Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected:IERESETATTRIB, Win32.Trojan, Vundo, Google Redirects


  • Please log in to reply
10 replies to this topic

#1 ohsogirly

ohsogirly

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 07 April 2009 - 11:17 PM

Well, i've been trying to fix this but it's getting to the point where i'm spending too much time "trying" to fix it. Btw, after we get this cleaned, i've been waiting to sign up for either Malware University class.

I went thru the entire cleaning guide so I have the logs ready. The only one I couldn't do was the Windows Update. I need to d/l the .NET Framework 3.5 but it won't let me. It goes thru all the motions and at the end I just get a "failed" to update pop up. I'm so glad there was a System Restore d/l because some jacked up virus blocked me from my system restore a long time ago.

I have wireless thru a router and looking at my event viewer I have repeated 4201 TCPIP errors. Literally every second.

I appreciate any help I can get with my mess. :thumbup2:

Thank you in advance!


Mary

Attached Files



BC AdBot (Login to Remove)

 


#2 shelf life

shelf life

  • Malware Response Team
  • 2,657 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:12:11 PM

Posted 19 April 2009 - 08:01 AM

hi,

sorry for delay, no shortage of posters. Still getting redirects? If you still need help post back.

How Can I Reduce My Risk to Malware?


#3 ohsogirly

ohsogirly
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 19 April 2009 - 05:52 PM

Yes, I totally need help! Oh thank you for replying. Sadely my stupid anti virus forums are insistant upon telling me that i'm not infected so I'm having to bug BleepingComputer.

I ran the reports you guys request prior to requesting help already.


Thank you, Mary

#4 shelf life

shelf life

  • Malware Response Team
  • 2,657 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:12:11 PM

Posted 19 April 2009 - 07:38 PM

hi,

I have posted the log below for easier viewing; Is Malwarebytes and SuperAntispyware coming up clean after a scan? The Windows update problem may be better addressed at MS windows site.

Can you see these two .exe in the system32 dir:

c:\windows\system32\xa3563023.exe
c:\windows\system32\xa3560419.exe

If so you can go to this website, browse for them on your computer and upload them using the send button
You can copy/paste the results in your reply.



DDS (Ver_09-03-16.01) - NTFSx86
Run by Mary Garcia at 20:57:47.36 on Tue 04/07/2009
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.127 [GMT -7:00]

AV: Kaspersky Internet Security *On-access scanning enabled* (Updated)
AV: Trend Micro AntiVirus *On-access scanning enabled* (Updated)
FW: Kaspersky Internet Security *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Sysinternals\procexp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Mary Garcia\Desktop\dds.scr

============== Pseudo HJT Report ===============

uWindow Title = Windows Internet Explorer provided by Yahoo!
uStart Page = hxxp://www.yahoo.com/
uDefault_Page_URL = hxxp://www.yahoo.com
mDefault_Page_URL = hxxp://www.yahoo.com
mStart Page = hxxp://www.yahoo.com
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dll
BHO: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No File
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe"
IE: Add to Banner Ad Blocker - c:\program files\kaspersky lab\kaspersky internet security 2009\ie_banner_deny.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\ssv.dll
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: klogon - c:\windows\system32\klogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
LSA: Notification Packages = :\windows\syste

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2008-4-16 112144]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2009-2-20 213520]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-3-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-3-25 24592]
S3 ATIXPGAA;ATIXPGAA;c:\dell\drivers\r88754\ATIXPGAA.SYS [2006-10-15 12032]
S3 IKFileSec;File Security Driver;c:\windows\system32\drivers\ikfilesec.sys [2009-2-15 42376]
S3 IKSysFlt;System Filter Driver;c:\windows\system32\drivers\iksysflt.sys [2009-2-15 66952]
S3 IKSysSec;System Security Driver;c:\windows\system32\drivers\iksyssec.sys [2009-2-15 81288]

