Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

getting 404 error nginx only on google.com


  • This topic is locked This topic is locked
2 replies to this topic

#1 buckfry

buckfry

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:44 AM

Posted 12 September 2011 - 06:02 PM

had problem for afew days...left one night came back next day and the error was there. think sig other is doin more than what it seems with the net.
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Owner at 18:12:17 on 2011-09-12
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.894.279 [GMT -4:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\WINDOWS\system32\ctfmon.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Documents and Settings\Owner\Application Data\mjusbsp\magicJack.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmplayer.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
uStart Page = hxxp://www.google.com/
uSearch Page = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
uInternet Connection Wizard,ShellNext = "c:\program files\outlook express\msimn.exe"
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
uURLSearchHooks: YTNavAssist.YTNavAssistPlugin Class: {81017ea9-9aa8-4a6a-9734-7af40e7d593f} - c:\program files\yahoo!\companion\installs\cpn0\YTNavAssist.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [cdloader] "c:\documents and settings\owner\application data\mjusbsp\cdloader2.exe" MAGICJACK
uRun: [3427049022] c:\documents and settings\owner\local settings\application data\rxi.exe
mRun: [SunKistEM] c:\program files\digital media reader\shwiconem.exe
mRun: [<NO NAME>]
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [LWS] c:\program files\logitech\lws\webcam software\LWS.exe -hide
mRunOnce: [KB926239] rundll32.exe apphelp.dll,ShimFlushCache
StartupFolder: c:\docume~1\owner\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\ereg\eReg.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{89ADA4EE-A255-4F61-87DE-A23A51235C2F} : DhcpNameServer = 192.168.0.1
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R3 CompFilter;UVCCompositeFilter;c:\windows\system32\drivers\lvbusflt.sys [2011-5-26 22176]
S2 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-5-26 450848]
.
=============== Created Last 30 ================
.
2011-09-12 17:27:41 -------- d-----w- c:\program files\Windows Media Connect 2
2011-09-12 17:26:39 -------- d-----w- c:\windows\system32\LogFiles
2011-09-12 00:59:44 -------- d-----w- c:\documents and settings\owner\local settings\application data\WMTools Downloaded Files
2011-09-11 23:36:56 -------- d-----w- c:\program files\AV Picture Viewer
2011-09-11 09:24:27 358400 ----a-w- c:\documents and settings\owner\local settings\application data\rxi.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\owner\local settings\application data\newc.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\owner\local settings\application data\kpkw.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\owner\local settings\application data\ihnw.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\owner\local settings\application data\dspv.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\all users\application data\wuyh.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\all users\application data\vger.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\all users\application data\ljbb.exe
2011-09-11 09:24:27 0 ----a-w- c:\documents and settings\all users\application data\kgap.exe
2011-09-11 03:02:54 -------- d-----w- c:\documents and settings\owner\local settings\application data\Logitech® Webcam Software
2011-09-11 02:57:05 -------- d-----w- c:\windows\pss
2011-09-11 01:14:12 -------- d-----w- c:\documents and settings\owner\local settings\application data\tjnet
2011-09-11 01:10:33 53248 ----a-r- c:\documents and settings\owner\application data\microsoft\installer\{3ee9bcae-e9a9-45e5-9b1c-83a4d357e05c}\ARPPRODUCTICON.exe
2011-09-11 01:02:15 -------- d-----w- c:\program files\common files\LWS
2011-09-10 23:27:14 -------- d-----w- c:\documents and settings\owner\local settings\application data\magicJack
2011-09-10 23:27:09 -------- d-----w- c:\documents and settings\all users\application data\magicJack
2011-09-10 23:24:47 -------- d-----w- c:\documents and settings\owner\application data\mjusbsp
2011-09-10 22:11:43 -------- d-sh--w- c:\documents and settings\owner\IECompatCache
2011-09-10 22:11:03 -------- d-sh--w- c:\documents and settings\owner\PrivacIE
2011-09-10 22:07:39 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-10 22:06:59 -------- d-sh--w- c:\documents and settings\owner\IETldCache
2011-09-10 22:04:56 -------- dc-h--w- c:\windows\ie8
2011-09-10 21:52:10 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2011-09-10 21:52:10 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys
2011-09-10 21:52:05 14848 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2011-09-10 21:52:05 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-09-10 21:52:02 10880 -c--a-w- c:\windows\system32\dllcache\ndisip.sys
2011-09-10 21:52:02 10880 ----a-w- c:\windows\system32\drivers\NdisIP.sys
2011-09-10 21:52:00 16384 ----a-w- c:\windows\system32\ipsink.ax
2011-09-10 21:52:00 15360 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2011-09-10 21:52:00 15360 ----a-w- c:\windows\system32\drivers\StreamIP.sys
2011-08-19 09:26:46 196896 ----a-w- c:\windows\system32\lvci13301394.dll
.
==================== Find3M ====================
.
2011-08-19 09:26:50 545056 ----a-w- c:\windows\system32\LVUI2.dll
2011-08-19 09:26:50 540960 ----a-w- c:\windows\system32\LVUI2RC.dll
2011-08-19 09:26:50 4334624 ----a-w- c:\windows\system32\drivers\lvuvc.sys
2011-08-19 09:26:46 315808 ----a-w- c:\windows\system32\drivers\lvrs.sys
2011-08-19 09:26:46 307488 ----a-w- c:\windows\system32\lvcodec2.dll
2011-08-19 09:26:34 22176 ----a-w- c:\windows\system32\drivers\lvbusflt.sys
2011-08-19 09:26:20 336408 ----a-w- c:\windows\system32\DevManagerCore.dll
2011-08-19 09:26:20 10898456 ----a-w- c:\windows\system32\LogiDPP.dll
2011-08-19 09:26:20 104472 ----a-w- c:\windows\system32\LogiDPPApp.exe
2011-08-12 16:20:14 15896 ----a-w- c:\windows\system32\drivers\iKeyLFT2.dll
2011-07-26 06:49:12 38958 ----a-w- c:\windows\system32\Repository.reg
.
============= FINISH: 18:12:43.31 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 sempai

sempai

    noypi


  • Malware Response Team
  • 5,288 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:3 stars and a sun
  • Local time:07:44 PM

Posted 19 September 2011 - 07:15 AM

Hello buckfry and welcome to BC. :)

Sorry about the delay, do you still need help?

~Semp

btn_donate_LG.gif
You can help me continue the fight against malware by making a donation, Thank you.

If I am helping you and I didn't reply within 48 hours... Please send me a private message.
Topics that are not replied within 5 days will be close. Please don't PM asking for support, post on the Forums instead.

Member of UNITE (Unified Network of Instructors and Trained Eliminators) 


#3 sempai

sempai

    noypi


  • Malware Response Team
  • 5,288 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:3 stars and a sun
  • Local time:07:44 PM

Posted 24 September 2011 - 09:42 AM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

~Semp

btn_donate_LG.gif
You can help me continue the fight against malware by making a donation, Thank you.

If I am helping you and I didn't reply within 48 hours... Please send me a private message.
Topics that are not replied within 5 days will be close. Please don't PM asking for support, post on the Forums instead.

Member of UNITE (Unified Network of Instructors and Trained Eliminators) 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users