Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I Have internet access but no programmes are able to update


  • Please log in to reply
15 replies to this topic

#1 13046841

13046841

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 04 August 2013 - 04:38 AM

Please help, i've been searching for a solution for days. One of our computers did have some malware, which i think i have removed, i also found something called PUP.bProtector and have also removed that with SAS. I can access the net via IE8, but none of my programmes are able to update, and prgrammes that require interent access at start up get error messages and are unusable..steam for example. AVG will not update, MBAM will not update, can not download google chrome. So Long story short, something is preventing this PC from accessing the internet. I suspect that the malware/virus we had has either changed settings or is still lurking. Please advise


Edited by hamluis, 04 August 2013 - 06:53 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:05 PM

Posted 04 August 2013 - 05:36 AM

Hello and Welcome -

These are simple first programs, and can be transferred via USB Flash drive if required -

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Please download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 Click Go and copy / paste the result (Result.txt).

 

 

Thank You -


Edited by noknojon, 04 August 2013 - 05:45 AM.


#3 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 05 August 2013 - 02:37 AM

As a side not I also see a lot of Dhcp-Client warnings in event viewer. Event ID 1001 and 1003. and a few that mention my IP lease was denied? any way here are the results you asked for.
thanks for your help

Security Check Results

Results of screen317's Security Check version 0.99.71
Windows 7 Service Pack 1 x64 (UAC is enabled)
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG AntiVirus Free Edition 2013
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.75.0.1300
Java 7 Update 25
Adobe Flash Player 11.7.700.169
Adobe Reader XI
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


Mini Tool Box Report

MiniToolBox by Farbar Version: 13-07-2013
Ran by User (administrator) on 05-08-2013 at 17:29:33
Running from "C:\Users\User\Desktop"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

TP-LINK Wireless USB Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 11003


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : CALEB-STUDY
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 62-70-02-28-46-AD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TP-LINK Wireless USB Adapter
Physical Address. . . . . . . . . : 64-70-02-28-46-AD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::85ed:6a7c:b637:501d%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.4(Preferred)
Subnet Mask . . . . . . . . . . . : 0.0.0.0
Lease Obtained. . . . . . . . . . : Sunday, 4 August 2013 7:08:53 PM
Lease Expires . . . . . . . . . . : Monday, 5 August 2013 6:14:05 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 308572162
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-9A-60-E2-40-61-86-86-AA-B8
DNS Servers . . . . . . . . . . . : 61.9.195.193
61.9.194.49
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 40-61-86-86-AA-B8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3BF937DA-7FE2-44FC-9542-98BCD9AED11C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:c81:15c1:c31e:4938(Preferred)
Link-local IPv6 Address . . . . . : fe80::c81:15c1:c31e:4938%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: NULL

Unable to initialize Windows Sockets interface. Destination address unreachable.
Server: UnKnown
Address: NULL

Unable to initialize Windows Sockets interface. Destination address unreachable.
Unable to initialize Windows Sockets interface. Destination address unreachable.

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/04/2013 08:07:01 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary 91839319.

System Error:
The system cannot find the file specified.
.

Error: (08/04/2013 08:07:01 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary 0956735drv.

System Error:
The system cannot find the file specified.
.

Error: (08/04/2013 08:00:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/04/2013 07:10:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2013 07:09:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: RzSynapse.exe, version: 1.8.14.12716, time stamp: 0x514a345a
Faulting module name: RazerConfigNative.dll, version: 2.8.12.0, time stamp: 0x5142f353
Exception code: 0xc0000005
Fault offset: 0x000afacd
Faulting process id: 0x9ac
Faulting application start time: 0xRzSynapse.exe0
Faulting application path: RzSynapse.exe1
Faulting module path: RzSynapse.exe2
Report Id: RzSynapse.exe3

Error: (08/04/2013 07:09:38 PM) (Source: .NET Runtime) (User: )
Description: Application: RzSynapse.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at Razer.Emily.UI.CommonConfigNativeOps.NativeDeviceAdded(UInt32, UInt32)
at Razer.Emily.UI.App.processPlugin(PlugEvent)
at Razer.Emily.UI.App.ProcessDeviceChanges()
at Razer.Emily.UI.EmilyUIMsgHandlerForm.WndProc(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.Control+ControlNativeWindow.OnMessage(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.Control+ControlNativeWindow.WndProc(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.Run()
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at Razer.Emily.UI.SynapseApp.Run()
at Razer.Emily.UI.AppEntryPoint.Main(System.String[])

