BleepingComputer.com: MODEM and ROUTER

Hi, i just curious if is it OK to turn of the ROUTER and MODEM when not used? like night time? if not, what are the effects of it. because i'm experiencing a problem with our modem and router, it seems our internet connection is down due to it. This problem appeared about 3 weeks or month when we started to turn off our modem and router every night and turn in ON at day. this happens before, but i don't mind it and let our ISP tech fix it, but it didn't work and come to a point that they replaced our modem with new one last year. we didn't experience this after that replacement, but when we started to turn it off again at night time and turn ON at day time. after 3 weeks or more it came back. and what we did thus far for our internet connection to be back immediately is that we turn off our Modem or router for about 3 - 5 minutes and turn it ON again net is back. Anyone please I need your Pro advice with regards to this matter.

It is fine to do that.
It can be an infection.

Lets run 2 things,

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

• Flush DNS
  
• Report IE Proxy Settings
  
• Reset IE Proxy Settings
  
• Report FF Proxy Settings
  
• Reset FF Proxy Settings
  
• List content of Hosts
  
• List IP configuration
  
• List Winsock Entries
  
• List last 10 Event Viewer log
  
• List Installed Programs
  
• List Devices
  
• List Users, Partitions and Memory size.
  
• List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.

Download Link 1 <<<== Use this one first.

Download Link 2

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

• Make sure you are connected to the Internet.
  
• Double-click on mbam-setup.exe to install the application.
  For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  
• When the installation begins, follow the prompts and do not make any changes to default settings.
  
• When installation has finished, make sure you leave both of these checked:
  • Update Malwarebytes' Anti-Malware
    
  • Launch Malwarebytes' Anti-Malware
  
  
• Then click Finish.

MBAM will automatically start and you will be asked to update the program before performing a scan.

• If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  
• If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.

On the Scanner tab:

• Make sure the "Perform Quick Scan" option is selected.
  
• Then click on the Scan button.
  
• If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  
• The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  
• When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  
• Click OK to close the message box and continue with the removal process.

Back at the main Scanner screen:

• Click on the Show Results button to see a list of any malware that was found.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When removal is completed, a log report will open in Notepad.
  
• The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  
• Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  
• Exit MBAM when done.

Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware

I've already runned malwarebytes several times because i have it on my system running, but still no good. Below is log file content of Minitoolbox.

MiniToolBox by Farbar Version: 18-01-2012
Ran by Rex Concerman (administrator) on 03-02-2012 at 09:22:12
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Rex
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-22-15-3C-CB-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b468:eb4c:f05c:c955%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, February 03, 2012 9:06:58 AM
Lease Expires . . . . . . . . . . : Friday, February 10, 2012 9:06:57 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 234889749
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-DE-68-AF-00-22-15-3C-CB-D2
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{74341FAA-ED4C-45A1-B8D9-74BE9D5E2711}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:4b:b43:8f35:892f(Preferred)
Link-local IPv6 Address . . . . . : fe80::4b:b43:8f35:892f%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 74.125.71.106
74.125.71.147
74.125.71.99
74.125.71.103
74.125.71.104
74.125.71.105


Pinging google.com [74.125.71.147] with 32 bytes of data:
Reply from 74.125.71.147: bytes=32 time=94ms TTL=51
Reply from 74.125.71.147: bytes=32 time=98ms TTL=54

Ping statistics for 74.125.71.147:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 94ms, Maximum = 98ms, Average = 96ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.2.43
98.137.149.56
98.139.180.149


Pinging yahoo.com [98.139.180.149] with 32 bytes of data:
Reply from 98.139.180.149: bytes=32 time=469ms TTL=42
Reply from 98.139.180.149: bytes=32 time=374ms TTL=42

