1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

IP 207.46.197.32 resolves to different host names. Why? (HJT log in post #3)

Discussion in 'General Internet' started by mailman, 2007/04/16.

  1. 2007/04/16
    mailman Lifetime Subscription

    mailman Geek Member Thread Starter

    Joined:
    2004/01/17
    Messages:
    1,901
    Likes Received:
    11
    In Port Explorer, I noticed my computer's svchost process listening on the NTP port 123 to remote address: "azurik.net ". It seems it should be "time.windows.com" or another recognized NTP server. Therefore, I did some further investigating.

    The IP address "azurik.net" resolved to is 207.46.197.32 and the Whois shows both the host name and IP address as belonging to Microsoft.

    However, the 207.46.197.32 IP address resolves to a different host name almost every time.

    Here are the last 3 hops of several traceroutes I performed on IP 207.46.197.32 with Port Explorer.

    [FONT= "Courier New"]__________________________________________________ ________________
    [16-APR-2007][20:16]
    Tracing route to ageofempires.com [color= "#0000FF"][207.46.197.32][/color]

    10 196ms 193ms 205ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 212ms 204ms 201ms [color= "#0000FF"][207.46.197.32][/color] baldwinmuseumofscience.com

    ageofempires.com [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:33]
    Tracing route to alacris.com [color= "#0000FF"][207.46.197.32][/color]

    10 ****** 200ms ****** [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 207ms 198ms 203ms [color= "#0000FF"][207.46.197.32][/color] azurikriseofperathia.com

    alacris.com [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:34]
    Tracing route to revenue.bcentral.com [color= "#0000FF"][207.46.197.32][/color]

    10 ****** 193ms 194ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 212ms ****** 196ms [color= "#0000FF"][207.46.197.32][/color] academiczone.ch

    revenue.bcentral.com [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:35]
    Tracing route to baldwinmuseumofscience.com [color= "#0000FF"][207.46.197.32][/color]

    10 ****** ****** 202ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 198ms ****** 204ms [color= "#0000FF"][207.46.197.32][/color] 5iantlavalamp.com

    baldwinmuseumofscience.com [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:36]
    Tracing route to baldwinmuseumofscience.org [color= "#0000FF"][207.46.197.32][/color]

    10 203ms ****** 236ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 209ms ****** 206ms [color= "#0000FF"][207.46.197.32][/color] azurikriseofperathia.com

    baldwinmuseumofscience.org [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:39]
    Tracing route to attain.no [color= "#0000FF"][207.46.197.32][/color]

    10 ****** 200ms 194ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 208ms ****** 209ms [color= "#0000FF"][207.46.197.32][/color] adatum.com

    attain.no [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:42]
    Tracing route to adatum.org [color= "#0000FF"][207.46.197.32][/color]

    10 202ms 199ms 193ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 195ms ****** 193ms [color= "#0000FF"][207.46.197.32][/color] bcentral.de

    adatum.org [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:45]
    Tracing route to revenueavenue.bcentral.com [color= "#0000FF"][207.46.197.32][/color]

    10 190ms 185ms 180ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 188ms 183ms 186ms [color= "#0000FF"][207.46.197.32][/color] revenue.bcentral.com

    revenueavenue.bcentral.com [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________

    __________________________________________________ ________________
    [16-APR-2007][20:48]
    Tracing route to adatum.org [color= "#0000FF"][207.46.197.32][/color]

    10 187ms 182ms 185ms [207.46.35.37] ten9-3.cpk-76c-1a.ntwk.msn.net
    11 ****** ****** ****** Request Timed Out
    12 186ms ****** 190ms [color= "#0000FF"][207.46.197.32][/color] alpineskihouse.org

    adatum.org [color= "#0000FF"][207.46.197.32][/color] is 12 hops away
    Trace Complete
    __________________________________________________ ________________
    [/FONT]

    The traceroute is exactly 12 hops each time.

    If I continue to perform more traceroutes, often other host names will ppear.

    Notice the hop #12 host name is different than the "host name is 12 hops away" statement each time. This does not make sense to me. It seems inconsistent.

    I also get multiple host names when I resolve the 207.46.197.32 IP address with Port Explorer.

    Does anyone else get similar results as me when performing a traceroute on IP 207.46.197.32 or when resolving 207.46.197.32 to a host name?

    Can anyone give a reasonable explanation why the single 207.46.197.32 IP address resolves to so many different host names?
     
    Last edited: 2007/04/16
    mailman,
    #1
  2. 2007/04/16
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    That address does belong to MS, and pasting it my browser takes me to
    http://www.microsoft.com/en/us/default.aspx
    Are you re-directed when you paste that IP address?
    I would suggest running some virus scans, checking host file entries, etc.
     
    noahdfear,
    #2


  3. to hide this advert.

  4. 2007/04/16
    mailman Lifetime Subscription

    mailman Geek Member Thread Starter

    Joined:
    2004/01/17
    Messages:
    1,901
    Likes Received:
    11
    Hi, Dave.

    I went to http://207.46.197.32 and also ended up at http://www.microsoft.com/en/us/default.aspx so it does not appear I am being redirected.

    I regularly scan my system with several different reputable anti-malware apps and I have not recently discovered any anomalies.

    I use the MVPS HOSTS file. I scrolled through it in Notepad and it looks normal.

    Right now, my computer is listening via port 123 to azurik.org and here is the Whois info using the .ORG Whois server via Port Explorer:

    When I resolve 207.46.197.32 I get a different host name almost every time. What do you get when you do reverse lookups on IP 207.46.197.32?

    I'm wondering if my ISP's DNS is ill.

    EDIT: According to http://www.domaintools.com/reverse-ip/ for IP 207.46.197.32



    FYI, here is my HJT log (with HJT renamed to "killa.exe "). Nothing jumps out at me except possibly the fact that I have two O17 entries for my DNS. Perhaps there is something in the HJT log I am missing. (I'm certainly not a HJT expert.)

    Logfile of HijackThis v1.99.1
    Scan saved at 11:11:49 PM, on 4/16/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16414)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\3Com_DMI\3CDMINIC.EXE
    C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
    C:\WINDOWS\System32\imapi.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
    C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\UPHClean\uphclean.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\wwSecure.exe
    C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
    C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Logitech\iTouch\iTouch.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\Logitech\MouseWare\system\em_exec.exe
    C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
    C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
    C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
    C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
    C:\Program Files\Softwin\BitDefender8\bdmcon.exe
    C:\Program Files\Softwin\BitDefender8\bdnagent.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
    C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
    C:\Program Files\FinePixViewer\QuickDCF.exe
    C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
    C:\Program Files\SpywareGuard\sgmain.exe
    C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
    C:\PROGRA~1\HEWLET~1\Toolbox\STATUS~1\STATUS~1.EXE
    C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
    C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\Port Explorer\PortExplorer.exe
    C:\Program Files\Courier Email\Courier.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\HJT\killa.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
    O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe "
    O4 - HKLM\..\Run: [DeviceDiscovery] "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe "
    O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
    O4 - HKLM\..\Run: [zBrowser Launcher] "C:\Program Files\Logitech\iTouch\iTouch.exe "
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe "
    O4 - HKLM\..\Run: [WinPatrol] "C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe "
    O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
    O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe "
    O4 - HKLM\..\Run: [AcronisTimounterMonitor] "C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe "
    O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe "
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe "
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe "
    O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe "
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender8\bdmcon.exe "
    O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender8\bdnagent.exe "
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe "
    O4 - HKLM\..\Run: [TomcatStartup 2.5] C:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
    O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" /startintray
    O4 - HKCU\..\Run: [X-Cleaner Deluxe] "C:\PROGRA~1\X-CLEA~1\XCleaner_full.exe" -turbo -autostart -NOREBOOT
    O4 - Startup: eDexter.lnk = C:\Program Files\Pyrenean\eDexter\eDexter.exe
    O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
    O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
    O4 - Global Startup: APC UPS Status.lnk = ?
    O4 - Global Startup: Device Detector 2.lnk = C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
    O4 - Global Startup: Exif Launcher.lnk = C:\Program Files\FinePixViewer\QuickDCF.exe
    O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll
    O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
    O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
    O11 - Options group: [INTERNATIONAL] International*
    O15 - Trusted Zone: http://www.bankoffrank.com
    O15 - Trusted Zone: http://www.bitdefender.com
    O15 - Trusted Zone: http://support.f-secure.com
    O15 - Trusted Zone: http://www.kaspersky.com
    O15 - Trusted Zone: http://u3.sandisk.com
    O15 - Trusted Zone: http://www.siteadvisor.com
    O15 - Trusted Zone: http://www.symantec.com
    O15 - Trusted Zone: http://download.windowsupdate.com
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1093270777734
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155357443671
    O17 - HKLM\System\CCS\Services\Tcpip\..\{7448A3E0-19C0-496E-8BE6-0D156085F564}: NameServer = (My DNS #1) (My DNS #2)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{CC9EBFD1-8406-4327-A016-E03F5EB2987D}: NameServer = (My DNS #1) (My DNS #2)
    O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
    O23 - Service: 3Com DMI Agent (3ComDMIService) - 3Com Corporation - C:\WINDOWS\system32\3Com_DMI\3CDMINIC.EXE
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE
    O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
    O23 - Service: Washer Security Access (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
     
    Last edited: 2007/04/17
    mailman,
    #3
  5. 2007/04/16
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Log looks clean.

    I can't say I understand all that. Maybe someone else can explain it. :rolleyes:
     
    noahdfear,
    #4
  6. 2007/04/16
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    It is perfectly normal to have one IP address for multiple domain names, it's referred to as Virtual hosting.
     
    Arie,
    #5
  7. 2007/04/17
    mailman Lifetime Subscription

    mailman Geek Member Thread Starter

    Joined:
    2004/01/17
    Messages:
    1,901
    Likes Received:
    11
    Thanks, guys.

    I appreciate your input because I can rest easier knowing I don't have indications of malware.

    Now I just have to figure out why my clock won't synchronize. I keep getting
    "An error occured..." when I attempt time synchronization. Perhaps my firewall is interfering (since that has been the culprit in the past). I'll look at it later when I have a bit more time.

    Thanks again!
     
    mailman,
    #6
  8. 2007/04/17
    Whiskeyman Lifetime Subscription

    Whiskeyman Inactive Alumni

    Joined:
    2005/09/10
    Messages:
    1,772
    Likes Received:
    37
    Whiskeyman,
    #7
  9. 2007/04/17
    mailman Lifetime Subscription

    mailman Geek Member Thread Starter

    Joined:
    2004/01/17
    Messages:
    1,901
    Likes Received:
    11
    Thanks, Whiskeyman! It's good to know I'm not alone with my issue.

    I successfully sync'd with time-a.timefreq.bldrdoc.gov and I will edit my registry later as described in that forum thread you linked. It appears I can have only a maximum of three NTP servers listed under the Internet Time tab by simply pasting under that tab.
    Arie, thanks again for your explanation. I will research "virtual hosting" to gain more understanding.
     
    mailman,
    #8

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...