1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Solved Unable to access Anitvirus websites

Discussion in 'Malware and Virus Removal Archive' started by pjtucker, 2009/04/30.

Thread Status:
Not open for further replies.
  1. 2009/04/30
    pjtucker

    pjtucker Inactive Thread Starter

    Joined:
    2009/04/30
    Messages:
    3
    Likes Received:
    0
    [Resolved] Unable to access Anitvirus websites

    I am unable to access any antivirus websites and my Norton software seems deactivated. I have run DDS and enclose the logs - any chance of some help?Thanks.

    DDS (Ver_09-03-16.01) - NTFSx86
    Run by Phil & Geraldine at 9:47:21.42 on 30/04/2009
    Internet Explorer: 7.0.5730.11
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.504 [GMT 1:00]


    ============== Running Processes ===============

    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\brsvc01a.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\brss01a.exe
    svchost.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    C:\WINDOWS\System32\svchost.exe -k HPZ12
    C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\WINDOWS\System32\svchost.exe -k HPZ12
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\TODDSrv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
    C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
    C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
    C:\WINDOWS\system32\TPSMain.exe
    C:\WINDOWS\system32\ZoomingHook.exe
    C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
    C:\WINDOWS\system32\TCtrlIOHook.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
    C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
    C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
    C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
    C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\Common Files\Hewlett-Packard\HP Device Communication Services\Appinterfaces\HPDeviceService.exe
    C:\WINDOWS\system32\TPSBattM.exe
    C:\Program Files\Hewlett-Packard\HP Easy Printer Care\HPPRun.exe
    C:\Program Files\Common Files\Hewlett-Packard\HP Device Communication Services\AppInterfaces\HPDeviceHost.exe
    C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
    C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
    C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
    C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
    C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBPRO.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Phil & Geraldine\Desktop\dds.scr

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://www.tiscali.co.uk/broadband
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\tbFre1.dll
    BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\tbFre1.dll
    BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\16.5.0.135\coIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\16.5.0.135\IPSBHO.DLL
    BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
    BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\16.5.0.135\coIEPlg.dll
    TB: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\tbFre1.dll
    EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\toscdspd.exe
    uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [CTSyncU.exe] "c:\program files\creative\sync manager unicode\CTSyncU.exe "
    uRun: [DeleteHistoryFree] c:\program files\deletehistoryfree\dhf.exe
    mRun: [igfxtray] c:\windows\system32\igfxtray.exe
    mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
    mRun: [igfxpers] c:\windows\system32\igfxpers.exe
    mRun: [RTHDCPL] RTHDCPL.EXE
    mRun: [Alcmtr] ALCMTR.EXE
    mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
    mRun: [PadTouch] c:\program files\toshiba\touch and launch\PadExe.exe
    mRun: [CeEKEY] c:\program files\toshiba\e-key\CeEKey.exe
    mRun: [<NO NAME>]
    mRun: [HWSetup] c:\program files\toshiba\toshiba applet\HWSetup.exe hwSetUP
    mRun: [SVPWUTIL] c:\program files\toshiba\windows utilities\SVPWUTIL.exe SVPwUTIL
    mRun: [TPNF] c:\program files\toshiba\touchpad\TPTray.exe
    mRun: [TPSMain] TPSMain.exe
    mRun: [Zooming] ZoomingHook.exe
    mRun: [SmoothView] c:\program files\toshiba\toshiba zooming utility\SmoothView.exe
    mRun: [TCtryIOHook] TCtrlIOHook.exe
    mRun: [TFncKy] TFncKy.exe
    mRun: [Tvs] c:\program files\toshiba\tvs\TvsTray.exe
    mRun: [NDSTray.exe] NDSTray.exe
    mRun: [DDWMon] c:\program files\toshiba\toshiba direct disc writer\\ddwmon.exe
    mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe "
    mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
    mRun: [AGRSMMSG] AGRSMMSG.exe
    mRun: [adiras] adiras.exe
    mRun: [KnexStarter] c:\program files\common files\hewlett-packard\hp device communication services\appinterfaces\HPDeviceService.exe
    mRun: [RunTasktray] "c:\program files\hewlett-packard\hp easy printer care\hpprun.exe" --regkeypath=software\hewlett-packard\hp easy printer care\HPPRun --valuename=InstallTTM
    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
    mRun: [Symantec PIF AlertEng] "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe" /a /m "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\AlertEng.dll "
    mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe "
    mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
    mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
    mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe "
    mRun: [Z Chilly IPE ]
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    StartupFolder: c:\docume~1\phil&g~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office11\ONENOTEM.EXE
    StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\dslmon.lnk - c:\program files\sagem\sagem f@st 800-840\dslmon.exe
    StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\nikonm~1.lnk - c:\program files\common files\nikon\monitor\NkMonitor.exe
    IE: Append to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
    Trusted Zone: hp.com
    DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab
    DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
    DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
    DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} - hxxp://www.symantec.com/techsupp/activedata/nprdtinf.cab
    DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - hxxp://www.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab
    DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
    DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} - hxxps://webdl.symantec.com/activex/symdlmgr.cab
    DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1176308533562
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
    DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    TCP: NameServer = 85.255.0.0,85.255.0.0
    TCP: {5C2FB6EC-07FA-4B30-982F-5579A62EAA1D} = 85.255.0.0,85.255.0.0
    Handler: HPDCS - {ba135f49-a12c-4e26-a2c4-6ea945999072} - c:\program files\common files\hewlett-packard\hp device communication services\app\hpdcsapp.dll
    Handler: hppfile - {C4E2084B-ED27-4893-A43D-488CA3F370E2} - c:\program files\hewlett-packard\hp easy printer care\HPPCtrls.dll
    Handler: hppsam - {C4E2084B-ED27-4893-A43D-488CA3F370E2} - c:\program files\hewlett-packard\hp easy printer care\HPPCtrls.dll
    Handler: hppzip - {C4E2084B-ED27-4893-A43D-488CA3F370E2} - c:\program files\hewlett-packard\hp easy printer care\HPPCtrls.dll
    Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - c:\program files\norton internet security\engine\16.5.0.135\CoIEPlg.dll
    Notify: igfxcui - igfxdev.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

