a day. Thank you. How to help prevent re-infection
|
|
#14
July 13th, 2003, 05:58 AM
|
||||
|
||||
|
Sorry kuzzz, I missed out a step. Click on the Startup Tab. It could also be Support.com or Server.vbs.
__________________
Moderator: Vista Forum Microsoft MVP - Windows Desktop Experience 2004-2008 If we have helped you, please consider supporting Cyber Tech Help with a subscription Please do not send me Emails or Private Messages for personal support. Last time I checked, there were still only 24 hours in a day. Thank you. How to help prevent re-infection
|
 |
| Bookmarks |
«
Previous Topic
|
Next Topic
»
| Topic Tools | |
|
|
All times are GMT +1. The time now is 07:33 AM.
[
RSS ]
