lesser-equity

Magazine
Go Back   Computer Juice > Computer Software > Virus, Spyware & Security
Reload this Page

Virus - killing my net connection

Register Site Spy Member List Donate Search Today's Posts Mark Forums Read Forum Rules

Register


 Default 

Virus - killing my net connection




Reply
Page 1 of 2 1 2
 
Thread Tools
  #1  
Old 12th Aug 2008, 23:44
New Member Group
  
Default Virus - killing my net connection

Hi all

Great work on this site - it's a life saver!

I've gone through and followed the process under your 'Malware Removal Guide'. I've noticed a slight improvement (from my connection constantly dropping out to this happening only intermittently.



Here are my logs:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 08/13/2008 at 07:53 AM

Application Version : 4.15.1000

Core Rules Database Version : 3469
Trace Rules Database Version: 1460

Scan type : Quick Scan
Total Scan Time : 00:48:21

Memory items scanned : 529
Memory threats detected : 0
Registry items scanned : 421
Registry threats detected : 0
File items scanned : 30234
File threats detected : 0

Adware.Tracking Cookie
.tribalfusion.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.atdmt.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.247realmedia.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adbrite.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adbrite.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adbrite.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adbrite.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adecn.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.ads.ozonemedia.co.in [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.ads.ozonemedia.co.in [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.adtech.de [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.advertising.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.advertising.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.advertising.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.advertising.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.advertising.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.aerlingus.122.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.americanexpress.122.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.atoc.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.bravenet.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.bs.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.carphonewarehouse.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.chitika.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.eqtracking.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.eqtracking.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.eurostar.122.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.imrworldwide.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.imrworldwide.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.ingdirect.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.insightexpressai.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.intrepidtravel.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.kontera.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.kontera.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.overture.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.paypal.112.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.perf.overture.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.premiumtv.122.2o7.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.questionmarket.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.questionmarket.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.roitracking.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.serving-sys.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.skyscanner.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.skyscanner.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.smartadserver.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.smartadserver.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.smartadserver.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.specificclick.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.trafficmp.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.trafficmp.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.trafficmp.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.trafficmp.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.trafficmp.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tripod.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.tripod.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
.xiti.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad1.emediate.dk [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ad1.emediate.dk [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
adopt.euroclick.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ads.revsci.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ads2.myp2p.eu [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ads2.myp2p.eu [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ads2.myp2p.eu [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
anat.tacoda.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
eas.apm.emediate.eu [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
eas.apm.emediate.eu [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
ecnext.advertserve.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
int.sitestat.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
server.iad.liveperson.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
server.iad.liveperson.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
server.iad.liveperson.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
track.adform.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
track.omguk.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
uk.sitestat.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
webstats.thefa.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.clickflatshare.co.uk [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.googleadservices.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.googleadservices.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.googleadservices.com [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.skyscanner.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]
www.skyscanner.net [ C:\Documents and Settings\aseymour-walsh\Application Data\Mozilla\Firefox\Profiles\pzueappi.default\coo kies.txt ]


Malwarebytes' Anti-Malware 1.24
Database version: 1045
Windows 5.1.2600 Service Pack 2

3:00:59 PM 13/08/2008
mbam-log-8-13-2008 (15-00-59).txt

Scan type: Quick Scan
Objects scanned: 46667
Time elapsed: 5 minute(s), 32 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\bho_adw.bhoad (Unknown.Malware) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bho_adw.bhoad.1 (Unknown.Malware) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:00:40 PM, on 13/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Arcade\PCMService.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vVX1000.exe
C:\Program Files\TalkTalk\bin\sprtcmd.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Huawei technologies\Huawei UMTS Data Card\3 USB Modem.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\sniper.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mytalktalk.co.uk/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Arcade\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePowerManagement] C:\Acer\ePM\ePM.exe boot
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [TalkTalk] "C:\Program Files\TalkTalk\bin\sprtcmd.exe" /P TalkTalk
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [RealPlayer] "C:\Program Files\Real\RealPlayer\realplay.exe" /RunUPGToolCommandReBoot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1188413297015
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\Software\..\Telephony: DomainName = dewing.local
O17 - HKLM\System\CCS\Services\Tcpip\..\{F63E574F-C857-446B-A121-CD45D1829260}: NameServer = 4.2.2.4 4.2.2.3
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = dewing.local
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe

--
End of file - 10485 bytes


Any help would be greatly appreciated.

