Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DNS Trouble


  • This topic is locked This topic is locked
4 replies to this topic

#1 kymberly

kymberly

  • Banned
  • 387 posts
  • OFFLINE
  •  
  • Local time:06:47 AM

Posted 21 July 2010 - 03:59 PM

Avira AntiVir Personal
Report file date: Friday, July 16, 2010 15:06

Scanning for 2354648 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available:

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (plain) [6.0.6000]
Boot mode : Normally booted
Username : SYSTEM
Computer name : IBELIEVE-PC

Version information:
BUILD.DAT : 10.0.0.567 32097 Bytes 4/19/2010 15:07:00
AVSCAN.EXE : 10.0.3.0 433832 Bytes 4/1/2010 20:37:38
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 20:57:04
LUKE.DLL : 10.0.2.3 104296 Bytes 3/8/2010 02:33:04
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 07:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 17:05:36
VBASE001.VDF : 7.10.1.0 1372672 Bytes 11/19/2009 03:27:49
VBASE002.VDF : 7.10.3.1 3143680 Bytes 1/20/2010 01:37:42
VBASE003.VDF : 7.10.3.75 996864 Bytes 1/26/2010 00:37:42
VBASE004.VDF : 7.10.4.203 1579008 Bytes 3/5/2010 19:29:03
VBASE005.VDF : 7.10.6.82 2494464 Bytes 4/15/2010 03:18:42
VBASE006.VDF : 7.10.7.218 2294784 Bytes 6/2/2010 03:19:11
VBASE007.VDF : 7.10.7.219 2048 Bytes 6/2/2010 03:19:12
VBASE008.VDF : 7.10.7.220 2048 Bytes 6/2/2010 03:19:16
VBASE009.VDF : 7.10.7.221 2048 Bytes 6/2/2010 03:19:16
VBASE010.VDF : 7.10.7.222 2048 Bytes 6/2/2010 03:19:16
VBASE011.VDF : 7.10.7.223 2048 Bytes 6/2/2010 03:19:17
VBASE012.VDF : 7.10.7.224 2048 Bytes 6/2/2010 03:19:17
VBASE013.VDF : 7.10.8.37 270336 Bytes 6/10/2010 03:19:20
VBASE014.VDF : 7.10.8.69 138752 Bytes 6/14/2010 03:19:22
VBASE015.VDF : 7.10.8.102 130560 Bytes 6/16/2010 03:19:23
VBASE016.VDF : 7.10.8.135 152064 Bytes 6/21/2010 03:19:25
VBASE017.VDF : 7.10.8.163 432128 Bytes 6/23/2010 03:19:31
VBASE018.VDF : 7.10.8.194 133632 Bytes 6/27/2010 03:19:32
VBASE019.VDF : 7.10.8.220 134656 Bytes 6/29/2010 03:19:35
VBASE020.VDF : 7.10.8.252 171520 Bytes 7/4/2010 03:19:38
VBASE021.VDF : 7.10.9.19 131072 Bytes 7/6/2010 03:19:43
VBASE022.VDF : 7.10.9.36 297472 Bytes 7/7/2010 03:19:46
VBASE023.VDF : 7.10.9.60 150016 Bytes 7/11/2010 03:19:51
VBASE024.VDF : 7.10.9.79 113152 Bytes 7/13/2010 00:52:55
VBASE025.VDF : 7.10.9.99 158720 Bytes 7/16/2010 20:36:39
VBASE026.VDF : 7.10.9.100 2048 Bytes 7/16/2010 20:36:39
VBASE027.VDF : 7.10.9.101 2048 Bytes 7/16/2010 20:36:39
VBASE028.VDF : 7.10.9.102 2048 Bytes 7/16/2010 20:36:39
VBASE029.VDF : 7.10.9.103 2048 Bytes 7/16/2010 20:36:39
VBASE030.VDF : 7.10.9.104 2048 Bytes 7/16/2010 20:36:39
VBASE031.VDF : 7.10.9.108 67584 Bytes 7/16/2010 20:36:40
Engineversion : 8.2.4.12
AEVDF.DLL : 8.1.2.0 106868 Bytes 7/13/2010 03:20:29
AESCRIPT.DLL : 8.1.3.40 1360250 Bytes 7/16/2010 20:36:47
AESCN.DLL : 8.1.6.1 127347 Bytes 7/13/2010 03:20:25
AESBX.DLL : 8.1.3.1 254324 Bytes 7/13/2010 03:20:30
AERDL.DLL : 8.1.4.6 541043 Bytes 7/13/2010 03:20:24
AEPACK.DLL : 8.2.2.6 430452 Bytes 7/16/2010 20:36:45
AEOFFICE.DLL : 8.1.1.6 201081 Bytes 7/13/2010 03:20:17
AEHEUR.DLL : 8.1.1.38 2724214 Bytes 7/13/2010 03:20:15
AEHELP.DLL : 8.1.11.6 242038 Bytes 7/13/2010 03:20:08
AEGEN.DLL : 8.1.3.14 381299 Bytes 7/16/2010 20:36:43
AEEMU.DLL : 8.1.2.0 393588 Bytes 7/13/2010 03:20:03
AECORE.DLL : 8.1.15.4 192886 Bytes 7/16/2010 20:36:41
AEBB.DLL : 8.1.1.0 53618 Bytes 7/13/2010 03:20:00
AVWINLL.DLL : 10.0.0.0 19304 Bytes 1/14/2010 20:03:38
AVPREF.DLL : 10.0.0.0 44904 Bytes 1/14/2010 20:03:35
AVREP.DLL : 10.0.0.8 62209 Bytes 2/19/2010 00:47:40
AVREG.DLL : 10.0.3.0 53096 Bytes 4/1/2010 20:35:46
AVSCPLR.DLL : 10.0.3.0 83816 Bytes 4/1/2010 20:39:51
AVARKT.DLL : 10.0.0.14 227176 Bytes 4/1/2010 20:22:13
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 1/26/2010 17:53:30
SQLITE3.DLL : 3.6.19.0 355688 Bytes 1/28/2010 20:57:58
AVSMTP.DLL : 10.0.0.17 63848 Bytes 3/16/2010 23:38:56
NETNT.DLL : 10.0.0.0 11624 Bytes 2/19/2010 22:41:00
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 1/28/2010 21:10:20
RCTEXT.DLL : 10.0.53.0 97128 Bytes 4/9/2010 22:14:29

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Program Files\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: repair
Secondary action....................: delete
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: on
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR,

Start of the scan: Friday, July 16, 2010 15:06

Starting search for hidden objects.
HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{46849F39-B224-4BE6-AD1F-32F6266CEB99}\Connection\defaultnameresourceid
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{46849F39-B224-4BE6-AD1F-32F6266CEB99}\Connection\defaultnameindex
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{46849F39-B224-4BE6-AD1F-32F6266CEB99}\Connection\name
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EF3EDC1E-2F4D-488E-B927-13DF8D911D19}\dhcpdomain
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EF3EDC1E-2F4D-488E-B927-13DF8D911D19}\dhcpsubnetmaskopt
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EF3EDC1E-2F4D-488E-B927-13DF8D911D19}\dhcpdefaultgateway
[NOTE] The registry entry is invisible.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EF3EDC1E-2F4D-488E-B927-13DF8D911D19}\dhcpnameserver
[NOTE] The registry entry is invisible.

The scan of running processes will be started
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'vssvc.exe' - '48' Module(s) have been scanned
Scan process 'avscan.exe' - '79' Module(s) have been scanned
Scan process 'FlashUtil10h_ActiveX.exe' - '32' Module(s) have been scanned
Scan process 'iexplore.exe' - '116' Module(s) have been scanned
Scan process 'iexplore.exe' - '114' Module(s) have been scanned
Scan process 'ieuser.exe' - '59' Module(s) have been scanned
Scan process 'taskeng.exe' - '48' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '34' Module(s) have been scanned
Scan process 'xaudio.exe' - '14' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '63' Module(s) have been scanned
Scan process 'svchost.exe' - '7' Module(s) have been scanned
Scan process 'svchost.exe' - '43' Module(s) have been scanned
Scan process 'avshadow.exe' - '33' Module(s) have been scanned
Scan process 'TMRUBotted.exe' - '43' Module(s) have been scanned
Scan process 'svchost.exe' - '39' Module(s) have been scanned
Scan process 'FWService.exe' - '54' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '20' Module(s) have been scanned
Scan process 'svchost.exe' - '86' Module(s) have been scanned
Scan process 'avguard.exe' - '64' Module(s) have been scanned
Scan process 'TMRUBottedTray.exe' - '17' Module(s) have been scanned
Scan process 'FirewallGUI.exe' - '47' Module(s) have been scanned
Scan process 'avgnt.exe' - '49' Module(s) have been scanned
Scan process 'Explorer.EXE' - '156' Module(s) have been scanned
Scan process 'taskeng.exe' - '76' Module(s) have been scanned
Scan process 'Dwm.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '56' Module(s) have been scanned
Scan process 'sched.exe' - '56' Module(s) have been scanned
Scan process 'spoolsv.exe' - '81' Module(s) have been scanned
Scan process 'svchost.exe' - '85' Module(s) have been scanned
Scan process 'SLsvc.exe' - '23' Module(s) have been scanned
Scan process 'svchost.exe' - '156' Module(s) have been scanned
Scan process 'svchost.exe' - '113' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'svchost.exe' - '35' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'lsm.exe' - '22' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '33' Module(s) have been scanned
Scan process 'winlogon.exe' - '30' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned

Initiating scan of system files:
Signed -> 'C:\Windows\system32\svchost.exe'
Signed -> 'C:\Windows\system32\winlogon.exe'
Signed -> 'C:\Windows\explorer.exe'
Signed -> 'C:\Windows\system32\smss.exe'
Signed -> 'C:\Windows\system32\wininet.DLL'
Signed -> 'C:\Windows\system32\wsock32.DLL'
Signed -> 'C:\Windows\system32\ws2_32.DLL'
Signed -> 'C:\Windows\system32\services.exe'
Signed -> 'C:\Windows\system32\lsass.exe'
Signed -> 'C:\Windows\system32\csrss.exe'
Signed -> 'C:\Windows\system32\drivers\kbdclass.sys'
Signed -> 'C:\Windows\system32\spoolsv.exe'
Signed -> 'C:\Windows\system32\alg.exe'
Signed -> 'C:\Windows\system32\wuauclt.exe'
Signed -> 'C:\Windows\system32\advapi32.DLL'
Signed -> 'C:\Windows\system32\user32.DLL'
Signed -> 'C:\Windows\system32\gdi32.DLL'
Signed -> 'C:\Windows\system32\kernel32.DLL'
Signed -> 'C:\Windows\system32\ntdll.DLL'
Signed -> 'C:\Windows\system32\ntoskrnl.exe'
Signed -> 'C:\Windows\system32\ctfmon.exe'
The system files were scanned ('21' files)

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
Master boot sector HD3
[INFO] No virus was found!
Master boot sector HD4
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '331' files ).


Starting the file scan:

Begin scan in 'C:\' <COMPAQ>
Begin scan in 'D:\' <Recovery>


End of the scan: Friday, July 16, 2010 15:56
Used time: 50:19 Minute(s)

The scan has been done completely.

17175 Scanned directories
382739 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
382739 Files not concerned
4089 Archives were scanned
0 Warnings
0 Notes
415713 Objects were scanned with rootkit scan
7 Hidden objects were found


I have talk with my ISP and they can't give me an answer. But I am having problems wtih my router, when I logged off the internet it is constantly going like I am still working on the internet. Any help will be gladly appreciated? By the way I am not able to update any software that I have Malwarebytes or Avira??? HELLLLLLP!!

BC AdBot (Login to Remove)

 


#2 CaveDweller2

CaveDweller2

  • Members
  • 2,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:47 AM

Posted 21 July 2010 - 04:35 PM

sounds like you need to head over to the Am I infected? What do I do? section

Hope this helps thumbup.gif

Associate in Applied Science - Network Systems Management - Trident Technical College


#3 kymberly

kymberly
  • Topic Starter

  • Banned
  • 387 posts
  • OFFLINE
  •  
  • Local time:06:47 AM

Posted 22 July 2010 - 04:34 PM

Are you saying that I am infected? Even though this has to deal with my network?

#4 Sneakr

Sneakr

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NW Ohio
  • Local time:06:47 AM

Posted 22 July 2010 - 06:47 PM

Yes, that would be my opinion also. An infected computer can create a tremendous amount of network activity, even if you have any browsers closed down. Since you indicated you cannot update anti-malware software, that's one of the big indicators of an infection as malware will intentionally block you from updating those anti-malware utilities.

If you can visit common websites ok like cnn.com or msnbc.com, but CANNOT get sites like mcafee.com or norton.com (not an endorsement) you are likely infected.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:47 AM

Posted 22 July 2010 - 10:52 PM

Closed ,working topic in AII
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users