Ping statistics for 98.139.180.149:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 374ms, Maximum = 469ms, Average = 421ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 5ms, Average = 3ms
===========================================================================
Interface List
14...00 22 15 3c cb d2 ......NVIDIA nForce Networking Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
10...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.101 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.0.101 30
169.254.255.255 255.255.255.255 On-link 192.168.0.101 276
192.168.0.0 255.255.255.0 On-link 192.168.0.101 276
192.168.0.101 255.255.255.255 On-link 192.168.0.101 276
192.168.0.255 255.255.255.255 On-link 192.168.0.101 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.101 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.101 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
10 58 ::/0 On-link
1 306 ::1/128 On-link
10 58 2001::/32 On-link
10 306 2001:0:4137:9e76:4b:b43:8f35:892f/128
On-link
14 276 fe80::/64 On-link
10 306 fe80::/64 On-link
10 306 fe80::4b:b43:8f35:892f/128
On-link
14 276 fe80::b468:eb4c:f05c:c955/128
On-link
1 306 ff00::/8 On-link
10 306 ff00::/8 On-link
14 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog9 01 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 02 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 03 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 04 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 05 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 06 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 18 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll [268832] (NVIDIA)
Catalog9 19 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 02 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 03 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 04 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 05 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 06 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 17 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 18 C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp64.dll [434208] (NVIDIA)
x64-Catalog9 19 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 20 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/03/2012 09:20:05 AM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 16.0.912.77, time stamp: 0x4f18cd7b
Faulting module name: ole32.dll, version: 6.1.7601.17514, time stamp: 0x4ce7b96f
Exception code: 0xc0000005
Fault offset: 0x0003bc21
Faulting process id: 0x5c8
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update 'Adobe Acrobat 9.1.0 Update' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update '{AC76BA86-A550-0000-A550-7A8C40000912}' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update '{AC76BA86-A550-0000-A550-7A8C40000920}' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update '{AC76BA86-A550-0000-A550-7A8C40000930}' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update 'Adobe Acrobat 9.3.1 - CPSID_50570' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:29 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch - Update '{AC76BA86-A550-0000-A550-7A8C40000932}' could not be installed. Error code 1603. Additional information is available in the log file C:\Users\REXCON~1\AppData\Local\Temp\MSId9a8.LOG.

Error: (02/03/2012 03:33:22 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch -- Error 2350.FDI server error

Error: (02/03/2012 03:33:19 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch -- Error 1335.The cabinet file 'Data1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.

Error: (02/03/2012 03:33:17 AM) (Source: MsiInstaller) (User: Rex Concerman)Rex Concerman
Description: Product: Adobe Acrobat 9 Pro Extended - English, Français, Deutsch -- Error 1335.The cabinet file 'Data1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.


System errors:
=============
Error: (02/03/2012 09:07:21 AM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error:
%%577

Error: (02/03/2012 09:06:52 AM) (Source: Service Control Manager) (User: )
Description: The UAC File Virtualization service failed to start due to the following error:
%%2

Error: (02/03/2012 09:06:52 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:58:52 AM on ?2/?3/?2012 was unexpected.

Error: (02/03/2012 08:58:55 AM) (Source: Service Control Manager) (User: )
Description: The UPnP Device Host service failed to start due to the following error:
%%1069

Error: (02/03/2012 08:58:55 AM) (Source: Service Control Manager) (User: )
Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
%%1352

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (02/03/2012 08:58:55 AM) (Source: DCOM) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (02/03/2012 08:58:41 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/03/2012 03:43:18 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (02/02/2012 11:12:32 AM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error:
%%577

