Have i been hijacked or Hacked?

[wannabgeek]

Hi i seem to be having some probs with Security issues, i hope you can help me as i am very worried !
Today i did a adaware scan and it brought up 2 critical 'reg data windows software polices etc' which is really strange as i never get any criticals on any of my Security progs which are:Adaware,Spybot,Microsoft Antispy,spyblaster,cwsshredder,a-squared,ccleaner and of course i have a firewall (Kerio free) and a AV(norton) which are all regulary updated ! Any way when i found the 2 Criticals i Quaratined tham and ran all the Appliances and then cleaned up all old webpages,cookies,tracks etc with CCleaner SnD. But now when i tried to access my Bank home page nothing happens or another example is i tried to access my Catalogue website and got taken to another page! But what is really worrying is i looked into my trusted sites (where i keep the https secure urls) and my paypal address was changed to this: 'https://*.paypal.com ' ! By the way i use Firefox as my default Browser and also still use ie! Thanks for your help on this matter !
If this IS Dodgy i may go back to ie as i never had no probs for years using that !
PS i forgot to mention in spybot/ignore products i unticked 3 boxes: Newnet/Sidestep & mysearch i think they were in the PUPS section! Would that be the cause?
Ps I have done a HT log if you want i can post it!

[XA04]

First off, go to http://housecall.trendmicro.com in Internet Explorer and do a full virus scan, it will check for spyware etc too.

Check your hosts file, located at:
C:\WINDOWS\system32\drivers\etc

its just called "hosts" no extension, open it in notepad. It should look like this:

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

If not, just copy mine and replace it, then try again.

(Oh and about the PayPal thing, it should be ok since HTTPS is secure, and it was on the paypal website)

[wannabgeek]

Hi Thanks for your help! Sorry i didnt post sooner!

I did just that with nothing found,but i also ran a2 and it found 2 Riskware errors :
1/ C:\Program Files\Creative\SBAudigy2\Program\WDM\COMMON\killapps.exe RiskWare.Tool.KillApp.c "Would this be caused because i recently disabled 'CT HELPER' with Spybot"!

2/C:\WINDOWS\system32\KILLAPPS.EXE RiskWare.Tool.KillApp.c

I have removed them but do i need to instal another Audigy Driver? Although the sounds still sound fine and are in 5-1 mode!

Also Antispy is coming up with 3 Activex errors:

1/ Internet Explorer ActiveX Program OSInfo ActiveX Control Module by hiChannel has been denied permission to be installed. "I think this one is a Mobo prog i used in the past"
2/ {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}
This is an unknown ActiveX " Not sure of this!

Appreciate your help!