|
|
|
|
|||||||
| Register | Forum Rules | Getting Started! - Guide | Blog | Videos | Gallery | Members List | Social Groups | Mark Forums Read |
 |
|
|
Thread Tools | Display Modes |
08-04-2009, 01:25 PM
|
#591 |
|
ƒ(ψ)=ΘΊΧφ
 
Join Date: May 2006
Location: India
Age: 24
Posts: 6,621
Thanks: 19
Thanked 649 Times in 605 Posts
Rep Power: 87
  OS:
 |
Re: Cannot access Antivirus Sites/Google/Avast etc.
Disconnect from internet, Open notepad and copy+paste the following text and save the file as CFScript.txt in the same directory where combofix is present. Then drag and drop the CFScript.txt file over combofix, and combofix will run again.
Code:
File::
c:\windows\System32\gqqsgzq.dll
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0f05b5bb-d621-11dd-a1c0-001eecce0e17}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{413c6663-f1db-11dd-b306-001eecce0e17}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d4f209a0-f372-11dd-b763-001eecce0e17}]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost find the value named netsvcs, double click to edit, find the line containing Lanmanagent and delete only that line, click OK and close the edit window. open command prompt (cmd.exe) and type : Code:
ipconfig /flushdns Also install this hotfix : http://www.microsoft.com/technet/sec.../MS08-067.mspx
__________________
Please don't click here |
|
|
| Thanked Users: | kimmadscientist (09-04-2009) |
|
09-04-2009, 04:07 PM
|
#592 |
|
Newbie
Join Date: Apr 2009
Age: 20
Posts: 5
Thanks: 2
Thanked 0 Times in 0 Posts
Rep Power: 0
 OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
OMG! It worked! *hugs*
 Domo arigato gozaimashita bakuryu san! lol  However, I still could not update my Kaspersky. Then I turned on windows firewall and it prevented me to access the internet, even just google so I turned it off again. Here goes my log for Kaspersky update (It's telling me update is done but my database remains December 31 2008 and thus obsolete. So should I switch to other AV?): Code:
Update : completed ------------------ Update size: 175.1 KB Transfer rate: 0.00 Kb/s Launch: 4/9/2009 6:22:23 PM Duration: 00:01:08 Completion: 4/9/2009 6:23:31 PM Events ------ Event Object Name Time Traffic ----- ----------- ---- ------- Task started 4/9/2009 6:22:36 PM Update source is selected D:/KAV Update/ 4/9/2009 6:22:36 PM File download started index/6/u0607g.xml.dif 4/9/2009 6:22:36 PM File download started index/6/u0607g.xml.klz 4/9/2009 6:22:36 PM File download started index/6/u0607g.xml 4/9/2009 6:22:36 PM File downloaded /u0607g.xml 4/9/2009 6:22:36 PM 20.0 KB Creating the list of files to download 4/9/2009 6:22:36 PM File download started bases/av/avc/i386/av-i386-0607g.xml.dif 4/9/2009 6:23:05 PM File download started bases/av/avc/i386/av-i386-0607g.xml.klz 4/9/2009 6:23:05 PM File download started bases/av/avc/i386/av-i386-0607g.xml 4/9/2009 6:23:05 PM File downloaded /av-i386-0607g.xml 4/9/2009 6:23:05 PM 152.8 KB File download started index/bases/blst/blst-0607g.xml.dif 4/9/2009 6:23:29 PM File download started index/bases/blst/blst-0607g.xml.klz 4/9/2009 6:23:29 PM File download started index/bases/blst/blst-0607g.xml 4/9/2009 6:23:29 PM File downloaded /blst-0607g.xml 4/9/2009 6:23:29 PM 1.1 KB File download started bases/upd/upd-0607g.xml.dif 4/9/2009 6:23:30 PM File download started bases/upd/upd-0607g.xml.klz 4/9/2009 6:23:30 PM File download started bases/upd/upd-0607g.xml 4/9/2009 6:23:30 PM File downloaded /upd-0607g.xml 4/9/2009 6:23:30 PM 1.3 KB Task completed Databases are up to date 4/9/2009 6:23:31 PM Settings -------- Parameter Value --------- ----- Run mode Manually Scan quarantine Yes Region Autodefinition Last edited by bakuryu; 09-04-2009 at 06:17 PM.. |
|
|
|
|
09-04-2009, 06:24 PM
|
#593 |
|
ƒ(ψ)=ΘΊΧφ
Join Date: May 2006
Location: India
Age: 24
Posts: 6,621
Thanks: 19
Thanked 649 Times in 605 Posts
Rep Power: 87
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
Are you using Kaspersky Internet Suit or Kaspersky Antivirus only ?
if you don't use the Internet suit, then you need to keep Windows firewall on. open command prompt and type : Code:
netsh firewall set opmode mode=ENABLE exceptions=ENABLE profile=CURRENT And try updating Kaspersky from the zip archive files. Frequently asked questions: Databases updates. |
|
|
|
|
09-04-2009, 08:44 PM
|
#594 |
|
Newbie
Join Date: Apr 2009
Age: 20
Posts: 5
Thanks: 2
Thanked 0 Times in 0 Posts
Rep Power: 0
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
I am using Kaspersky Internet Security 7.0. I followed all the instructions on the website but my Kaspersky doesn't seem to see the updates folder. It connects to the internet for an update (and tells me database is up to date) even if I have unchecked the Kaspersky Lab's update servers check box. I'm worried that traces of the malware might still be present and it's affecting my Kaspersky. Please help...
 |
|
|
|
|
10-04-2009, 11:53 AM
|
#595 |
|
ƒ(ψ)=ΘΊΧφ
Join Date: May 2006
Location: India
Age: 24
Posts: 6,621
Thanks: 19
Thanked 649 Times in 605 Posts
Rep Power: 87
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
Why don't you reinstall Kaspersky or try the latest version 2009 and check if virus signature update. And if that doesn't help start a new thread since this one is only for antivirus sites being blocked.
