It's Cyber Monday - fantastic 70% discount

Buy Now

Limited time offer:

03

Days

/

00

Hrs

/

04

Min

/

04

Sec

Something REALLY wrong with the mozilla and msn

Posted 9/15/2009 4:18 PM
#77398
User avatar

aesthete9928 Member

Date Joined Nov 2016
Total Posts: 2
Hi there! <br/> <br/>I am experiencing difficulty with mozilla firefox and msn. (which i suspect is due to virus/malware/torjan or something similar) <br/> <br/>When I try to log on to my sch email, even though I typed the correct password, it says wrong username/password. When I try to access my hotmail, mozilla crashes. When I use facebook, the messages don't load. I also don't seem to be able to browse facebook pictures and "hit next page" button for some websites. However, sometimes it work. <br/> <br/>As for msn, my friends told me that I have been sending those virus messages. Exactly which one, I'm not sure. <br/> <br/>Initially I only had avast and windows defender as protection. <br/> <br/>After being notified of a possible virus attack, I installed a series of programs <br/>-Zone alarm for firewall <br/>-PSI Security for notifying patches and threats <br/>- Advance System Care3 <br/> <br/>And those asked from the website. <br/> <br/>Recently, I was told, I no longer send out random msges. However, the problem with Mozilla still constantly occurs. Even after reinstalling it. My main concern is the safety of using internet banking and leakage of private information. <br/> <br/> <br/>Your aid to this is GREATLY APPRECIATED. <br/>Below are my log as required to post this post. <br/> <br/> <br/>=================================HIJACKTHIS LOG===================================================== <br/> <br/>Logfile of Trend Micro HijackThis v2.0.2 <br/>Scan saved at 1:55:58 AM, on 16/09/2009 <br/>Platform: Windows XP SP3 (WinNT 5.01.2600) <br/>MSIE: Internet Explorer v7.00 (7.00.6000.16876) <br/>Boot mode: Normal <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\Program Files\Windows Defender\MsMpEng.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\system32\S24EvMon.exe <br/>C:\WINDOWS\system32\ZCfgSvc.exe <br/>C:\WINDOWS\system32\1XConfig.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe <br/>C:\Program Files\Alwil Software\Avast4\ashServ.exe <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\Program Files\Java\jre6\bin\jqs.exe <br/>C:\WINDOWS\system32\nvsvc32.exe <br/>C:\WINDOWS\system32\RegSrvc.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\system32\00THotkey.exe <br/>C:\Program Files\ltmoh\Ltmoh.exe <br/>C:\WINDOWS\AGRSMMSG.exe <br/>C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe <br/>C:\Program Files\Windows Defender\MSASCui.exe <br/>C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe <br/>C:\Program Files\Java\jre6\bin\jusched.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\Messenger\Msmsgs.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe <br/>C:\Program Files\Mozilla Firefox\firefox.exe <br/>C:\WINDOWS\system32\wscntfy.exe <br/>C:\Program Files\Trend Micro\HijackThis\HijackThis.exe <br/> <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll <br/>O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll <br/>O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) <br/>O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll <br/>O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll <br/>O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll <br/>O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 <br/>O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC <br/>O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName <br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup <br/>O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet <br/>O4 - HKLM\..\Run: [00THotkey] C:\WINDOWS\system32\00THotkey.exe <br/>O4 - HKLM\..\Run: [000StTHK] 000StTHK.exe <br/>O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe <br/>O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe <br/>O4 - HKLM\..