Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IE, FF, and Safari adding "http:///%20" before entered address


  • This topic is locked This topic is locked
2 replies to this topic

#1 trentraven

trentraven

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 31 July 2009 - 12:45 PM

IE, FF, and Safari adding "http:///%20" before entered address


DDS (Ver_09-07-30.01) - NTFSx86
Run by tmurray at 12:33:39.84 on Fri 07/31/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3582.2382 [GMT -5:00]

AV: AVG Anti-Virus Network Edition *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: avast! antivirus 4.8.1335 [VPS 090730-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\bmwebcfg.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Wave Systems Corp\Services Manager\Docmgr\bin\WavXDocMgr.exe
C:\Program Files\Wave Systems Corp\SecureUpgrade.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\CToolbar.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Documents and Settings\tmurray\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = https://mail.maalt.com/
uSearch Page = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb
uSearch Bar = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyServer = 66.227.11.197:8080
uInternet Settings,ProxyOverride = *.pcssoft.com;*.xpresstrax.com;*.3sixtyfreightmatch.com;*.microsoft.com;*.maalt.com;pcssoft.iqstorage.com;*.iqstorage.com;*.wlscUploader.exe;maaltdc1;*.apple.com;*.me.com;*.mac.com;*.dell.com;<local>;*.local
mSearchAssistant = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb
uURLSearchHooks: H - No File
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
uURLSearchHooks: H - No File
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: : {1cb20bf0-bbae-40a7-93f4-6435ff3d0411} - c:\progra~1\crawler\ctbr.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\dell\bae\BAE.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
TB: &Crawler Toolbar: {4b3803ea-5230-4dc3-a7fc-33638f3d3542} - c:\progra~1\crawler\ctbr.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [Advanced SystemCare 3] "c:\program files\iobit\advanced systemcare 3\AWC.exe" /startup
uRun: [SpywareTerminatorUpdate] "c:\program files\spyware terminator\SpywareTerminatorUpdate.exe"
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /installquiet
mRun: [NVHotkey] rundll32.exe nvHotkey.dll,Start
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [WavXMgr] c:\program files\wave systems corp\services manager\docmgr\bin\WavXDocMgr.exe
mRun: [SecureUpgrade] c:\program files\wave systems corp\SecureUpgrade.exe
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 9.0\acrobat\Acrotray.exe"
mRun: [Adobe_ID0ENQBO] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [BlackBerryAutoUpdate] c:\program files\common files\research in motion\auto update\RIMAutoUpdate.exe /background
mRun: [RoxWatchTray] "c:\program files\common files\roxio shared\9.0\sharedcom\RoxWatchTray9.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
uPolicies-explorer: NoWelcomeScreen = 1 (0x1)
uPolicies-explorer: DisallowRun = 1 (0x1)
uPolicies-disallowrun: 1 = mshta.exe
IE: Crawler Search - tbr:iemenu
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: bmnet.dll
Trusted Zone: bccfreight.com
Trusted Zone: google.com
Trusted Zone: maalt.com
Trusted Zone: msn.com
Trusted Zone: treymurray.com
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.6.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase1140.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\crawler\ctbr.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: gemsafe - c:\program files\gemplus\gemsafe libraries\bin\WLEventNotify.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
AppInit_DLLs: c:\progra~1\google\google~2\GOEC62~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
LSA: Authentication Packages = msv1_0 wvauth

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\tmurray\applic~1\mozilla\firefox\profiles\221fykyx.default\
FF - prefs.js: keyword.URL - hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p=
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");

============= SERVICES / DRIVERS ===============

R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2008-12-5 12552]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-7-31 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-4-1 114768]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-12-5 335240]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-12-5 27784]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-12-5 108552]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2008-12-22 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-12-22 55024]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2009-7-31 142592]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-4-1 20560]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2009-4-1 138680]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-1-7 297752]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1029456]
R2 Wave UCSPlus;Wave UCSPlus;c:\windows\system32\dllhost.exe [2008-4-25 5120]
R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2009-4-1 254040]
R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-12-22 7408]
S2 gupdate1c965caf0b9dbe2;Google Update Service (gupdate1c965caf0b9dbe2);c:\program files\google\update\GoogleUpdate.exe [2008-12-24 133104]
S3 ATTRcAppSvc;AT&T RcAppSvc;c:\program files\at&t\communication manager\RcAppSvc.exe [2008-5-23 106496]
S3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2009-4-1 352920]
S3 PEEK;PEEK Protocol Driver;\??\c:\program files\ag group\etherhelp\peek.sys --> c:\program files\ag group\etherhelp\PEEK.SYS [?]
S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [2008-1-10 165248]
S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [2008-1-10 142976]
S4 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\common files\adobe\adobe version cue cs4\server\bin\VersionCueCS4.exe [2008-8-15 284016]

