WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


internet explorer cannot display the webpage

2 posters

descriptioninternet explorer cannot display the webpage Emptyinternet explorer cannot display the webpage23rd January 2010, 12:08 am

more_horiz
running windows vista 64 on HP Pavillion. Previous problem... i could not install SP... finally ignored it after spending a day on phone with microsoft tech and no sucess.

Now today, I can not connect to internet. My router seems ok, and other computers are working ok. I tried a bunch of the stuff on this formum, but nothing seems to work.

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage23rd January 2010, 1:42 am

more_horiz
Please download the current version of HijackThis from HERE

  • Double click and run the installer.
  • It will install to C:\Program Files\Trend Micro\HijackThis\hijackthis.exe
  • After installing, you should get the user agreement, press accept and Hijack This will run.
  • Select Do a system scan and save a log file. This will open a notepad file of everything Hijack This found, copy and paste it back here.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
internet explorer cannot display the webpage DXwU4
internet explorer cannot display the webpage VvYDg

descriptioninternet explorer cannot display the webpage Emptyhijack this23rd January 2010, 3:21 am

more_horiz
nothing is ever easy...
I tried to run hijack this as instructed.
I got a message that something went wrong. I was told I would have to do it manually. I tried to get it into notepad, but could not.

Here is what I got when I followed what hijack told me:
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

**** i was able to copy the hijak log into a paint file using prntscrn, but I can not put that here.

descriptioninternet explorer cannot display the webpage Emptyhijack this result23rd January 2010, 3:33 am

more_horiz
I went to Trendmicro and loaded the hijakthis version that is not beta... and it worked.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:28:51 PM, on 1/22/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\IPSBHO.DLL
O2 - BHO: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\coIEPlg.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-127719306-745603230-1575728969-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'QBDataServiceUser19')
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://floridakeysmedia.tv/axiscam/Codebase/AxisCamControl.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://qb.webex.com/client/v_mywebex-qb20/ra/ieatgpc1.cab
O18 - Protocol: intu-help-qb2 - {84D77A00-41B5-4B8B-8ADF-86486D72E749} - C:\Program Files (x86)\Intuit\QuickBooks 2009\HelpAsyncPluggableProtocol.dll
O18 - Protocol: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - mscoree.dll (file missing)
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\coIEPlg.dll
O20 - AppInit_DLLs: C:\PROGRA~2\Google\GOOGLE~1\GOEC62~1.DLL,C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: QBCFMonitorService - Intuit - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
O23 - Service: QuickBooksDB19 - Intuit, Inc. - C:\PROGRA~2\Intuit\QUICKB~1\QBDBMgrN.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8384 bytes

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage23rd January 2010, 1:18 pm

more_horiz
Any idea what I can try next - cannot display the webpage

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage23rd January 2010, 7:29 pm

more_horiz
Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
internet explorer cannot display the webpage DXwU4
internet explorer cannot display the webpage VvYDg

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage24th January 2010, 2:19 am

more_horiz
OTL logfile created on: 1/23/2010 9:10:15 PM - Run 1
OTL by OldTimer - Version 3.1.26.0 Folder = C:\Users\Bob Dell\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 4.00 Gb Available Physical Memory | 69.00% Memory free
12.00 Gb Paging File | 10.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 582.97 Gb Total Space | 514.18 Gb Free Space | 88.20% Space Free | Partition Type: NTFS
Drive D: | 13.20 Gb Total Space | 1.80 Gb Free Space | 13.68% Space Free | Partition Type: NTFS
Drive E: | 39.28 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HP6720-BOB
Current User Name: Bob Dell
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/01/23 21:09:39 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Bob Dell\Desktop\OTL.exe
PRC - [2009/07/16 20:03:26 | 00,024,576 | ---- | M] (Intuit) -- C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
PRC - [2008/07/09 22:46:28 | 00,131,072 | ---- | M] (Intuit, Inc.) -- C:\Program Files (x86)\Intuit\QuickBooks 2009\QBDBMgrN.exe