=============== Created Last 30 ================

2009-04-07 01:43 <DIR> -cd----- C:\Rooter$
2009-04-04 02:05 <DIR> --d----- c:\program files\Simple Static IP
2009-04-03 21:54 81,920 a------- c:\windows\system32\ieencode.dll
2009-04-03 16:09 <DIR> -cd----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-04-03 16:09 <DIR> --d----- c:\docume~1\maryga~1\applic~1\SUPERAntiSpyware.com
2009-04-02 13:38 4,272 a------- c:\windows\system32\drivers\bvrp_pci.sys
2009-04-02 13:03 27,904 a------- c:\windows\system32\uxtuneup.dll
2009-04-02 13:03 362,240 a------- c:\windows\system32\TuneUpDefragService.exe
2009-04-02 01:11 <DIR> --d----- c:\program files\TuneUp Utilities 2009
2009-04-02 00:37 3,840 a------- c:\windows\system32\drivers\BANTExt.sys
2009-04-02 00:37 <DIR> --d----- c:\program files\Belarc
2009-03-31 01:41 <DIR> -cd----- C:\Intel
2009-03-31 01:38 <DIR> --d----- c:\program files\Broadcom
2009-03-31 00:56 <DIR> -cd----- c:\docume~1\alluse~1\applic~1\DriverScanner
2009-03-31 00:56 <DIR> --d----- c:\docume~1\maryga~1\applic~1\Uniblue
2009-03-31 00:55 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2009-03-31 00:33 1,686,016 a------- c:\windows\system32\clinetsuitex6.ocx
2009-03-31 00:33 427,864 a------- c:\windows\system32\XceedZip.dll
2009-03-30 13:47 <DIR> -cd----- c:\docume~1\alluse~1\applic~1\PCPitstop
2009-03-29 18:04 2,855 a------- c:\windows\system32\WISPTIS.PIF
2009-03-29 17:23 <DIR> --d----- c:\windows\Simple Static IP
2009-03-24 22:45 <DIR> -cd----- c:\docume~1\alluse~1\applic~1\Pure Networks
2009-03-24 22:41 <DIR> --d----- c:\program files\Linksys
2009-03-20 08:05 717,296 a------- c:\windows\system32\drivers\sptd.sys
2009-03-19 22:16 <DIR> --d----- c:\program files\Uniblue
2009-03-19 16:06 <DIR> --d----- c:\docume~1\maryga~1\applic~1\HouseCall 6.6
2009-03-18 23:29 <DIR> --d----- c:\program files\Sysinternals
2009-03-18 02:22 <DIR> --d----- c:\program files\Kodak
2009-03-17 01:38 <DIR> --d----- c:\windows\system32\HouseCall 6.6
2009-03-12 10:57 <DIR> --d----- c:\program files\common files\Kodak
2009-03-12 10:53 62,976 -------- c:\windows\system32\dllcache\cdrom.sys
2009-03-12 10:53 465,920 -------- c:\windows\system32\imapi2fs.dll
2009-03-12 10:53 465,920 -------- c:\windows\system32\dllcache\imapi2fs.dll
2009-03-12 10:53 317,952 -------- c:\windows\system32\imapi2.dll
2009-03-12 10:53 317,952 -------- c:\windows\system32\dllcache\imapi2.dll
2009-03-12 10:49 <DIR> -cd----- c:\docume~1\alluse~1\applic~1\Kodak

