Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Internet browser problems Hijckthis log inside [RESOLVED]

Started by wrs143 , Sep 21 2008 10:48 AM

This topic is locked

#1
wrs143

Posted 21 September 2008 - 10:48 AM

Member

Member
27 posts

I am currently having problems connecting to the internet from my computer. I am on another computer to get my log to you. I have ran tests on my modem and it says that all the connections are fine but when I go on my browser there is problems. I currently have microsoft internet explorer and firefox loaded on my computer, this is because i tried firefox thinking it was just an internet explorer error. When I go to go online I will get page not found with any site I try to access, but my other programs such as aim to connect work fine so my connection to the internet should be ok to go. So any help would be appreciated; below is my hijackthis log.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:14:15 PM, on 9/21/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\DSL Tools\DSL Tools\app\TangoService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\TangoManager.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\AIM\aim.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=6061221
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://aimtoday.aol....p...07&nlogin=1
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [TangoManager] C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\TANGOM~1.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky...can_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoft...s/as2stubie.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Tango Service (TangoService) - Unknown owner - C:\Program Files\DSL Tools\DSL Tools\app\TangoService.exe

--
End of file - 8448 bytes

#2
emeraldnzl

Posted 21 September 2008 - 06:04 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello wrs143,

I am having a look at your log and will get back to you in a bit.

regards
emeraldnzl

#3
emeraldnzl

Posted 21 September 2008 - 06:41 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello again wrs143,

Can't see anything much at first sight.

By the way, just a thought, but have you checked to make sure your browsers aren't being blocked by one of your anti-malware programs?

Now

Your Java is out of date, older versions are vunerable to attack.

Please download JavaRa to your desktop and unzip it to its own folder

Run JavaRa.exe, pick the language of your choice and click Select. Then click Remove Older Versions.
Accept any prompts.
Open JavaRa.exe again and select Search For Updates.
Select Update Using Sun Java's Website then click Search and click on the Open Webpage button. Download and install the latest Java Runtime Environment (JRE) version for your computer.

Next

Your Adobe Acrobat Reader is out of date. Older versions are vunerable to attack.

Please go to the link below to update.

http://www.adobe.com.../readstep2.html

Lastly in this post

Please download Runscanner to your desktop and run it.

When the first page comes up select Beginner Mode
On the next page select Save a binary .Run file (Recommended) then click Start full scan at the top.
At this time Runscanner.exe may request access to the Internet through your firewall please allow it to do so, it will then run for two or three minutes.
On completion it will ask for a location to save the file and a name. It will do this for both the .run file and the log file
Call the .run file "Select a name" and save it to your desktop. You will see the .run file on your desktop. Upload that file here.

#4
wrs143

Posted 22 September 2008 - 05:17 PM

Member

Topic Starter
Member
27 posts

Thanks for the response I am currently downloading the 3 files you told me to get from another computer right now so I will install them on my computer as soon as possible and get your response back quickly. Also I dont think any of my malware programs were interfearing with it I played around with the settings and also uninstalled them quick to see if it made a diffrence, but no luck.

#5
emeraldnzl

Posted 22 September 2008 - 05:23 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Okie dokie.

Look forward to hearing from you in due course.

#6
wrs143

Posted 22 September 2008 - 05:25 PM

Member

Topic Starter
Member
27 posts

Also another thing I dont think I will be able to get the newest version of Java by the way it looks since I can not get any internet access on my home computer that is giving me the troubles to install the newest version as it is stated in the process since the one step involves connecting to their site. I will have a follow up post with the other steps as soon as possible.

#7
emeraldnzl

Posted 22 September 2008 - 06:20 PM

GeekU Instructor

GeekU Moderator
20,051 posts

#8
wrs143

Posted 24 September 2008 - 12:46 PM

Member

Topic Starter
Member
27 posts

Runscanner logfile http://www.runscanner.net

* = signed file
- = file not found

General info
------------
Computer name : WILLIAM
Creation time : 9/22/2008 9:33:31 PM
Hosts 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 6.0.2900.5512
OS : Microsoft Windows XP
OS Build : 2600
OS SP : Service Pack 3
RunScanner Version : 1.7.0.0
User Language : English (United States)
User rights : Administrator
Windows folder : C:\WINDOWS