\Run: [ZCfgSvc.exe] C:\WINDOWS\system32\ZCfgSvc.exe <br/>O4 - HKLM\..\Run: [PRONoMgr.exe] C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe <br/>O4 - HKLM\..\Run: [SigmaTel StacMon] C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe <br/>O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" <br/>O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide <br/>O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" <br/>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime <br/>O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" <br/>O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent <br/>O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe <br/>O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background <br/>O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background <br/>O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup <br/>O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') <br/>O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') <br/>O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') <br/>O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') <br/>O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe <br/>O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm <br/>O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm <br/>O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 <br/>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL <br/>O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing) <br/>O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe <br/>O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe <br/>O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL <br/>O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe <br/>O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe <br/>O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe <br/>O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe <br/>O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe <br/>O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe <br/>O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe <br/>O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe <br/>O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe <br/>O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe <br/> <br/>-- <br/>End of file - 7565 bytes <br/> <br/> <br/> <br/> <br/> <br/> <br/>========================================MALWAREBYTELOG=============================================== <br/>Malwarebytes' Anti-Malware 1.41 <br/>Database version: 2804 <br/>Windows 5.1.2600 Service Pack 3 <br/> <br/>16/09/2009 1:48:24 AM <br/>mbam-log-2009-09-16 (01-48-24).txt <br/> <br/>Scan type: Full Scan (C:\|D:\|) <br/>Objects scanned: 123987 <br/>Time elapsed: 33 minute(s), 59 second(s) <br/> <br/>Memory Processes Infected: 0 <br/>Memory Modules Infected: 0 <br/>Registry Keys Infected: 0 <br/>Registry Values Infected: 0 <br/>Registry Data Items Infected: 0 <br/>Folders Infected: 0 <br/>Files Infected: 0 <br/> <br/>Memory Processes Infected: <br/>(No malicious items detected) <br/> <br/>Memory Modules Infected: <br/>(No malicious items detected) <br/> <br/>Registry Keys Infected: <br/>(No malicious items detected) <br/> <br/>Registry Values Infected: <br/>(No malicious items detected) <br/> <br/>Registry Data Items Infected: <br/>(No malicious items detected) <br/> <br/>Folders Infected: <br/>(No malicious items detected) <br/> <br/>Files Infected: <br/>(No malicious items detected) <br/> <br/> <br/>======================================DDS LOG 1====================================================== <br/> <br/> <br/>UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. <br/>IF REQUESTED, ZIP IT UP & ATTACH IT <br/> <br/>DDS (Ver_09-07-30.01) <br/> <br/>Microsoft Windows XP Home Edition <br/>Boot Device: \Device\HarddiskVolume1 <br/>Install Date: 24/03/2009 9:01:45 AM <br/>System Uptime: 16/09/2009 12:22:49 AM (1 hours ago) <br/> <br/>Motherboard: TOSHIBA | | Portable PC <br/>Processor: Intel(R) Pentium(R) M processor 1.50GHz | uFC-PGA Socket | 1496/100mhz <br/> <br/>==== Disk Partitions ========================= <br/> <br/>C: is FIXED (NTFS) - 67 GiB total, 14.822 GiB free. <br/>D: is FIXED (NTFS) - 61 GiB total, 37.061 GiB free. <br/>E: is CDROM () <br/> <br/>==== Disabled Device Manager Items ============= <br/> <br/>Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318} <br/>Description: <br/>Device ID: ACPI\SMCF030\4&32D50C2&0 <br/>Manufacturer: <br/>Name: <br/>PNP Device ID: ACPI\SMCF030\4&32D50C2&0 <br/>Service: <br/> <br/>==== System Restore Points =================== <br/> <br/>RP125: 27/08/2009 3:00:17 AM - Software Distribution Service 3.0 <br/>RP126: 28/08/2009 1:35:19 AM - Software Distribution Service 3.0 <br/>RP127: 28/08/2009 9:29:47 AM - Software Distribution Service 3.0 <br/>RP128: 30/08/2009 3:54:49 PM - System Checkpoint <br/>RP129: 31/08/2009 10:56:53 PM - System Checkpoint <br/>RP130: 1/09/2009 2:11:36 AM - Software Distribution Service 3.0 <br/>RP131: 2/09/2009 4:18:05 AM - System Checkpoint <br/>RP132: 3/09/2009 4:43:46 AM - System Checkpoint <br/>RP133: 4/09/2009 12:11:02 AM - Software Distribution Service 3.0 <br/>RP134: 6/09/2009 10:50:16 PM - System Checkpoint <br/>RP135: 7/09/2009 12:26:47 AM - Installed Java(TM) 6 Update 16 <br/>RP136: 8/09/2009 1:19:24 AM - Installed QuickTime <br/>RP137: 9/09/2009 12:25:59 AM - Software Distribution Service 3.0 <br/>RP138: 11/09/2009 12:50:43 AM - System Checkpoint <br/>RP139: 11/09/2009 2:21:30 AM - Advanced SystemCare RestorePoint <br/>RP140: 11/09/2009 2:24:36 AM - Software Distribution Service 3.0 <br/>RP141: 11/09/2009 3:00:15 AM - Software Distribution Service 3.0 <br/>RP142: 12/09/2009 10:55:15 PM - System Checkpoint <br/>RP143: 13/09/2009 11:16:13 PM - System Checkpoint <br/>RP144: 14/09/2009 3:00:19 AM - Software Distribution Service 3.0 <br/>RP145: 15/09/2009 1:55:59 AM - Software Distribution Service 3.0 <br/> <br/>==== Installed Programs ====================== <br/> <br/>Acrobat.com <br/>Adobe AIR <br/>Adobe Flash Player 10 Plugin <br/>Adobe Reader 9.1 <br/>Advanced SystemCare 3 <br/>Apple Software Update <br/>avast! Antivirus <br/>BitComet 1.10 <br/>CCleaner (remove only) <br/>CutePDF Writer 2.7 <br/>e-tax 2009 <br/>Hotfix for Windows XP (KB952287) <br/>Hotfix for Windows XP (KB970653-v3) <br/>Intel(R) PRO Network Adapters and Drivers <br/>Intel(R) PROSet <br/>Java(TM) 6 Update 16 <br/>K-Lite Mega Codec Pack 4.7.0 <br/>Malwarebytes' Anti-Malware <br/>Microsoft Application Error Reporting <br/>Microsoft Choice Guard <br/>Microsoft Internationalized Domain Names Mitigation APIs <br/>Microsoft National Language Support Downlevel APIs <br/>Microsoft Office Excel 2007 <br/>Microsoft Office Excel MUI (English) 2007 <br/>Microsoft Office PowerPoint 2007 <br/>Microsoft Office PowerPoint MUI (English) 2007 <br/>Microsoft Office Project MUI (English) 2007 <br/>Microsoft Office Project Professional 2007 <br/>Microsoft Office Proof (English) 2007 <br/>Microsoft Office Proof (French) 2007 <br/>Microsoft Office Proof (Spanish) 2007 <br/>Microsoft Office Proofing (English) 2007 <br/>Microsoft Office Shared MUI (English) 2007 <br/>Microsoft Office Shared Setup Metadata MUI (English) 2007 <br/>Microsoft Office Visio MUI (English) 2007 <br/>Microsoft Office Visio Professional 2007 <br/>Microsoft Office Word 2007 <br/>Microsoft Office Word MUI (English) 2007 <br/>Microsoft Software Update for Web Folders (English) 12 <br/>Mozilla Firefox (3.5.3) <br/>MSVCRT <br/>NVIDIA Windows 2000/XP Display Drivers <br/>QuickTime <br/>Secunia PSI <br/>Security Update for Windows Internet Explorer 7 (KB938127-v2) <br/>Security Update for Windows Internet Explorer 7 (KB956390) <br/>Security Update for Windows Internet Explorer 7 (KB961260) <br/>Security Update for Windows Internet Explorer 7 (KB963027) <br/>Security Update for Windows Internet Explorer 7 (KB969897) <br/>Security Update for Windows