Error: (02/02/2012 11:10:47 AM) (Source: Service Control Manager) (User: )
Description: The UAC File Virtualization service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 2.2.1)
Add or Remove Adobe Creative Suite 3 Production Premium (Version: 1.0)
Adobe AIR (Version: 2.7.1.19610)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop Lightroom 3.3 64-bit (Version: 3.3.1)
Adobe Setup (Version: 1.0)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AMD APP SDK Runtime (Version: 2.5.709.2)
AMD Catalyst Install Manager (Version: 3.0.838.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2011.0728.1756.30366)
AMD Media Foundation Decoders (Version: 1.0.60728.1742)
AMD VISION Engine Control Center (Version: 2011.0728.1756.30366)
Apple Software Update (Version: 2.1.1.116)
ATI Catalyst Registration (Version: 3.00.0000)
Aurora 3D Animation Maker version 11.12.05 (Version: 11.12.05)
Autorun Virus Remover 3.1
AVS Update Manager 1.0
AVS Video Converter 7
AVS4YOU Software Navigator 1.4
BearShare (Version: 9.0.0.99482)
Bias Sound Soap 2 DX RTAS VST v2.01
Bing Bar (Version: 7.0.609.0)
Boris RED 5 (64 Bit) (Version: 5.0.2)
BS.Player PRO (Version: 2.57.1051)
Canopus Codec Option (Version: 3.01)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0728.1756.30366)
Catalyst Control Center InstallProxy (Version: 2011.0728.1756.30366)
ccc-utility64 (Version: 2011.0728.1756.30366)
CCC Help English (Version: 2011.0728.1755.30366)
Chikka Messenger
Conduit Engine (Version: )
Cool & Quiet
CyberLink PowerDVD 10 (Version: 10.0.2325.51)
Diamond Cut Forensics8 (Version: 8.00)
Dropbox (Version: 1.1.45)
FastStone Image Viewer 4.3 (Version: 4.3)
Garena 2010 (Version: 2010)
Google Chrome (Version: 16.0.912.77)
Google Talk Plugin (Version: 2.6.1.5251)
Internet Download Manager
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Kaspersky Anti-Virus 2012 (Version: 12.0.0.374)
Levelator
Lyrics Plugin for Windows Media Player (Version: 0.4)
Magic Bullet Colorista II 64 Bit (Version: 1.0)
Magic Bullet Looks (Version: 1.4.0)
Malwarebytes Anti-Malware version 1.60.0.1800 (Version: 1.60.0.1800)
MediaBar (Version: 3.0.0.107547)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MiniTool Partition Wizard Home Edition 5.2
Mozilla Firefox 8.0 (x86 en-US) (Version: 8.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Need for Speed™ Hot Pursuit (Version: 1.0.0.0)
NewBlue Video Essentials for Windows
NewBlue Video Essentials III for Windows
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA ForceWare Network Access Manager (Version: 1.00.7316)
PDF Settings CS5 (Version: 10.0)
Perfectly Clear Plugin 1.5.5 (Version: 1.5.5)
Platform (Version: 1.34)
PluralEyes® 1.2.10 for Premiere® Pro (Version: 1.0)
PowerCinema NE for Everio
PowerDirector (Version: 9.00.0000)
PowerDirector Express
PowerProducer
proDAD Mercalli 2.0 (64bit) (Version: 2.0.65)
PxMergeModule (Version: 1.00.0000)
QuickTime (Version: 7.55.90.70)
Revo Uninstaller 1.93 (Version: 1.93)
Skype™ 5.5 (Version: 5.5.124)
SpiceMASTER 2.5 Premiere (Version: 2.5)
TeamViewer 6 (Version: 6.0.11117)
The Lord of the Rings FREE Trial (Version: 1.00.0000)
Total Video Converter 3.50
TuneUp Utilities 2012 (Version: 12.0.2040.9)
TuneUp Utilities Language Pack (en-US) (Version: 12.0.2040.9)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596686) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
uTorrentBar Toolbar (Version: 6.2.7.3)
Veoh Giraffic Video Accelerator (Version: 0.86.192.230)
Veoh Web Player (Version: 1.1.2.0000)
VIA Platform Device Manager (Version: 1.34)
VirtualCloneDrive
VLC media player 1.1.11 (Version: 1.1.11)
WinRAR archiver
Xfire (remove only)
YouSendIt Express (Version: 2.6.0)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 4095.17 MB
Available physical RAM: 1498.82 MB
Total Pagefile: 8188.54 MB
Available Pagefile: 5486.28 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.11 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:78.03 GB) (Free:21.97 GB) NTFS
3 Drive d: (New Volume D) (Fixed) (Total:154.76 GB) (Free:34.52 GB) NTFS
4 Drive e: () (Fixed) (Total:68.36 GB) (Free:5.43 GB) NTFS
5 Drive f: () (Fixed) (Total:465.76 GB) (Free:34.48 GB) NTFS
6 Drive g: (Media Cache Drive) (Fixed) (Total:154.31 GB) (Free:31.49 GB) NTFS
7 Drive h: (Local Disk H) (Fixed) (Total:154.3 GB) (Free:6.43 GB) NTFS
8 Drive i: (Drivers & Installers 1) (Fixed) (Total:43.43 GB) (Free:1.46 GB) NTFS
10 Drive k: (Local Disk K) (Fixed) (Total:157.15 GB) (Free:12.91 GB) NTFS
11 Drive l: (New Volume) (Fixed) (Total:465.76 GB) (Free:13.49 GB) NTFS
12 Drive m: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:45.26 GB) NTFS

========================= Users: ========================================

User accounts for \\REX

Administrator Guest Rex Concerman

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

I have malwarebytes on my system, and already did before what you want me to do before. I also did a full scan. found some viruses, i then removed it immediately but still no luck with regards to our internet connection. same thing is happening over and over.

For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.


What is your Antivirus?

Do you use all those Adobe Apps?

Are you connected to the rooter wirelessly?
Are other PC's on the router?

i know what on your mind on asking that. But, Yes I use all those adobe apps.

I use Kaspersky Antivirus 2012

I'm not connected to the router wirelessly, and also we have a HUB which all PC's are connected. its like this, MODEM to ROUTER to HUB to PC's.and also we disabled the wireless features of our router. is it possible that, other PC that are infected could cause this problems of ours? should i put Malwarebytes on their PC's and run Full scan?

OK, I was going to reset the hosts file if you didn't.

I was thinking more like the router may have an infection, if they were having issues. But aside it sure cannot hurt to have and scan those with MBAM.


Did the above commands fix the connection?

hehehe..that would be bad for my adobe apps..