Regards

devsadv
  #2  
Old 13th Aug 2008, 00:50
Moderator Group
  
Default Virus - killing my net connection

Welcome to Computer Juice.

I need you to uninstall one of the antivirus, either Trend Micro or Avast.

After you have one completely uninstalled please run a new HijackThis scan and post the log.
__________________
  #3  
Old 13th Aug 2008, 13:05
New Member Group
  
Default Virus - killing my net connection

Apologies for the delay EF. Only just managed to get my net to work - it's real bad

Anyway, here's my latest log after removing Avast:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:25:36 AM, on 14/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Arcade\PCMService.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vVX1000.exe
C:\Program Files\TalkTalk\bin\sprtcmd.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\DllHost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Huawei technologies\Huawei UMTS Data Card\3 USB Modem.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\sniper.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mytalktalk.co.uk/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Arcade\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePowerManagement] C:\Acer\ePM\ePM.exe boot
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [TalkTalk] "C:\Program Files\TalkTalk\bin\sprtcmd.exe" /P TalkTalk
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [RealPlayer] "C:\Program Files\Real\RealPlayer\realplay.exe" /RunUPGToolCommandReBoot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1188413297015
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\Software\..\Telephony: DomainName = dewing.local
O17 - HKLM\System\CCS\Services\Tcpip\..\{F63E574F-C857-446B-A121-CD45D1829260}: NameServer = 4.2.2.3 4.2.2.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = dewing.local
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: Domain = dewing.local
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe

--
End of file - 9706 bytes
  #4  
Old 13th Aug 2008, 13:13
New Member Group
  
Default Virus - killing my net connection

Also forgot to mention, when removing programs I no longer need, I noticed one that I didn't recognise:

'Texas Instruments PCIxx21/x 515 drivers'

Not sure what this is, but could be related to a video codec I've downloaded along the way. Should I ditch this one?

Thanks again mate.
  #5  
Old 13th Aug 2008, 13:14
Moderator Group
  
Default Virus - killing my net connection

I don't see any malware in the log but there is one entry that is puzzling.

Does this entry make any sense to you?

O17 - HKLM\System\CCS\Services\Tcpip\..\{F63E574F-C857-446B-A121-CD45D1829260}: NameServer = 4.2.2.3 4.2.2.4

If not then fix it with HJT.

Open HijackThis and select Do a system scan only.

Place a check mark next to the following entries: (if there)

O17 - HKLM\System\CCS\Services\Tcpip\..\{F63E574F-C857-446B-A121-CD45D1829260}: NameServer = 4.2.2.3 4.2.2.4

Important: Close all windows except for HijackThis and then click Fix checked.

Exit HijackThis and restart the computer to register the changes made by HijackThis.

Let me know what problems still exist (if any)
__________________
  #6  
Old 13th Aug 2008, 13:16
Moderator Group
  
Default Virus - killing my net connection

Quote:
Originally Posted by devsadv View Post
Also forgot to mention, when removing programs I no longer need, I noticed one that I didn't recognise:

'Texas Instruments PCIxx21/x 515 drivers'

Not sure what this is, but could be related to a video codec I've downloaded along the way. Should I ditch this one?

Thanks again mate.
Look here for information on that driver. It's up to you if you remove it or not.

http://drivers.softpedia.com/get/Oth...der-2002.shtml
__________________
  #7  
Old 13th Aug 2008, 13:44
New Member Group
  
Default Virus - killing my net connection

OK, I got rid of the following entry as recommended:

O17 - HKLM\System\CCS\Services\Tcpip\..\{F63E574F-C857-446B-A121-CD45D1829260}: NameServer = 4.2.2.3 4.2.2.4



To be honest, nothing has improved after the whole process, so I'm guessing Malware/Spyware isn't the problem.