    ============= SERVICES / DRIVERS ===============

    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1005000.087\SymEFA.sys [2009-3-22 310320]
    R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\nis\1005000.087\BHDrvx86.sys [2009-3-22 258608]
    R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nis\1005000.087\cchpx86.sys [2009-3-22 482352]
    R1 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20090420.001\IDSXpx86.sys [2009-4-24 276344]
    R2 Norton Internet Security;Norton Internet Security;c:\program files\norton internet security\engine\16.5.0.135\ccSvcHst.exe [2009-3-22 115560]
    R2 Symantec Core LC;Symantec Core LC;c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe [2006-12-1 1251720]
    R2 tdudf;TOSHIBA UDF File System Driver;c:\windows\system32\drivers\tdudf.sys [2006-4-18 98816]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-2-26 101936]
    S3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090428.023\NAVENG.SYS [2009-4-29 89104]
    S3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090428.023\NAVEX15.SYS [2009-4-29 876144]

    =============== Created Last 30 ================

    2009-04-29 05:46 <DIR> --d----- c:\program files\IEHistoryX.v2.0.1.29.WinAll.Cracked.Repack-WRATH
    2009-04-29 05:38 <DIR> --d----- c:\program files\IEHistoryX
    2009-04-29 05:37 <DIR> --d----- c:\program files\IEHistoryX.v1.4.15.3.WinAll.Cracked-MAZE
    2009-04-29 05:06 367 ---shr-- C:\autorun.inf
    2009-04-28 21:49 54,156 a---h--- c:\windows\QTFont.qfn
    2009-04-28 21:49 1,409 a------- c:\windows\QTFont.for
    2009-04-17 23:33 <DIR> --d----- c:\windows\MSSecurityNS
    2009-04-17 23:33 <DIR> --d----- c:\windows\MSSecurityNi
    2009-04-15 17:25 2,560 -------- c:\windows\system32\xpsp4res.dll
    2009-04-04 20:40 <DIR> --d----- c:\program files\Conduit
    2009-04-04 20:40 <DIR> --d----- c:\program files\Freecorder
    2009-04-04 20:40 <DIR> --d----- c:\windows\Freecorder Toolbar
    2009-04-04 20:40 <DIR> --d----- c:\program files\Freecorder Toolbar