=============== Created Last 30 ================

2009-07-31 12:25 <DIR> --d----- c:\program files\Trend Micro
2009-07-31 12:10 116,224 ac------ c:\windows\system32\dllcache\OLDFDF.tmp
2009-07-31 12:10 23,040 ac------ c:\windows\system32\dllcache\OLDFDB.tmp
2009-07-31 12:10 18,944 ac------ c:\windows\system32\dllcache\OLDFD7.tmp
2009-07-31 12:10 27,648 ac------ c:\windows\system32\dllcache\OLDFD3.tmp
2009-07-31 12:10 4,608 ac------ c:\windows\system32\dllcache\OLDFCF.tmp
2009-07-31 12:07 99,865 ac------ c:\windows\system32\dllcache\OLDFCB.tmp
2009-07-31 12:07 28,288 ac------ c:\windows\system32\dllcache\OLDFC7.tmp
2009-07-31 12:07 16,970 ac------ c:\windows\system32\dllcache\OLDFC4.tmp
2009-07-31 12:07 19,455 ac------ c:\windows\system32\dllcache\OLDFC0.tmp
2009-07-31 12:07 19,200 ac------ c:\windows\system32\dllcache\OLDFBC.tmp
2009-07-31 12:07 12,063 ac------ c:\windows\system32\dllcache\OLDFB8.tmp
2009-07-31 12:07 8,192 ac------ c:\windows\system32\dllcache\OLDFB4.tmp
2009-07-31 12:05 25,471 ac------ c:\windows\system32\dllcache\OLDF74.tmp
2009-07-31 12:04 687,999 ac------ c:\windows\system32\dllcache\OLDF0B.tmp
2009-07-31 12:04 765,884 ac------ c:\windows\system32\dllcache\OLDF07.tmp
2009-07-31 12:04 113,762 ac------ c:\windows\system32\dllcache\OLDF03.tmp
2009-07-31 12:04 7,556 ac------ c:\windows\system32\dllcache\OLDEFF.tmp
2009-07-31 12:04 224,802 ac------ c:\windows\system32\dllcache\OLDEFB.tmp
2009-07-31 12:04 794,399 ac------ c:\windows\system32\dllcache\OLDEF7.tmp
2009-07-31 12:04 793,598 ac------ c:\windows\system32\dllcache\OLDEF3.tmp
2009-07-31 12:04 794,654 ac------ c:\windows\system32\dllcache\OLDEEF.tmp
2009-07-31 12:04 121,984 ac------ c:\windows\system32\dllcache\OLDEEB.tmp
2009-07-31 12:04 26,112 ac------ c:\windows\system32\dllcache\OLDEE7.tmp
2009-07-31 12:02 216,064 ac------ c:\windows\system32\dllcache\OLDEA9.tmp
2009-07-31 12:01 455,168 ac------ c:\windows\system32\dllcache\OLDE5F.tmp
2009-07-31 12:00 53,760 ac------ c:\windows\system32\dllcache\OLDE12.tmp
2009-07-31 11:59 9,600 ac------ c:\windows\system32\dllcache\OLDDCF.tmp
2009-07-31 11:58 30,208 ac------ c:\windows\system32\dllcache\OLDD49.tmp
2009-07-31 11:57 98,080 ac------ c:\windows\system32\dllcache\OLDCD9.tmp
2009-07-31 11:56 198,400 ac------ c:\windows\system32\dllcache\OLDC95.tmp
2009-07-31 11:55 59,136 ac------ c:\windows\system32\dllcache\OLDC2A.tmp
2009-07-31 11:54 5,632 ac------ c:\windows\system32\dllcache\OLDBE7.tmp
2009-07-31 11:53 35,328 ac------ c:\windows\system32\dllcache\OLDB6E.tmp
2009-07-31 11:52 198,144 ac------ c:\windows\system32\dllcache\OLDB0E.tmp
2009-07-31 11:52 123,776 ac------ c:\windows\system32\dllcache\OLDB0A.tmp
2009-07-31 11:52 180,360 ac------ c:\windows\system32\dllcache\OLDB06.tmp
2009-07-31 11:52 2,066,048 ac------ c:\windows\system32\dllcache\OLDB02.tmp
2009-07-31 11:52 51,552 ac------ c:\windows\system32\dllcache\OLDB00.tmp
2009-07-31 11:52 9,344 ac------ c:\windows\system32\dllcache\OLDAFC.tmp
2009-07-31 11:52 7,552 ac------ c:\windows\system32\dllcache\OLDAF8.tmp
2009-07-31 11:52 28,672 ac------ c:\windows\system32\dllcache\OLDAF4.tmp
2009-07-31 11:52 87,040 ac------ c:\windows\system32\dllcache\OLDAF0.tmp
2009-07-31 11:52 126,080 ac------ c:\windows\system32\dllcache\OLDAEC.tmp
2009-07-31 11:52 32,840 ac------ c:\windows\system32\dllcache\OLDAE8.tmp
2009-07-31 11:52 132,695 ac------ c:\windows\system32\dllcache\OLDAE4.tmp
2009-07-31 11:50 119,808 ac------ c:\windows\system32\dllcache\OLDA81.tmp
2009-07-31 11:49 15,232 ac------ c:\windows\system32\dllcache\OLDA49.tmp
2009-07-31 11:49 16,128 ac------ c:\windows\system32\dllcache\OLDA45.tmp
2009-07-31 11:49 6,528 ac------ c:\windows\system32\dllcache\OLDA41.tmp
2009-07-31 11:49 7,680 ac------ c:\windows\system32\dllcache\OLDA3D.tmp
2009-07-31 11:49 34,304 ac------ c:\windows\system32\dllcache\OLDA3A.tmp
2009-07-31 11:49 320,384 ac------ c:\windows\system32\dllcache\OLDA37.tmp
2009-07-31 11:49 235,648 ac------ c:\windows\system32\dllcache\OLDA33.tmp
2009-07-31 11:49 92,416 ac------ c:\windows\system32\dllcache\OLDA2F.tmp
2009-07-31 11:49 92,032 ac------ c:\windows\system32\dllcache\OLDA2C.tmp
2009-07-31 11:49 26,112 ac------ c:\windows\system32\dllcache\OLDA29.tmp
2009-07-31 11:49 47,616 ac------ c:\windows\system32\dllcache\OLDA25.tmp
2009-07-31 11:49 8,320 ac------ c:\windows\system32\dllcache\OLDA21.tmp
2009-07-31 11:47 19,016 ac------ c:\windows\system32\dllcache\OLD9C0.tmp
