Solved no internet after running combofix....

June 26, 2011 at 12:20:46
Specs: windows 7, amd 64bit, 4g

internet stopped working on computer after I ran combofix... other computers on the network work fine, just this one.. I've tried winsockfix for win7, no help.. any idea?

See More: no internet after running combofix....

Report •


✔ Best Answer
June 26, 2011 at 16:59:47

Reinstall SP1 over current - it has a small chance. Takes just a few minutes to try.
Download and then install.

Back Up data just in case! (gotta say it)

You can do a 'repair install' to replace *all* the windows files. It's not a format or data removal. It may require the Windows 7 disk to get that option.
Check this out (saves a lot of typing)
http://www.sevenforums.com/tutorial...



#1
June 26, 2011 at 12:38:59

ComboFix 11-06-26.01 - Jason 06/26/2011 10:39:05.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3966.2263 [GMT -7:00]
Running from: g:\clean up folder\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Tarma Installer
c:\programdata\Tarma Installer\{D6B25B8D-0566-42B1-A23D-7576138435D6}\Setup.exe
c:\users\Jason\AppData\Roaming\.#
c:\users\Jason\AppData\Roaming\chrtmp
c:\users\Jason\AppData\Roaming\inst.exe
c:\users\Jason\AppData\Roaming\Microsoft\Windows\Recent\CI DB.url
c:\users\Jason\AppData\Roaming\trillian-v4.2.0.14.exe
c:\windows\SysWow64\dlumd10.dll
c:\windows\SysWow64\dlumd11.dll
c:\windows\SysWow64\dlumd9.dll
.
.
((((((((((((((((((((((((( Files Created from 2011-05-26 to 2011-06-26 )))))))))))))))))))))))))))))))
.
.
2011-06-26 17:44 . 2011-06-26 17:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-26 16:32 . 2011-06-26 16:32 -------- d-----w- c:\program files (x86)\ESET
2011-06-26 15:58 . 2011-06-07 17:10 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A11AA21C-3008-4C6F-BFF1-88EE4F312A97}\mpengine.dll
2011-06-23 17:40 . 2011-06-23 17:40 12872 ----a-w- c:\windows\system32\bootdelete.exe
2011-06-23 17:36 . 2011-06-23 17:36 23112 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2011-06-23 17:36 . 2011-06-23 17:40 -------- d-----w- c:\programdata\Hitman Pro
2011-06-23 01:52 . 2011-06-23 01:52 -------- d-----w- c:\users\Jason\.idlerc
2011-06-22 22:43 . 2011-06-22 22:43 -------- d-----w- c:\programdata\Extreme Picture Finder
2011-06-22 22:16 . 2011-06-22 22:29 -------- d-----w- c:\program files (x86)\Extreme Picture Finder 3
2011-06-22 20:27 . 2011-06-22 22:05 -------- d-----w- c:\users\Jason\AppData\Roaming\FileZilla
2011-06-22 03:15 . 2011-06-22 03:15 -------- d-----w- c:\users\Jason\AppData\Roaming\JAM Software
2011-06-21 21:41 . 2011-06-21 21:41 2106216 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_43.dll
2011-06-21 21:41 . 2011-06-21 21:41 1998168 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_43.dll
2011-06-21 21:27 . 2011-06-21 21:27 -------- d-----w- c:\users\Jason\AppData\Local\compatcfgRpl
2011-06-21 21:06 . 2011-06-21 21:13 -------- d-----w- C:\My Web Sites
2011-06-21 21:05 . 2011-06-21 21:13 -------- d-----w- c:\program files\WinHTTrack
2011-06-17 03:43 . 2011-04-10 20:07 206960 ----a-w- c:\windows\system32\drivers\dlkmd.sys
2011-06-17 03:43 . 2011-04-10 20:07 13936 ----a-w- c:\windows\system32\drivers\dlkmdldr.sys
2011-06-17 03:42 . 2011-06-17 03:42 0 ----a-w- c:\windows\system32\dlumd9.dll
2011-06-17 03:42 . 2011-06-17 03:42 0 ----a-w- c:\windows\system32\dlumd11.dll
2011-06-17 03:42 . 2011-06-17 03:42 0 ----a-w- c:\windows\system32\dlumd10.dll
2011-06-16 22:14 . 2011-06-16 22:14 -------- d-----w- c:\program files (x86)\Gatehead
2011-06-16 21:06 . 2011-06-16 21:08 -------- d-----w- c:\program files (x86)\Sound Volume Hotkeys
2011-06-16 20:16 . 2011-06-16 20:49 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2011-06-16 20:07 . 2011-06-16 20:08 -------- d-----w- c:\program files (x86)\KeyVolume
2011-06-16 19:50 . 2011-06-16 19:50 -------- d-----w- c:\users\Jason\AppData\Local\matt.malensek.net