========== Modules (SafeList) ==========

MOD - [2010/01/23 21:09:39 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Bob Dell\Desktop\OTL.exe
MOD - [2008/11/11 20:00:26 | 00,079,112 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd3.dll
MOD - [2008/11/11 20:00:26 | 00,079,112 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd.dll
MOD - [2008/01/20 21:50:03 | 00,450,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2008/01/20 21:48:06 | 01,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2008/02/19 08:12:32 | 00,565,928 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\lxbkcoms.exe -- (lxbk_device)
SRV:64bit: - [2008/01/20 21:47:32 | 00,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/12/12 18:18:25 | 00,030,192 | ---- | M] (Google) [Disabled | Stopped] -- C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-110309-193829)
SRV - [2009/10/07 20:58:04 | 00,643,076 | ---- | M] (NCH Software) [Disabled | Stopped] -- C:\Program Files (x86)\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
SRV - [2009/10/07 20:57:38 | 00,946,180 | ---- | M] (NCH Software) [Disabled | Stopped] -- C:\Program Files (x86)\NCH Software\BroadCam\broadcam.exe -- (BroadCamService)
SRV - [2009/09/28 09:19:32 | 00,016,792 | ---- | M] (WebEx Communications, Inc.) [Disabled | Stopped] -- C:\ProgramData\WebEx\MyWebEx\319\atnthost.exe -- (atnthost)
SRV - [2009/08/22 03:26:07 | 00,117,640 | R--- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\ccSvcHst.exe -- (N360)
SRV - [2009/07/20 15:46:06 | 00,536,580 | ---- | M] (NCH Software) [Disabled | Stopped] -- C:\Program Files (x86)\NCH Software\Fling\fling.exe -- (FlingService)
SRV - [2009/07/16 20:03:26 | 00,024,576 | ---- | M] (Intuit) [Auto | Running] -- C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2009/03/12 09:44:32 | 00,184,968 | ---- | M] (SPAMfighter ApS) [Disabled | Stopped] -- C:\Program Files (x86)\SPAMfighter\sfus.exe -- (SPAMfighter Update Service)
SRV - [2009/03/03 05:19:28 | 00,691,200 | ---- | M] (FileZilla Project) [Disabled | Stopped] -- C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2008/11/18 14:45:28 | 00,061,440 | ---- | M] (Intuit Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2008/11/11 19:59:16 | 00,206,088 | ---- | M] (Kaspersky Lab) [Auto | Stopped] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe -- (AVP)
SRV - [2008/10/09 10:56:48 | 00,094,208 | ---- | M] (Hewlett-Packard) [Disabled | Stopped] -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2008/08/22 17:19:14 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Disabled | Stopped] -- c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2008/07/27 13:01:49 | 00,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2008/07/09 22:46:28 | 00,131,072 | ---- | M] (Intuit, Inc.) [On_Demand | Running] -- C:\Program Files (x86)\Intuit\QuickBooks 2009\QBDBMgrN.exe -- (QuickBooksDB19)
SRV - [2008/05/05 17:25:46 | 00,165,416 | ---- | M] (WildTangent, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008/02/19 08:12:18 | 00,537,256 | ---- | M] ( ) [Disabled | Stopped] -- C:\Windows\SysWow64\lxbkcoms.exe -- (lxbk_device)
