Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can not connect with browser but limewire works even after reinstall of XP pro


  • This topic is locked This topic is locked
2 replies to this topic

#1 tattooz

tattooz

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:08:34 PM

Posted 03 January 2009 - 03:33 PM

Hello everyone.
I have a serious problem and can not figgure it out for the life of me.

Last week I was getting popups saying my AV was disabled. I downloaded a few other AV programs and found a bunch of malware. trojan.vundo and a few others. I got rid of most of the viruses but still got the popup. Finally I gave up. Soon after that I lost my internet connection. The strange thing was that I could still use bearshare / limewire and downlod but could not connect through IE or firefox and my outlook didn't work. All DNS settings were on auto and looked fine. I looked every where for the cause with no luck.

Yesterday I decided to repartition, reformat, and reinstall windows xp pro.
I still can not browse the web or use outlook but can get onto bearshare no prob.
The only thing I installed was the drivers for my motherboard and drivers for gforce 7600. I tried IE and it just times out. I can connect with my laptop with no problems. (also disabled windows firewall)

I tried different cables from my pc to my modem and same to laptop. The laptop always connects while the PC will not.
Could there be a virus in my bios? I have no clue when it comes to bios so I dont know where to look. I did set them back to default but no help.

Thank you all for any kind of help you can give me and for taking the time out to read this. Much apreciated




DDS (Version 1.1.0) - NTFSx86
Run by Mike and Ashley at 18:56:52.71 on Thu 12/25/2008
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2047.1735 [GMT -5:00]


============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Documents and Settings\Mike and Ashley\Application Data\U3\000015793C616340\LaunchPad.exe
C:\Documents and Settings\Mike and Ashley\Desktop\dds.scr

============== Pseudo HJT Report ===============

uRun: [SB Audigy 2 Startup Menu] "c:\program files\creative\sbaudigy2zs\program\startup menu\ChkColor.EXE"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [CTSysVol] c:\program files\creative\sbaudigy2zs\surround mixer\CTSysVol.exe /r
mRun: [CTDVDDET] c:\program files\creative\sbaudigy2zs\dvdaudio\CTDVDDet.EXE
mRun: [SBDrvDet] c:\program files\creative\sb drive det\SBDrvDet.exe /r
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRunOnce: [InstallShieldSetup] c:\progra~1\instal~1\{5210e~1\setup.exe -rebootc:\progra~1\instal~1\{5210e~1\reboot.ini -l0x9
mRunOnce: [InstallShieldSetup1] c:\progra~1\instal~1\{fb229~1\setup.exe -rebootc:\progra~1\instal~1\{fb229~1\reboot.ini -l0x9
mRunOnce: [InstallShieldSetup2] c:\progra~1\instal~1\{72a81~1\setup.exe -rebootc:\progra~1\instal~1\{72a81~1\reboot.ini -l0x9
mRunOnce: [InstallShieldSetup3] c:\progra~1\instal~1\{9e251~1\setup.exe -rebootc:\progra~1\instal~1\{9e251~1\reboot.ini -l0x9
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

============= SERVICES / DRIVERS ===============

R PfDetNT;PfDetNT; []
S3 NPF;Netgroup Packet Filter;\??\c:\windows\system32\drivers\packet.sys [2001-9-18 13203]

=============== Created Last 30 ================

2008-12-25 17:51 26,496 ac------ c:\windows\system32\dllcache\usbstor.sys
2008-12-25 16:54 1,247,400 -------- c:\windows\system32\CTAA1.DAT
2008-12-25 16:52 75 a------- c:\windows\SBWIN.INI
2008-12-25 16:52 306,688 a------- c:\windows\IsUninst.exe
2008-12-25 16:51 90,112 -------- c:\windows\Updreg.EXE
2008-12-25 16:51 84,992 -------- c:\windows\system32\SFCVRT32.DLL
2008-12-25 16:51 53,552 -------- c:\windows\CTCCW.DLL
2008-12-25 16:51 24,976 -------- c:\windows\CTRES.DLL
2008-12-25 16:51 231 -------- c:\windows\AC3API.INI
2008-12-25 16:51 149,504 -------- c:\windows\system32\MFCANS32.DLL
2008-12-25 16:51 108,032 -------- c:\windows\system32\MFCUIA32.DLL
2008-12-25 16:51 82,432 -------- c:\windows\system32\CTWFLT32.DLL
2008-12-25 16:51 54,784 -------- c:\windows\system32\INETWH32.DLL
2008-12-25 16:51 26,768 -------- c:\windows\system32\CTL3D.DLL
2008-12-25 16:51 1,048,576 -------- c:\windows\system32\SFMAN.DAT
2008-12-25 16:51 <DIR> --d----- c:\windows\system32\Defaults
2008-12-25 16:50 184 a------- c:\windows\system32\e000001.dat
2008-12-25 16:49 4,174,814 a------- c:\windows\system32\CT4MGM.SF2
2008-12-25 16:48 77,824 a------- c:\windows\system32\ctdvda32.dll
2008-12-25 16:48 12,288 a------- c:\windows\system32\AHQCpURes.dll
2008-12-25 16:48 32,768 a------- c:\windows\system32\AudioHQU.cpl
2008-12-25 16:43 62,976 a------- c:\windows\system32\CTDetres.dll
2008-12-25 16:43 44,032 a------- c:\windows\system32\CTSVCCDA.EXE
2008-12-25 16:43 25,088 a------- c:\windows\system32\CTSVCCTL.EXE
2008-12-25 16:43 17,350 a------- c:\windows\system32\CTDetect.hlp
2008-12-25 16:43 641 a------- c:\windows\system32\CTDetect.cnt
2008-12-25 16:43 139,264 a------- c:\windows\system32\Video.skn
2008-12-25 16:43 24,576 a------- c:\windows\system32\CTMERes.DLL
2008-12-25 16:43 331,776 -------- c:\windows\system32\CTMEDENG.DLL
2008-12-25 16:40 <DIR> --d----- c:\program files\Creative
2008-12-25 16:40 15,840 -------- c:\windows\system32\drivers\PFMODNT.SYS
2008-12-25 16:40 99 a------- c:\windows\
2008-12-25 16:18 81,191 a------- c:\windows\system32\nvapps.xml
2008-12-25 16:18 16,960 a------- c:\windows\system32\nvdisp.nvu
2008-12-25 16:18 <DIR> --d----- c:\windows\nview
2008-12-25 16:18 208,896 a------- c:\windows\system32\nvudisp.exe
2008-12-25 08:44 <DIR> --d----- c:\windows\pss
2008-12-25 08:23 0 a------- C:\SoftCast.ini
2008-12-25 08:23 0 a------- C:\SoftCast.fl
2008-12-25 08:23 <DIR> --d----- C:\SCCache
2008-12-25 08:23 774,144 a------- C:\setup32.exe
2008-12-25 08:23 454,656 a------- C:\Dist32.dll
2008-12-25 08:23 290,816 a------- C:\Yampa.exe
2008-12-25 08:23 118,784 a------- C:\DHCPD.exe
2008-12-25 08:23 28,672 a------- C:\NetUtils.dll
2008-12-25 08:23 27 a------- C:\ns_info.ini
2008-12-25 08:17 <DIR> --d----- c:\program files\BearShare
2008-12-25 08:17 <DIR> --d----- C:\My Downloads
2008-12-25 00:33 <DIR> --d----- c:\windows\ASUSInstAll
2008-12-25 00:32 1,024 a------- C:\.rnd
2008-12-25 00:32 22 a------- c:\windows\FileName
2008-12-25 00:32 <DIR> --d----- c:\program files\NVIDIA Corporation
2008-12-25 00:30 5,810 a----r-- c:\windows\system32\drivers\ASACPI.sys
2008-12-25 00:30 14,441 a------- c:\windows\Ascd_tmp.ini
2008-12-25 00:30 10,288 a------- c:\windows\system32\drivers\ASUSHWIO.SYS
2008-12-25 00:29 <DIR> --d----- c:\documents and settings\Mike and Ashley
2008-12-25 00:28 <DIR> --ds---- c:\windows\system32\Microsoft
2008-12-25 00:28 8,192 a------- c:\windows\REGLOCS.OLD
2008-12-25 00:26 618,605 ac------ c:\windows\system32\dllcache\fp4autl.dll
2008-12-25 00:25 <DIR> --dsh--- c:\documents and settings\all users\DRM
2008-12-25 00:25 488 a---hr-- c:\windows\system32\WindowsLogon.manifest
2008-12-25 00:25 488 a---hr-- c:\windows\system32\logonui.exe.manifest
2008-12-25 00:25 <DIR> --ds---- c:\windows\Downloaded Program Files
2008-12-25 00:25 <DIR> --d--r-- c:\windows\Offline Web Pages
2008-12-25 00:25 749 a---hr-- c:\windows\WindowsShell.Manifest
2008-12-25 00:25 749 a---hr-- c:\windows\system32\wuaucpl.cpl.manifest
2008-12-25 00:25 749 a---hr-- c:\windows\system32\sapi.cpl.manifest
2008-12-25 00:25 749 a---hr-- c:\windows\system32\nwc.cpl.manifest
2008-12-25 00:25 749 a---hr-- c:\windows\system32\ncpa.cpl.manifest
2008-12-25 00:25 749 a---hr-- c:\windows\system32\cdplayer.exe.manifest
2008-12-25 00:25 <DIR> --d-h--- c:\program files\WindowsUpdate
2008-12-25 00:25 4,399,505 ac------ c:\windows\system32\dllcache\nls302en.lex
2008-12-25 00:25 <DIR> --d----- c:\windows\system32\DirectX
2008-12-25 00:24 <DIR> --d----- c:\program files\common files\MSSoap
2008-12-25 00:23 <DIR> --d----- c:\program files\Online Services
2008-12-25 00:23 <DIR> --d----- c:\program files\Messenger
2008-12-25 00:23 <DIR> --d----- c:\program files\MSN Gaming Zone
2008-12-25 00:23 <DIR> --d----- c:\program files\Windows NT
2008-12-24 19:17 <DIR> --d----- c:\program files\common files\ODBC
2008-12-24 19:17 <DIR> --d----- c:\program files\common files\SpeechEngines
2008-12-24 19:17 <DIR> --d--r-- c:\documents and settings\all users\Documents

==================== Find3M ====================

2008-12-25 00:25 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-12-25 00:23 21,640 a------- c:\windows\system32\emptyregdb.dat

============= FINISH: 18:56:59.45 ===============





I can not upload the attach.txt It hangs at uploading file... (I waited for over an hour and it will not upload + tried 4 times)
Should I post it here and just block out the mac id and ip adress? There were a few bits at the end that deal with internet connection problems.

BC AdBot (Login to Remove)

 


#2 tattooz

tattooz
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:08:34 PM

Posted 03 January 2009 - 09:14 PM

Well, Nevermind.

I was without internet for 2 weeks and did ipconfig release and renew a few times pluse reseting the modem many of times and I finally have it back somehow. The only thing I did was reset the modem one last time today and it magicaly came back.

Could I still have some kind of virus in the bios or something?

#3 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:09:34 PM

Posted 15 January 2009 - 10:22 PM

You have better chances of just having network problems. I have gone thru the same thing, and all the sudden everything starts working.
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users