==================== Find3M ====================

2009-04-07 11:54 4,020 a--sh--- c:\windows\system32\drivers\fidbox2.idx
2009-04-07 11:54 3,071,520 a--sh--- c:\windows\system32\drivers\fidbox.dat
2009-04-07 11:54 860,192 a--sh--- c:\windows\system32\drivers\fidbox2.dat
2009-04-07 11:54 25,076 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-04-06 15:32 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-06 15:32 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-04-06 14:28 389,120 a------- c:\windows\system32\dllcache\cmd.exe
2009-04-06 14:28 389,120 a------- c:\windows\system32\cmd.exe
2009-04-04 02:21 47,360 ac------ c:\docume~1\maryga~1\applic~1\pcouffin.sys
2009-04-04 02:21 87,608 a------- c:\docume~1\maryga~1\applic~1\inst.exe
2009-04-04 02:21 47,360 a------- c:\windows\system32\drivers\pcouffin.sys
2009-04-02 13:03 603,904 a------- c:\windows\system32\TUProgSt.exe
2009-03-31 22:50 143,872 a--sh--- c:\program files\Thumbs.db
2009-03-16 20:10 256 a------- c:\documents and settings\mary garcia\pool.bin
2009-03-09 05:19 410,984 a------- c:\windows\system32\deploytk.dll
2009-02-20 22:44 33,808 a------- c:\windows\system32\drivers\klbg.sys
2009-02-20 22:44 101,287 a------- c:\windows\system32\drivers\klin.dat
2009-02-20 22:44 89,601 a------- c:\windows\system32\drivers\klick.dat
2009-02-11 00:32 13,920,660 a------- c:\windows\system32\xa3563023.exe
2009-02-11 00:32 13,920,660 a------- c:\windows\system32\xa3560419.exe
2009-02-09 04:13 1,846,784 a------- c:\windows\system32\win32k.sys
2009-02-09 04:13 1,846,784 -------- c:\windows\system32\dllcache\win32k.sys
2009-02-02 17:38 3,840 a------- c:\windows\DellBIOS.Sys
2009-01-17 10:17 577,088 a------- c:\windows\system32\TweakUiPowertoySetup.exe
2009-01-17 10:13 72,192 a------- c:\windows\system32\tasklist.exe
2009-01-16 22:35 3,594,752 a------- c:\windows\system32\dllcache\mshtml.dll
2007-03-06 00:07 87,608 a------- c:\docume~1\maryga~1\applic~1\ezpinst.exe
2006-09-14 06:43 369 ---sh--- c:\program files\desktop.ini
2006-09-14 06:42 10,003 -c-sh--- c:\program files\Folder.jpg
2006-09-14 06:42 10,003 -c-sh--- c:\program files\AlbumArt_{EBF9A281-2212-4F27-BA5D-93C804A7E816}_Large.jpg
2006-09-14 06:42 2,290 -c-sh--- c:\program files\AlbumArtSmall.jpg
2006-09-14 06:42 2,290 -c-sh--- c:\program files\AlbumArt_{EBF9A281-2212-4F27-BA5D-93C804A7E816}_Small.jpg
2006-08-30 17:21 1,303 -c-sh--- c:\program files\AlbumArt_{B42B1DED-0E4E-4B23-A592-6CA08EB1D287}_Large.jpg
2006-08-30 17:21 727 -c-sh--- c:\program files\AlbumArt_{B42B1DED-0E4E-4B23-A592-6CA08EB1D287}_Small.jpg
2006-08-30 09:17 10,038 -c-sh--- c:\program files\AlbumArt_{D4BD64AC-5208-4B5F-ABC9-3637171CEE59}_Large.jpg
2006-08-30 09:17 2,436 -c-sh--- c:\program files\AlbumArt_{D4BD64AC-5208-4B5F-ABC9-3637171CEE59}_Small.jpg
2006-08-30 09:17 10,879 -c-sh--- c:\program files\AlbumArt_{DBCC3815-F428-4D15-96A2-2177EBBF7606}_Large.jpg
2006-08-30 09:17 2,501 -c-sh--- c:\program files\AlbumArt_{DBCC3815-F428-4D15-96A2-2177EBBF7606}_Small.jpg
