BleepingComputer.com: Can't Access Internet at all.

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Page 1 of 1
  • You cannot start a new topic
  • This topic is locked

Can't Access Internet at all.

#1 User is offline   k-squared 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 1
  • Joined: 10-June 09

Posted 10 June 2009 - 01:48 AM

I'm running Windows Vista Home Premium Version.

Lately I've not been able to access the internet at all, or it takes 20-30 minutes to load one page. uTorrent was still working and Skype, but not much else.

I've downloaded ComboFix from Bleeping Computer and have run it a couple of times with rebooting, but it still doesn't seem to work. I use eSet anti-virus and have AdAware as well. Nothing has helped.

I've copied the log from ComboFix below. If anyone can help, please let me know!

Thanks!

ComboFix 09-06-09.06 - kolin 10/06/2009 0:24.3 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.2.1033.18.2814.1786 [GMT -6:00]
Running from: c:\users\kolin\Desktop\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
SP: ESET Smart Security 3.0 *disabled* (Updated) {E5E70D32-0101-4B98-A4D6-D1D15C3BB448}
SP: Lavasoft Ad-Watch Live! *disabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

J:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2009-05-10 to 2009-06-10 )))))))))))))))))))))))))))))))
.

2009-06-10 06:27 . 2009-06-10 06:27 -------- d-----w- C:\temp
2009-06-10 06:27 . 2009-06-10 06:27 -------- d-----w- \temp
2009-06-10 06:24 . 2009-06-10 06:27 -------- d-s---w- \ComboFix
2009-06-09 23:46 . 2009-06-10 06:25 -------- d---a-w- \Qoobox
2009-06-02 12:55 . 2009-03-09 19:06 15688 ----a-w- c:\windows\system32\lsdelete.exe
2009-06-02 12:55 . 2009-06-02 12:55 187396 ----a-w- c:\programdata\Lavasoft\Ad-Aware\ThreatWork\Submit\Acer(Wide).scr
2009-06-02 12:55 . 2009-06-02 12:55 187396 ----a-w- c:\programdata\Lavasoft\Ad-Aware\ThreatWork\Submit\Acer(Normal).scr
2009-06-02 05:15 . 2009-03-09 19:06 64160 ----a-w- c:\windows\system32\drivers\Lbd.sys
2009-06-02 05:06 . 2009-06-02 05:06 -------- dc-h--w- c:\programdata\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-06-02 05:06 . 2009-03-12 08:17 2902048 -c--a-w- c:\programdata\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}\Ad-AwareAE.exe
2009-06-02 05:06 . 2009-06-02 05:15 -------- d-----w- c:\programdata\Lavasoft
2009-06-02 05:06 . 2009-06-02 05:06 -------- d-----w- c:\program files\Lavasoft
2009-06-01 00:39 . 2009-06-01 00:39 -------- d-----w- c:\program files\Brownie
2009-06-01 00:39 . 2009-06-01 00:39 -------- d-----w- c:\programdata\Brother
2009-06-01 00:39 . 2009-06-01 00:39 34 ----a-w- c:\windows\system32\bd404cdn.dat
2009-06-01 00:38 . 2009-06-01 00:39 -------- d-----w- c:\program files\Brother
2009-06-01 00:38 . 2008-03-19 16:34 100920 ----a-w- c:\windows\system32\BRRBTOOL.EXE
2009-06-01 00:38 . 2007-04-24 07:30 192512 ------w- c:\windows\system32\Pdrvinst.dll
2009-06-01 00:38 . 2007-01-16 06:00 24223 ------w- c:\windows\system32\brlm03a.dll