And since you use Internet Security, if you have Kaspersky firewall turned ON, no need to enable Windows firewall. |
|
|
|
| Thanked Users: | kimmadscientist (10-04-2009) |
|
10-04-2009, 11:59 AM
|
#596 |
|
Newbie
Join Date: Apr 2009
Age: 20
Posts: 5
Thanks: 2
Thanked 0 Times in 0 Posts
Rep Power: 0
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
I think I've been blacklisted in Kaspersky servers as my Kaspersky is just a cracked version, lol
 I'm planning to install a free AV instead, nod32 perhaps, and turn back windows firewall on thanks for your assistance! |
|
|
|
|
10-04-2009, 12:11 PM
|
#597 |
|
ƒ(ψ)=ΘΊΧφ
Join Date: May 2006
Location: India
Age: 24
Posts: 6,621
Thanks: 19
Thanked 649 Times in 605 Posts
Rep Power: 87
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
ESET NOD32 is not freeware. And also it's not recommended you use cracked version of anti-viruses, there's no point putting your security at risk.
if you want a free antivirus Avast will be a better choice than AVG. |
|
|
|
|
10-04-2009, 12:19 PM
|
#598 |
|
Newbie
Join Date: Apr 2009
Age: 20
Posts: 5
Thanks: 2
Thanked 0 Times in 0 Posts
Rep Power: 0
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
Really? I thought so coz I have a friend who has nod32 installed and I knew he couldn't purchase online, lol..
ok, will try avast instead. thanks |
|
|
|
|
13-04-2009, 02:37 PM
|
#599 |
|
Newbie
Join Date: Apr 2009
Age: 25
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 0
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
hello guys,
I havnt been able to open sites like YOUTUBE, PIRATE BAY.. for long....then one day, through Down for everyone or just me? i came to know that its only my comp that is not able to acess these sites. SINCE THEN I HAVE GONE TOTALLY FRUSTRATED... then i found this forum....through this thread...i did a certain things....like download, CCcleanup..spybot, fix... I turned off the system restore manually...and 1st.. ran ccleanup.. 2nd.. i ran spybot..identified some threats .got them deleted.. 3rd.. i rebooted... tried to connect to the sites...nothing happend...the progress bar doesnt move above 50 to 60% then i ran fix.exe it loaded some updates...and found some threats..and then rebooted ..and i tried accessing the site... YAY...EVERYSITE OPENED...I WAS RELIEVED..since it ws late in the night..i went off to sleep.. next morning...SAME OLD PROBLEM :-( i did all the procedures again....BUT NOW EVEN AFTER REPEATING THE SAME PROCESS, IT SEEM TO BE OF NO USE...YOUTUBE..PIRATEBAY DONT OPEN I DONT HAVE A TV..only source of entertainment is internet...I REQUEST YOU TO HELP ME.....BEFORE I GO MAD. i didnt download highjackthis before.. now after downloading highjeck this....here is my log file..u may find it clean as even spybot and fix.exe dont find anything in there..it was only once they found and it wasonly once i was able to access these sites.. Code:
Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 1:40:16 PM, on 4/13/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gmail.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R3 - URLSearchHook: ArchiBar Toolbar - {24cc1362-11c6-4918-a2c0-b9ee5a563185} - C:\Program Files\ArchiBar\tbArch.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: ArchiBar Toolbar - {24cc1362-11c6-4918-a2c0-b9ee5a563185} - C:\Program Files\ArchiBar\tbArch.dll O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: ArchiBar Toolbar - {24cc1362-11c6-4918-a2c0-b9ee5a563185} - C:\Program Files\ArchiBar\tbArch.dll O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [RGSC] E:\gta4\Grand Theft Auto IV\RGSC\RGSCLauncher.exe /silent O4 - HKCU\..\Run: [Administrator] C:\Documents and Settings\Administrator\Administrator.exe /i O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{F915C985-5916-49A8-8CA6-8DA8DD795D98}: NameServer = 203.94.227.70,203.94.243.70 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: Autodesk Network Licensing Service - Autodesk, Inc. - C:\Program Files\Common Files\Autodesk Shared\Service\AdskNetSrv.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2009 32-bit 32-bit (mi-raysat_3dsMax2009_32) - Unknown owner - E:\gta4\3dmax\mentalray\satellite\raysat_3dsMax2009_32server.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 7952 bytes plz help. thank you in advance...i know you guys dont have to do this..but still takeout time n do it out of good will... thanks again. Last edited by bakuryu; 13-04-2009 at 02:44 PM.. |
|
|
|
|
13-04-2009, 02:47 PM
|
#600 |
|
ƒ(ψ)=ΘΊΧφ
Join Date: May 2006
Location: India
Age: 24
Posts: 6,621
Thanks: 19
Thanked 649 Times in 605 Posts
Rep Power: 87
OS:
|
Re: Cannot access Antivirus Sites/Google/Avast etc.
Your HijackTHis log file is all right, You said, you have run Fix.exe, I guess it's the Combofix, run Combofix again and post the log file that is generated.
|
|
|
|
|
| Tags |
| antivirus, cleanup, infection, virus, virus removal |
| Thread Tools | |
| Display Modes | |
|
|
< Home - Windows Help - MS Office Help - Hardware Support >
| New To Site? | Need Help? |
Linear Mode