Error: (08/04/2013 07:09:05 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgidsagent.exe, version: 13.0.0.3341, time stamp: 0x51915e52
Faulting module name: avgidsagent.exe, version: 13.0.0.3341, time stamp: 0x51915e52
Exception code: 0xc0000005
Fault offset: 0x000159a0
Faulting process id: 0x768
Faulting application start time: 0xavgidsagent.exe0
Faulting application path: avgidsagent.exe1
Faulting module path: avgidsagent.exe2
Report Id: avgidsagent.exe3

Error: (08/04/2013 06:44:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/04/2013 06:43:57 PM) (Source: Application Error) (User: )
Description: Faulting application name: RzSynapse.exe, version: 1.8.14.12716, time stamp: 0x514a345a
Faulting module name: RazerConfigNative.dll, version: 2.8.12.0, time stamp: 0x5142f353
Exception code: 0xc0000005
Fault offset: 0x000afacd
Faulting process id: 0xd78
Faulting application start time: 0xRzSynapse.exe0
Faulting application path: RzSynapse.exe1
Faulting module path: RzSynapse.exe2
Report Id: RzSynapse.exe3

Error: (08/04/2013 06:43:57 PM) (Source: .NET Runtime) (User: )
Description: Application: RzSynapse.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at Razer.Emily.UI.CommonConfigNativeOps.NativeDeviceAdded(UInt32, UInt32)
at Razer.Emily.UI.App.processPlugin(PlugEvent)
at Razer.Emily.UI.App.ProcessDeviceChanges()
at Razer.Emily.UI.EmilyUIMsgHandlerForm.WndProc(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.Control+ControlNativeWindow.OnMessage(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.Control+ControlNativeWindow.WndProc(System.Windows.Forms.Message ByRef)
at System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.Run()
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at Razer.Emily.UI.SynapseApp.Run()
at Razer.Emily.UI.AppEntryPoint.Main(System.String[])


System errors:
=============
Error: (08/05/2013 02:52:24 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (08/05/2013 02:52:24 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (08/05/2013 02:52:23 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (08/05/2013 02:52:23 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (08/05/2013 02:52:24 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (08/05/2013 02:52:23 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (08/05/2013 02:52:16 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (08/05/2013 02:52:16 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (08/05/2013 02:52:16 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (08/05/2013 02:52:16 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-07-31 17:26:52.639
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:26:52.624
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:25:59.078
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:25:59.062
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:23:46.361
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mrxsmb20.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:23:46.330
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mrxsmb20.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:23:46.220
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\http.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:22:29.544
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-31 17:22:29.528
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-07-27 09:27:17.449
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\http.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

µTorrent (Version: 3.3.0.29462)
Adobe AIR (Version: 3.5.0.1060)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.7.700.169)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 11.6 (Version: 11.6.8.638)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
AVG 2013 (Version: 13.0.3209)
AVG 2013 (Version: 13.0.3349)
AVG 2013 (Version: 2013.0.3349)
Bonjour (Version: 3.0.0.10)
Brütal Legend
CameraHelperMsi (Version: 13.51.815.0)
CCleaner (Version: 3.27)
Creative Audio Control Panel (Version: 2.56)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties x64 Edition
Darksiders
DarksidersInstaller (Version: 1.00.1000)
Dishonored (Version: 1.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
Google Update Helper (Version: 1.3.21.153)
Guild Wars 2
ImgBurn (Version: 2.5.7.0)
Intel® Rapid Storage Technology (Version: 11.7.0.1013)
iTunes (Version: 11.0.4.4)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
League of Legends (Version: 3.0.0)
Logitech Webcam Software (Version: 2.51)
LWS Facebook (Version: 13.50.854.0)
LWS Gallery (Version: 13.51.827.0)
LWS Help_main (Version: 13.51.828.0)
LWS Launcher (Version: 13.51.828.0)
LWS Motion Detection (Version: 13.51.815.0)
LWS Pictures And Video (Version: 13.51.815.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Webcam Software (Version: 13.51.815.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.31.1038.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Games for Windows - LIVE (Version: 3.0.89.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Neverwinter
Nexon Game Manager
NVIDIA 3D Vision Controller Driver 310.90 (Version: 310.90)
NVIDIA 3D Vision Driver 310.90 (Version: 310.90)
NVIDIA Control Panel 310.90 (Version: 310.90)
NVIDIA Graphics Driver 310.90 (Version: 310.90)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1090)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Pando Media Booster (Version: 2.6.0.7)
PlanetSide 2
Razer Synapse 2.0 (Version: 1.8.14)
Realtek Ethernet Controller Driver (Version: 7.65.1025.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6809)
Skype™ 6.1 (Version: 6.1.129)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.6.1020)
swMSM (Version: 12.0.0.1)
Terraria
Torchlight II
TP-LINK TL-WN822N/TL-WN821N Driver (Version: 1.0.0)
TP-LINK Wireless Configuration Utility (Version: 1.0.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.7 (Version: 2.0.7)
Warframe
Warhammer® 40,000™: Dawn of War® II
Warhammer® 40,000™: Dawn of War® II - Chaos Rising™
Warhammer® 40,000™: Dawn of War® II – Retribution™
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 4.20 (64-bit) (Version: 4.20.0)