2011-06-15 19:24 . 2011-04-27 02:39 289280 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-06-07 15:11 . 2011-06-07 15:12 -------- d-----w- c:\windows\system32\SPReview
2011-06-07 15:06 . 2010-11-05 01:57 48976 ----a-w- c:\windows\system32\netfxperf.dll
2011-06-07 15:06 . 2010-11-05 01:57 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-06-07 15:04 . 2010-11-20 13:27 395776 ----a-w- c:\windows\system32\webio.dll
2011-06-07 15:03 . 2010-11-20 13:33 31104 ----a-w- c:\windows\system32\drivers\msahci.sys
2011-06-07 15:02 . 2010-11-20 13:27 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2011-06-07 15:01 . 2010-11-20 13:26 41472 ----a-w- c:\windows\system32\mciqtz32.dll
2011-06-07 15:00 . 2010-11-20 12:18 323072 ----a-w- c:\windows\SysWow64\drvstore.dll
2011-06-07 15:00 . 2010-11-20 12:18 257024 ----a-w- c:\windows\SysWow64\dpx.dll
2011-06-07 15:00 . 2010-11-20 12:21 363008 ----a-w- c:\windows\SysWow64\wbemcomn.dll
2011-06-07 15:00 . 2010-11-20 12:19 606208 ----a-w- c:\windows\SysWow64\wbem\fastprox.dll
2011-06-07 14:56 . 2010-11-20 13:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-06-07 14:56 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2011-06-07 14:56 . 2010-11-20 13:27 1225216 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-06-07 14:56 . 2010-11-20 13:27 933376 ----a-w- c:\windows\system32\SmiEngine.dll
2011-06-07 14:55 . 2010-11-20 13:25 199168 ----a-w- c:\windows\system32\PkgMgr.exe
2011-06-07 14:55 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll
2011-06-07 14:55 . 2010-11-20 13:26 399872 ----a-w- c:\windows\system32\dpx.dll
2011-06-06 19:55 . 2011-06-06 19:55 183696 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2011-06-06 19:55 . 2011-06-06 19:55 183696 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-16 22:01 . 2011-05-27 14:50 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-06-07 17:10 . 2010-12-12 16:55 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-06-07 15:22 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-06-07 15:22 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-05-29 16:11 . 2009-10-25 02:19 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-29 16:11 . 2009-10-25 02:18 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-19 05:25 . 2011-05-19 05:25 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-05-19 05:25 . 2011-05-19 05:25 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-05-19 05:25 . 2011-05-19 05:25 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-05-19 05:25 . 2011-05-19 05:25 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-05-19 05:25 . 2011-05-19 05:25 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-05-19 05:25 . 2011-05-19 05:25 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-05-19 05:25 . 2011-05-19 05:25 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-05-19 05:25 . 2011-05-19 05:25 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-05-19 05:25 . 2011-05-19 05:25 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-05-19 05:25 . 2011-05-19 05:25 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-05-19 05:25 . 2011-05-19 05:25 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-05-19 05:25 . 2011-05-19 05:25 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-05-19 05:25 . 2011-05-19 05:25 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-05-19 05:25 . 2011-05-19 05:25 448512 ----a-w- c:\windows\system32\html.iec
2011-05-19 05:25 . 2011-05-19 05:25 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-05-19 05:25 . 2011-05-19 05:25 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-05-19 05:25 . 2011-05-19 05:25 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-05-19 05:25 . 2011-05-19 05:25 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-05-19 05:25 . 2011-05-19 05:25 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-05-19 05:25 . 2011-05-19 05:25 222208 ----a-w- c:\windows\system32\msls31.dll