2006-08-30 09:17 12,787 -c-sh--- c:\program files\AlbumArt_{B1EF4568-2F4D-463D-99C8-73285F401CD1}_Large.jpg
2006-08-30 09:16 2,936 -c-sh--- c:\program files\AlbumArt_{B1EF4568-2F4D-463D-99C8-73285F401CD1}_Small.jpg
2006-08-30 09:15 12,488 -c-sh--- c:\program files\AlbumArt_{20AB63B1-3D30-4425-960C-15B814F6D0CB}_Large.jpg
2006-08-30 09:15 2,952 -c-sh--- c:\program files\AlbumArt_{20AB63B1-3D30-4425-960C-15B814F6D0CB}_Small.jpg
2006-07-26 09:39 4,808 -c-sh--- c:\program files\AlbumArt_{4A2802C6-A687-45B6-A29A-E7D61F415F6B}_Large.jpg
2006-07-26 09:39 1,751 -c-sh--- c:\program files\AlbumArt_{4A2802C6-A687-45B6-A29A-E7D61F415F6B}_Small.jpg
2006-07-26 09:34 8,784 -c-sh--- c:\program files\AlbumArt_{DE52AF85-677A-48BE-B05A-D177B96E7B7A}_Large.jpg
2006-07-26 09:33 2,231 -c-sh--- c:\program files\AlbumArt_{DE52AF85-677A-48BE-B05A-D177B96E7B7A}_Small.jpg
2006-07-26 09:32 1,303 -c-sh--- c:\program files\AlbumArt_{69535216-68D1-46E8-970E-ED34E8FFEFF2}_Large.jpg
2006-07-26 09:32 727 -c-sh--- c:\program files\AlbumArt_{69535216-68D1-46E8-970E-ED34E8FFEFF2}_Small.jpg
2006-07-26 09:32 10,808 -c-sh--- c:\program files\AlbumArt_{EEE9E1F7-95CF-4366-8113-42D073C5ED5E}_Large.jpg
2006-07-26 09:32 2,589 -c-sh--- c:\program files\AlbumArt_{EEE9E1F7-95CF-4366-8113-42D073C5ED5E}_Small.jpg
2006-07-26 09:31 10,630 -c-sh--- c:\program files\AlbumArt_{47A6DB3D-427A-476E-9FBA-5B968D651AC4}_Large.jpg
2006-07-26 09:31 2,599 -c-sh--- c:\program files\AlbumArt_{47A6DB3D-427A-476E-9FBA-5B968D651AC4}_Small.jpg
2006-07-26 09:31 14,685 -c-sh--- c:\program files\AlbumArt_{18DE9379-32D6-4B34-A564-F485B8B345D6}_Large.jpg
2006-07-26 09:31 3,276 -c-sh--- c:\program files\AlbumArt_{18DE9379-32D6-4B34-A564-F485B8B345D6}_Small.jpg
2006-07-25 05:04 7,227 -c-sh--- c:\program files\AlbumArt_{BB264330-8DD6-4042-AD84-C0F8DD26E8DC}_Large.jpg
2006-07-25 05:04 2,076 -c-sh--- c:\program files\AlbumArt_{BB264330-8DD6-4042-AD84-C0F8DD26E8DC}_Small.jpg
2006-07-25 05:01 10,179 -c-sh--- c:\program files\AlbumArt_{4EC11037-1E05-4FF4-B47E-114845BA0B68}_Large.jpg
2006-07-25 05:01 2,516 -c-sh--- c:\program files\AlbumArt_{4EC11037-1E05-4FF4-B47E-114845BA0B68}_Small.jpg
2006-07-24 08:55 8,574 -c-sh--- c:\program files\AlbumArt_{F52FBDA5-47E8-4D41-AA76-9BD0B3B11EBB}_Large.jpg
2006-07-24 08:55 2,320 -c-sh--- c:\program files\AlbumArt_{F52FBDA5-47E8-4D41-AA76-9BD0B3B11EBB}_Small.jpg
2006-07-21 19:12 8,035 -c-sh--- c:\program files\AlbumArt_{BE0CC901-8681-45D3-B1D1-59EA8D0DC8ED}_Large.jpg
2006-07-21 19:11 2,195 -c-sh--- c:\program files\AlbumArt_{BE0CC901-8681-45D3-B1D1-59EA8D0DC8ED}_Small.jpg
2006-07-21 19:11 8,476 -c-sh--- c:\program files\AlbumArt_{C15901E4-A001-4215-933E-D1AB52C0934F}_Large.jpg
2006-07-21 19:11 2,404 -c-sh--- c:\program files\AlbumArt_{C15901E4-A001-4215-933E-D1AB52C0934F}_Small.jpg
2005-04-02 08:11 60,416 a------- c:\program files\msconfig.exe
2005-08-28 14:25 178,623 ac-sh--- c:\windows\system\tnofgmi.bak1
2005-09-07 21:23 180,064 ac-sh--- c:\windows\system\tnofgmi.bak2
2008-09-22 05:01 32,768 ac-sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008092220080923\index.dat