2009-07-31 11:46 6,144 ac------ c:\windows\system32\dllcache\OLD91A.tmp
2009-07-31 11:45 81,920 ac------ c:\windows\system32\dllcache\OLD890.tmp
2009-07-31 11:44 10,096,640 ac------ c:\windows\system32\dllcache\OLD83F.tmp
2009-07-31 11:43 48,128 ac------ c:\windows\system32\dllcache\OLD7CC.tmp
2009-07-31 11:42 55,296 ac------ c:\windows\system32\dllcache\OLD744.tmp
2009-07-31 11:41 45,056 ac------ c:\windows\system32\dllcache\OLD6BA.tmp
2009-07-31 11:40 69,692 ac------ c:\windows\system32\dllcache\OLD624.tmp
2009-07-31 11:39 236,060 ac------ c:\windows\system32\dllcache\OLD5CD.tmp
2009-07-31 11:38 27,136 ac------ c:\windows\system32\dllcache\OLD542.tmp
2009-07-31 11:37 15,872 ac------ c:\windows\system32\dllcache\OLD49D.tmp
2009-07-31 11:36 82,172 ac------ c:\windows\system32\dllcache\OLD316.tmp
2009-07-31 11:35 97,354 ac------ c:\windows\system32\dllcache\OLD1E8.tmp
2009-07-31 11:34 16,384 ac------ c:\windows\system32\dllcache\OLD14A.tmp
2009-07-31 10:28 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{EF63305C-BAD7-4144-9208-D65528260864}
2009-07-31 10:28 <DIR> --d----- c:\program files\Lavasoft
2009-07-31 08:41 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-07-31 08:38 <DIR> --d----- c:\program files\Crawler
2009-07-31 08:28 142,592 a------- c:\windows\system32\drivers\sp_rsdrv2.sys
2009-07-31 08:28 <DIR> --d----- c:\docume~1\tmurray\applic~1\Spyware Terminator
2009-07-31 08:28 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spyware Terminator
2009-07-31 08:28 <DIR> --d----- c:\program files\Spyware Terminator
2009-07-28 16:56 <DIR> --d----- C:\UBCD4Win
2009-07-25 18:31 <DIR> --d----- c:\program files\iPod
2009-07-24 08:03 <DIR> --d----- c:\program files\Bonjour
2009-07-23 10:01 <DIR> --d----- c:\docume~1\tmurray\applic~1\TeamViewer
2009-07-23 10:01 <DIR> --d----- c:\documents and settings\tmurray\temp
2009-07-20 11:43 304,128 a------- c:\windows\IsUninst.exe
2009-07-20 11:43 <DIR> --d----- c:\documents and settings\tmurray\WINDOWS
2009-07-20 10:00 <DIR> --d----- C:\Ray
2009-07-10 10:32 116,224 ac------ c:\windows\system32\dllcache\xrxwiadr.dll
2009-07-10 10:32 23,040 ac------ c:\windows\system32\dllcache\xrxwbtmp.dll
2009-07-10 10:32 18,944 ac------ c:\windows\system32\dllcache\xrxscnui.dll
2009-07-10 10:31 27,648 ac------ c:\windows\system32\dllcache\xrxftplt.exe
2009-07-10 10:31 4,608 ac------ c:\windows\system32\dllcache\xrxflnch.exe
2009-07-10 10:28 72,704 ac------ c:\windows\system32\dllcache\wingb.ime
2009-07-10 10:27 687,999 ac------ c:\windows\system32\dllcache\usrwdxjs.sys
2009-07-10 10:26 166,784 ac------ c:\windows\system32\dllcache\tridxpm.sys
2009-07-10 10:25 94,293 ac------ c:\windows\system32\dllcache\sxports.dll
2009-07-10 10:24 358,400 ac------ c:\windows\system32\dllcache\snmpincl.dll
2009-07-10 10:23 161,568 ac------ c:\windows\system32\dllcache\sgsmusb.sys
2009-07-10 10:22 182,272 ac------ c:\windows\system32\dllcache\s3mt3d.dll
2009-07-10 10:21 5,632 ac------ c:\windows\system32\dllcache\ptpusb.dll
2009-07-10 10:20 20,480 ac------ c:\windows\system32\dllcache\ovcomc.dll
2009-07-10 10:19 60,480 ac------ c:\windows\system32\dllcache\neo20xx.dll
2009-07-10 10:18 35,200 ac------ c:\windows\system32\dllcache\msgame.sys
2009-07-10 10:17 70,730 ac------ c:\windows\system32\dllcache\lne100tx.sys
2009-07-10 10:16 716,856 ac------ c:\windows\system32\dllcache\imjpcus.dll
2009-07-10 10:15 115,807 ac------ c:\windows\system32\dllcache\hsf_fsks.sys
2009-07-10 10:14 451,584 ac------ c:\windows\system32\dllcache\fxsapi.dll
2009-07-10 10:13 283,904 ac------ c:\windows\system32\dllcache\emu10k1m.sys
2009-07-10 10:12 24,649 ac------ c:\windows\system32\dllcache\dfe650d.sys
2009-07-10 10:11 223,232 ac------ c:\windows\system32\dllcache\camdrv21.sys
2009-07-10 10:10 36,463 ac------ c:\windows\system32\dllcache\ati1tuxx.sys
2009-07-10 10:09 598,071 ac------ c:\windows\system32\dllcache\fpmmc.dll
2009-07-09 22:12 99 a------- c:\windows\WirelessFTP.INI
2009-07-09 22:05 <DIR> --d----- C:\Aya Software
2009-07-07 07:17 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2009-07-07 07:17 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-07-07 07:16 21,504 a------- c:\windows\system32\drivers\hidserv.dll
2009-07-06 11:58 6,050 a------- c:\documents and settings\tmurray\resetMailboxLimits.vbe
2009-07-06 11:58 5,345 a------- c:\documents and settings\tmurray\showMailboxLimits.vbs

