mijcar,
My Secunia System Score is 100%. 0 threats. Although for the sake of Symantec I did install the Flash for IE.
Imagine that.
Message Edited by jaronuts on 07-02-2009 11:52 AM
jaronuts wrote:mijcar,
My Secunia System Score is 100%. 0 threats. Although for the sake of Symantec I did install the Flash for IE.
Imagine that.
Excellent, Jaronuts, excellent. But frustrating. Am I right that the problem still exists?
By the way, do you use Firefox 3.5? I'm running that myself and I'm curious about how well it integrates with other apps since it's not yet official. I tried running it as the default browser and it was almost perfect, but some applications had difficulty accessing the internet using 3.5 as the connection.
mijcar,
What I found hilarious under Secure Browsing was:
"Microsoft Internet Explorer 8.x (Assessment: Not secure for browsing, minimum 2 critical attack vectors exist when using this browser)
X Microsoft Internet Explorer 8.x Insecure, no solution."
No solution, yes sir, nothing has changed the past several years, lol.
FF updated 2 days ago to 3.5. I've had no issues with it. Anything I have that needs to open a browser to do something gets along fine so far with FF 3.5.
Except that Flash update, that required IE to be open. Even that 20 seconds to do that was far to long to have IE running on my comp, lol.
Lemme go reboot and I’ll see if that Flash update did any good to anything.
I did run that software and it found nothing.
Mack
That Flash update for IE didn't fix the Norton notice that it needs to grab and install vr. 10 of Flash.
Hello all,
First off I would recommend that we keep this thread focused only on 3039,1 error. As stated before by Symantec staff and some of the forum contributors, there are many causes of this error.
a. Flash issue: The One Click Support feature in NAV/NIS requires Flash to operate. This allows it to display the correct error message and lead you to an interactive support experience.
b. As for 3039,1, recently we have added definitions for a certain class of threats that are found causing some instances of this issue.
Here are the recommended steps:
1) LiveUpdate to the most recent definitions.
2) In NIS Settings > Computer Settings, enable Auto-Protect, also make sure Early Load is ON.
3) Click Apply, OK, then reboot. This will reload the Auto-Protect driver.
4) Run a full system scan.
The full instructions can be found here:
c. Please continue to post to this thread if you find anything new, lots of contributors here with different suggestions to resolve your problem. Also, remember that Tech Support is available through chats or telephone.
HI @ Oscarl .
The Steps you gave from the Knowledge base do not work ;
Enabling Auto protect and Enabling Early Load will not Fix the issue Because that is the Main issue ;
You will not be able to enable it ;
May be Early Load can be enabled but not Auto protect ;
Once you restart the computer or withing few minutes it will get back;
Uninstalling and Re_Installing also will not fix this ;
Oscarl , are you sure this will work ??
Good If it Works !!!
Thanks Mohan !
What relationship is there between NIS 2009’s executable:
c:\program files\norton internet security\engine\16.5.0.135\CCSVCHST.EXE
and two of it’s dependencies: IESHIMS.DLL and WER.DLL
Neither of these .dll’s are on my computer so maybe that is contributing to error 3039,1?
Is anyone else who has this error 3039,1 missing these two .dll’s?
I found these two in multiple locations other than in the Norton Antivirus folder.
Baldy
I have wer.dll in system32 and I don't have ieshims.dll. (Vista)
Baldy,
What version of Windows are you using? Vista and IE 8?
According to the documentation IESHIMS.DLL is needed by Windows Vista running IE 8 and the WER.DLL is Windows Error Reporting for both XP and Vista with WER.DLL supposed to be in the Windows System directory.
I’m on XP Pro SP3 with IE 8 but I’m using XPSHIMS.DLL
IESHIMS and XPSHIMS are or should be in
C:\program files\interet explorer
NIS seems to be needing IESHIMS.DLL on an XP machine but it isn’t there.
I’m going to try to get a copy of WER.DLL and put it in:
C:\WINDOWS\system
while IESHIMS.DLL goes in C:\program files\interet explorer
in order to see if NIS suddenly stops with the 3039,1 error.
jaronuts
I am running Windows XP SP3 Home Edition and IE7.
Baldy
I have been using Sysinternals Process Monitor ver 2.04 to record calls on the registry at the same that I’m keeping my eye on the Norton icon in the systray.
As soon as NIS blows a gasket I turn off monitoring the registry after I close the NIS help pop up window.
There is a lot of these things that occur before Sonar Advanced Protection crashes:
ccSvcHst.exe
Operation: RegQueryValue
Path: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\Disable Performance Counters
Result: NAME NOT FOUND
Detail: Length: 20
and a bunch of these:
ccSvcHst.exe
Operation: RegOpenKey
Path: HKLM\Software\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccVerifyTrust
Result: NAME NOT FOUND
and these:
ccSvcHst.exe
Operation: RegCloseKey
Path: <INVALID NAME>
Result: SUCCESS
Detail: (nothing listed)
Curious: Success with an invalid name?
and:
ccSvcHst.exe
Operation: CreateFile
Path: C:\Documents and Settings\Administrator\Local Settings\Application Data\Symantec
Result: NAME COLLISION
Detail: Desired Access: Read Data/List Directory, Synchronize
Disposition: Create
Options: Directory, Synchronous IO Non-Alert
Attributes: N
ShareMode: Read, Write
AllocationSize: 0
These things all happened before HSLoader.exe engaged. (that help and support window we have become so familiar with, lol)
Then HSLoader.exe has a buffer overflow:
ccSvcHst.exe
Operation: QueryNameInformationFile
Path: C:\Program Files\Norton Internet Security\Engine\16.5.0.135\HSLoader.exe
Result: BUFFER OVERFLOW
Detail: Name: \P
NIS is having a lot of buffer overruns too.
So maybe theres something here causing all this 3039,1 error.
For all.
Check this news release:
http://voices.washingtonpost.com/securityfix/?hpid=news-col-blog
Baldy
For all.
Folowup to my previous post about Washington Post article.
Here is the url for the Microsoft fix to the problem:
http://support.microsoft.com/kb/972890
Baldy
Wow, thanks man. Needed that for sure.
the problem is resolve or not???
I'd like to contribute one more possible reason for Error 3039,1:
I'm using a ram drive (Cenatek RamDrive 1.8) for temp files. With my slow hard disk this increases the speed of many applications. Although I didn't face any problems for years, Norton 360 V3 is not able to deal with that. After setting the system variables TEMP and TMP back to their default value ( %SystemRoot%\TEMP ) everything works fine.
Maybe this helps anyone to draw a more complete picture of the problem...
Keep smiling,
Markus
look ...maybe is same infection , try this and let us see the logs .....
Please download GMER and run a scan You will be able to attach it using the link below the post button.
Please download and install Malwarebytes. Update it, disconnect from the net, disable system restore. Go into safe mode by rebooting and tap F8 repeatedly until a menu comes up allowing safe mode without networking. Run a full scan with Malwarebytes, and Norton while in safe mode.
Please post the MBAM log here when you are done, using the attachment link under the post button.
Download SDFix and save it to your desktop.
· Double click SDFix.exe and it will extract the files· Reboot your computer in SAFE MODE" using the F8 method.
· Open the SDFix folder and double click RunThis.bat to start the script.· Type Y to begin the cleanup process.· It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot.· Press any Key and it will restart the PC.· When the PC restarts, the Fixtool will run again and complete the removal process then display Finished,press any key to end the script and load your desktop icons.· Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder asReport.txt.· Finally copy and paste the contents of the results file Report.txt