Internet Explorer 7 (KB972260) <br/>Security Update for Windows Media Player (KB952069) <br/>Security Update for Windows Media Player (KB968816) <br/>Security Update for Windows Media Player (KB973540) <br/>Security Update for Windows XP (KB923561) <br/>Security Update for Windows XP (KB923789) <br/>Security Update for Windows XP (KB938464-v2) <br/>Security Update for Windows XP (KB950760) <br/>Security Update for Windows XP (KB950762) <br/>Security Update for Windows XP (KB950974) <br/>Security Update for Windows XP (KB951066) <br/>Security Update for Windows XP (KB951376-v2) <br/>Security Update for Windows XP (KB951698) <br/>Security Update for Windows XP (KB951748) <br/>Security Update for Windows XP (KB952004) <br/>Security Update for Windows XP (KB952954) <br/>Security Update for Windows XP (KB954459) <br/>Security Update for Windows XP (KB954600) <br/>Security Update for Windows XP (KB955069) <br/>Security Update for Windows XP (KB956572) <br/>Security Update for Windows XP (KB956744) <br/>Security Update for Windows XP (KB956802) <br/>Security Update for Windows XP (KB956803) <br/>Security Update for Windows XP (KB956841) <br/>Security Update for Windows XP (KB956844) <br/>Security Update for Windows XP (KB957097) <br/>Security Update for Windows XP (KB958215) <br/>Security Update for Windows XP (KB958644) <br/>Security Update for Windows XP (KB958687) <br/>Security Update for Windows XP (KB958690) <br/>Security Update for Windows XP (KB959426) <br/>Security Update for Windows XP (KB960225) <br/>Security Update for Windows XP (KB960714) <br/>Security Update for Windows XP (KB960715) <br/>Security Update for Windows XP (KB960803) <br/>Security Update for Windows XP (KB960859) <br/>Security Update for Windows XP (KB961371) <br/>Security Update for Windows XP (KB961373) <br/>Security Update for Windows XP (KB961501) <br/>Security Update for Windows XP (KB968537) <br/>Security Update for Windows XP (KB969898) <br/>Security Update for Windows XP (KB970238) <br/>Security Update for Windows XP (KB971557) <br/>Security Update for Windows XP (KB971633) <br/>Security Update for Windows XP (KB971657) <br/>Security Update for Windows XP (KB971961) <br/>Security Update for Windows XP (KB973346) <br/>Security Update for Windows XP (KB973354) <br/>Security Update for Windows XP (KB973507) <br/>Security Update for Windows XP (KB973869) <br/>Segoe UI <br/>SigmaTel AC97 Audio Drivers <br/>Skype web features <br/>Skype™ 4.1 <br/>TOSHIBA Software Modem <br/>TRNSYS 16.01.0003 <br/>Update for 2007 Microsoft Office System (KB967642) <br/>Update for Windows XP (KB898461) <br/>Update for Windows XP (KB951978) <br/>Update for Windows XP (KB955839) <br/>Update for Windows XP (KB961503) <br/>Update for Windows XP (KB967715) <br/>Update for Windows XP (KB968389) <br/>Update for Windows XP (KB973815) <br/>VC 9.0 Runtime <br/>WebFldrs XP <br/>Windows Defender <br/>Windows Internet Explorer 7 <br/>Windows Live Call <br/>Windows Live Communications Platform <br/>Windows Live Essentials <br/>Windows Live Messenger <br/>Windows Live Sign-in Assistant <br/>Windows Live Upload Tool <br/>Windows Messenger 5.1 <br/>Windows Rights Management Client Backwards Compatibility SP2 <br/>Windows Rights Management Client with Service Pack 2 <br/>Windows XP Service Pack 3 <br/>WinRAR archiver <br/>ZoneAlarm <br/> <br/>==== Event Viewer Messages From Past Week ======== <br/> <br/>9/09/2009 6:25:09 PM, error: nv [106] - Silent Running: Stress test transition: Performance 3D -> LowPower 3D <br/>9/09/2009 6:25:09 PM, error: nv [106] - Silent Running: Stress test transition: Dynamic -> Performance 3D <br/>10/09/2009 2:15:35 PM, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 000CF14C875B. The following error occurred: The operation was canceled by the user. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server. <br/>10/09/2009 11:00:27 PM, error: Dhcp [1002] - The IP address lease 192.168.0.3 for the Network Card with network address 000E7BECD91C has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message). <br/>10/09/2009 1:54:22 PM, error: Dhcp [1002] - The IP address lease 192.168.0.2 for the Network Card with network address 000CF14C875B has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message). <br/> <br/>==== End Of File =========================== <br/> <br/> <br/>==========================================DDS LOG 2================================================== <br/> <br/> <br/>DDS (Ver_09-07-30.01) - NTFSx86 <br/>Run by Tyger at 1:53:17.43 on Wed 16/09/2009 <br/>Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_16 <br/>Microsoft Windows XP Home Edition 5.1.2600.3.1252.61.1033.18.1279.628 [GMT 10:00] <br/> <br/>AV: avast! antivirus 4.8.1351 [VPS 090914-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} <br/>FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B} <br/> <br/>============== Running Processes =============== <br/> <br/>C:\WINDOWS\system32\svchost -k DcomLaunch <br/>svchost.exe <br/>C:\Program Files\Windows Defender\MsMpEng.exe <br/>C:\WINDOWS\System32\svchost.exe -k netsvcs <br/>C:\WINDOWS\system32\S24EvMon.exe <br/>svchost.exe <br/>C:\WINDOWS\system32\ZCfgSvc.exe <br/>svchost.exe <br/>C:\WINDOWS\system32\1XConfig.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe <br/>C:\Program Files\Alwil Software\Avast4\ashServ.exe <br/>C:\WINDOWS\system32\spoolsv.exe <br/>svchost.exe <br/>C:\Program Files\Java\jre6\bin\jqs.exe <br/>C:\WINDOWS\system32\nvsvc32.exe <br/>C:\WINDOWS\system32\RegSrvc.exe <br/>C:\WINDOWS\system32\svchost.exe -k imgsvc <br/>C:\WINDOWS\system32\00THotkey.exe <br/>C:\Program Files\ltmoh\Ltmoh.exe <br/>C:\WINDOWS\AGRSMMSG.exe <br/>C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe <br/>C:\Program Files\Windows Defender\MSASCui.exe <br/>C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe <br/>C:\Program Files\Java\jre6\bin\jusched.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\Messenger\Msmsgs.exe <br/>C:\WINDOWS\System32\svchost.exe -k HTTPFilter <br/>C:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe <br/>C:\Program Files\Mozilla Firefox\firefox.exe <br/>C:\WINDOWS\system32\wscntfy.exe <br/>C:\Documents and Settings\Tyger\My Documents\Downloads\dds.scr <br/> <br/>============== Pseudo HJT Report =============== <br/> <br/>BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll <br/>BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - c:\program files\bitcomet\tools\BitCometBHO_1.3.3.2.dll <br/>BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File <br/>BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll <br/>BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll <br/>BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll <br/>uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe <br/>uRun: [MsnMsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background <br/>uRun: [MSMSGS] "c:\program files\messenger\Msmsgs.exe" /background <br/>uRun: [Advanced SystemCare 3] "c:\program files\iobit\advanced systemcare 3\AWC.exe" /startup <br/>mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 <br/>mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC <br/>mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName <br/>mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup <br/>mRun: [nwiz] nwiz.exe /installquiet <br/>mRun: [00THotkey] c:\windows\system32\00THotkey.exe <br/>mRun: [000StTHK] 000StTHK.exe <br/>mRun: [LtMoh] c:\program files\ltmoh\Ltmoh.exe <br/>mRun: [AGRSMMSG] AGRSMMSG.exe <br/>mRun: [ZCfgSvc.exe] c:\windows\system32\ZCfgSvc.exe <br/>mRun: [PRONoMgr.exe] c:\program files\intel\ncs\proset\PRONoMgr.exe <br/>mRun: [SigmaTel StacMon] c:\program files\sigmatel\sigmatel ac97 audio drivers\stacmon.exe <br/>mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" <br/>mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide <br/>mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe <br/>mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" <br/>mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime <br/>mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe" <br/>mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent <br/>dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE <br/>dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t <br/>StartupFolder: c:\docume~1\tyger\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi.exe <br/>IE: &D&ownload &with BitComet - c:\program files\bitcomet\BitComet.exe/AddLink.htm <br/>IE: &D&ownload all video with BitComet - c:\program files\bitcomet\BitComet.exe/AddVideo.htm <br/>IE: &D&ownload all with BitComet - c:\program files\bitcomet\BitComet.exe/AddAllLink.htm <br/>IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 <br/>IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://c:\program files\bitcomet\tools\BitCometBHO_1.3.3.2.dll/206 <br/>IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe <br/>IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe <br/>IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL <br/>DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab <br/>DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab <br/>DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab <br/>Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL <br/>Notify: Sebring - c:\windows\system32\LgNotify.dll <br/>SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\window~4\MpShHook.dll <br/> <br/>================= FIREFOX =================== <br/> <br/>FF - ProfilePath - c:\docume~1\tyger\applic~1\mozilla\firefox\profiles\0pvjsrxi.default\ <br/>FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll <br/>FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll <br/>FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} <br/> <br/>---- FIREFOX POLICIES ---- <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess"); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072); <br/>c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true); <br/>c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35"); <br/>c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35"); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~"); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror"); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false); <br/>c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json"); <br/> <br/>============= SERVICES / DRIVERS =============== <br/> <br/>R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-8-6 114768] <br/>R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-9-8 353672] <br/>R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-8-6 20560] <br/>R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2009-8-6 138680] <br/>R2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592] <br/>S2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?] <br/>S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2009-8-6 254040] <br/>S3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2009-8-6 352920] <br/>S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2009-6-17 12648] <br/> <br/>=============== Created Last 30 ================ <br/> <br/>2009-09-16 01:09 <DIR> --d----- c:\program files\CCleaner <br/>2009-09-16 01:07 <DIR> --d----- c:\docume~1\tyger\applic~1\Malwarebytes <br/>2009-09-16 01:07 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys <br/>2009-09-16 01:07 19,160 a------- c:\windows\system32\drivers\mbam.sys <br/>2009-09-16 01:07 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes <br/>2009-09-16 01:06 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware <br/>2009-09-13 13:13 208,744 a------- c:\windows\system32\muweb.dll <br/>2009-09-13 13:13 268,648 a------- c:\windows\system32\mucltui.dll <br/>2009-09-13 13:13 27,496 a------- c:\windows\system32\mucltui.dll.mui <br/>2009-09-12 18:59 <DIR> --d----- c:\documents and settings\tyger\Tracing <br/>2009-09-12 18:56 <DIR> --d----- c:\program files\Microsoft <br/>2009-09-12 18:56 <DIR> --d----- c:\program files\Windows Live SkyDrive <br/>2009-09-11 02:20 <DIR> --d----- c:\docume~1\tyger\applic~1\IObit <br/>2009-09-11 02:20 <DIR> --d----- c:\program files\IObit <br/>2009-09-10 13:56 153,088 -c------ c:\windows\system32\dllcache\triedit.dll <br/>2009-09-08 01:42 4,212 a---h--- c:\windows\system32\zllictbl.dat <br/>2009-09-08 01:41 1,221,512 a------- c:\windows\system32\zpeng25.dll <br/>2009-09-08 01:41 <DIR> --d----- c:\windows\system32\ZoneLabs <br/>2009-09-08 01:41 <DIR> --d----- c:\program files\Zone Labs <br/>2009-09-08 01:41 350,192 a------- c:\windows\system32\vsconfig.xml <br/>2009-09-08 01:40 <DIR> --d----- c:\windows\Internet Logs <br/>2009-09-08 01:11 <DIR> --d----- c:\program files\Secunia <br/>2009-09-07 23:24 268 a---h--- C:\sqmdata07.sqm <br/>2009-09-07 23:24 244 a---h--- C:\sqmnoopt07.sqm <br/>2009-09-07 00:27 411,368 a------- c:\windows\system32\deploytk.dll <br/>2009-09-07 00:27 73,728 a------- c:\windows\system32\javacpl.cpl <br/>2009-09-02 01:13 56 a---h--- c:\windows\system32\ezsidmv.dat <br/>2009-09-02 01:11 <DIR> --d--r-- c:\program files\Skype <br/>2009-08-27 00:19 <DIR> --d----- C:\etax2009 <br/>2009-08-20 15:39 12,160 ac------ c:\windows\system32\dllcache\mouhid.sys <br/>2009-08-20 15:39 12,160 a------- c:\windows\system32\drivers\mouhid.sys <br/> <br/>==================== Find3M ==================== <br/> <br/>2009-08-05 19:01 204,800 a------- c:\windows\system32\mswebdvd.dll <br/>2009-07-26 16:44 48,448 a------- c:\windows\system32\sirenacm.dll <br/>2009-07-18 05:01 58,880 a------- c:\windows\system32\atl.dll <br/>2009-07-12 12:21 233,472 a------- c:\windows\system32\wmpdxm.dll <br/>2009-06-30 02:12 827,392 a------- c:\windows\system32\wininet.dll <br/>2009-06-30 02:12 78,336 a------- c:\windows\system32\ieencode.dll <br/>2009-06-30 02:12 17,408 a------- c:\windows\system32\corpol.dll <br/>2009-06-25 18:25 730,112 a------- c:\windows\system32\lsasrv.dll <br/>2009-06-25 18:25 301,568 a------- c:\windows\system32\kerberos.dll <br/>2009-06-25 18:25 147,456 a------- c:\windows\system32\schannel.dll <br/>2009-06-25 18:25 136,192 a------- c:\windows\system32\msv1_0.dll <br/>2009-06-25 18:25 56,832 a------- c:\windows\system32\secur32.dll <br/>2009-06-25 18:25 54,272 a------- c:\windows\system32\wdigest.dll <br/> <br/>============= FINISH: 1:53:30.22 =============== <br/> <br/> <br/> <br/>I will be looking forward to your reply <br/> <br/> Thanks and best regard,
Posted 9/16/2009 5:47 AM
#77412
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hello aesthete9928 and welcome :smile: <br/> <br/> <br/> <br/> <br/>Nothing suspicious in the log files. Please tell how things are running ?

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 9/16/2009 6:21 AM
#77420
User avatar

aesthete9928 Member

Date Joined Nov 2016
Total Posts: 2
Hmm. another noticeable problem with mozilla is that, when I experience difficulty and try to close and reopen mozilla, it would say program already open, close program or restart computer. <br/>Then i would run task manager and see that mozilla firefox is on the task list and is using 99 CPU Usage with like e.g. 105, 909K memory usage which is unusually high in my opinion. <br/> <br/>Is there any safe browser that you could recommend to ensure high safety for internet banking? <br/> <br/> <br/>Thanks again! :)
Posted 9/16/2009 6:53 AM
#77426
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
I think you can use Opera Browser to internet banking: <br/>http://www.opera.com/browser/download/ <br/> <br/> <br/> <br/>It is a safe browser, and don´t use many recourses

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Friday, December 2, 2016, 7:11 PM (GMT +1)
There are a total of 61,157 posts in 13,447 threads.
In the last 3 days there were 1 new threads and 1 reply posts.

Who's online

This forum has 37,966 registered members. Please welcome our newest member, Don Tee.
There are currently no users on-line.