Here is an annoying problem.... when I boot up and every 15-20 minutes or so (if I am not on line) I get a warning box telling me there is "No connection to the internet available....." and lets me choose to "work offline" or "Retry".
This has been going on now for about a week. It's annoying the [bleep] out of me. Any idea what is trying to connect to the interent or where I can look to find this sneaky application? Think it could be a virus or a dailup program?
Logfile of HijackThis v1.99.1
Scan saved at 9:54:31 PM, on 4/28/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\_Internet\MS Defender AntiSpyware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\avgnt.exe
C:\_Internet\MS Defender AntiSpyware\MSASCui.exe
C:\_INTER~1\AVG\avgcc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\taskswitch.exe
C:\_Tools\Webroot\Spy Sweeper\SpySweeper.exe
C:\_Tools\RAM Idle\RAMIdle.exe
C:\_tools\WINPAT~1\winpatrol.exe
C:\_Tools\StartUp Guru\startupguru.exe
C:\_Tools\Webroot\Washer\wwDisp.exe
F:\Tools\a-squared\a2guard.exe
C:\_Tools\Spyware Doctor\swdoctor.exe
C:\_Tools\Starter\Starter.exe
C:\_Internet\Trend Micro AntiVirus\Tmas.exe
C:\_Applications\WordWeb\wweb32.exe
F:\_Applications\YCIII\YankClip.exe
C:\Program Files\OpenOffice 2.0\program\soffice.exe
C:\Program Files\OpenOffice 2.0\program\soffice.BIN
C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\sched.exe
C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\avguard.exe
C:\_INTER~1\AVG\avgamsvr.exe
C:\_INTER~1\AVG\avgupsvc.exe
C:\_INTER~1\AVG\avgemc.exe
C:\Program Files\Diskeeper10\DkService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\_Tools\Spyware Doctor\sdhelp.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\_Tools\Webroot\Spy Sweeper\WRSSSDK.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Lexmark 6200 Series\lxbumon.exe
C:\WINDOWS\system32\lxbucoms.exe
C:\Program Files\Lexmark 6200 Series\ezprint.exe
C:\_INTER~1\FIREFOX\FIREFOX.EXE
F:\_Applications\Salamander\SALAMAND.exe
C:\_Tools\FreeRam XP Pro\FreeRAM XP Pro 1.40.exe
C:\_Tools\HiJackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dsl.sbc.yahoo.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\_Internet\RoboForm\RoboForm.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\_Tools\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\_Internet\RoboForm\RoboForm.dll
O4 - HKLM\..\Run: [avgnt] "C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Windows Defender] "C:\_Internet\MS Defender AntiSpyware\MSASCui.exe" -hide
O4 - HKLM\..\Run: [AVG7_CC] C:\_INTER~1\AVG\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SpySweeper] "C:\_Tools\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [RAM Idle] C:\_Tools\RAM Idle\RAMIdle.exe
O4 - HKLM\..\Run: [WinPatrol] c:\_tools\WINPAT~1\winpatrol.exe
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper10\DkIcon.exe"
O4 - HKLM\..\Run: [LXBUCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [TrojanScanner] F:\Tools\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [Startup Guru] "C:\_Tools\StartUp Guru\startupguru.exe" /B
O4 - HKCU\..\Run: [Window Washer] C:\_Tools\Webroot\Washer\wwDisp.exe
O4 - HKCU\..\Run: [a-squared] "F:\Tools\a-squared\a2guard.exe"
O4 - HKCU\..\Run: [Spyware Doctor] "C:\_Tools\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [FreeRAM XP] "C:\_Tools\FreeRam XP Pro\FreeRAM XP Pro 1.40.exe" -win
O4 - Startup: BHODemon 2.0.lnk = C:\_Internet\BHODemon 2\BHODemon.exe
O4 - Startup: Hosts Manager.lnk = C:\WINDOWS\system32\drivers\etc\Host Applications\Host Manager1.0.1.2\HOSTS_Back.exe
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice 2.0\program\quickstart.exe
O4 - Startup: WordWeb.lnk = C:\_Applications\WordWeb\wweb32.exe
O4 - Startup: Yankee Clipper III.lnk = F:\_Applications\YCIII\YankClip.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Starter - CodeStuff.lnk = C:\_Tools\Starter\Starter.exe
O4 - Global Startup: Trend Micro Anti-Spyware.lnk = C:\_Internet\Trend Micro AntiVirus\Tmas.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\_Tools\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\_Internet\RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\_Internet\RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\_Internet\RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\_Internet\RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\_Internet\RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\_Internet\RoboForm\RoboFormComShowToolbar.html
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowso...nSSWebAgent.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://files.member....s/sbc/yinst.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety....lscbase3401.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{305582C0-5D2A-4D3C-84A2-674976DEAFDE}: NameServer = 68.94.156.1 68.94.157.1
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\_Internet\Anti_Vir\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\_INTER~1\AVG\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\_INTER~1\AVG\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\_INTER~1\AVG\avgemc.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper10\DkService.exe
O23 - Service: lxbu_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbucoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\_Tools\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\_Tools\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\_Tools\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
Thanks for any help you can give.
Sign In
Create Account