========================= Memory info: ===================================

Percentage of memory in use: 51%
Total physical RAM: 4095.18 MB
Available physical RAM: 1972.41 MB
Total Pagefile: 8188.55 MB
Available Pagefile: 5763.84 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.72 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:297.99 GB) (Free:23.26 GB) NTFS

========================= Users: ========================================

User accounts for \\CALEB-STUDY

Administrator ASPNET Guest
UpdatusUser User

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:05 PM

Posted 05 August 2013 - 07:45 AM

OK -

Some of this may seem odd, but I am just reading the errors as presented -

 

All the Error messages seem related to a Remote / USB Razer keyboard causing problems
Try another keyboard and try all the other offered fixes at the end ........................
A component version required by the application conflicts with another component version already active.
Description: Application: RzSynapse.exe
Razer Synapse 2.0 (Version: 1.8.14) < All are Related to your Keyboard -
Error: (08/04/2013 07:09:38 PM) (Source: .NET Runtime) (User: )
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException Stack:
at Razer.Emily.UI.CommonConfigNativeOps.NativeDeviceAdded(UInt32, UInt32)
at Razer.Emily.UI.App.processPlugin(PlugEvent)
at Razer.Emily.UI.App.ProcessDeviceChanges()

 

 

Open An Elevated Command Prompt and type sfc /scannow >

Press Enter (Note the space between c and / as it is needed)
Let this run uninterupted (15 to 20 minutes on average) -

 

 

Hosts content: < This area is Vacant - Run Windows7 Hosts file restore
http://go.microsoft.com/?linkid=9668866 Click Run > Agree and follow the basic instructions.

 

A couple of other minor problems, but these show up most often -

 

Thanks -


Edited by noknojon, 05 August 2013 - 07:46 AM.


#5 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 05 August 2013 - 10:04 AM

Thanks, I replaced the razer mouse and performed the scannow and host fix. upon restart i didnt get the razer error message but i still got the AVG update error, the steam fatal error (failed to load), and Malware Bytes AntiMalware update error. all of these programmes are ones that load and try to access interent on start up and they are still being prevented from doing so. nor can i run any games that require internet. the only programmes i can run are those that run locally, IE being the exception. for example i am using the affetced computer to access and respond to this forum

i think the only reason i didnt get the razer error this time is that because the mouse was not connected the software did not look for its update at startup.

#6 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 05 August 2013 - 10:22 AM

some additional info.
when i try to download google chrome i get an error 0x80072ee4,
steam fatal error is code at start up is 11003.
malware bytes gives me a PROGRAM_ERROR_UPDATING(0,0, Net Exception) message
one of the other download processes i tried gives me a 0xc0000005 access violation message
avg tells me that connection to the server has failed

#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:05 PM

Posted 05 August 2013 - 05:28 PM

Please contact your Internet Provider and tell them of your problems as this seems to be Router or Internet related

 

Do not try to install Chrome at this time as you do have some kind of infection and this will not help -

 

This is directly from Malwarebytes Anti-Malware forum FAQ area Re : PROGRAM_ERROR_UPDATING

 

Let's try to reset the router to its factory/default configuration.
1.You will need the user manual for your router.
NOTE: You may want to ask your ISP for help ahead of time, in case there are custom settings that need to be maintained.
2.To reset the router, insert something tiny like a paper clip end or the tip of a pen into a small hole labeled "reset" located on the back of the router.
3.With the power to the router on, press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10-20 seconds).
4.After resetting the router, login into the router by following instructions in the user manual. You will need to reconfigure any security settings you had in place prior to the reset.
5.Then change your admin login and password--make it a strong password.