SRV - [2006/11/02 08:34:14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2006/11/02 01:35:15 | 00,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006/11/02 01:35:15 | 00,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vss.mof -- (VSS)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/01/22 15:51:06 | 00,247,312 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\klif.sys -- (KLIF)
DRV:64bit: - [2009/08/22 03:26:08 | 00,583,296 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\ccHPx64.sys -- (ccHP)
DRV:64bit: - [2009/08/22 03:26:08 | 00,476,720 | ---- | M] () [File_System | System | Stopped] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\SRTSP64.SYS -- (SRTSP)
DRV:64bit: - [2009/08/22 03:26:08 | 00,402,992 | ---- | M] () [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0305020.00B\SYMEFA64.SYS -- (SymEFA)
DRV:64bit: - [2009/08/22 03:26:08 | 00,334,384 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\BHDrvx64.sys -- (BHDrvx64)
DRV:64bit: - [2009/08/22 03:26:08 | 00,278,576 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\SYMTDI.SYS -- (SYMTDI)
DRV:64bit: - [2009/08/22 03:26:08 | 00,120,880 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\SYMFW.SYS -- (SYMFW)
DRV:64bit: - [2009/08/22 03:26:08 | 00,056,880 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\N360x64\0305020.00B\SYMNDISV.SYS -- (SYMNDISV)
DRV:64bit: - [2009/08/22 03:26:08 | 00,032,304 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0305020.00B\SRTSPX64.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2009/08/18 18:24:39 | 00,172,592 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2009/08/18 18:24:15 | 00,034,152 | R--- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/08/18 14:21:16 | 00,031,280 | R--- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\SymIMv.sys -- (SymIM)
DRV:64bit: - [2008/09/09 20:19:36 | 00,025,888 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\PC-Doctor for Windows\pcd5srvc_x64.pkms -- (PCD5SRVC{8AAF211B-043E02A9-05040000})
DRV:64bit: - [2008/07/21 17:34:42 | 00,147,984 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2008/07/09 17:28:32 | 00,026,128 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\klim6.sys -- (KLIM6)
DRV:64bit: - [2008/04/16 14:49:34 | 00,028,416 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2008/02/26 12:18:00 | 00,615,424 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\netr7364.sys -- (netr7364)
DRV:64bit: - [2008/01/29 17:29:42 | 00,037,392 | ---- | M] () [File_System | Boot | Running] -- C:\Windows\SysNative\DRIVERS\klbg.sys -- (KLBG)
DRV:64bit: - [2008/01/20 21:47:28 | 00,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2007/04/12 13:45:55 | 00,018,592 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hpfx64bulk.sys -- (HPFXBULK)
DRV - [2009/10/28 17:37:21 | 00,466,992 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091217.002\IDSviA64.sys -- (IDSVia64)
DRV - [2009/08/30 03:00:00 | 00,475,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2009/08/30 03:00:00 | 00,132,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2008/09/26 05:36:34 | 00,027,632 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl -- ({55662437-DA8C-40c0-AADA-2C816A897A49})
DRV - [2006/09/18 16:36:40 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2006/09/18 16:35:23 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr9/*http://www.yahoo.com/ext/search/search.html

