Cannot open sites- google, etc on firefox and IE

dishant

New Member
i cannot open sites- google, etc on firefox and IE. Dunno what the problem is. I generated the hijack this log as well. Using KIS 7. Updated. Please help .

Code:
   Logfile of Trend Micro HijackThis v2.0.2   Scan saved at 12:23:38 PM, on
6/15/2008   Platform: Windows XP SP3, v.3264 (WinNT 5.01.2600)   MSIE: Internet

 Explorer v6.00 SP3 (6.00.2900.3264)   Boot mode: Normal     Running processes:   

C:\WINDOWS\System32\smss.exe   C:\WINDOWS\system32\winlogon.exe   
C:\WINDOWS\system32\services.exe   C:\WINDOWS\system32\lsass.exe   
C:\WINDOWS\system32\svchost.exe   C:\WINDOWS\System32\svchost.exe  
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe  
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe   
C:\WINDOWS\Explorer.EXE   
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe   
C:\WINDOWS\system32\spoolsv.exe  
 C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe   C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe  
 C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe 
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe   
C:\WINDOWS\system32\igfxtray.exe   
C:\WINDOWS\system32\hkcmd.exe   
C:\WINDOWS\SOUNDMAN.EXE  
 C:\Program Files\Synaptics\SynTP\SynTPLpr.exe  
 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe   
C:\WINDOWS\system32\rundll32.exe   
C:\PROGRA~1\LAUNCH~1\LManager.exe   
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe 
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe   
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe  
 C:\WINDOWS\system32\Rundll32.exe  
 C:\Program Files\uTorrent\uTorrent.exe 
  C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe  
 C:\WINDOWS\System32\svchost.exe   
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe   
C:\Program Files\Mozilla Firefox\firefox.exe  
 C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe   C:\WINDOWS\system32\msiexec.exe  
 C:\Program Files\Trend Micro\HijackThis\HijackThis.exe    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [URL="http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html"]Yahoo! SearchBar Home Page[/URL]   R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [URL="http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com"]Yahoo![/URL]   R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [URL="http://www.yahoo.com/"]Yahoo![/URL]   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [URL="http://www.yahoo.com/"]Yahoo![/URL]   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [URL="http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com"]Yahoo![/URL]   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = [URL="http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html"]Yahoo! SearchBar Home Page[/URL]   
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [URL="http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com"]Yahoo![/URL]   
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [URL="http://www.yahoo.com/"]Yahoo![/URL]  
 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [URL="http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com"]Yahoo![/URL]   
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)   
O2 - BHO: (no name) - {043E6086-F3CD-4864-B9F3-191BDE80EF9C} - C:\WINDOWS\system32\wvUkLFvs.dll (file missing)   
O2 - BHO: (no name) - {60F92E22-7342-43EA-966B-0C17EEB04DC2} - C:\WINDOWS\system32\pmnoMeda.dll (file missing)   
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll   
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll   
O2 - BHO: (no name) - {D976B84B-808C-4357-9CBB-55BF1F7CEBE7} - C:\WINDOWS\system32\ddcdDVnk.dll (file missing)   
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe   
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe 
 O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE   
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe  
 O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe   O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent  
 O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe  
 O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless   
O4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe  
 O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart  
 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"   
O4 - HKLM\..\Run: [BM2f4b1909] Rundll32.exe "C:\WINDOWS\system32\qdvcrluy.dll",s  
 O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"   
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"   O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet  
 O4 - Global Startup: BTTray.lnk = ?  
 O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm   O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm   
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll   O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll   
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll   
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm  
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm   
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe  
 O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe  
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe   
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe  
 O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll  
 O20 - Winlogon Notify: ddcdDVnk - C:\WINDOWS\  
 O20 - Winlogon Notify: fccbCvsq - C:\WINDOWS\  
 O20 - Winlogon Notify: urqnNgeb - C:\WINDOWS\   
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe  
 O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe   
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe   
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)  
 O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe  
 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe  
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe  
 O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe   
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe  
 O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe  -- End of file - 7745 bytes
 
Last edited by a moderator:

My Computer

I had the same problem with XP. Downloaded a WinRar file and after I installed it, I couldn't get to Yahoo, Google, Youtube, etc..... MAN MANY.

After listening to many that want you to run hundreds of Mailware and Spyware programs, it appears that one program did the trick with a little help from Host file experience.

Once I ran Mailwarebytes, it found some things going on and I deleted them. After, I pinged Yahoo.com and it was fine, so that told me DNS was working fine.

I then pinged the other sites to make sure and they all pinged as well. I in turn went to my host file and GEEEESSSSSHHHHHH They all had an IP address of the webpage that came up when I tried to get top Yahoo.

Said something to the effect: Computer is infected, download their Spyware program.... I erased all of my hosts file additions and saved blank with no entries.

That still didn't seem to work so I went to TCP/IP properties to my Internet connection and then clicked on advance button and found that my LMHost was selected. Since I knew I didn't use LMHost file, I unchecked it and WAAAALLLLAAAA.... Internet again.

Try it out. It works. MAKE SURE YOU DO NOT NEED TO USE HOST OR LMHOST FILES TO CONNECT. If you do, check the files for accuracy as they may have been changed or contact your administrator to reinstall those files...

Good luck all.........
 

My Computer

Back
Top