2009-06-01 00:38 . 2006-12-21 02:23 176128 ----a-w- c:\windows\system32\BROSNMP.DLL
2009-06-01 00:38 . 2005-01-17 07:10 45056 ----a-w- c:\windows\system32\BRTCPCON.DLL
2009-06-01 00:38 . 2004-08-09 06:42 77824 ----a-w- c:\windows\system32\BRLMW03A.DLL
2009-06-01 00:38 . 1999-10-26 16:00 50 ----a-w- c:\windows\system32\BAOCH06A.DAT
2009-05-29 03:59 . 2009-05-29 03:59 652296 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsTemplate\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2009-05-29 03:59 . 2009-05-29 03:59 763208 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-05-24 04:28 . 2009-05-24 04:28 -------- d--h--w- c:\programdata\CanonBJ
2009-05-24 04:06 . 2009-05-24 04:06 -------- d-----w- c:\users\kolin\AppData\Local\ESET
2009-05-24 04:05 . 2009-05-24 04:05 -------- d-----w- c:\program files\AC3Filter
2009-05-24 03:57 . 2009-05-24 03:57 -------- d-----w- c:\users\kolin\AppData\Roaming\CoreCodec
2009-05-24 03:56 . 2009-05-24 03:56 -------- d-----w- c:\program files\Haali
2009-05-24 03:56 . 2009-05-24 03:56 -------- d-----w- c:\program files\CoreCodec
2009-05-24 03:30 . 2008-12-05 03:46 180224 ----a-w- c:\windows\system32\xvidvfw.dll
2009-05-24 03:30 . 2008-12-05 03:42 815104 ----a-w- c:\windows\system32\xvidcore.dll
2009-05-24 03:30 . 2009-05-24 03:30 -------- d-----w- c:\program files\Xvid
2009-05-24 02:51 . 2009-05-24 02:51 -------- d-----w- c:\program files\PowerISO
2009-05-21 14:59 . 2009-05-21 14:59 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-05-20 17:07 . 2009-05-20 17:07 -------- d-----w- c:\program files\Watchtower
2009-05-20 16:17 . 2009-05-20 16:20 -------- d-----w- c:\users\kolin\AppData\Roaming\eSobi
2009-05-20 15:21 . 2008-07-27 18:03 96760 ----a-w- c:\windows\system32\dfshim.dll
2009-05-20 15:21 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-05-20 15:21 . 2008-07-27 18:03 282112 ----a-w- c:\windows\system32\mscoree.dll
2009-05-20 15:21 . 2008-07-27 18:03 158720 ----a-w- c:\windows\system32\mscorier.dll
2009-05-20 15:21 . 2008-07-27 18:03 83968 ----a-w- c:\windows\system32\mscories.dll
2009-05-20 15:16 . 2009-05-20 15:16 -------- d-----w- c:\program files\Common Files\Windows Live
2009-05-19 00:56 . 2009-05-19 00:57 -------- d-----w- c:\program files\Maxtor
2009-05-19 00:56 . 2009-05-19 00:56 -------- d-----w- c:\programdata\Maxtor
2009-05-19 00:56 . 2009-05-19 00:56 -------- d-----w- c:\windows\Downloaded Installations
2009-05-19 00:55 . 2009-05-19 00:55 -------- d-sh--w- c:\windows\ftpcache
2009-05-19 00:34 . 2009-06-10 06:07 -------- d-----w- c:\users\kolin\AppData\Roaming\skypePM
2009-05-19 00:33 . 2009-06-10 06:24 -------- d-----w- c:\users\kolin\AppData\Roaming\Skype
2009-05-19 00:32 . 2009-05-19 00:32 -------- d-----w- c:\program files\Common Files\Skype
2009-05-19 00:32 . 2009-05-19 00:32 -------- d-----r- c:\program files\Skype
2009-05-19 00:32 . 2009-05-19 00:32 -------- d-----w- c:\programdata\Skype
2009-05-19 00:27 . 2009-05-19 00:27 -------- d-----w- c:\users\kolin\AppData\Local\Logitech-LS
