TechSpot

My laptop only connects to internet in safe mode?

Solved
By Jacobarrey
Dec 21, 2011
  1. Just a few days ago my aunts computer doesn't connect to the internet in Normal Mode, so i put it in Safe Mode With Networking and it runs perfectly fine. So can someone please help me.
     
  2. Broni

    Broni Malware Annihilator Posts: 47,078   +258

    Welcome aboard [​IMG]

    Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html
    Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
    Attached logs won't be reviewed.

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running tools or applying updates other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
     
  3. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    Thank You for responding,

    I am currently downloading one of the anti-virus programs you recommended, so i will be doing the other steps and posting logs either later tonight or tomorrow.
     
  4. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org

    Database version: 911122105

    Windows 6.0.6001 Service Pack 1
    Internet Explorer 8.0.6001.19088

    12/21/2011 10:16:39 PM
    mbam-log-2011-12-21 (22-16-39).txt

    Scan type: Quick scan
    Objects scanned: 199464
    Time elapsed: 18 minute(s), 56 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)





    GMER 1.0.15.15641 - http://www.gmer.net
    Rootkit quick scan 2011-12-21 22:37:39
    Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\00000094 rev.
    Running: 3xsnt5d5.exe; Driver: C:\Users\NICOZA~1\AppData\Local\Temp\pxldqpow.sys


    ---- Devices - GMER 1.0.15 ----

    AttachedDevice \Driver\tdx \Device\Ip SYMTDIV.SYS (Network Dispatch Driver/Symantec Corporation)
    AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
    AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
    AttachedDevice \Driver\tdx \Device\RawIp SYMTDIV.SYS (Network Dispatch Driver/Symantec Corporation)
    AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 eabfiltr.sys (QLB PS/2 Keyboard filter driver/Hewlett-Packard Development Company, L.P.)

