Mark311

Members
  • Content Count

    7
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Mark311

  • Rank
    Newbie
  1. Vindication!!!! However, Logically it could be our IP too...(as I mentioned, my IP support could not get in...yet I could at work) Are you a TDS customer? P.S. It really is strange though that the update I got...was dated today...Only thing I do know, it WAS NOT my computer!
  2. Success!!!!! As has been my daily ritual...When I got home from work today...attempted to open these forums...I FINALLY got in ...went to my XP Machine and attempted update...it worked...!! I know ....it doesn't make sense...two different servers etc. ...I'm just telling you what happened...i was lost but now am found....without doing anything...and clearly it was no hijack virus. As always, I deeply appreciate the assistance here...but I think the boards going to find something weird was going on...which only affected some providers...
  3. Sorry, Left the www off my post...but [i]did[/i] include that in the url. I was working on manual download of the updates to at least temporarily get me by...but wasn't sure I was doing things rigth...for 2 reasons 1) the file was huge...which led me to believe I was getting more than I need (or the whole product, plus update) 2) the date of the file (I think 4/1/10) was less than the date of my last successful update version, 4/4/10. I did suspect that they (forum and update) were off seperate servers... I will try the manual download. Sorry, but I still don't understand why two of my Internet provider techs (on different occasions) could not get here either... and they typed the url [i]and[/i] chose Support, Forum off of the google results array. I will check... P.S. Just for the record...so I don't seem too high maint...that was Jan '09 that I needed assistance...
  4. I have not been able to get updates since last week (last sucessful one from 4/4)...get a connection error -2... (But please humor me and read further)...when I went to check these forums (from my HOME computers) for assistance I am unable to get into these forums...just clocks. Sounds like a typical hijack right? I don't think so... for multiple reasons. In brief: 1) I've had 3 Antivirus/Antispyware type programs running concurrently for years...(Norton, Ad-Aware, Malewarebytes). I scan and update obsessively...and ALL show clean in quick and extended scans. 2) Experienced same behavior (can't get to this support forum) on my MAC (which has NO Windows software that should be susceptable to same virus/very specific symptoms...)... So that's 2 computers and 3 different browsers!!! 3) And [u]HERE's the Kicker[/u]... Called my Internet provider (NOT a mom and pop) for assistance/ideas and they are NOT able to get here (http://lavasoftsupport.com) either...yet, like me, they can get into any of the other lavasoft sites... the techs checked to see if they had a block etc... nothing...but they just clock like me. [u]My logical leap[/u]... I think the inability for me to access the forums through my Provider is related to me not being able to get updates (it (-2) really behaves like a time out...which is consistent with what I see when I attempt access to the forums). Note: I did try some of the approaches I was able to see outside the forum...e.g. right click/properties/compatibility mode (that didn't have XP as a choice), and other stuff...hasn't worked. [u]My predicament[/u]: I'm in kind of a stand off...can't do much troubleshooting from my home computers...because I can't get here. Doesn't look like a Lavasoft issue since I can get here from other computers. Doesn't look like a provider problem...they can't find anything...and there are no other symptoms... Was going to wait it out...hoping it would resolve itself...but not seeming to do so... Any ideas would be appreciated...am getting close to de-installing Ad-aware and calling it a day...which would suck because I have a lot left on subscription...and I kinda like (and am confident) in the software. Footnote: Since I have the paid version...have been trying to get LS tech support...they keep sending me canned responses that I might be hijacked and to come here for help (catch 22).
  5. Success! The Off/On of the System Restore did indeed clear the "C:\System Volume Information\_restore(703...etc, etc...).exe (program)" Entry. As you suggested I download the current version of Java -- however had some difficulty doing it from the website you suggested...once I got to the proper spot I could not get a successful download...kept disconnecting. However, I ended up going to Java.com (Readers: I am no authority and am in no position to recommend this over the other recommended link...but was desperate to get this taken care of...my difficulties with the suggested link may have been due to my own error). However, the Java.com was not only a one click type of operation, it was also a one click verification....extremely straightforward (just hope it's a trustworthy site) I will, as link suggested, ignore the Win32.Trojanpws.Mapper hit on my scan (it did seem kinda weird that it was nestled in the same path as Ad-Aware) Thank you both for your help... I am fifteen days out from renewal...and because of the incredible help available via the good people of this forum...I am going to renew. Although I would love for Ad-aware to remedy the outstanding false-positive, I'm OK with closing this inquiry. Thanks Meik and Raziel for your excellent assistance.
  6. Success! The Off/On of the System Restore did indeed clear the "C:\System Volume Information\_restore(703...etc, etc...).exe (program)" Entry. As you suggested I download the current version of Java -- however had some difficulty doing it from the website you suggested...once I got to the proper spot I could not get a successful download...kept disconnecting. However, I ended up going to Java.com (Readers: I am no authority and am in no position to recommend this over the other recommended link...but was desperate to get this taken care of...my difficulties with the suggested link may have been due to my own error). However, the Java.com was not only a one click type of operation, it was also a one click verification....extremely straightforward (just hope it's a trustworthy site) I will, as link suggested, ignore the Win32.Trojanpws.Mapper hit on my scan (it did seem kinda weird that it was nestled in the same path as Ad-Aware) Thank you both for your help... I am fifteen days out from renewal...and because of the incredible help available via the good people of this forum...I am going to renew. Although I would love for Ad-aware to remedy the outstanding false-positive, I'm OK with closing this inquiry. Thanks Meik and Raziel for your excellent assistance.
  7. Although I'm incredibly careful, I recently had a bout with Spyware/Viruses...was able to recover from all others but cannot remove the Win32.Trojanpws.mapper. I have tried various methods and tools indicated in other LS forum strings. My attempts to delete/quarantine have been unsuccessful...it looks like it clears but continues to show up on subsequent scans. My Norton 2008 doesn't even detect it...only Ad-aware does. My Ad-Aware2008 plus scan shows entries for the following locations: C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Ad-Aware QF 20090103 080806.aawqff (trojan) and C:\System Volume Information\_restore(703...etc, etc...).exe (program) Note: In order to solve the other (google redirect virus) I had to do a system restore...so maybe the second item is "safely" in a restore archive? Any help would be greatly appreciated...I did send an email to LS support (thought it was a forum posting). Forgive me if in wrong forum spot-I'm new to this. Hello Mark plz install 'HijackThis' (link in sig.), run a scan and copy/paste the log in your next reply. Regards Raziel Thank you Raziel...here is the log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 4:45:50 PM, on 1/7/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\SanDisk\Sansa Updater\SansaSvr.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Lavasoft\Ad-Aware\Ad-Watch.exe C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe C:\Program Files\Common Files\Real\Update_OB\rnathchk.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32Info.exe K:\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\Ad-Watch.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing) O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1095042260109 O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: M-Audio USB Installer (MAudioUSBService) - Unknown owner - C:\Program Files\M-Audio\Fast Track Pro\MAUSBInst.exe (file missing) O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sansa Updater Service (SansaService) - Unknown owner - C:\Program Files\SanDisk\Sansa Updater\SansaSvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe -- End of file - 6960 bytes Mod.Edit/m. & m. f. ana./Raziel