Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't do Internet search


  • Please log in to reply
21 replies to this topic

#1 tgsetliff

tgsetliff

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 01:44 PM

All of a sudden, I am unable to go to Google, Bing or Yahoo Search. Each of these come up as Server not found. I do have a internet connection as I am able to get to other websites. I can not see where these sites are being blocked anywhere. Any advice?

Thanks
Tom

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 02:22 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 03:07 PM

I noticed another post where the user was having the same issue that I was. I saw where you had suggested running several programs so I downloaded them and did the same. Here are the logs.

Security Check Log:

Results of screen317's Security Check version 0.99.24
Windows XP Service Pack 3 x86
Internet Explorer 7 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
ESET Online Scanner v3
McAfee VirusScan Enterprise
McAfee AntiSpyware Enterprise Module
McAfee ePO deployment
McAfee Agent
McAfee Host Intrusion Prevention
Antivirus up to date!
```````````````````````````````
Anti-malware/Other Utilities Check:

McAfee AntiSpyware Enterprise Module
CCleaner (remove only)
Java™ 6 Update 17
Out of date Java installed!
Adobe Flash Player 11.1.102.55
Adobe Reader X (10.1.2)
````````````````````````````````
Process Check:
objlist.exe by Laurent

McAfee VirusScan Enterprise engineserver.exe
McAfee VirusScan Enterprise VsTskMgr.exe
McAfee VirusScan Enterprise Mcshield.exe
``````````End of Log````````````


Farbar Service Scanner:

Farbar Service Scanner
Ran by tom setliff (administrator) on 13-01-2012 at 14:22:47
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error: Google IP is offline
Attempt to access Yahoo IP returend error: Yahoo IP is offline


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled. The default start type is Auto.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
===========

File Check:
========
C:\windows\system32\dhcpcsvc.dll => MD5 is legit
C:\windows\system32\Drivers\afd.sys => MD5 is legit
C:\windows\system32\Drivers\netbt.sys => MD5 is legit
C:\windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\windows\system32\Drivers\ipsec.sys => MD5 is legit
C:\windows\system32\dnsrslvr.dll => MD5 is legit
C:\windows\system32\ipnathlp.dll => MD5 is legit
C:\windows\system32\netman.dll => MD5 is legit
C:\windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\windows\system32\srsvc.dll => MD5 is legit
C:\windows\system32\Drivers\sr.sys => MD5 is legit
C:\windows\system32\wscsvc.dll => MD5 is legit
C:\windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\windows\system32\wuauserv.dll => MD5 is legit
C:\windows\system32\qmgr.dll => MD5 is legit
C:\windows\system32\es.dll => MD5 is legit
C:\windows\system32\cryptsvc.dll => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit

Extra List:
=======
FireTDI(9) Gpc(4) IPSec(6) mfetdik(9) NetBT(7) PSched(8) RFCOMM(3) Tcpip(5)
0x09000000060000000100000002000000030000000400000005000000090000000700000008000000


**** End of log ****

MiniToolBox: NOTE: While looking at this log, I noticed the Host file change with all the blank lines and other addresses at the bottom. I know that typically, this file only has the local host address in it SO, I renamed the host file to host_old and then removed everything but the local host address 127.0.0.1. I still have the other file should you need to do something with that.

MiniToolBox by Farbar
Ran by tom setliff (administrator) on 13-01-2012 at 14:26:00
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: adcproxy.averydennison.net:8080

========================= FF Proxy Settings: ==============================

"network.proxy.autoconfig_url", "http://adcproxy.averydennison.net:8080/array.dll?Get.Routing.Script"
"network.proxy.type", 0
========================= Hosts content: =================================

::1 localhost








































































































































































































93.115.241.28 www.google-analytics.com.
93.115.241.28 ad-emea.doubleclick.net.
93.115.241.28 www.statcounter.com.
69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1390 WLAN Mini-Card = Wireless Network Connection (Disconnected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : NBXPgso0356

Primary Dns Suffix . . . . . . . : na.averydennison.net

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : na.averydennison.net

averydennison.net

averydennison.com

fr.na.averydennison.net

op.na.averydennison.net

cv.na.averydennison.net

cp.na.averydennison.net

la.averydennison.net

ap.averydennison.net

eu.averydennison.net

rme.eu.averydennison.net



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : gso.ris.net

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller

Physical Address. . . . . . . . . : 00-18-8B-BF-49-19

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 147.121.242.179

Subnet Mask . . . . . . . . . . . : 255.255.252.0

Default Gateway . . . . . . . . . : 147.121.241.4

DHCP Server . . . . . . . . . . . : 147.121.241.98

DNS Servers . . . . . . . . . . . : 147.121.241.65

10.12.3.113

10.14.3.22

Primary WINS Server . . . . . . . : 147.121.241.98

Lease Obtained. . . . . . . . . . : Friday, January 13, 2012 1:58:23 PM

Lease Expires . . . . . . . . . . : Sunday, January 15, 2012 1:58:23 PM

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

DNS request timed out.
timeout was 2 seconds.
Ping request could not find host google.com. Please check the name and try again.

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

Name: yahoo.com
Addresses: 98.137.149.56, 98.139.180.149, 209.191.122.70, 72.30.2.43