2009-05-18 23:45 . 2009-05-18 23:45 -------- d-----w- c:\program files\PFPortChecker
2009-05-18 23:09 . 2009-05-18 23:09 -------- d-----w- c:\program files\uTorrent
2009-05-18 23:08 . 2009-06-10 06:24 -------- d-----w- c:\users\kolin\AppData\Roaming\uTorrent
2009-05-18 23:01 . 2009-05-18 23:01 -------- d-----w- c:\users\kolin\AppData\Roaming\Broderbund
2009-05-18 23:01 . 2009-05-18 23:01 -------- d-----w- c:\programdata\Broderbund
2009-05-18 23:01 . 2009-05-18 23:01 -------- d-----w- c:\program files\Broderbund
2009-05-18 22:19 . 2009-05-18 22:19 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-05-18 22:18 . 2009-05-18 22:18 -------- d-----w- c:\users\kolin\AppData\Local\Microsoft Help
2009-05-18 22:06 . 2009-05-18 22:06 6766 ----a-r- c:\users\kolin\AppData\Roaming\Microsoft\Installer\{491EAC1A-8ECB-45D5-97D1-0583D5676914}\ARPPRODUCTICON.exe
2009-05-18 22:06 . 2009-05-18 22:06 45056 ----a-r- c:\users\kolin\AppData\Roaming\Microsoft\Installer\{491EAC1A-8ECB-45D5-97D1-0583D5676914}\ProMash.exe1_491EAC1A8ECB45D597D10583D5676914.exe
2009-05-18 22:06 . 2009-05-18 22:06 45056 ----a-r- c:\users\kolin\AppData\Roaming\Microsoft\Installer\{491EAC1A-8ECB-45D5-97D1-0583D5676914}\ProMash.exe_491EAC1A8ECB45D597D10583D5676914.exe
2009-05-18 22:06 . 2009-05-18 22:52 -------- d-----w- c:\program files\ProMash
2009-05-18 22:05 . 2009-05-18 22:05 0 ----a-w- c:\windows\nsreg.dat
2009-05-18 22:05 . 2009-05-18 22:05 -------- d-----w- c:\users\kolin\AppData\Local\Mozilla
2009-05-18 09:06 . 2008-10-22 01:22 2048 ----a-w- c:\windows\system32\tzres.dll
2009-05-18 09:01 . 2009-05-18 09:01 -------- d-----w- c:\program files\MSXML 4.0
2009-05-18 05:39 . 2008-12-05 04:32 428544 ----a-w- c:\windows\system32\EncDec.dll
2009-05-18 05:39 . 2008-12-05 04:32 293376 ----a-w- c:\windows\system32\psisdecd.dll
2009-05-18 05:37 . 2008-06-19 03:31 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2009-05-18 05:35 . 2009-02-13 08:49 1255936 ----a-w- c:\windows\system32\lsasrv.dll
2009-05-18 05:33 . 2009-05-19 08:22 -------- d-----w- c:\users\kolin\AppData\Local\Apple Computer
2009-05-18 05:31 . 2009-05-18 05:31 -------- d-----w- c:\programdata\Apple
2009-05-18 05:23 . 2008-10-16 21:13 1809944 ----a-w- c:\windows\system32\wuaueng.dll
2009-05-18 05:23 . 2008-10-16 21:09 51224 ----a-w- c:\windows\system32\wuauclt.exe
2009-05-18 05:23 . 2008-10-16 21:09 43544 ----a-w- c:\windows\system32\wups2.dll
2009-05-18 05:23 . 2008-10-16 20:56 1524736 ----a-w- c:\windows\system32\wucltux.dll
2009-05-18 05:23 . 2008-10-16 21:12 561688 ----a-w- c:\windows\system32\wuapi.dll
2009-05-18 05:23 . 2008-10-16 21:08 34328 ----a-w- c:\windows\system32\wups.dll
2009-05-18 05:23 . 2008-10-16 20:55 83456 ----a-w- c:\windows\system32\wudriver.dll
2009-05-18 05:23 . 2008-10-16 20:08 162064 ----a-w- c:\windows\system32\wuwebv.dll
2009-05-18 05:23 . 2008-10-16 19:56 31232 ----a-w- c:\windows\system32\wuapp.exe
2009-05-17 13:48 . 2009-05-17 14:40 -------- d-----w- c:\users\kolin\AppData\Local\Microsoft Games