============= FINISH: 20:59:20.30 ===============

How Can I Reduce My Risk to Malware?


#5 ohsogirly

ohsogirly
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 19 April 2009 - 11:50 PM

Hi again,

Sorry about the long delay. Had the family over for Sunday BBQ and i'm always getting yelled at for being on my laptop 24/7, so i'm sure you understand how that goes. :thumbup2:

Anyway, going in order from your post...

1. Malwarebytes & SuperAntiSpyware logs are both clean. (attached)

2. Re: xa3563023.exe & xa3560419.exe, YES they're both in my System32, but, what website am I suppose to go to? Am I missing something obvious?

3. And the windows update thing, thanks for the tip. I'll post something over there.

Looking at my logs from the original post, can you tell what virus's I have yet? Just curious... The Sysinternals forum moderators said it'd be better for me to get help in a forum because i'm so infected. Just curious with what.

Thanks again and i'll wait for your reply.

:) Mary (real name)

Attached Files



#6 shelf life

shelf life

  • Malware Response Team
  • 2,657 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:12:11 PM

Posted 20 April 2009 - 03:59 PM

hi,

ok thanks for the info. Good, the logs are coming up clean. I dont see any signs of a virus or malware that i recogonize, of course between MBAM and SAS it could all be gone by now. I forgot to post the website. You can upload the two exe here:

http://www.virustotal.com/

How Can I Reduce My Risk to Malware?


#7 ohsogirly

ohsogirly
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 20 April 2009 - 10:13 PM

I'll do the VirusTotal and post back. What about the event log? Do you know of any software, websites, tutorials, or ANYTHING I can use as a resource besides eventid.com. (doesn't really tell you much) And Microsoft's website is just....well, that's not to helpful either.

Is there any like online scans or something like they have for HiJackThis uploads that'll give recommendations? I have the same ones over and over and over.

#8 ohsogirly

ohsogirly
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 21 April 2009 - 02:51 AM

Hi there....

According to VirusTotal I have Trojan.Agent.atv on both of those files you had me scan. :thumbup2:

Here's the links:

xa93560419

xa3560323

#9 shelf life

shelf life

  • Malware Response Team
  • 2,657 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:12:11 PM

Posted 21 April 2009 - 04:24 PM

hi,

I wouldnt call one positive result at virustotal a infection. could be a false positive. Usually most of the scanners will return a positive result.
Only one did in your case.

You can upload one of the exe here:

http://www.bleepingcomputer.com/submit-mal....php?channel=67
Browse for the file on your computer then click the send button.


Do you know of any software, websites, tutorials, or ANYTHING I can use as a resource

what kind of reference/resource material are you looking for?

How Can I Reduce My Risk to Malware?


#10 ohsogirly

ohsogirly
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:So Cali
  • Local time:11:11 AM

Posted 21 April 2009 - 05:16 PM

Classic..... I totally left out my question. (my bad)

I was trying to ask you about my Event Logs that are continious (some every second: i.e. 4201 TCIP) all through out the day. I wanted to know if there's any software, online scanner, web forum or anything that I can turn to for help in figuring out why I have so many repeat errors.

Also, I just noticed my Internet Tools drop down button is missing in the top right corner. Also, you know the search box in the right hand corner for the Internet, and you can click on the the down arrow and choose "Find more providers". I had mine set up with Google, Wikipedia, Cnet, etc....Now it's all Yahoo'd out only. It won't let me pick anything different. So, something's wrong somewhere. Just don't know where.

So, basically 3 things.

1. Event Logs = where can I go for some help
2. Internet Tools drop down button missing
3. Internet search "find more providers" will not allow me to choose anything. It's stuck on Yahoo news, Yahoo Images, Yahoo Video, etc.

Also, I loaded the file for BC to scan.

#11 shelf life

shelf life

  • Malware Response Team
  • 2,657 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:12:11 PM

Posted 21 April 2009 - 08:57 PM

Whats producing the log that gives you the TCP/IP error, is that your firewall, router or Windows? Really depends on the software or hardware that is generating the logs where you would go to find more information about it.
Are you using IE or Firefox? Firefox can be completely removed and installed again, as a quick and hopefully successful fix.
IE-- not so sure about fixing it.

You might try uploading that file again because i didnt find it on my channel.

How Can I Reduce My Risk to Malware?





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users