Any other ideas as to what the problem could be?

I use one of those USB dongles to access mobile broadband. I've been using it for just under a month and haven't had a problem until Sunday just gone. It works fine intermittently (ie now), but then just drops off and after about 25 disconnections/reconnections over 20-30 mins it fires up again.

I'm at a loss as I think it's a virus creating the issues, but it could be the mobile net connection?
  #8  
Old 13th Aug 2008, 14:05
Moderator Group
  
Default Virus - killing my net connection

I don't think it's malware.

Try posting in the Networking, Modems & VoIP forum. Somebody in there will likely have some solutions to try.
__________________
  #9  
Old 13th Aug 2008, 14:06
New Member Group
  
Default Virus - killing my net connection

Thanks for the above. I've removed that entry, but to be honest, nothing has really improved.

The net connection is still slow when connected and very intermittent.

I use one of those USB dongles to access the net via mobile broadband. I've been using it for about a month and it's been outstanding until about Sunday just gone, when I started to have the current problems I'm experiencing. It takes about 25 connections/re-connections before it actually holds a connection for a few minutes before dropping out after about 15 mins.

Personally I don;t think it's the mobile internet that's the problem. I really think it's a virus or some sort of problem with my system.

Any other ideas on how to fix things?
  #10  
Old 13th Aug 2008, 14:36
Moderator Group
  
Default Virus - killing my net connection

Quote:
Originally Posted by devsadv View Post
Thanks for the above. I've removed that entry, but to be honest, nothing has really improved.

The net connection is still slow when connected and very intermittent.

I use one of those USB dongles to access the net via mobile broadband. I've been using it for about a month and it's been outstanding until about Sunday just gone, when I started to have the current problems I'm experiencing. It takes about 25 connections/re-connections before it actually holds a connection for a few minutes before dropping out after about 15 mins.

Personally I don;t think it's the mobile internet that's the problem. I really think it's a virus or some sort of problem with my system.

Any other ideas on how to fix things?
Have you tried reinstalling the drivers for the USB dongle? If you don't know how to do it ask. We'll need the name of the USB dongle.

Can you get a connection on other computers? Can you get a connection if you are really near the router?
__________________
serverguy

__________________

My System: Eclipse

Processor(s):
Intel C2D E7200 OC'd @ 3.6Ghz
Motherboard:
Asus P5Q Pro
RAM Memory:
OCZ 8GB 800Mhz
Graphics Card(s):
Saphire Radeon 4850
Sound Card:
Onboard
Hard Drive(s):
Vast
Optical Drive(s):
Sony al cheapo one.
Case / PSU:
Antec Three Hundred
Cooling:
Arctic Cooler 7 Pro, 3 case fans.
Network / Internet:
Titan ADSL
Monitor(s):
Dual 19" LCD
Operating System(s):
XP SP3
Reply
Page 1 of 2 1 2

Register

Bookmarks

Similar Threads
Thread Thread Starter Forum Replies Last Post
I Have a Virus and Its Disabling My Sound Systema and Blocking My Internet Connection sllp3030 Virus, Spyware & Security 1 15th Jul 2009 12:45
Virus/Worm/Trojon Killing Computer! MichaelCrichton12 Virus, Spyware & Security 16 29th Oct 2008 13:42
Windows is Killing Itself! Xeon Windows Operating Systems 3 23rd Sep 2008 05:13
Internet Connection Blocked by Virus; Need Help to Reconnect timewaster Virus, Spyware & Security 7 18th Feb 2008 23:03
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright ©2006 - 2009 Computer Juice.
Contact - Privacy - Sitemap - Top

Powered by vBulletin® Copyright ©2000 - 2009 Jelsoft Enterprises Ltd. SEO by vBSEO ©2009, Crawlability, Inc.