2009-05-17 03:08 . 2008-01-07 20:29 352 ---ha-w- c:\windows\nod32fixtemdono.reg
2009-05-17 03:07 . 2009-05-17 03:07 -------- d-----w- c:\program files\ESET
2009-05-17 03:02 . 2009-05-17 03:02 -------- d-----w- c:\windows\Acer_Wide
2009-05-17 03:02 . 2009-05-17 03:02 -------- d-----w- c:\program files\Acer Incorporated
2009-05-17 03:02 . 2006-10-19 16:00 187392 ----a-w- c:\windows\Acer(Wide).scr
2009-05-17 03:02 . 2006-10-19 16:00 187392 ----a-w- c:\windows\Acer(Normal).scr
2009-05-17 03:02 . 2009-05-17 03:04 -------- d-----w- c:\windows\Acer_Normal
2009-05-17 03:00 . 2009-05-17 03:00 -------- d-----w- c:\program files\YUAN
2009-05-17 02:58 . 2008-02-08 21:07 274488 ----a-w- c:\windows\system32\hcwpnp32_priv.dll
2009-05-17 02:58 . 2008-02-08 21:07 274488 ----a-w- c:\windows\system32\hcwpnp32.dll
2009-05-17 02:58 . 2008-02-08 20:59 106552 ----a-w- c:\windows\system32\hcwi2c32.dll
2009-05-17 02:58 . 2006-10-10 23:47 36921 ----a-w- c:\windows\system32\hcwutl32_priv.dll
2009-05-17 02:58 . 2006-10-10 23:47 36921 ----a-w- c:\windows\system32\hcwutl32.dll
2009-05-17 02:58 . 2008-07-04 18:20 266808 ----a-w- c:\windows\system32\drivers\acpi.sys
2009-05-17 02:57 . 2009-05-20 15:39 -------- d-----w- c:\users\kolin\AppData\Local\Adobe
2009-05-17 02:55 . 2009-05-18 16:22 -------- d-----w- c:\users\kolin\AppData\Local\Google
2009-05-17 02:55 . 2009-05-17 02:56 -------- d-----w- c:\users\kolin\AppData\Roaming\Acer
2009-05-17 02:55 . 2009-05-17 02:55 -------- d-----w- c:\users\kolin\AppData\Roaming\Leadertech
2009-05-17 02:55 . 2009-05-17 02:55 -------- d-----w- c:\users\kolin\AppData\Local\PowerCinema
2009-05-17 02:55 . 2009-05-18 23:25 101784 ----a-w- c:\users\kolin\AppData\Local\GDIPFONTCACHEV1.DAT
2009-05-17 02:54 . 2009-05-18 09:16 -------- d-----w- c:\program files\Google
2009-05-16 22:47 . 2009-06-10 06:22 2951266304 --sha-w- \hiberfil.sys
2009-05-16 22:45 . 2009-05-16 22:45 -------- d-----w- c:\windows\system32\chm
2009-05-16 22:41 . 2008-01-16 22:17 3948 ----a-w- c:\windows\system32\drivers\nvphy.bin
2009-05-16 22:39 . 2009-06-10 06:22 3265060864 --sha-w- \pagefile.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-10 06:22 . 2009-05-16 22:47 2951266304 --sha-w- \hiberfil.sys
2009-06-10 06:22 . 2009-05-16 22:39 3265060864 --sha-w- \pagefile.sys
2009-06-01 00:38 . 2008-08-21 00:59 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-05-22 00:09 . 2009-05-20 15:29 -------- d-----w- c:\program files\Microsoft Silverlight
2009-05-21 14:59 . 2008-08-21 01:45 -------- d-----w- c:\programdata\Microsoft Help
2009-05-21 14:58 . 2008-08-21 01:46 -------- d-----w- c:\program files\Microsoft Works
2009-05-20 16:20 . 2008-08-21 01:50 -------- d-----w- c:\program files\eSobi
2009-05-20 16:18 . 2008-08-21 01:50 -------- d-----w- c:\programdata\eSobi
2009-05-20 15:29 . 2009-05-20 15:29 -------- d-----w- c:\program files\Microsoft Office Outlook Connector
2009-05-20 15:29 . 2009-05-20 15:24 -------- d-----w- c:\program files\Windows Live