2011-05-19 05:25 . 2011-05-19 05:25 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-05-19 05:25 . 2011-05-19 05:25 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-05-19 05:25 . 2011-05-19 05:25 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-05-19 05:25 . 2011-05-19 05:25 160256 ----a-w- c:\windows\system32\wextract.exe
2011-05-19 05:25 . 2011-05-19 05:25 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-05-19 05:25 . 2011-05-19 05:25 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-05-19 05:25 . 2011-05-19 05:25 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-05-19 05:25 . 2011-05-19 05:25 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-05-19 05:25 . 2011-05-19 05:25 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-05-19 05:25 . 2011-05-19 05:25 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-05-19 05:25 . 2011-05-19 05:25 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-05-19 05:25 . 2011-05-19 05:25 12288 ----a-w- c:\windows\system32\mshta.exe
2011-05-19 05:25 . 2011-05-19 05:25 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-05-19 05:25 . 2011-05-19 05:25 114176 ----a-w- c:\windows\system32\admparse.dll
2011-05-19 05:25 . 2011-05-19 05:25 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-05-19 05:25 . 2011-05-19 05:25 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-05-19 05:25 . 2011-05-19 05:25 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-05-19 05:25 . 2011-05-19 05:25 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-04-22 22:15 . 2011-05-25 14:12 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-04-11 03:08 . 2011-04-11 03:08 2219520 ----a-w- c:\windows\system32\DisplayLinkUsbCo64_5.6.31854.0.dll
2011-04-11 03:08 . 2011-04-11 03:08 17408 ----a-w- c:\windows\system32\drivers\DisplayLinkUsbPort_5.6.31854.0.sys
2011-04-10 20:07 . 2011-04-10 20:07 1070952 ----a-w- c:\windows\system32\dlumd64.dll
2011-04-10 20:07 . 2011-04-10 20:07 615784 ----a-w- c:\windows\SysWow64\dlumd32.dll
2011-04-10 20:07 . 2011-04-10 20:07 118120 ----a-w- c:\windows\system32\DLTmmB.dll
2011-04-10 20:07 . 2011-04-10 20:07 116584 ----a-w- c:\windows\system32\ManageTMMLifeTime.dll
2011-04-09 07:02 . 2011-05-11 20:53 5562240 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-04-09 06:58 . 2011-05-19 04:36 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-04-09 06:02 . 2011-05-11 20:53 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02 . 2011-05-11 20:53 3912576 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-04-09 05:56 . 2011-05-19 04:36 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-04-06 23:26 . 2011-04-06 23:26 96544 ----a-w- c:\windows\system32\dnssd.dll
2011-04-06 23:26 . 2011-04-06 23:26 119584 ----a-w- c:\windows\system32\dns-sd.exe
2011-04-06 23:20 . 2011-04-06 23:20 91424 ----a-w- c:\windows\SysWow64\dnssd.dll
2011-04-06 23:20 . 2011-04-06 23:20 107808 ----a-w- c:\windows\SysWow64\dns-sd.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PeerBlock"="c:\program files\PeerBlock\peerblock.exe" [2010-11-07 2646128]
"Messenger (Yahoo!)"="c:\progra~2\Yahoo!\MESSEN~1\YahooMessenger.exe" [2010-06-01 5252408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ANIWZCS2Service"="c:\program files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
"D-Link D-Link Wireless N DWA-130"="c:\program files (x86)\D-Link\DWA-130\AirNCFG.exe" [2008-10-01 1679360]
"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]
"Standby"="c:\program files (x86)\Common Files\Corel\Standby\Standby.exe" [2009-12-17 105632]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"HP Software Update"=c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe
"ArcSoft Connection Service"=c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\setup\disabledrunkeys]
"VX3000"=c:\windows\vVX3000.exe
.
R1 anodlwf;ANOD Network Security Filter driver;c:\windows\system32\DRIVERS\anodlwfx.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-12-20 135664]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-12-20 135664]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