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {22119944-ED35-4ab1-910B-E619EA06A115}:6.9.97

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/01/06 13:34:11 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/01/06 13:34:10 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6b5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox 3.6 Beta 5\components [2010/01/06 13:51:17 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6b5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox 3.6 Beta 5\plugins [2010/01/06 13:51:16 | 00,000,000 | ---D | M]

[2009/07/15 08:32:09 | 00,000,000 | ---D | M] -- C:\Users\Bob Dell\AppData\Roaming\Mozilla\Extensions
[2009/10/16 09:50:50 | 00,000,000 | ---D | M] -- C:\Users\Bob Dell\AppData\Roaming\Mozilla\Firefox\Profiles\03dcs13w.default\extensions
[2010/01/06 13:34:10 | 00,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions

O1 HOSTS File: ([2006/09/18 16:37:24 | 00,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\x64\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {724D43A0-0D85-11D4-9908-00400523E39A} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe (Kaspersky Lab)
O4 - HKCU..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard)
O4 - HKCU..\Run: [RoboForm] C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O9:64bit: - Extra Button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\x64\SCIEPlgn.dll (Kaspersky Lab)
O9 - Extra Button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll (Kaspersky Lab)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} http://floridakeysmedia.tv/axiscam/Codebase/AxisCamControl.ocx (CamImage Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://qb.webex.com/client/v_mywebex-qb20/ra/ieatgpc1.cab (GpcContainer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\intu-help-qb2 {84D77A00-41B5-4b8b-8ADF-86486D72E749} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\qbwc {FC598A64-626C-4447-85B8-53150405FD57} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - Reg Error: Key error. File not found
O18 - Protocol\Handler\intu-help-qb2 {84D77A00-41B5-4b8b-8ADF-86486D72E749} - C:\Program Files (x86)\Intuit\QuickBooks 2009\HelpAsyncPluggableProtocol.dll (Intuit, Inc.)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~2\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd3.dll (Kaspersky Lab)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Key error. - C:\Windows\SysNative\klogon.dll ()
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/04 15:03:54 | 00,000,047 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/01/23 21:09:46 | 00,547,328 | ---- | C] (OldTimer Tools) -- C:\Users\Bob Dell\Desktop\OTL.exe
[2010/01/22 22:28:45 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010/01/22 22:28:39 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Users\Bob Dell\Desktop\HijackThisInstaller.exe
[2010/01/22 22:00:37 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\hijackthis
[2010/01/22 18:30:00 | 01,445,888 | ---- | C] (Option^Explicit Software Solutions) -- C:\Users\Bob Dell\Desktop\WinsockxpFix.exe
[2010/01/22 15:51:31 | 00,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010/01/22 15:51:31 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab
[2010/01/22 15:50:21 | 00,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2010/01/22 12:45:12 | 00,916,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll
[2010/01/22 12:45:11 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010/01/22 12:45:11 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/01/22 12:45:11 | 00,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll
[2010/01/22 12:45:11 | 00,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010/01/22 12:45:11 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/01/22 12:45:11 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010/01/22 12:45:11 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/01/22 12:45:11 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010/01/22 12:45:11 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010/01/22 12:45:11 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010/01/22 12:45:11 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010/01/22 12:45:11 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2010/01/22 12:45:11 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsproxy.dll
[2010/01/22 12:45:11 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/01/12 22:19:12 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010/01/12 22:19:12 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010/01/08 09:47:30 | 00,000,000 | ---D | C] -- C:\hcc email
[2010/01/06 13:51:14 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox 3.6 Beta 5
[2009/12/28 10:22:54 | 00,000,000 | ---D | C] -- C:\2fd53061a82d89f38511a89663f23b43
[2009/06/14 18:57:58 | 00,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkinpa.dll
[2009/06/14 18:57:58 | 00,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkiesc.dll
[2009/06/14 18:57:57 | 01,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkserv.dll
[2009/06/14 18:57:57 | 00,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkusb1.dll
[2009/06/14 18:57:57 | 00,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkhbn3.dll
[2009/06/14 18:57:57 | 00,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkpmui.dll
[2009/06/14 18:57:57 | 00,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbklmpm.dll
[2009/06/14 18:57:57 | 00,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcomm.dll
[2009/06/14 18:57:57 | 00,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkprox.dll
[2009/06/14 18:57:57 | 00,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkpplc.dll
[2009/06/14 18:57:56 | 00,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcomc.dll

