A few problems on this end

Hey folks, apparently I opened a bad email and now boxes keep popping up that say this basically. Error in Winsock Module; Connection is unknown;Possible Reason; Your firewall and/or Antivirus application block the system-File; services.exe. Also box that says the same for cmss.exe and smss.exe I've ran adaware, spybot, and also attempted to do an avast scan, and the avast scan came back saying it couldn't read these certain files, which I'll also post here......I AM a computer idiot so please speak in laymen's terms for me..Oh yea, and it "stole" my Norton AntiVirus from me and now if/when I try to add it back, it says the Integrator can't be found......I'm here so any and all help is GREATLY appreciated, Marty...So 1st is the hijackthis scan and then the avast scan ok;
------------------------------------------------------------------------

Edit by chaslang: Unrequested inline log removed

[B]And here's the avast scan....................[/B]
avast! Virus Cleaner Tool - version 1.0.207 Unicode

Creating log file: C:\avast.log

5/3/2005, 2:34:31 PM
Memory scanning started...
No virus body found in memory.
Memory scanning finished (33.4s).
----------
Files scanning started...
C:\WINDOWS\Connection Wizard\Status\csrss.exe... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\packed1.sbr... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\packed2.sbr... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\packed3.sbr... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\sacri1.ggg... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\sacri2.ggg... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\sacri3.ggg... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\services.exe... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\smss.exe... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\voner1.von... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\voner2.von... file could not be scanned!
C:\WINDOWS\Connection Wizard\Status\voner3.von... file could not be scanned!
No virus body found.
Files scanning finished (42098 files, 0 infected, 700.2s).
Drives scanned: C:
----------

 

I tried to edit the hijack this scan after seeing I was NOT supposed to send it unless requested. I don't see where/how to edit it and apologize big time.

 

chaslang, will do that buddy but also just found out something here at work...Got an email about a new worm called Worm_Sober.S and it looks like that's what I think I have ..I DID open an email from a company I was expecting an email from, but it surprised me when the email said my password had been changed. Well, I clicked on it and it downloaded a .zip file and I think that's where I am now.....Any "fixes" besides taking it to a shop ? Still do what you are saying, etc...????? I work until 6am CST but would appreciate, and do appreciate, your help. Like I said, I'm pretty much a computer idiot but will try anything..Thanx again, Marty

 

chas, I got no clue what they are, or mean, buddy....Sorry about that. Just not too swift with this stuff.

 

Will do it when I get home in the morning..And I again apologize for the HJT list; I didn't read to NOT do it until after it was too late. And as far as the avast log goes, a buddy who knows a lot about computers ((but getting married tomorrow and then a 2 week honeymoon, so not much more help there for a while)) told me to run that.....Thanks a million and will let ya know what happens tomorrow...

 

Ya know something ?? After reading the Sticky of Do not post until you read this; this sounds like it might take a while, but if it works, will be worth it. I've never had to do anything like this and just hope I can follow some of these "foreign" (to me) instructions...It'll definitely be a major challenge but I'll do my best.

 

I definitely understand...Won't be as much "junk" in there and after gettin' rid of tons of that, make the main problem easier to identify and deal with..Talk to ya manana !!!

 

Great googily moogily chas...I think I'm done buddy and now have to go to work.....After over 8 hours of scanning, rescanning, spywaring, adawaring, etc......Symantec Security Check came back the 2nd time saying there were no viruses or anything in my files or memory.....I honestly must get to work now but what should I do next besides bowing and bowing to you folks ?????
Do you need to see an HJT paste in the morning or anything ???? And any ideas how I can get my Norton Antivirus back or did the virus take it ????
Oh yea, the main things I had are these;
C:\WINDOWS\system32\bdlgs.dll was infected with Adware.Better.Internet
C:\WINDOWS\system32\winhlp32.dll.exe was infected with Security Risk.Downldr
C:\ProgramFiles\Symantec\LiveUpdate\LUALL.EXE was infected with W32.Sober.O@mm (might have been a 0) and
C:\Documents and Settings\marty\\winhlp32.exe was infected with Adware Toolband

Let em know what to do next ok..I got tons of spyware in my system now so think that'll help, and will do whatever you gurus tell me to do tomorrow ok....
Thanks VERY much !!!! Marty

 

I don't know how to do the attatchment part, so I copied it, and will paste it....Hope that's ok......Here goes...............................And I don't understand why HJT is showing as a document...I thought I put it in a program area...


Edit by chaslang: Inline log attached

 

chas, I'm "ass u ming" that one of the many scans deleted the conection wizard buddy, but honestly don't know...And I had the Norton before the virus/worm/something deleted it so will have to use my ISP's as of tomorrow I guess. ((and which would you recommend over all others)). Would consider deleting all of Norton Systemworks if I found something newer and better; mine's a 2002 edition....Will also try and find the correct HJT because I know it's in there...This boot was from a normal mode with all accessories, internet, email, etc..closed.....
I did notice one thing though. After all these scans, now theres a Logitech Keyboard icon that wants to download at the bottom of my screen. Maybe I pushed the F8 too many times or something, I don't know.....
So will try all of this when I get home ok. Wish I understood how u folks could comprehend all this greek stuff, but I just thank GOd y'all are out there....Thanks and will try to "finish her up" manana !!! Marty

 

chas, I think I did it right this time, but God only knows....Also, my ISP has set me up with free Anti Virus, Pop up and Spyware Killer, Personal Firewall, and parental control (don't need that), so wondering what I could/should delete of the other programs..Thanks a million..Marty
Also, it's called B-secure if you see it in here...

 

Oh yea, and should I keep the Norton System Works on my computer or uninstall it all now ??? Just got this other stuff and wondering if it'll "mess with" that stuff....Thanks so very much for ur help so far; it's GREATLY appreciated !!

 

chas, I ain't sure what to say on that....My ISP rep offered this Bsecure to me free for as long as I'm with them, and advised me that normally it's like $60 a year, and that it includes Pop up and Spyware Killer, Anti Virus, and Personal Firewall.....Here's the website and if you need my login info, PM me or email me and I'll give it to you ok.....This is now my 2nd favorite site in the world pal; can't give up www.surplusrifle.com as my 1st..

http://portal.grandecom.net/x.php?e...%2F%2Fportal.grandecom.net%2F&srce=my_premium

Thanks, as always, for everything, and let me know what to keep, what to delete, what to do, ok......Marty

 

Just waiting on a reply from my ISP guy...hopefully one of the techs there can fix/repair/walk me through it, or something....Let's hope.
And chas, does it hurt to run CC Cleaner everytime I'm on the computer ? Seems to make things run faster even though I need to re-enter passwords sometimes....Thanks buddy.

 

Here's their reply so far chas....

I'm not sure what he's referring to, hijackthis scans his computer. Any errors it generates would be on his computer, and unless his cable modem is going through USB, we don't install any software on the computers. I checked the modem out and I show it's going through a network card. So this error is not something on our end. According to what I have found on this hijackthis should be able to fix this error message. This of course is something we don't support here in Technical Support, but I did some searching and found people fixing it with hijackthis.

 

They said because they didn't instal any software for me to connect it isn't their deal...Hell, I dunno pal. I just want my computer to be safe ya know...Here's his reply to ur 1st post, not this one....


Yeah, if we had to install software in order for him to connect, then this would be correct information, but we didn't install anything on his pc.