R3 mv2;mv2;c:\windows\system32\DRIVERS\mv2.sys [x]
R3 PCDSRVC{F36B3A4C-F95654BD-06000000}_0;PCDSRVC{F36B3A4C-F95654BD-06000000}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 dlkmdldr;dlkmdldr;c:\windows\system32\drivers\dlkmdldr.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 DisplayLinkService;DisplayLinkManager;c:\program files\DisplayLink Core Software\DisplayLinkManager.exe [2011-04-10 9663848]
S2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [2009-10-30 1353544]
S3 DisplayLinkUsbPort;DisplayLink USB Device;c:\windows\system32\DRIVERS\DisplayLinkUsbPort_5.6.31854.0.sys [x]
S3 dlkmd;dlkmd;c:\windows\system32\drivers\dlkmd.sys [x]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
S3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S3 RTL8192U;Realtek RTL8192u 802.11n Wireless LAN USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192u.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [2009-10-14 11856]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-12-20 20:58]
.
2011-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-12-20 20:58]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Remote Software"="c:\program files\Hewlett-Packard\HP Remote\HP REMOTE V1.0.5.exe" [2009-02-06 172032]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 1436224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.yahoo.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
DPF: Garmin Communicator Plug-In - hxxps://my.garmin.com/static/m/cab/2.8.3/GarminAxControl.CAB
DPF: {36299202-09EF-4ABF-ADB9-47C599DBE778} - hxxps://www.hpwindows7upgrade.arvato.com/north_america/Endcustomer/HPProdDetect.cab
DPF: {79D1DBE2-A317-4D67-891D-9849D17F0531} - hxxp://www.parcelquest.com/download/MapEdge.cab
FF - ProfilePath - c:\users\Jason\AppData\Roaming\Mozilla\Firefox\Profiles\yfvnzhxm.default\
FF - prefs.js: browser.startup.homepage - hxxp://news.google.com/nwshp?hl=en&tab=wn
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 58121
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - (no file)
WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{F36B3A4C-F95654BD-06000000}_0]
"ImagePath"="\??\c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1588706290-1075592112-3787527334-1000_Classes\Wow6432Node\CLSID\{1f558780-1092-42ed-8dc4-f6186c5855b0}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:0000001e
"Therad"=dword:00000014
.
[HKEY_USERS\S-1-5-21-1588706290-1075592112-3787527334-1000_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):56,87,82,17,bc,69,70,08,10,93,7b,aa,fd,c7,7b,89,e9,fe,9b,59,b1,
e7,67,91,7f,ad,ed,f1,ee,aa,76,fe,86,61,94,24,97,e6,c6,73,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1588706290-1075592112-3787527334-1000_Classes\Wow6432Node\CLSID\{61d37e9a-0da5-45d0-b71b-107fb12f0ef3}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:0000005e
"Therad"=dword:00000015
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_USERS\S-1-5-21-1588706290-1075592112-3787527334-1000_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):76,95,83,a8,fd,b6,57,7a,59,c3,f6,21,62,df,2f,64,90,fe,1e,0b,39,
8a,00,3d,c7,7b,c0,2a,7f,90,01,22,85,1b,21,17,21,38,a7,d7,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Swearware\backup\winsock2\Parameters]
@DACL=(02 0000)
@SACL=
"NameSpace_Callout"=expand:"%SystemRoot%\\System32\\fwpuclnt.dll"
"WinSock_Registry_Version"="2.0"
"AutodialDLL"="rasadhlp.dll"
"Current_NameSpace_Catalog"="NameSpace_Catalog5"
"Current_Protocol_Catalog"="Protocol_Catalog9"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
.
**************************************************************************
.
Completion time: 2011-06-26 10:49:53 - machine was rebooted
ComboFix-quarantined-files.txt 2011-06-26 17:49
.
Pre-Run: 394,743,988,224 bytes free
Post-Run: 394,605,813,760 bytes free
.
- - End Of File - - 8B0B796C8DADC494362BCD4AFF821653

Report •

#2
June 26, 2011 at 13:54:21

Might give this a go...
Uninstall the network 'card'. Reboot. Then re-install from the CD or drivers folder. Select manual install and point to the drivers folder if you don't use the CD auto install.
You want to use the known good driver files, not the ones Windows has stored.
Uninstall should clear all settings. Install should put in default settings.


Report •

#3
June 26, 2011 at 14:12:55

I went into device manager, uninstalled the driver to my d-link, restarted computer, installed my d-link again via install disk, still will not connect...

I just realized a bunch of my files have changed from using Combofix... Including my Clock, changed to 24hr time, and all of my restore points were deleted... I was going to restore but the thing is empty.

I have no idea what else has changed, I will have to see as time passes... This is very frustrating.. I need this computer up and running online tomorrow morning for work!... I am in some deep trouble if I can't solve this.... Desperate for help Computing.net.....


Report •

Related Solutions

#4
June 26, 2011 at 15:26:58

Can combofix restore the pc to before it ran? At least you had internet.

Report •

#5
June 26, 2011 at 15:32:12

I shows no restore points.... something removed them all :(

Report •

#6
June 26, 2011 at 15:54:47

You are having a tough week. I read the conversation aaflac was helping you with. I had winsockfix work for me in a similar incident. Reinstalling net drivers worked in another.
I have a feeling you are missing some critical files / registry entries.
At this point, most of us would reinstall the OS, as it would be faster than troubleshooting and copying files / registry keys.
What's your take on that? Can you get the inportant data off to another system / USB drive?
You can do a install - 'repair' to replace all the windows files. Still back it up, just in case.
Oh - try installing the latest service pack if you have time. Not sure if SP1 has the files or not to repair this issue. That has worked for me in the past - last effort thing (xpSP3).
I'm sure someone will tag-team in for more suggestions. I'll post if I think of something else.

Report •

#7
June 26, 2011 at 16:18:00

ahh yes.. I was working on another issue for a friend of mine.. Shes been out of town so I have been unable to access her computer to fix my previous problem.

I already have SP1 instaled on my windows 7 computer.. Should I try to find a download and reinstall it?... I would only format as a last resort.. I have this thing set up to be highly customized for my specific needs. I work from this computer so I am hoping to do all I can to fix it before formatting... its 4pm now, if its not fixed by 9pm, I will have to format because I need it by 8am tomorrow or else I'm out of a job.

Would be great if I could post some scan logs on here and have someone analyze them for me. Not sure which logs to post or if anyone is even up to the challenge tonight..

Ill be awaiting some responses..... been pressing F5 for the past hour lol


Report •

#8
June 26, 2011 at 16:59:47
✔ Best Answer

Reinstall SP1 over current - it has a small chance. Takes just a few minutes to try.
Download and then install.

Back Up data just in case! (gotta say it)

You can do a 'repair install' to replace *all* the windows files. It's not a format or data removal. It may require the Windows 7 disk to get that option.
Check this out (saves a lot of typing)
http://www.sevenforums.com/tutorial...


Report •

#9
June 26, 2011 at 17:10:03

I only have the Windows 7 Upgrade disk.... Had Vista previously on the computer but was given the free upgrade.. I'm not sure the repair install will work. I can try though if no one else chimes in.

Thanks modify :)


Report •

#10
June 26, 2011 at 20:19:26

thank you modify, i was able to run the repair install from the upgrade disk.. all is working great now... You sir, are awesome. THANK YOU!

Report •

#11
June 27, 2011 at 04:37:47

...and we do it for fun, knowing that we can make a difference.

How cool! Appreciate the reply!

MH


Report •


Ask Question