2009-05-20 15:29 . 2009-05-20 15:29 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-05-20 15:25 . 2009-05-20 15:25 -------- d-----w- c:\program files\Microsoft
2009-05-20 15:25 . 2009-05-20 15:25 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-05-19 00:34 . 2009-05-19 00:34 56 ---ha-w- c:\programdata\ezsidmv.dat
2009-05-19 00:09 . 2009-05-19 00:08 -------- d-----w- c:\program files\Logitech
2009-05-18 22:21 . 2006-11-02 12:37 -------- d-----w- c:\program files\MSBuild
2009-05-18 09:18 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-05-18 05:33 . 2009-05-18 05:33 -------- d-----w- c:\users\kolin\AppData\Roaming\Apple Computer
2009-05-18 05:33 . 2009-05-18 05:33 -------- d-----w- c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-05-18 05:33 . 2009-05-18 05:33 -------- d-----w- c:\program files\iTunes
2009-05-18 05:33 . 2009-05-18 05:33 -------- d-----w- c:\program files\iPod
2009-05-18 05:33 . 2009-05-18 05:31 -------- d-----w- c:\program files\Common Files\Apple
2009-05-18 05:33 . 2009-05-18 05:31 -------- d-----w- c:\programdata\Apple Computer
2009-05-18 05:32 . 2009-05-18 05:32 -------- d-----w- c:\program files\Bonjour
2009-05-18 05:32 . 2009-05-18 05:31 -------- d-----w- c:\program files\QuickTime
2009-05-18 05:31 . 2009-05-18 05:31 -------- d-----w- c:\program files\Apple Software Update
2009-05-17 03:04 . 2008-08-21 01:21 -------- d-----w- c:\programdata\McAfee
2009-05-17 03:03 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-05-17 03:01 . 2008-08-21 01:18 -------- d-----w- c:\program files\Acer Arcade Live
2009-05-17 03:00 . 2008-08-21 01:24 -------- d-----w- c:\programdata\SiteAdvisor
2009-05-17 02:58 . 2008-08-21 01:33 -------- d-----w- c:\program files\Acer GameZone
2009-05-17 02:56 . 2008-08-21 01:10 -------- d-----w- c:\programdata\NVIDIA
2009-05-17 02:54 . 2008-08-21 01:19 -------- d-----w- c:\program files\Acer
2009-05-16 22:42 . 2009-05-16 22:42 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-04-02 22:29 . 2009-04-02 22:29 75048 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 8.1.1.10\SetupAdmin.exe
2009-03-26 21:23 . 2009-03-26 21:23 36864 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-03-26 21:23 . 2009-03-26 21:23 1900544 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-03-19 22:32 . 2009-05-18 05:33 23400 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-03-19 22:32 . 2009-03-19 22:32 23400 ----a-w- c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\x86\x86\GEARAspiWDM.sys
2009-03-17 03:38 . 2009-05-18 05:35 13824 ----a-w- c:\windows\system32\apilogen.dll
2009-03-17 03:38 . 2009-05-18 05:35 24064 ----a-w- c:\windows\system32\amxread.dll
2009-03-16 20:18 . 2009-05-18 23:37 69448 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-03-16 20:18 . 2009-05-18 23:37 517448 ----a-w- c:\windows\system32\XAudio2_4.dll
2009-03-16 20:18 . 2009-05-18 23:37 235352 ----a-w- c:\windows\system32\xactengine3_4.dll
2009-03-16 20:18 . 2009-05-18 23:37 22360 ----a-w- c:\windows\system32\X3DAudio1_6.dll
.

((((((((((((((((((((((((((((( SnapShot@2009-06-10_00.34.59 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-21 01:58 . 2009-06-10 06:24 48142 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-06-10 06:24 74332 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-06-10 04:23 . 2009-06-10 04:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-06-10 04:23 . 2009-06-10 04:23 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-06-10 04:23 . 2009-06-10 04:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-05-17 02:55 . 2009-06-10 06:24 5642 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1474835557-406285193-642934855-1000_UserData.bin
+ 2009-06-10 06:22 . 2009-06-10 06:22 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-06-10 00:29 . 2009-06-10 00:29 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-06-10 06:22 . 2009-06-10 06:22 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-06-10 00:29 . 2009-06-10 00:29 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2006-11-02 10:33 . 2009-06-10 06:27 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-06-10 00:33 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-06-10 00:33 105448 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2009-06-10 06:27 105448 c:\windows\System32\perfc009.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-05 03:38 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LogitechSoftwareUpdate"="c:\program files\Logitech\Video\ManifestEngine.exe" [2005-06-08 196608]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-04-16 24264488]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-05-18 274224]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-17 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer Empowering Technology Monitor"="c:\program files\Acer\Empowering Technology\SysMonitor.exe" [2008-04-25 319488]
"EmpoweringTechnology"="c:\program files\Acer\Empowering Technology\Framework.Launcher.exe" [2008-04-25 319488]
"eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-05 526896]
"PCMMediaSharing"="c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe" [2008-01-25 204908]
"BkupTray"="c:\program files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" [2008-04-26 28672]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-08 13584928]
"Acer Product Registration"="c:\program files\Acer\Acer Registration\ACE1.exe" [2007-11-26 3387392]
"Acer Assist Launcher"="c:\program files\Acer\Acer Assist\launcher.exe" [2007-11-19 1261568]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-05-17 24064]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2007-12-21 1443072]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"LogitechVideoRepair"="c:\program files\Logitech\Video\ISStart.exe" [2005-06-08 458752]
"LogitechVideoTray"="c:\program files\Logitech\Video\LogiTray.exe" [2005-06-08 217088]
"mxomssmenu"="c:\program files\Maxtor\OneTouch Status\maxmenumgr.exe" [2007-09-06 169264]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-07-07 167936]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-03-09 515416]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-03-26 5369856]
"Skytel"="Skytel.exe" - c:\windows\SkyTel.exe [2007-11-20 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{D7218C2E-B2B3-4010-BAFB-261ADC556E44}"= c:\program files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe:Acer Arcade Live
"{F567D034-1DED-4C80-9DE6-08DD5783648A}"= c:\program files\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe:Acer DV Magician
"{D95AAB94-184C-4621-AEA1-321D84EEB6CC}"= c:\program files\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe:Acer SlideShow DVD
"{F62C55DD-6A01-4788-927B-5F2471FC18D8}"= c:\program files\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe:Acer VideoMagician
"{E5F9FA32-835C-4B31-9EE7-26FE746D11C5}"= c:\program files\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe:Acer HomeMedia
"{8A5E51BF-1066-4FEE-B2D8-AE5A4D9528F3}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe:Acer HomeMedia Connect
"{12EECE61-7F76-4B50-B7E0-B84D832E3D59}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.EXE:Acer HomeMedia Connect Service
"{FD15A755-5BF1-4142-A842-5AF108FAE86F}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe:SchedulerSvc.exe
"{941983E7-0979-487E-BE99-AF4C88EE2BA5}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe:SchedulerSvc.exe
"{B4AFEA97-BD61-40A0-A03D-59861459DAFA}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe:AgentSvc.exe
"{5A2746E2-C101-48D2-9A6C-04739977163D}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe:BackupSvc.exe
"{C91C7D19-3ED5-406D-927A-CA7D883C92F3}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe:AgentSvc.exe
"{4AE6A279-9460-43A0-A37D-ABB8716D3C67}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe:BackupSvc.exe
"{3B3AEECF-51E1-4DF1-B5A5-D7B66D4AA15D}"= c:\program files\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe:Acer HomeMedia Trial Creator
"{9833B75D-A809-452F-B40C-FEDD8D527A2E}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{C0FABB4B-CD95-4C8C-911B-7551474018E2}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{294FCA8A-F5B8-4FA1-BF84-F5BEE14337B8}"= c:\program files\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe:Acer DVDivine
"{768DFA38-52FD-4FB9-9011-53516D6B89D7}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{CA33589B-A765-4B6B-88E1-68D669584CCB}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{530C0F82-F8FB-415B-826D-A49871615A96}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{8AF7F512-B196-4F77-B280-100DA38784CC}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{9508C334-D5C5-4C61-8E9A-855B977AA567}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{EA9F263B-19AA-4828-82FC-CC98C782BBA9}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{2A33271B-7E93-4B93-B92F-C665F66375E8}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{7B1A8C51-434F-4F52-8C0B-05B76B232F2A}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{CEAA32A4-3B31-47E7-A091-4185C973A100}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"{02F79912-2215-49C6-BF91-36020CA32238}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{990A9B85-DF17-46C9-A416-E74B99BE0627}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