========== Files - Modified Within 30 Days ==========

[2010/01/23 21:11:00 | 00,786,432 | -HS- | M] () -- C:\Users\Bob Dell\ntuser.dat
[2010/01/23 21:10:27 | 00,000,436 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{3AA1DF14-D323-45EC-8AC4-344498860FBA}.job
[2010/01/23 21:09:39 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Bob Dell\Desktop\OTL.exe
[2010/01/23 20:51:58 | 00,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/01/23 20:51:58 | 00,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/01/22 22:28:45 | 00,001,930 | ---- | M] () -- C:\Users\Bob Dell\Desktop\HiJackThis.lnk
[2010/01/22 22:26:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Bob Dell\Desktop\HijackThisInstaller.exe
[2010/01/22 22:12:54 | 00,243,823 | ---- | M] () -- C:\Users\Bob Dell\Desktop\hijack2.jpg
[2010/01/22 22:12:26 | 00,334,649 | ---- | M] () -- C:\Users\Bob Dell\Desktop\hijack1.jpg
[2010/01/22 21:45:46 | 03,831,356 | -HS- | M] () -- C:\Windows\SysNative\drivers\fidbox.dat
[2010/01/22 21:45:42 | 00,254,012 | -HS- | M] () -- C:\Windows\SysNative\drivers\fidbox2.dat
[2010/01/22 21:45:02 | 00,003,124 | -HS- | M] () -- C:\Windows\SysNative\drivers\fidbox2.idx
[2010/01/22 21:43:30 | 00,038,412 | -HS- | M] () -- C:\Windows\SysNative\drivers\fidbox.idx
[2010/01/22 21:40:11 | 01,401,344 | ---- | M] () -- C:\Users\Bob Dell\Desktop\HijackThis.msi
[2010/01/22 18:55:31 | 00,690,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/01/22 18:55:31 | 00,595,446 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/01/22 18:55:31 | 00,101,144 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/01/22 18:49:47 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/01/22 18:49:44 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/01/22 18:48:46 | 00,524,288 | -HS- | M] () -- C:\Users\Bob Dell\NTUSER.DAT{01fa271f-e43d-11de-a98c-00248c4aca88}.TMContainer00000000000000000001.regtrans-ms
[2010/01/22 18:48:46 | 00,065,536 | -HS- | M] () -- C:\Users\Bob Dell\NTUSER.DAT{01fa271f-e43d-11de-a98c-00248c4aca88}.TM.blf
[2010/01/22 18:48:38 | 03,411,457 | -H-- | M] () -- C:\Users\Bob Dell\AppData\Local\IconCache.db
[2010/01/22 18:28:50 | 01,445,888 | ---- | M] (Option^Explicit Software Solutions) -- C:\Users\Bob Dell\Desktop\WinsockxpFix.exe
[2010/01/22 15:53:00 | 00,132,816 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat
[2010/01/22 15:53:00 | 00,097,583 | ---- | M] () -- C:\Windows\SysNative\drivers\klick.dat
[2010/01/22 15:51:06 | 00,247,312 | ---- | M] () -- C:\Windows\SysNative\drivers\klif.sys
[2010/01/13 18:13:51 | 00,000,456 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2010/01/06 13:51:18 | 00,001,883 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox 3.6 Beta 5.lnk
[2010/01/06 13:34:13 | 00,001,780 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/01/06 11:48:28 | 00,001,919 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/01/02 02:08:29 | 01,147,904 | ---- | M] () -- C:\Windows\SysNative\wininet.dll
[2010/01/02 02:06:53 | 00,243,712 | ---- | M] () -- C:\Windows\SysNative\occache.dll
[2010/01/02 02:04:33 | 00,700,928 | ---- | M] () -- C:\Windows\SysNative\msfeeds.dll
[2010/01/02 02:04:33 | 00,071,680 | ---- | M] () -- C:\Windows\SysNative\msfeedsbs.dll
[2010/01/02 02:03:42 | 00,031,744 | ---- | M] () -- C:\Windows\SysNative\jsproxy.dll
[2010/01/02 02:03:36 | 01,538,560 | ---- | M] () -- C:\Windows\SysNative\inetcpl.cpl
[2010/01/02 02:03:21 | 02,334,208 | ---- | M] () -- C:\Windows\SysNative\iertutil.dll
[2010/01/02 02:03:21 | 00,219,136 | ---- | M] () -- C:\Windows\SysNative\ieui.dll
[2010/01/02 02:03:21 | 00,132,096 | ---- | M] () -- C:\Windows\SysNative\iesysprep.dll
[2010/01/02 02:03:21 | 00,077,312 | ---- | M] () -- C:\Windows\SysNative\iesetup.dll
[2010/01/02 02:03:20 | 00,072,192 | ---- | M] () -- C:\Windows\SysNative\iernonce.dll
[2010/01/02 02:03:19 | 00,252,416 | ---- | M] () -- C:\Windows\SysNative\iepeers.dll
[2010/01/02 02:03:12 | 00,459,776 | ---- | M] () -- C:\Windows\SysNative\iedkcs32.dll
[2010/01/02 01:38:20 | 00,916,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll
[2010/01/02 01:36:10 | 00,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010/01/02 01:33:32 | 00,594,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/01/02 01:33:32 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2010/01/02 01:32:51 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jsproxy.dll
[2010/01/02 01:32:46 | 01,469,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010/01/02 01:32:33 | 00,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/01/02 01:32:33 | 00,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010/01/02 01:32:33 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010/01/02 01:32:32 | 00,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/01/02 01:32:32 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010/01/02 01:32:26 | 00,387,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll
[2010/01/02 00:25:39 | 00,162,816 | ---- | M] () -- C:\Windows\SysNative\ieUnatt.exe
[2010/01/02 00:25:27 | 00,070,656 | ---- | M] () -- C:\Windows\SysNative\ie4uinit.exe
[2010/01/02 00:24:42 | 00,012,288 | ---- | M] () -- C:\Windows\SysNative\msfeedssync.exe
[2010/01/01 23:57:00 | 00,133,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010/01/01 23:56:50 | 00,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010/01/01 23:56:14 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe

========== Files Created - No Company Name ==========

[2010/01/22 22:12:54 | 00,243,823 | ---- | C] () -- C:\Users\Bob Dell\Desktop\hijack2.jpg
[2010/01/22 22:12:25 | 00,334,649 | ---- | C] () -- C:\Users\Bob Dell\Desktop\hijack1.jpg
[2010/01/22 22:00:37 | 00,001,930 | ---- | C] () -- C:\Users\Bob Dell\Desktop\HiJackThis.lnk
[2010/01/22 21:42:38 | 01,401,344 | ---- | C] () -- C:\Users\Bob Dell\Desktop\HijackThis.msi
[2010/01/22 15:53:00 | 00,132,816 | ---- | C] () -- C:\Windows\SysNative\drivers\klin.dat
[2010/01/22 15:53:00 | 00,097,583 | ---- | C] () -- C:\Windows\SysNative\drivers\klick.dat
[2010/01/22 15:51:32 | 03,831,356 | -HS- | C] () -- C:\Windows\SysNative\drivers\fidbox.dat
[2010/01/22 15:51:32 | 00,254,012 | -HS- | C] () -- C:\Windows\SysNative\drivers\fidbox2.dat
[2010/01/22 15:51:32 | 00,038,412 | -HS- | C] () -- C:\Windows\SysNative\drivers\fidbox.idx
[2010/01/22 15:51:32 | 00,003,124 | -HS- | C] () -- C:\Windows\SysNative\drivers\fidbox2.idx
[2010/01/22 15:51:06 | 00,247,312 | ---- | C] () -- C:\Windows\SysNative\drivers\klif.sys
[2010/01/22 12:45:15 | 09,238,016 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2010/01/22 12:45:14 | 12,462,592 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2010/01/22 12:45:12 | 02,334,208 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2010/01/22 12:45:12 | 01,483,776 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2010/01/22 12:45:12 | 01,147,904 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2010/01/22 12:45:11 | 01,538,560 | ---- | C] () -- C:\Windows\SysNative\inetcpl.cpl
[2010/01/22 12:45:11 | 00,700,928 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2010/01/22 12:45:11 | 00,459,776 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2010/01/22 12:45:11 | 00,252,416 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2010/01/22 12:45:11 | 00,243,712 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2010/01/22 12:45:11 | 00,219,136 | ---- | C] () -- C:\Windows\SysNative\ieui.dll
[2010/01/22 12:45:11 | 00,162,816 | ---- | C] () -- C:\Windows\SysNative\ieUnatt.exe
[2010/01/22 12:45:11 | 00,132,096 | ---- | C] () -- C:\Windows\SysNative\iesysprep.dll
[2010/01/22 12:45:11 | 00,077,312 | ---- | C] () -- C:\Windows\SysNative\iesetup.dll
[2010/01/22 12:45:11 | 00,072,192 | ---- | C] () -- C:\Windows\SysNative\iernonce.dll
[2010/01/22 12:45:11 | 00,071,680 | ---- | C] () -- C:\Windows\SysNative\msfeedsbs.dll
[2010/01/22 12:45:11 | 00,070,656 | ---- | C] () -- C:\Windows\SysNative\ie4uinit.exe
[2010/01/22 12:45:11 | 00,031,744 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2010/01/22 12:45:11 | 00,012,288 | ---- | C] () -- C:\Windows\SysNative\msfeedssync.exe
[2010/01/22 12:45:10 | 01,638,912 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2010/01/12 22:19:12 | 00,189,440 | ---- | C] () -- C:\Windows\SysNative\t2embed.dll
[2010/01/12 22:19:12 | 00,096,256 | ---- | C] () -- C:\Windows\SysNative\fontsub.dll
[2010/01/06 13:51:18 | 00,001,883 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox 3.6 Beta 5.lnk
[2010/01/06 13:34:13 | 00,001,780 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/01/06 11:48:28 | 00,001,919 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2009/09/29 23:34:18 | 00,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/09/24 12:53:12 | 00,021,504 | ---- | C] () -- C:\Windows\jestertb.dll
[2009/09/21 14:08:18 | 00,000,106 | -HS- | C] () -- C:\Windows\WSYS049.SYS
[2009/07/15 08:38:59 | 00,000,114 | ---- | C] () -- C:\Users\Bob Dell\AppData\Roaming\wklnhst.dat
[2009/06/14 19:01:12 | 00,000,101 | ---- | C] () -- C:\Windows\Lexstat.ini
[2009/06/14 18:57:58 | 00,413,696 | ---- | C] () -- C:\Windows\SysWow64\lxbkutil.dll
[2009/06/14 18:57:58 | 00,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXBKinst.dll
[2009/04/09 14:53:17 | 00,000,090 | ---- | C] () -- C:\Windows\QBChanUtil_Trigger.ini
[2009/02/11 11:44:49 | 00,327,680 | ---- | C] () -- C:\Windows\SysWow64\pythoncom25.dll
[2009/02/11 11:44:49 | 00,102,400 | ---- | C] () -- C:\Windows\SysWow64\pywintypes25.dll
[2008/01/20 21:50:05 | 00,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 21:49:49 | 00,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
< End of report >