    ---- EOF - GMER 1.0.15 ----




    .
    DDS (Ver_2011-08-26.01) - NTFSx86
    Internet Explorer: 8.0.6001.19088
    Run by Nico Zander at 22:45:07 on 2011-12-21
    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.958.235 [GMT -8:00]
    .
    AV: PC Control\TermSrvApi *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
    AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
    FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\Explorer.EXE
    C:\Windows\system32\Dwm.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\system32\WLANExt.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\taskeng.exe
    C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Windows\system32\svchost.exe -k hpdevmgmt
    C:\Program Files\iWin Games\iWinTrusted.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
    C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\Microsoft\BingBar\SeaPort.EXE
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\System32\alg.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\CASIO\Photo Loader\Plauto.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
    c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
    C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    mStart Page = hxxp://www.yahoo.com/
    mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
    mURLSearchHooks: Radio 123 Toolbar: {2c1e21b5-5666-4cd5-8152-96b690b7216e} - c:\program files\radio_123\prxtbRadi.dll
    mURLSearchHooks: H - No File
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: Radio 123 Toolbar: {2c1e21b5-5666-4cd5-8152-96b690b7216e} - c:\program files\radio_123\prxtbRadi.dll
    BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
    BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\18.5.0.125\coIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\18.5.0.125\ips\IPSBHO.DLL
    BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Dogpile Bundle Toolbar BHO: {bfe4b5cb-63f7-4a51-9266-6167655d5b4f} - c:\program files\dogpile bundle toolbar\Toolbar.dll
    BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
    BHO: Inbox Toolbar: {d3d233d5-9f6d-436c-b6c7-e63f77503b30} - c:\progra~1\inboxt~1\Inbox.dll
    BHO: CrowdStar Gamebar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\18.5.0.125\coIEPlg.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
    TB: CrowdStar Gamebar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
    TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
    TB: &Inbox Toolbar: {d7e97865-918f-41e4-9cd0-25ab1c574ce8} - c:\progra~1\inboxt~1\Inbox.dll
    TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    TB: Dogpile Bundle Toolbar: {c80bdeb2-8735-44c6-bd55-a1ccd555667a} - c:\program files\dogpile bundle toolbar\Toolbar.dll
    TB: Radio 123 Toolbar: {2c1e21b5-5666-4cd5-8152-96b690b7216e} - c:\program files\radio_123\prxtbRadi.dll
    mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
    mRunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpqtra08.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\photol~1.lnk - c:\program files\casio\photo loader\Plauto.exe
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
    DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
    DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    TCP: DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{263C4C2A-0EBC-46EE-A1A4-A1DC88486EB9} : DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{332A842E-4DE4-40E9-A086-26DA89CC9F91} : DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{A3B0169F-8EC4-45FC-BBC5-15D5377A6399} : DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
    Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
    Handler: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} -
    Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
    SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1205000.07d\SymDS.sys [2011-10-25 340016]
    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1205000.07d\SymEFA.sys [2011-10-25 652336]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-12-21 435032]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-12-21 314456]
    R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\bashdefs\20101123.003\BHDrvx86.sys [2011-10-25 691248]
    R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\ipsdefs\20101201.001\IDSvix86.sys [2011-10-25 353912]
    R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 165648]
    R1 MpKsl07f4b63e;MpKsl07f4b63e;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl07f4b63e.sys [2011-12-21 29904]
    R1 MpKsl2828a482;MpKsl2828a482;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl2828a482.sys [2011-12-21 29904]
    R1 MpKsl3ac06503;MpKsl3ac06503;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl3ac06503.sys [2011-12-21 29904]
    R1 MpKsl78ac852b;MpKsl78ac852b;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl78ac852b.sys [2011-12-21 29904]
    R1 MpKsl9c402528;MpKsl9c402528;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl9c402528.sys [2011-12-21 29904]
    R1 MpKsl9fac5048;MpKsl9fac5048;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl9fac5048.sys [2011-12-21 29904]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
    R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1205000.07d\Ironx86.sys [2011-10-25 136312]
    R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nis\1205000.07d\symtdiv.sys [2011-10-25 330360]
    R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-12-21 20568]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-12-21 55128]
    R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-12-21 44768]
    R2 iWinTrusted;iWinTrusted;c:\program files\iwin games\iWinTrusted.exe [2010-7-7 176408]
    R2 NIS;Norton Internet Security;c:\program files\norton internet security\engine\18.5.0.125\ccSvcHst.exe [2011-10-25 130000]
    R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\common files\pc tools\smonitor\StartManSvc.exe [2011-7-19 632792]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 65024]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\antimalware\NisSrv.exe [2011-4-27 208944]
    S1 MpKsl05ad7dc2;MpKsl05ad7dc2;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl05ad7dc2.sys [2011-12-20 29904]
    S1 MpKsl2a9d0407;MpKsl2a9d0407;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl2a9d0407.sys [2011-12-21 29904]
    S1 MpKsl4b292dca;MpKsl4b292dca;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl4b292dca.sys [2011-12-20 29904]
    S1 MpKsl4f49bca6;MpKsl4f49bca6;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl4f49bca6.sys [2011-12-21 29904]
    S1 MpKsl619c5ae0;MpKsl619c5ae0;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl619c5ae0.sys [2011-12-21 29904]
    S1 MpKslcc977b6b;MpKslcc977b6b;c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKslcc977b6b.sys [2011-12-21 29904]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-11-28 136176]
    S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-2-28 183560]
    S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-11-28 136176]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-12-28 22216]
    S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2010-3-25 43392]
    S3 netr73;Belkin Wireless 54G USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr73.sys [2009-8-9 464384]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
    S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-12-28 366152]
    .
    =============== Created Last 30 ================
    .
    2011-12-22 06:30:25 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl78ac852b.sys
    2011-12-22 06:30:17 56200 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\offreg.dll
    2011-12-22 05:34:12 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl9fac5048.sys
    2011-12-22 03:47:36 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-12-22 03:47:35 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2011-12-22 03:47:20 41184 ----a-w- c:\windows\avastSS.scr
    2011-12-22 03:47:07 -------- d-----w- c:\programdata\AVAST Software
    2011-12-22 03:47:07 -------- d-----w- c:\program files\AVAST Software
    2011-12-22 03:06:23 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl9c402528.sys
    2011-12-22 02:42:41 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl07f4b63e.sys
    2011-12-21 21:55:11 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl3ac06503.sys
    2011-12-21 19:56:32 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\MpKsl2828a482.sys
    2011-12-21 18:41:30 0 ---ha-w- c:\users\nico zander\appdata\local\BIT1B3D.tmp
    2011-12-21 18:27:42 0 ---ha-w- c:\users\nico zander\appdata\local\BITB01D.tmp
    2011-12-21 05:55:42 388096 ----a-r- c:\users\nico zander\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
    2011-12-21 05:55:33 -------- d-----w- c:\program files\Trend Micro
    2011-12-21 05:23:48 703824 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{f7fcc6e7-b824-4000-966a-6b33f7b8586a}\gapaengine.dll
    2011-12-21 05:21:17 6823496 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3635172e-eb37-4737-8ed0-d9d0076b1727}\mpengine.dll
    2011-12-21 05:13:08 -------- d-----w- c:\users\nico zander\appdata\roaming\SUPERAntiSpyware.com
    2011-12-21 05:12:44 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
    2011-12-21 05:12:44 -------- d-----w- c:\program files\SUPERAntiSpyware
    2011-12-21 03:22:31 0 ---ha-w- c:\users\nico zander\appdata\local\BIT49DC.tmp
    2011-12-20 21:27:14 -------- dc----w- C:\bc8376887331084813122ef562
    2011-12-12 21:29:26 0 ---ha-w- c:\users\nico zander\appdata\local\BIT952.tmp
    2011-12-02 06:36:26 0 ---ha-w- c:\users\nico zander\appdata\local\BIT5E0A.tmp
    2011-11-25 04:02:58 -------- d-----w- c:\users\nico zander\appdata\local\Conduit
    2011-11-25 04:02:54 -------- d-----w- c:\program files\Radio_123
    .
    ==================== Find3M ====================
    .
    2011-10-26 05:35:29 126512 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
    .
    ============= FINISH: 22:48:13.84 ===============



    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 11/7/2007 10:07:02 AM
    System Uptime: 12/21/2011 10:29:33 PM (0 hours ago)
    .
    Motherboard: Quanta | | 30D3
    Processor: AMD Athlon(tm) 64 X2 Dual Core Processor TK-55 | | 800/mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 105 GiB total, 19.593 GiB free.
    D: is FIXED (NTFS) - 7 GiB total, 0.727 GiB free.
    E: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    32 Bit HP CIO Components Installer
    Activation Assistant for the 2007 Microsoft Office suites
    ActiveCheck component for HP Active Support Library
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
    Adobe AIR
    Adobe Flash Player 10 ActiveX
    Adobe Media Player
    Adobe Reader 8.1.2
    Adobe Reader 8.1.2 Security Update 1 (KB403742)
    Adobe Shockwave Player 11.6
    AIO_CDB_ProductContext
    AIO_CDB_Software
    AIO_Scan
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Ask Toolbar
    avast! Free Antivirus
    Belkin 54Mbps Wireless Network Adapter
    Big Fish Games: Game Manager
    Bing Bar
    Bing Rewards Client Installer
    Bird’s Town
    Bonjour
    BufferChm
    CDDRV_Installer
    Clone Wars
    CLUE Classic
    Conexant HD Audio
    Copy
    CustomerResearchQFolder
    Destination Component
    DeviceDiscovery
    DeviceManagementQFolder
    Diner Dash (remove only)
    Disney Toontown Online
    DocProc
    DocProcQFolder
    Dogpile Bundle Toolbar
    Elf Bowling 7 - The Last Insult
    Elf Bowling 7 - The Last Insult (remove only)
    ESU for Microsoft Vista
    eSupportQFolder
    F300
    F300_Help
    F300Trb
    Family Feud™ (remove only)
    Farm Mania 2 (remove only)
    Fax
    Free Realms
    GamesBar 2.0.1.81
    Gold Miner Vegas
    Google Chrome
    Google Earth
    Google Toolbar for Internet Explorer
    Google Update Helper
    Graboid Video 1.71
    Haunted Hotel: Lonely Dream
    HDAUDIO Soft Data Fax Modem with SmartCP
    HiJackThis
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Active Support Library
    HP Active Support Library 32 bit components
    HP Customer Participation Program 8.0
    HP DVD Play 3.2
    HP Easy Setup - Frontend
    HP Games
    HP Help and Support
    HP Imaging Device Functions 8.0
    HP OCR Software 8.0
    HP Photosmart Essential
    HP Photosmart Essential 2.0
    HP Photosmart Essential2.5
    HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B
    HP Product Assistant
    HP Quick Launch Buttons 6.20 D3
    HP Solution Center 8.0
    HP Update
    HP User Guides 0041
    HP Wireless Assistant
    HPAsset component for HP Active Support Library
    HPNetworkAssistant
    HPProductAssistant
    HPSSupply
    I SPY: Treasure Hunt
    IC Card Reader Driver v1.9e2
    Inbox Toolbar
    iTunes
    Java Auto Updater
    Java(TM) 6 Update 22
    Java(TM) 6 Update 7
    KhalInstallWrapper
    LightScribe 1.4.136.1
    Logitech Communications Manager
    Logitech SetPoint
    Lottso! Deluxe
    Malwarebytes' Anti-Malware version 1.51.2.1300
    MarketResearch
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft Antimalware
    Microsoft Default Manager
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Access 2007
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Excel 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Groove 2007
    Microsoft Office Groove MUI (English) 2007
    Microsoft Office Groove Setup Metadata MUI (English) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office InfoPath 2007
    Microsoft Office InfoPath MUI (English) 2007
    Microsoft Office OneNote 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office Outlook 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Project 2007 Service Pack 2 (SP2)
    Microsoft Office Project MUI (English) 2007
    Microsoft Office Project Professional 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Publisher 2007
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office SharePoint Designer 2007
    Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
    Microsoft Office SharePoint Designer MUI (English) 2007
    Microsoft Office Visio 2007 Service Pack 2 (SP2)
    Microsoft Office Visio MUI (English) 2007
    Microsoft Office Visio Professional 2007
    Microsoft Office Word 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Security Client
    Microsoft Security Essentials
    Microsoft Silverlight
    Microsoft UI Engine
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Works
    Mirror Magic Deluxe (remove only)
    Move Media Player
    MSCU for Microsoft Vista
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB941833)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    muvee autoProducer 6.0
    My HP Games
    Norton Internet Security
    NVIDIA Drivers
    OGA Notifier 2.0.0048.0
    Photo Loader 3.0E
    PSSWCORE
    QuickTime
    Radio 123 Toolbar
    Registry Mechanic 10.0
    Rhapsody Player Engine
    Roxio Activation Module
    Roxio Creator Audio
    Roxio Creator Basic v9
    Roxio Creator Copy
    Roxio Creator Data
    Roxio Creator EasyArchive
    Roxio Creator Tools
    Roxio Express Labeler 3
    Roxio MyDVD Basic v9
    RTC Client API v1.2
    Scan
    Security Update for 2007 Microsoft Office System (KB2288621)
    Security Update for 2007 Microsoft Office System (KB2288931)
    Security Update for 2007 Microsoft Office System (KB2345043)
    Security Update for 2007 Microsoft Office System (KB2553074)
    Security Update for 2007 Microsoft Office System (KB2553089)
    Security Update for 2007 Microsoft Office System (KB2553090)
    Security Update for 2007 Microsoft Office System (KB2584063)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft Office Access 2007 (KB979440)
    Security Update for Microsoft Office Excel 2007 (KB2553073)
    Security Update for Microsoft Office Groove 2007 (KB2552997)
    Security Update for Microsoft Office InfoPath 2007 (KB2510061)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
    Security Update for Microsoft Office Publisher 2007 (KB2284697)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio 2007 (KB2553010)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2344993)
    SolutionCenter
    Spybot - Search & Destroy
    Status
    SUPERAntiSpyware
    swMSM
    Toolbox
    TrayApp
    UnloadSupport
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office 2007 Help for Common Features (KB963673)
    Update for Microsoft Office 2007 System (KB2539530)
    Update for Microsoft Office Access 2007 Help (KB963663)
    Update for Microsoft Office Excel 2007 Help (KB963678)
    Update for Microsoft Office Infopath 2007 Help (KB963662)
    Update for Microsoft Office OneNote 2007 (KB980729)
    Update for Microsoft Office OneNote 2007 Help (KB963670)
    Update for Microsoft Office Outlook 2007 (KB2583910)
    Update for Microsoft Office Outlook 2007 Help (KB963677)
    Update for Microsoft Office Powerpoint 2007 Help (KB963669)
    Update for Microsoft Office Project 2007 Help (KB963668)
    Update for Microsoft Office Publisher 2007 Help (KB963667)
    Update for Microsoft Office Script Editor Help (KB963671)
    Update for Microsoft Office Sharepoint Designer 2007 Help (KB963675)
    Update for Microsoft Office Visio 2007 Help (KB963666)
    Update for Microsoft Office Word 2007 Help (KB963665)
    Update for Outlook 2007 Junk Email Filter (KB2596560)
    Viewpoint Media Player
    WebReg
    WildTangent Games
    Windows Live ID Sign-in Assistant
    Wizard101
    Zombie Bowl-O-Rama
    .
    ==== End Of File ===========================
     
  5. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    Those are all the logs that you requested
     
  6. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    The computer went online for maybe 2 minutes then stopped loading any internet page
     
  7. Broni

    Broni Malware Annihilator Posts: 47,078   +258

  8. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    I did what you said and the internet has been running very well for about ten minutes now, so i think you helped me fix the problem.

    THANK YOU!!!!
     
  9. Broni

    Broni Malware Annihilator Posts: 47,078   +258

    Good news :)

    I think that was it as I don't see anything malicious in your logs.
     
  10. Jacobarrey

    Jacobarrey TS Rookie Topic Starter

    Okay, Thank you so much!!
     
  11. Broni

    Broni Malware Annihilator Posts: 47,078   +258

    You're very welcome [​IMG]
     
     


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.