R0 Lbd;Lbd;c:\windows\System32\drivers\Lbd.sys [01/06/2009 11:15 PM 64160]
R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [20/08/2008 7:29 PM 269448]
R2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [03/03/2008 11:11 AM 16384]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [21/12/2007 8:21 AM 468224]
R2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [20/08/2008 7:19 PM 24576]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [25/04/2008 7:36 PM 45056]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [25/04/2008 7:36 PM 131072]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\System32\drivers\nvhda32v.sys [20/08/2008 10:19 PM 43552]
S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [16/05/2009 8:54 PM 24064]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [09/03/2009 1:06 PM 951632]
.
Contents of the 'Scheduled Tasks' folder

2009-06-09 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 19:06]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=1009&s=1&o=vp32&d=0509&m=aspire_x1200
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=1009&s=1&o=vp32&d=0509&m=aspire_x1200
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: %SYSTEMROOT%\system32\nvLsp.dll
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
FF - ProfilePath - c:\users\kolin\AppData\Roaming\Mozilla\Firefox\Profiles\pi5jun6d.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ca/ig?brand=ACAW&bmod=ACRW
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-10 00:27
Windows 6.0.6001 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2009-06-10 0:28
ComboFix-quarantined-files.txt 2009-06-10 06:28
ComboFix2.txt 2009-06-10 04:11
ComboFix3.txt 2009-06-10 00:36

Pre-Run: 104,958,251,008 bytes free
Post-Run: 104,935,378,944 bytes free

321 --- E O F --- 2009-06-04 21:48

#2 User is offline   garmanma 

  • Computer Masochist
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Staff Emeritus
  • Posts: 27,809
  • Joined: 27-January 07
  • Location:Cleveland, Ohio

Posted 10 June 2009 - 07:54 AM

ComboFix logs should not to be posted or discussed outside the HijackThis forums. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.

Please create a new topic in the Am I Infected forum.
http://www.bleepingcomputer.com/forums/forum103.html
Explain the nature of your problem. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.

If needed, we will direct you to our HJT Preparation Guide.

This topic is now closed.
The BC Staff
Mark
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • This topic is locked

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users