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage24th January 2010, 2:22 am

more_horiz
Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {724D43A0-0D85-11D4-9908-00400523E39A} - No CLSID value found.O32 - AutoRun File - [2008/08/04 15:03:54 | 00,000,047 | R--- | M] () - E:\autorun.inf -- [ UDF ]


  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
internet explorer cannot display the webpage DXwU4
internet explorer cannot display the webpage VvYDg

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage24th January 2010, 2:35 am

more_horiz
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{724D43A0-0D85-11D4-9908-00400523E39A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{724D43A0-0D85-11D4-9908-00400523E39A}\ not found.

OTL by OldTimer - Version 3.1.26.0 log created on 01232010_213216

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage24th January 2010, 2:37 am

more_horiz
Hello.

I made a slight error in my script and OTL didn't remove the mountpoint, so I need you to run it again, with the new script below.

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O32 - AutoRun File - [2008/08/04 15:03:54 | 00,000,047 | R--- | M] () - E:\autorun.inf -- [ UDF ]


  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
internet explorer cannot display the webpage DXwU4
internet explorer cannot display the webpage VvYDg

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage24th January 2010, 3:47 am

more_horiz
Still not working... thank you for your efforts thus far. Here is the result

========== OTL ==========
File move failed. E:\autorun.inf scheduled to be moved on reboot.

OTL by OldTimer - Version 3.1.26.0 log created on 01232010_223856

Files\Folders moved on Reboot...
File move failed. E:\autorun.inf scheduled to be moved on reboot.

Registry entries deleted on Reboot...

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage25th January 2010, 2:02 pm

more_horiz
I am unable to use the internet on my windows vista 64 computer. Last week some diagnostics was recommended, which I did, but I have no idea what to do next. Any ideas will be appreciated. thanks.

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage25th January 2010, 9:56 pm

more_horiz
Hello.
What is the E:\ drive? there's an autorun file on it that needs to go.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
internet explorer cannot display the webpage DXwU4
internet explorer cannot display the webpage VvYDg

descriptioninternet explorer cannot display the webpage EmptyRe: internet explorer cannot display the webpage

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum