Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot update my malware remover and antivirus


  • This topic is locked This topic is locked
1 reply to this topic

#1 ai_enjoi

ai_enjoi

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:01 AM

Posted 27 January 2009 - 08:40 AM

Good day!

I haven't scanned my computer for quite sometime after I removed my previous antivirus, Avira Personal Edition.
I tried updating my Kaspersky Antivirus v7 but it says that it has the internet has limited connectivity.
As an alternative, I installed NOD32 32.7assuming it updates. However, it didn't update too saying that it is not connected to the server.
So i thought of updating my Malwarebytes AntiMalware and my SuperAntispyware. However, I got the same results.
While other programs, like the Orbit Downloader gets updated, my antispywares and antivirus wouldn't.

I searched around for answers from forums and eventually got here.

Anyway, here's the DDS.txt content:


DDS (Ver_09-01-19.01) - NTFSx86
Run by A Arnejo CPA at 21:29:13.98 on Tue 01/27/2009
Internet Explorer: 8.0.6001.18241 BrowserJavaVersion: 1.6.0_05
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.766.185 [GMT 8:00]

AV: Kaspersky Anti-Virus *On-access scanning enabled* (Outdated)
AV: ESET NOD32 antivirus system 2.70 *On-access scanning enabled* (Outdated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\WINDOWS\system32\SupportAppXL\cdrom_mon.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\Installer\MSID3.tmp
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\VisualTaskTips\VisualTaskTips.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\Orbitdownloader\orbitdm.exe
C:\Documents and Settings\A Arnejo CPA\Start Menu\Programs\Startup\Desktop Calendar Reminder.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Orbitdownloader\orbitnet.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\A Arnejo CPA\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.radzservices.blogspot.com/
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - c:\program files\orbitdownloader\orbitcth.dll
BHO: {0347C33E-8762-4905-BF09-768834316C61} - No File
BHO: {053F9267-DC04-4294-A72C-58F732D338C0} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar.dll
BHO: CoTGT_BHO Class: {c333cf63-767f-4831-94ac-e683d962c63c} - c:\program files\tgtsoft\stylexp\TGT_BHO.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn3\yt.dll
TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - c:\program files\orbitdownloader\GrabPro.dll
TB: StylerToolBar: {d2f8f919-690b-4ea2-9fa7-a203d1e04f75} - c:\program files\styler\tb\StylerTB.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar.dll
TB: {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - No File
EB: &Research: {ff059e31-cc5a-4e2e-bf3b-96e929d65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
uRun: [VisualTaskTips] c:\program files\visualtasktips\VisualTaskTips.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [nod32kui] "c:\program files\eset\nod32kui.exe" /WAITSERVICE
StartupFolder: c:\documents and settings\a arnejo cpa\start menu\programs\startup\Desktop Calendar Reminder.exe
StartupFolder: c:\docume~1\aarnej~1\startm~1\programs\startup\stardo~1.lnk - c:\program files\stardock\objectdock\ObjectDock.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\launch manager.lnk - c:\program files\launch manager\QtZgAcer.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\orbit.lnk - c:\program files\orbitdownloader\orbitdm.exe
mPolicies-system: DisableCAD = 1 (0x1)
IE: &Download by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/201
IE: &Google Search - c:\program files\google\googletoolbar.dll/cmsearch.html
IE: &Grab video by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/204
IE: Backward &Links - c:\program files\google\googletoolbar.dll/cmbacklinks.html
IE: Cac&hed Snapshot of Page - c:\program files\google\googletoolbar.dll/cmcache.html
IE: Do&wnload selected by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/202
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Si&milar Pages - c:\program files\google\googletoolbar.dll/cmsimilar.html
IE: Translate into English - c:\program files\google\googletoolbar.dll/cmtrans.html
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky anti-virus 7.0\SCIEPlgn.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741}
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}
IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636}
IE: {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - {86B4FC19-8FA4-4FD3-B243-9AEDB42FA2D5} - c:\program files\eltima software\flash decompiler trillix\iebt.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: c:\windows\system32\imon.dll
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper200711281.dll
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: intu-help-qb1 - {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - c:\program files\intuit\quickbooks 2008\HelpAsyncPluggableProtocol.dll
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - c:\windows\system32\mscoree.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: DfLogon - LogonDll.dll
Notify: klogon - c:\windows\system32\klogon.dll
Notify: MCPClient - c:\progra~1\common~1\stardock\mcpstub.dll
SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - c:\progra~1\common~1\stardock\MCPCore.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
LSA: Authentication Packages = msv1_0 nwprovau

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\aarnej~1\applic~1\mozilla\firefox\profiles\19a0md9z.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - prefs.js: browser.search.selectedEngine - Orbit Search (Powered By Google)
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - component: c:\documents and settings\a arnejo cpa\application data\mozilla\firefox\profiles\19a0md9z.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.dll
FF - component: c:\documents and settings\a arnejo cpa\application data\mozilla\firefox\profiles\19a0md9z.default\extensions\piclens@cooliris.com\components\coolirisstub.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.interval - 750000
FF - user.js: nglayout.initialpaint.delay - 750

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2007-10-31 110096]
R1 klif;Klif;c:\windows\system32\drivers\klif.sys [2007-12-28 195344]
R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [2009-1-25 15424]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-5-28 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-5-28 55024]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2007-12-13 24592]
R4 Autorun CDROM Monitor;Autorun CDROM Monitor;c:\windows\system32\supportappxl\cdrom_mon.exe [2008-10-1 81920]
R4 AVP;Kaspersky Anti-Virus 7.0;c:\program files\kaspersky lab\kaspersky anti-virus 7.0\avp.exe [2008-2-8 227856]
R4 NOD32krn;NOD32 Kernel Service;c:\program files\eset\nod32krn.exe [2009-1-25 552064]
R4 SCPDFV4ReadSpool;SolidConverterPDFv4ReadSpool;c:\windows\installer\MSID3.tmp [2008-8-15 189688]
S3 aic32p;aic32p;\??\c:\windows\system32\drivers\iiiml.sys --> c:\windows\system32\drivers\iiiml.sys [?]
S3 hidshim;Service for HID-KMDF Shim layer;c:\windows\system32\drivers\hidshim.sys [2008-4-16 5632]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-5-28 7408]
S3 USBFVNETR;NETGEAR MA101 USB Adapter;c:\windows\system32\drivers\ma101rnd.sys [2008-10-23 76160]
S3 winbondhidcir;Winbond HID CIR Receiver;c:\windows\system32\drivers\winbondhidcir.sys [2008-4-16 21504]
S4 cwxbgbzoo;Config Boot;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]

=============== Created Last 30 ================

2009-01-27 20:56 161,792 a------- c:\windows\SWREG.exe
2009-01-27 20:56 98,816 a------- c:\windows\sed.exe
2009-01-27 14:48 <DIR> --d----- c:\docume~1\alluse~1\applic~1\2DBoy
2009-01-25 17:39 0 a------- c:\windows\system32\mapisvc.inf
2009-01-25 17:39 512,096 a------- c:\windows\system32\drivers\amon.sys
2009-01-25 17:39 298,104 a------- c:\windows\system32\imon.dll
2009-01-25 17:39 15,424 a------- c:\windows\system32\drivers\nod32drv.sys
2009-01-25 17:39 <DIR> --d----- c:\program files\Eset
2009-01-23 22:33 <DIR> --d----- c:\program files\Trend Micro
2009-01-16 13:14 <DIR> --d----- c:\docume~1\aarnej~1\applic~1\GOL_byHasbro
2009-01-16 13:11 <DIR> --d----- c:\windows\The Game Of Life by Hasbro
2009-01-16 13:11 <DIR> --d----- c:\program files\The Game Of Life by Hasbro
2009-01-14 23:50 91,700 a------- c:\windows\system32\drivers\klin.dat
2009-01-14 23:50 85,860 a------- c:\windows\system32\drivers\klick.dat
2009-01-14 23:49 3,460,384 a--sh--- c:\windows\system32\drivers\fidbox.dat
2009-01-14 23:49 175,648 a--sh--- c:\windows\system32\drivers\fidbox2.dat
2009-01-14 23:49 51,416 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-01-14 23:49 21,356 a--sh--- c:\windows\system32\drivers\fidbox2.idx
2009-01-14 23:49 <DIR> --d----- c:\program files\Kaspersky Lab
2009-01-14 23:49 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2009-01-13 13:40 <DIR> --d----- c:\docume~1\aarnej~1\applic~1\WordWeb
2009-01-13 01:22 <DIR> --d----- c:\program files\WordWeb
2009-01-13 01:22 1,050,296 -------- c:\windows\wweb32.dll
2009-01-10 22:17 441,548 a----r-- C:\txtsetup.sif
2009-01-10 22:17 260,272 a----r-- C:\$LDR$
2009-01-10 14:43 <DIR> --d----- c:\program files\PowerQuest
2009-01-10 13:21 <DIR> --d----- c:\program files\PC Drivers HeadQuarters
2009-01-10 13:21 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PC Drivers HeadQuarters
2009-01-10 13:03 <DIR> --d----- c:\program files\WeFi
2009-01-10 13:01 21,888 a------- c:\windows\system32\drivers\hopperp.sys
2009-01-10 12:33 506,368 a------- c:\windows\system32\athr.sys
2009-01-10 12:33 41,231 a------- c:\windows\system32\netathr.inf
2009-01-10 12:33 20,860 a------- c:\windows\system32\athrext.cat
2009-01-10 12:30 <DIR> --d----- C:\DRIVERS
2009-01-10 09:56 705,024 a------- c:\windows\system32\drivers\athr.sys
2009-01-09 19:15 356,352 a------- c:\windows\system32\nvunrm.exe
2009-01-09 19:15 3,903 a------- c:\windows\system32\nvnrm.nvu
2009-01-05 17:29 37,808 a------- C:\bar.emf
2009-01-02 01:01 5,120 a--sh--- C:\Thumbs.db

==================== Find3M ====================

2009-01-19 15:09 138,184 a------- c:\windows\system32\drivers\PnkBstrK.sys
2009-01-19 15:08 183,112 a------- c:\windows\system32\PnkBstrB.exe
2008-12-24 13:48 66,872 a------- c:\windows\system32\PnkBstrA.exe
2008-11-06 15:21 2,093,568 a------- c:\windows\system32\ntoskrnl.exe
2008-11-06 15:21 2,093,568 a------- c:\windows\system32\kernel1.exe
2008-11-06 15:21 1,973,248 a------- c:\windows\system32\ntkrnlpa.exe
2008-11-06 15:17 218,624 a------- c:\windows\system32\uxtheme.dll
2007-05-14 06:17 21,888 a------- c:\windows\inf\hopperp.sys
2004-09-28 10:00 26,240 a------- c:\windows\inf\RAMDSK.SYS
2007-04-16 23:52 157,894 a--shr-- c:\windows\system32\ucefkwoz.dll

============= FINISH: 21:30:17.78 ===============

BC AdBot (Login to Remove)

 


#2 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:06:01 PM

Posted 27 January 2009 - 08:59 AM

Duplicate here: http://www.bleepingcomputer.com/forums/ind...p;#entry1109511
So this thread is closed.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users