cannot display page

[coopers]

I recently received a hijacker. I ran shredder, spybot and adaware6 to clean it out. It worked. A few days later I cannot access web pages that require a user name or passwork. I checked my security settings and reloaded internet explorer 6. Any other suggestions on what might be the problem?

[BigFred]

Hi coopers

Welcome to VirtualDr

Could be that your cookies have been cleaned out, or set to not allow cookies. Session cookies should be OK. You will need to login when you go to the page. To set your cookie level go to Tools/privacy. Medium should be OK. BF

[coopers]

Cookies are all set to allow acceptance, security level set to low. Still no luck. Thanks, anyhow. Any other suggestions?

[dunedin]

Hi,

Since you had a hijacker, try running Hijack This in case something is still there. Post the whole log it creates back here.

http://mjc1.com/mirror/hjt/

Elaine

[coopers]

Thanks Elaine,

Here's the log.

Logfile of HijackThis v1.97.7
Scan saved at 8:07:31 PM, on 4/27/04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\MOUSE\SYSTEM\EM_EXEC.EXE
C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE
C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAM FILES\WINZIP\WINZIP32.EXE
C:\WINDOWS\TEMP\HIJACKTHIS.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [EM_EXEC] C:\MOUSE\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.macromedia.com/pub...sh/swflash.cab

Please let me know if you see something that shouldn't be there.

[dunedin]

Hi,

Well, the log looks clean to me.
I can`t find any information about this problem.

A couple of suggestions.

1. Have you started using a pop-up stopper? That could do it.

2. If you know the name of the hijacker you removed, have a look for information on it. Sometimes you have to repair damage done by these nasties.

Elaine

[coopers]

Thanks Elaine. I appreciate your help. I will keep trying to track down the damage done.