So it is possible the to have the router an infection? Because some forums in the net says that it's not possible. Anyway. I'm observing it right now. I'll give a feedback tomorrow or right after the problem occurs.

here's other question that i really want to have an answer. could other PC might be the cause of this problem? Here another situation that might help out. When I'm playing online games i didn't get disconnected to the game. and the Network properties says i have and Internet Connection, though i can't browse the net.

It is definately possible to have an infected router.. usually though it cases redirects.

Please download Farbar Service Scanner and run it on the computer with the issue.

• Make sure the following options are checked:
  • Internet Services
    
  • Windows Firewall
    
  • System Restore
    
  • Security Center
    
  • Windows Update
  
  
• Press "Scan".
  
• It will create a log (FSS.txt) in the same directory the tool is run.
  
• Please copy and paste the log to your reply.

Farbar Service Scanner Version: 01-02-2012 03
Ran by Rex Concerman (administrator) on 04-02-2012 at 11:30:06
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
===========

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Hello, I do not see what is stopping the connection.

Let's run System File Checker

me either. coz i runned several that i think might of help but no luck. like me antivirus i perform a full scan then MBAM. Maybe other PC's are the cause of this, I'll try to install on their PC MBAM and run a full scan and let you know the result as soon posible. Anyway I'm posting my MBAM full scan log, thinking it might help you. Because in these full scan i found trojan and others which quick and flash scan couldn't. Specially the ones that located on the System Volume information.

Malwarebytes Anti-Malware (PRO) 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.20.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Rex Concerman :: REX [administrator]

Protection: Enabled

1/21/2012 1:13:54 AM
mbam-log-2012-01-21 (01-13-54).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 540202
Time elapsed: 2 hour(s), 19 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 15
H:\2nd Installers\ESET.Smart.Security.5.&.ESET.NOD32.AntiVirus.5.Incl.Crack(32.and.64.Bit)\Crack\ESET.PureFix.V2b.exe (RiskWare.Tool.CK) -> No action taken.
I:\Adobe Audition CS5.5\keygen.exe (Trojan.Agent.CK) -> No action taken.
M:\My Files\Games\Command And Conquer Red Alert 2 (v1.006) + Yuri's Revenge (v1.001)\Ra2.exe (Trojan.FakeAlert) -> No action taken.
M:\My Files\Installer\Adobe Audition CS5.5\keygen.exe (Trojan.Agent.CK) -> No action taken.
M:\My Files\Installer\ESET.Smart.Security.5.&.ESET.NOD32.AntiVirus.5.Incl.Crack(32.and.64.Bit)\Crack\ESET.PureFix.V2b.exe (RiskWare.Tool.CK) -> No action taken.
H:\2nd Installers\Aurora 3D Animation Maker 11.12051411\Aurora 3D Animation Maker 11.12051411\Keygen\CORE10k.EXE (Dont.Steal.Our.Software) -> Quarantined and deleted successfully.
H:\2nd Installers\Corby Games\Corby Games- AmazingIT\pztrain.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
H:\System Volume Information\_restore{8658549B-BDB1-4E4B-94EE-C73614BF1CF1}\RP82\A0023928.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
I:\Adobe Photoshop Lightroom 3.3\Adobe Photoshop Lightroom v3.3 Multilingual By Adrian Dennis\A.C. Patch\keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
I:\CS4\Adobe Master cs4 keygen\adobe-master-cs4pre-keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
I:\PowerDVD Ultra v9.0.1501.0 Preactivated\keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
I:\PowerDVD Ultra v9.0.1501.0 Preactivated\Crack if u need\keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
I:\System Volume Information\_restore{0CEABE09-C212-4A42-AAF5-4AE5FF48B4DA}\RP15\A0002603.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
M:\System Volume Information\_restore{0EF381A9-E836-471C-8E4D-A410108FF4D7}\RP16\A0006293.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
M:\System Volume Information\_restore{A27214E7-9021-4E53-B3A6-F256862BC123}\RP12\A0002631.EXE (Dont.Steal.Our.Software) -> Quarantined and deleted successfully.

(end)

Well there is big problem...the cracks and keygens are infecting the machines as they always do.

IMPORTANT NOTE: The practice of using cracking tools, keygens, warez or any pirated software is not only considered illegal activity but it is a serious security risk.

Quote

trendmicro.com/vinfo

Quote

Keygen and Crack Sites Distribute VIRUX and FakeAV

Quote

University of Washington spyware study

Quote

Bad Web Sites: Malware

When you use these kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a smörgåsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

Before we can continue, I need you to remove all cracks and keygens immediately to reduce the risk of infection/reinfection. If not, then we are just wasting time trying to clean your system. Further, other tools used during the disinfection process may detect crack and keygens so we need to ensure they have been removed.

Using these types of programs or the websites you visited to get them is almost a guaranteed way to get yourself infected!!