 

A re-set may fix your problems, but it may also be a problem with your Internet Provider.

 

Thank You -



#8 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,111 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:05 PM

Posted 05 August 2013 - 11:38 PM

 
 
 
 
Right click on CMD and select Run as Administrator... then please type

netsh winsock reset
netsh int ip reset
((This is to reset Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 11003...))

also.....

 

Type these in order for me please:

 

ipconfig /flushdns

ipconfig /registerdns

net stop "dns client"

net start "dns client"

nbstat -R

nbstart -RR
netsh winsock reset catalog

 

(hit Enter between each line)

 

 

 

If all the above has no desirable effect...... ::http://www.tweaking.com/content/page/windows_repair_all_in_one.html
Start at step 4....this will create a system restore point and also perform a registry backup.....(use the portable edition if you have probs downloading)
Please select the shown options....

 

Reset reg permissions

Register system files

Repair WMI

Repair windows firewall

Repair Internet explorer

Repair Hosts File

Remove Policies set by Infections

Repair Icons

Repair Winsock &  DNS Cache

Repair proxy Settings

Repair Windows Updates

Repair Volume Shadow Copy Service

Repair MSI

Repair File Associations

Repair Windows Safe Mode

Restore Important Windows Services

Set Windows Services to Default Startup

 

 

..Click next......have a cuppa...it will take a little while.

 

Any change ??


Edited by Condobloke, 06 August 2013 - 03:39 PM.

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#9 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 09:34 PM

Thanks noknojon. i might skip the router reset etc. i have ps3, another pc and a laptop all going wireless via the same router and no issues. actually just notice on this startup that SuperAntiSpyware is able to update, but AVG, MBAM, Steam and Razer still giving connection error at startup. only issues are this pc and all started when we got the malware/virus infections. i'll follow through with condoblokes advice but if you have any more suggestions let me know. will advise asap on condoblokes advice.

obviously something different about the way SAS permits server access for updates/connection? might be a clue?

#10 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 09:46 PM

progress so far

1. netsh winsock reset-done all good

2. netsh int ip reset-done all ok's, requested restart so i obliged

3. ipconfig /flushdns-successfully flushed the dns revovler cache

4. ipconfig /registerdns-done message advised that 'registration of the DNS resource records for all adapters of this computer has been initiated. Any errors will be reported in the event viewer in 15 minutes

5. net stop "dns client"-done successfully stopped

6. net start "dns client"-done successfully started

7. nbstat -R done this command "is not recognised as an internal or external command, operable program or batch file" (i did also try it as nbstart -R)

8. nbstart -RR done. this command "is not recognised as an internal or external command, operable program or batch file"


9. netsh winsock reset catalog - done with message "you must restart the computer in order to complete the reset"

restarting now...will advise

#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:05 PM

Posted 06 August 2013 - 10:00 PM

Hi -
Please follow all the links that Condobloke has left, but here are a few extras -

 

Try a few other things with µTorrent disabled / removed, unless this is important in any way.

 

Follow This Topic from MBAM and do a clean uninstall / reinstall
Do not accept the Free Trial at this time, unless you have the Pro (paid) version.

 

Also Uninstall AVG by These Methods depending on your system type and version.

 

Then Install M.S.E. http://windows.microsoft.com/en-US/windows/products/security-essentials to see if that changes anything.

You can always reinstall AVG later if you wish.

 

Just an idea to eliminate any chances -



#12 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 10:10 PM

ok so now im doing the all in one repair steps, have started scan and receive an error message dialogue box that says..."execute programmes remotely has stopped working". scan process is not progressing so i will choose the 'close programme' option...had to do that twice but scan process has now started to progress again...

#13 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 10:13 PM

thanks noknojon, finished all of condoblokes stuff, just restarting and will follow up

#14 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 10:31 PM

still same situation after your suggestions condobloke...will follow on with noknojons latest.

utorrent wont allow me to uninstall, seems it trys to connect to a remore server before it uninstalls so i am unable to, or it suggests that i may have the wrong version of winsock installed


avg uninstalled successfully

MBAM uninstalled successfully

#15 13046841

13046841
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:05 PM

Posted 06 August 2013 - 11:01 PM

all done no better. should IPv6 be connected? IPv4 is. MSE installed and scanned, no detections..humph...




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users