Running processes
-----------------
* C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
* C:\WINDOWS\System32\alg.exe (Microsoft Corporation)
* C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (Symantec Corporation)
* C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
* C:\WINDOWS\system32\dllhost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
* C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe (Sun Microsystems, Inc.)
* C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)
* C:\WINDOWS\ehome\mcrdsvc.exe (Microsoft Corporation)
* C:\WINDOWS\eHome\ehRecvr.exe (Microsoft Corporation)
* C:\WINDOWS\eHome\ehSched.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
* C:\WINDOWS\system32\NOTEPAD.EXE (Microsoft Corporation)
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel Corporation)
* C:\DOCUME~1\Will\LOCALS~1\Temp\Temporary Directory 1 for runscanner.zip\RunScanner.exe (Runscanner.net)
* C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
* C:\WINDOWS\system32\services.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
* C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
* C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
* C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
* C:\Program Files\Common Files\Symantec Shared\ccProxy.exe (Symantec Corporation)
* C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
* C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\TangoManager.exe (Efficient Networks Inc.)
C:\Program Files\DSL Tools\DSL Tools\app\TangoService.exe
* C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
* C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
* c:\windows\System32\smss.exe (Microsoft Corporation)
* C:\WINDOWS\system32\wuauclt.exe (Microsoft Corporation)
* C:\WINDOWS\system32\wdfmgr.exe (Microsoft Corporation)
* C:\WINDOWS\system32\wbem\wmiprvse.exe (Microsoft Corporation)

Unrated items
-------------
002 C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe (InstallShield Software Corporation)
002 C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)
002 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\TANGOM~1.EXE (Efficient Networks Inc.)
003 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
005 C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
005 C:\Program Files\Microsoft Office\Office\OSA.EXE
010 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe (ASP.NET State Service)
010 C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe (GoogleDesktopManager)
010 C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe (Intel® Matrix Storage Event Monitor)
010 C:\Program Files\DSL Tools\DSL Tools\app\TangoService.exe (Tango Service)
011 C:\WINDOWS\system32\drivers\ASCTRM.sys (ASCTRM)
011 C:\WINDOWS\System32\DLA\DLABOIOM.SYS (DLABOIOM)
011 C:\WINDOWS\System32\Drivers\DLACDBHM.SYS (DLACDBHM)
011 C:\WINDOWS\System32\DLA\DLADResN.SYS (DLADResN)
011 C:\WINDOWS\System32\DLA\DLAIFS_M.SYS (DLAIFS_M)
011 C:\WINDOWS\System32\DLA\DLAOPIOM.SYS (DLAOPIOM)
011 C:\WINDOWS\System32\DLA\DLAPoolM.SYS (DLAPoolM)
011 C:\WINDOWS\System32\Drivers\DLARTL_N.SYS (DLARTL_N)
011 C:\WINDOWS\System32\DLA\DLAUDF_M.SYS (DLAUDF_M)
011 C:\WINDOWS\System32\DLA\DLAUDFAM.SYS (DLAUDFAM)
011 C:\WINDOWS\System32\Drivers\DRVMCDB.SYS (DRVMCDB)
011 C:\WINDOWS\System32\Drivers\DRVNDDM.SYS (DRVNDDM)
011 C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys (DSproct)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\ENDETECT.SYS (ENDETECT)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\L2XPSR.SYS (L2XPSR)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\lognt.sys (LOGNT)
011 C:\WINDOWS\system32\DRIVERS\mhndrv.sys (MHN driver)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\NTSTPL1.SYS (NTSTPL1)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\NTSTPL2.SYS (NTSTPL2)
011 C:\WINDOWS\System32\Drivers\PxHelp20.sys (PxHelp20)
011 C:\WINDOWS\system32\drivers\samhid.sys (samhid)
011 C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS (SASDIFSV)
011 C:\Program Files\SUPERAntiSpyware\SASENUM.SYS (SASENUM)
011 C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys (SASKUTIL)
011 C:\WINDOWS\system32\DRIVERS\enethusb.sys (Speedstream Ethernet USB Adapter)
011 C:\PROGRA~1\DSLTOO~1\DSLTOO~1\app\TAPBIND1.SYS (TAPBIND)
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
031 C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) {0A9007C0-4076-11D3-8789-0000F8105754}
035 C:\WINDOWS\system32\mscories.dll (Microsoft Corporation) {89B4C1CD-B018-4511-B0A1-5476DBF70820}
047 Zone: objects.aol.com : *.objects.aol.com
050 C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}
052 C:\Program Files\BAE\BAE.dll (Dell Inc.) {CA6319C0-31B7-401E-A518-A07C3DB8F777}
052 C:\WINDOWS\System32\DLA\DLASHX_W.DLL (Sonic Solutions) {5CA3D70E-1895-11CF-8E15-001234567890}
061 C:\WINDOWS\System32\DLA\DLASHX_W.DLL (Sonic Solutions) {5CA3D70E-1895-11CF-8E15-001234567890}
061 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1D2680C9-0E2A-469d-B787-065558BC7D43}
061 C:\WINDOWS\system32\audiodev.dll (Microsoft Corporation) {640167b4-59b0-47a6-b335-a6b3c0695aea}
061 C:\WINDOWS\system32\audiodev.dll (Microsoft Corporation) {cc86590a-b60a-48e6-996b-41d25ed39a1e}
067 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
100 ProxyServer HKCU : 192.168.254.254:80
104 C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll (Kaspersky Lab) {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75}
104 GUID / CLSID not found {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
105 E&xport to Microsoft Excel : res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
121 C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL (Google)
173 GUID / CLSID not found
173 C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu
221 GUID / CLSID not found
221 C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu
227 GUID / CLSID not found
227 C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu

Missing files
-------------
011 C:\WINDOWS\system32\drivers\Abiosdsk.sys
011 C:\WINDOWS\system32\drivers\Atdisk.sys
011 C:\WINDOWS\system32\drivers\bvrp_pci.sys
011 C:\ComboFix\catchme.sys
011 C:\WINDOWS\system32\drivers\Changer.sys
011 C:\WINDOWS\system32\drivers\lbrtfdc.sys
011 C:\WINDOWS\system32\drivers\PCIDump.sys
011 C:\WINDOWS\system32\drivers\PDCOMP.sys
011 C:\WINDOWS\system32\drivers\PDFRAME.sys
011 C:\WINDOWS\system32\drivers\PDRELI.sys
011 C:\WINDOWS\system32\drivers\PDRFRAME.sys
011 C:\WINDOWS\system32\drivers\Simbad.sys
011 C:\WINDOWS\system32\drivers\WDICA.sys
061 deskpan.dll
104 C:\WINDOWS\Downloaded Program Files\as2stubie.dll

#9
emeraldnzl

Posted 24 September 2008 - 01:51 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hi wrs143,

Are you able to upload the .run file here?

Let me know if you are having difficulties.

regards
emeraldnzl

#10
wrs143

Posted 24 September 2008 - 03:53 PM

Member

Topic Starter
Member
27 posts

Here is the .run file

Attached Files

runscanner.run 154.35KB 159 downloads

#11
emeraldnzl

Posted 25 September 2008 - 12:54 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hi wrs143,

Download the attachment at the end of this post (this will be your runscanner file fixed by me)

Save it to your desktop then double click the runscanner icon this will run the program.
You will notice several entries in red and in blue.
Click the button at the top called Fix selected items
Accept the warning(s) and repeat until they are all gone.
Reboot your PC

Now

I can not get any internet access on my home computer

You ran ComboFix yourself.

Do not use ComboFix unless under expert supervision. There is good reason for this as ComboFix can, and sometimes does, run into conflict on a computer and render it unusable. We refuse help to people who disregard requirements. You will likely be refused help if you do this again.

In your case please see below.

ComboFix will disconnect the machine from the internet, this prevents fresh malware from coming in.
The connection shall be restored once ComboFix gets to the Find3M stage.
In the event that ComboFix terminates prematurely you can manually restore the connection by ...
* Going to Control Panel > Network Connections.
* Right click on their Network icons & select "Repair"

Posted Image

Alternately, if the Network icon appears in the notification area in the lower right corner of Desktop, right-click it, and then click Repair from the shortcut menu.

Posted Image

Let me know how your computer is working once you have carried out the repair.

#12
wrs143

Posted 27 September 2008 - 08:56 AM

Member

Topic Starter
Member
27 posts

i tried the .run file, deleted the selected items that you had, rebooted my computer and also ran the repair on my network but still having the same problem and nothing seems to have changed. I still cannot log onto either of my internet browsers.

Also I was not aware that I ran combofix on my computer sorry for any inconvience with that.

#13
emeraldnzl

Posted 28 September 2008 - 01:13 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hi wrs143,

Well ComboFix has definitely been run on that machine at sometime. It shows in the logs.

Lets try this.

Please go to Start > Control Panel > Network and Internet Connections > Network Connections. Then right-click on your default connection, usually Local Area Connection or Dial-up Connection if you are using dial-up, and left-click on the Properties option. Double-click on the Internet Protocol (TCP/IP) item and select the radio button that says "Obtain DNS servers automatically". Click OK twice, and restart your computer.

Go to Start > Run.... In the Open: field type cmd and press the OK button. This will open a Command Prompt.
Type or copy & paste the entire contents inside the QUOTE box below into the command window:

ipconfig /flushdns

Hit Enter and exit the Command Prompt.

#14
wrs143

Posted 29 September 2008 - 12:26 PM

Member

Topic Starter
Member
27 posts

i did the steps you recommended and under the TCP/IP it was already on "Obtain DNS Server Address Automatically" also I ran the flush and it ran sucuessfully under the comand prompt. But nothing changed on my internet acess. So I am not able to view pages still.