    ==================== Find3M ====================

    2009-04-29 12:20 20 ----h--- c:\docume~1\alluse~1\applic~1\PKP_DLdu.DAT
    2009-04-21 19:47 20 ----h--- c:\docume~1\alluse~1\applic~1\PKP_DLdw.DAT
    2009-03-22 21:55 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS
    2009-03-22 21:55 60,808 a------- c:\windows\system32\S32EVNT1.DLL
    2009-03-22 21:55 7,386 a------- c:\windows\system32\drivers\SYMEVENT.CAT
    2009-03-22 21:55 805 a------- c:\windows\system32\drivers\SYMEVENT.INF
    2009-03-12 10:03 36,400 a----r-- c:\windows\system32\drivers\SymIM.sys
    2009-03-06 15:22 284,160 a------- c:\windows\system32\pdh.dll
    2009-03-03 01:18 826,368 a------- c:\windows\system32\wininet.dll
    2009-02-20 19:09 78,336 a------- c:\windows\system32\ieencode.dll
    2009-02-09 13:10 729,088 a------- c:\windows\system32\lsasrv.dll
    2009-02-09 13:10 714,752 a------- c:\windows\system32\ntdll.dll
    2009-02-09 13:10 617,472 a------- c:\windows\system32\advapi32.dll
    2009-02-09 13:10 401,408 a------- c:\windows\system32\rpcss.dll
    2009-02-09 12:13 1,846,784 a------- c:\windows\system32\win32k.sys
    2009-02-06 12:11 110,592 a------- c:\windows\system32\services.exe
    2009-02-06 12:06 2,145,280 a------- c:\windows\system32\ntoskrnl.exe
    2009-02-06 11:39 35,328 a------- c:\windows\system32\sc.exe
    2009-02-06 11:32 2,023,936 a------- c:\windows\system32\ntkrnlpa.exe
    2009-02-03 20:59 56,832 a------- c:\windows\system32\secur32.dll
    2007-11-22 00:22 371,929 a------- c:\program files\IEHistoryX.exe
    2008-09-06 18:28 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008090620080907\index.dat

    ============= FINISH: 9:47:56.01 ===============


    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_09-03-16.01)

    Microsoft Windows XP Home Edition
    Boot Device: \Device\HarddiskVolume1
    Install Date: 01/09/2006 21:48:54
    System Uptime: 30/04/2009 08:42:45 (1 hours ago)

    Motherboard: TOSHIBA | | HTW20
    Processor: Genuine Intel(R) CPU T2300 @ 1.66GHz | U2E1 | 1662/mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 75 GiB total, 25.116 GiB free.
    D: is CDROM ()

    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    RP649: 29/01/2009 19:31:21 - System Checkpoint
    RP650: 01/02/2009 22:36:28 - System Checkpoint
    RP651: 03/02/2009 17:11:13 - System Checkpoint
    RP652: 04/02/2009 23:37:06 - System Checkpoint
    RP653: 06/02/2009 15:33:25 - System Checkpoint
    RP654: 09/02/2009 13:34:37 - System Checkpoint
    RP655: 10/02/2009 01:55:50 - Installed DeleteHistoryFree
    RP656: 11/02/2009 09:56:56 - System Checkpoint
    RP657: 12/02/2009 09:55:00 - Software Distribution Service 3.0
    RP658: 12/02/2009 10:20:43 - Removed DeleteHistoryFree
    RP659: 13/02/2009 11:59:03 - System Checkpoint
    RP660: 15/02/2009 21:46:51 - System Checkpoint
    RP661: 17/02/2009 10:38:58 - System Checkpoint
    RP662: 19/02/2009 18:45:39 - System Checkpoint
    RP663: 23/02/2009 13:53:16 - System Checkpoint
    RP664: 24/02/2009 15:41:58 - System Checkpoint
    RP665: 25/02/2009 15:55:40 - System Checkpoint
    RP666: 26/02/2009 18:17:33 - Software Distribution Service 3.0
    RP667: 27/02/2009 18:38:59 - System Checkpoint
    RP668: 09/03/2009 12:09:16 - System Checkpoint
    RP669: 11/03/2009 22:07:16 - System Checkpoint
    RP670: 11/03/2009 22:31:50 - Software Distribution Service 3.0
    RP671: 13/03/2009 14:50:54 - Software Distribution Service 3.0
    RP672: 15/03/2009 21:57:46 - System Checkpoint
    RP673: 17/03/2009 12:24:25 - System Checkpoint
    RP674: 21/03/2009 21:43:02 - System Checkpoint
    RP675: 25/03/2009 20:59:21 - Restore Operation
    RP676: 25/03/2009 21:03:21 - Restore Operation
    RP677: 25/03/2009 21:29:41 - Restore Operation
    RP678: 25/03/2009 21:33:30 - Restore Operation
    RP679: 25/03/2009 21:36:57 - Restore Operation
    RP680: 26/03/2009 18:40:35 - Restore Operation
    RP681: 29/03/2009 22:47:44 - Restore Operation
    RP682: 29/03/2009 22:51:15 - Restore Operation
    RP683: 31/03/2009 14:06:46 - System Checkpoint
    RP684: 04/04/2009 21:47:53 - System Checkpoint
    RP685: 06/04/2009 12:57:32 - System Checkpoint
    RP686: 09/04/2009 00:14:40 - System Checkpoint
    RP687: 14/04/2009 19:55:55 - System Checkpoint
    RP688: 15/04/2009 20:06:46 - Software Distribution Service 3.0
    RP689: 17/04/2009 21:05:12 - System Checkpoint
    RP690: 20/04/2009 12:41:18 - System Checkpoint
    RP691: 23/04/2009 09:52:14 - System Checkpoint
    RP692: 24/04/2009 15:00:17 - System Checkpoint
    RP693: 25/04/2009 20:58:58 - System Checkpoint
    RP694: 27/04/2009 10:31:53 - System Checkpoint
    RP695: 28/04/2009 19:04:28 - System Checkpoint

    ==== Installed Programs ======================

    32 Bit HP CIO Components Installer
    Add or Remove Adobe Creative Suite 3 Master Collection
    Adobe Acrobat 8 Professional
    Adobe Acrobat 8.1.2 Professional
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
    Adobe After Effects CS3 Presets
    Adobe Anchor Service CS3
    Adobe Asset Services CS3
    Adobe Bridge CS3
    Adobe Bridge Start Meeting
    Adobe BridgeTalk Plugin CS3
    Adobe Camera Raw 4.0
    Adobe CMaps
    Adobe Color - Photoshop Specific
    Adobe Color Common Settings
    Adobe Color EU Recommended Settings
    Adobe Color JA Extra Settings
    Adobe Color NA Extra Settings
    Adobe Creative Suite 3 Master Collection
    Adobe Default Language CS3
    Adobe Device Central CS3
    Adobe ExtendScript Toolkit 2
    Adobe Extension Manager CS3
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 9 Plugin
    Adobe Fonts All
    Adobe Help Viewer CS3
    Adobe InDesign CS3 Icon Handler
    Adobe Linguistics CS3
    Adobe MotionPicture Color Files
    Adobe PDF Library Files
    Adobe Photoshop CS3
    Adobe Reader 8.1.2
    Adobe Reader 8.1.2 Security Update 1 (KB403742)
    Adobe Setup
    Adobe Shockwave Player 11
    Adobe SING CS3
    Adobe Stock Photos CS3
    Adobe Type Support
    Adobe Update Manager CS3
    Adobe Version Cue CS3 Client
    Adobe Video Profiles
    Adobe WAS CS3
    Adobe WinSoft Linguistics Plugin
    Adobe XMP DVA Panels CS3
    Adobe XMP Panels CS3
    AHV content for Acrobat and Flash
    ALPS Touch Pad Driver
    ArcSoft Software Suite
    Atheros Wireless LAN MiniPCI/PCIe card Driver
    CD/DVD Drive Acoustic Silencer
    Color Efex Pro 3.0 Complete
    CombineZM
    Compatibility Pack for the 2007 Office system
    Core Communication Components
    Creative MediaSource 5
    Creative Removable Disk Manager
    Creative System Information
    Creative ZEN Vision M Series
    Critical Update for Windows Media Player 11 (KB959772)
    Device Data Communication Components
    Events Communication Components
    Freecorder Toolbar
    Freecorder Toolbar 3.02 Application
    High Definition Audio Driver Package - KB888111
    Hotfix for Windows Internet Explorer 7 (KB947864)
    Hotfix for Windows Media Format 11 SDK (KB929399)
    Hotfix for Windows Media Player 11 (KB939683)
    Hotfix for Windows XP (KB952287)
    HP Easy Printer Care
    HP Printer Settings Tools
    HP Printer Usage Report
    HP Proactive Services
    HP Update
    Intel(R) Graphics Media Accelerator Driver
    Intel(R) PROSet/Wireless Software
    InterVideo WinDVD Creator 2
    InterVideo WinDVD for TOSHIBA
    J2SE Runtime Environment 5.0 Update 6
    Java(TM) 6 Update 11
    Java(TM) 6 Update 5
    Java(TM) 6 Update 7
    LiveUpdate 3.2 (Symantec Corporation)
    LiveUpdate Notice (Symantec Corporation)
    LUMIX Simple Viewer
    Macromedia Flash Player
    mCore
    mDrWiFi
    mHelp
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Hotfix (KB928366)
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Digital Image 2006 Starter Edition
    Microsoft Digital Image 2006 Starter Edition Editor
    Microsoft Digital Image 2006 Starter Edition Library
    Microsoft Digital Image Library 9 - Blocker
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office OneNote 2003
    Microsoft Office Standard Edition 2003
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Works
    MicroStaff WINASPI
    mIWA
    mLogView
    mMHouse
    mPfMgr
    mPfWiz
    mProSafe
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    mWlsSafe
    mXML
    mZConfig
    Neat Image v6 Demo (with plug-in)
    NEF Codec
    Nikon Message Center
    Nikon Transfer
    Norton Internet Security
    oggcodecs 0.71.0946
    Operating System Communication Components
    PDF Settings
    Photo Story 3 for Windows
    PHOTOfunSTUDIO -viewer-
    Photomatix Pro version 3.0.1
    Picture Control Utility
    QuickTime
    RealPlayer
    REALTEK GbE & FE Ethernet PCI-E NIC Driver
    Realtek High Definition Audio Driver
    SAGEM F@st 800-840
    SD Secure Module
    Security Update for CAPICOM (KB931906)
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 7 (KB928090)
    Security Update for Windows Internet Explorer 7 (KB929969)
    Security Update for Windows Internet Explorer 7 (KB931768)
    Security Update for Windows Internet Explorer 7 (KB933566)
    Security Update for Windows Internet Explorer 7 (KB937143)
    Security Update for Windows Internet Explorer 7 (KB938127)
    Security Update for Windows Internet Explorer 7 (KB939653)
    Security Update for Windows Internet Explorer 7 (KB942615)
    Security Update for Windows Internet Explorer 7 (KB944533)
    Security Update for Windows Internet Explorer 7 (KB950759)
    Security Update for Windows Internet Explorer 7 (KB953838)
    Security Update for Windows Internet Explorer 7 (KB956390)
    Security Update for Windows Internet Explorer 7 (KB958215)
    Security Update for Windows Internet Explorer 7 (KB960714)
    Security Update for Windows Internet Explorer 7 (KB961260)
    Security Update for Windows Internet Explorer 7 (KB963027)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player 10 (KB911565)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 11 (KB936782)
    Security Update for Windows Media Player 11 (KB954154)
    Security Update for Windows Media Player 6.4 (KB925398)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB938464)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950760)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951376)
    Security Update for Windows XP (KB951698)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB953839)
    Security Update for Windows XP (KB954211)
    Security Update for Windows XP (KB954459)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956391)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956841)
    Security Update for Windows XP (KB957095)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958690)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960715)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB961373)
    Symantec KB-DocID:2003093015493306
    TOSHIBA Accessibility
    TOSHIBA Assist
    TOSHIBA ConfigFree
    TOSHIBA Controls
    TOSHIBA Controls Driver
    TOSHIBA Direct Disc Writer
    TOSHIBA Disc Creator
    TOSHIBA Hardware Setup
    TOSHIBA Hotkey Utility
    TOSHIBA Manuals
    TOSHIBA PC Diagnostic Tool
    TOSHIBA Power Saver
    TOSHIBA Power Saver Driver
    TOSHIBA SD Memory Card Format
    TOSHIBA Software Modem
    TOSHIBA Supervisor Password
    TOSHIBA Virtual Sound
    TOSHIBA Zooming Hook
    TOSHIBA Zooming Utility
    Touch and Launch
    TouchPad On/Off Utility
    Update for Windows XP (KB951072-v2)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955839)
    Update for Windows XP (KB967715)
    Utility Common Driver
    ViewNX
    WebFldrs XP
    Windows Driver Package - Intel (NETw5x32) net (11/17/2008 12.2.0.11)
    Windows Driver Package - Intel (w29n51) net (12/19/2007 9.0.4.39)
    Windows Genuine Advantage Notifications (KB905474)
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Internet Explorer 7
    Windows Media Format 11 runtime
    Windows Media Player 10 Hotfix - KB895316
    Windows Media Player 11
    Windows XP Service Pack 3
    WinRAR archiver
    YP-U1
    ZENcast Organizer

    ==== Event Viewer Messages From Past Week ========

    30/04/2009 09:47:22, error: Service Control Manager [7016] - The BrSplService service has reported an invalid current state 0.
    29/04/2009 11:57:46, error: Print [6161] - The document http://co101w.col101.mail.live.com/mail/PrintShell.aspx?type=me owned by Phil & Geraldine failed to print on printer HP Color LaserJet CP4005. Data type: NT EMF 1.008. Size of the spool file in bytes: 131072. Number of bytes printed: 0. Total number of pages in the document: 2. Number of pages printed: 0. Client machine: \\YOUR-C687F5AB37. Win32 error code returned by the print processor: 1 (0x1).
    28/04/2009 16:31:16, error: Dhcp [1002] - The IP address lease 192.168.0.2 for the Network Card with network address 0013029E41A9 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
    27/04/2009 11:25:14, error: Print [6161] - The document Estate Expenses.xls owned by Phil & Geraldine failed to print on printer HP Color LaserJet CP4005. Data type: NT EMF 1.008. Size of the spool file in bytes: 0. Number of bytes printed: 0. Total number of pages in the document: 0. Number of pages printed: 0. Client machine: \\YOUR-C687F5AB37. Win32 error code returned by the print processor: 259 (0x103).
    26/04/2009 15:45:49, error: Service Control Manager [7000] - The General Purpose USB Driver (adildr.sys) service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    25/04/2009 19:15:49, error: Dhcp [1002] - The IP address lease 192.168.0.3 for the Network Card with network address 0013029E41A9 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).

    ==== End Of File ===========================
     
    pjtucker,
    #1
  2. 2009/04/30
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,896
    Likes Received:
    389
    Welcome to WindowsBBS :)

    I have moved your thread to the correct forum.

    Our malware analysists are thin on the ground at present and extremely busy so it may be a few days before you get a response.
     
    PeteC,
    #2


  3. to hide this advert.

  4. 2009/04/30
    pjtucker

    pjtucker Inactive Thread Starter

    Joined:
    2009/04/30
    Messages:
    3
    Likes Received:
    0
    Pete C,

    many thanks. I realised I had posted to wrong forum afterwards. Sorry about that.

    Thanks, Phil.
     
    pjtucker,
    #3
  5. 2009/04/30
    pjtucker

    pjtucker Inactive Thread Starter

    Joined:
    2009/04/30
    Messages:
    3
    Likes Received:
    0
    I have resolved the problem myself.

    I downloaded Malwarebytes anti-Malware; renamed the exe to mb.exe to enable it to be run; ran the software.

    I had Trojan.Agent and Trojan.DNSChanger. These have now been removed and Norton runs normally. I can also access search engines with no re-direction.

    Many thanks to this website and forum as I would not have known about "Malwarebytes" otherwise.:)

    Thanks,

    Phil.
     
    pjtucker,
    #4
  6. 2009/04/30
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,896
    Likes Received:
    389
    Good work :) Thanks for the update.
     
    PeteC,
    #5
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...