==================== Find3M ====================

2009-07-31 09:35 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-07-31 09:35 335,240 a------- c:\windows\system32\drivers\avgldx86.sys
2009-07-03 12:09 915,456 a------- c:\windows\system32\wininet.dll
2009-06-29 16:20 102,664 a------- c:\windows\system32\drivers\tmcomm.sys
2009-06-27 21:54 70,182 a------- c:\windows\system32\nvModes.dat
2009-06-16 09:36 119,808 a------- c:\windows\system32\t2embed.dll
2009-06-16 09:36 81,920 a------- c:\windows\system32\fontsub.dll
2009-06-03 14:09 1,291,264 a------- c:\windows\system32\quartz.dll
2009-06-03 10:12 70,268 a---h--- c:\windows\system32\mlfcache.dat
2009-05-12 15:12 26,144 a------- c:\windows\system32\spupdsvc.exe
2009-05-09 01:14 1,418,120 a------- c:\windows\system32\wdfcoinstaller01005.dll
2009-05-07 10:32 345,600 a------- c:\windows\system32\localspl.dll
2009-03-16 08:56 60,744 a------- c:\documents and settings\tmurray\g2mdlhlpx.exe

============= FINISH: 12:34:19.62 ===============


UPDATE: I cannot surf to apple.com or microsoft.com on any of the three browsers.

Attached Files


Edited by trentraven, 31 July 2009 - 01:04 PM.


BC AdBot (Login to Remove)

 


#2 trentraven

trentraven
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 31 July 2009 - 04:06 PM

Nevermind, figured it out. The MS Hosts file was corrupted/changed. Ran HostsXpert to fix.

#3 Guest_The weatherman_*

Guest_The weatherman_*

  • Guests
  • OFFLINE
  •  

Posted 31 July 2009 - 05:59 PM

Thank you for letting us know trentraven.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users