Pinging yahoo.com [98.137.149.56] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 98.137.149.56:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 18 8b bf 49 19 ...... Broadcom NetXtreme 57xx Gigabit Controller - McAfee NDIS Intermediate Filter Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 147.121.241.4 147.121.242.179 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
147.121.240.0 255.255.252.0 147.121.242.179 147.121.242.179 10
147.121.242.179 255.255.255.255 127.0.0.1 127.0.0.1 10
147.121.255.255 255.255.255.255 147.121.242.179 147.121.242.179 10
169.254.0.0 255.255.0.0 147.121.242.179 147.121.242.179 20
224.0.0.0 240.0.0.0 147.121.242.179 147.121.242.179 10
255.255.255.255 255.255.255.255 147.121.242.179 147.121.242.179 1
Default Gateway: 147.121.241.4
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\wshbth.dll [108032] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/13/2012 02:03:25 PM) (Source: McLogEvent) (User: )
Description: The McShield service terminated unexpectedly.

Please review event 5019 or 5051 for details.
The McShield service will be restarted in 5 seconds;

Error: (01/13/2012 02:03:25 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: A thread in process C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe took longer than 30000 ms to complete a request.

The process will be terminated.
Thread id : 2604 (0xa2c)

Thread address : 0x7C90E514

Thread message :

Build VSCORE.14.1.0.567 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll
by C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (01/13/2012 02:00:12 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 02:00:12 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:59:47 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:59:47 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:26:48 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:26:48 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:25:37 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 01:25:37 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.


System errors:
=============
Error: (01/13/2012 02:03:25 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated unexpectedly. It has done this 1 time(s).

Error: (01/13/2012 01:59:54 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/13/2012 01:59:54 PM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/13/2012 01:58:32 PM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume2

Error: (01/13/2012 08:23:38 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/13/2012 08:23:23 AM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/12/2012 01:22:33 PM) (Source: System Error) (User: )
Description: Error code 1000008e, parameter1 c0000005, parameter2 8054b168, parameter3 a7e4e970, parameter4 00000000.

Error: (01/12/2012 01:20:50 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/12/2012 01:20:35 PM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/12/2012 08:46:04 AM) (Source: 0) (User: )
Description: \Device\LanmanDatagramReceiverDCPDGSO01NetBT_Tcpip_{E6FB6B59-C3D0-4E62


Microsoft Office Sessions:
=========================
Error: (01/13/2012 02:03:25 PM) (Source: McLogEvent)(User: )
Description: 5

Error: (01/13/2012 02:03:25 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe300002604 (0xa2c)0x7C90E514
Build VSCORE.14.1.0.567 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll
by C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (01/13/2012 02:00:12 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 02:00:12 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 01:59:47 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 01:59:47 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 01:26:48 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 01:26:48 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 01:25:37 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 01:25:37 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Advertising Center (Version: 0.0.0.2)
AFPL Ghostscript 7.00
AFPL Ghostscript Fonts
ALPS Touch Pad Driver
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Broadcom ASF Management Applications (Version: 8.17.03)
Broadcom Gigabit Integrated Controller (Version: 8.22.11)
CCleaner (remove only)
Citrix Presentation Server Client (Version: 10.00.52110)
Codesite client tools (Version: 3.00)
Compatibility Pack for the 2007 Office system (Version: 12.0.6021.5000)
Conexant HDA D110 MDC V.92 Modem
Crystal Reports 2008 SP2 (Version: 12.1.0.883)
Crystal Reports Basic for Visual Studio 2008 (Version: 10.5.0.0)
DB2 Run-Time Client (Version: 8.1.8)
Dell Wireless WLAN Card Utility (Version: 4.170.77.18)
EditPlus 3
ESET Online Scanner v3
Files Compare Tool
GDR 1406 for SQL Server Tools and Workstation Components 2005 ENU (KB932557) (Version: 9.00.1406.00)
GDR 3080 for SQL Server Database Services 2005 ENU (KB970895) (Version: 9.2.3080)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.79)
GSview 4.0
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HiJackThis (Version: 1.0.0)
HP Update (Version: 4.000.007.003)
ImagXpress (Version: 7.0.74.0)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.5.1.42)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 17 (Version: 6.0.170)
KeePass Password Safe 1.20 (Version: 1.20)
Knowledge Xpert (Version: 10.0.0.0)
Knowledge Xpert (Version: 10.1.0.188)
Knowledge Xpert for Oracle Administration (Version: 10.1.0.188)
Knowledge Xpert for PLSQL (Version: 10.1.0.188)
Knowledge Xpert Oracle Common (Version: 10.1.0.188)
Kontiki Media Manager (Version: 6.53.1001.050)
Lotus Notes 8.5.2 (Version: 8.52.10222)
Malwarebytes Anti-Malware version 1.60.0.1800 (Version: 1.60.0.1800)
McAfee Agent (Version: 4.6.0.1694)
McAfee AntiSpyware Enterprise Module (Version: 8.7.0.129)
McAfee ePO deployment (Version: 1.00.0000)
McAfee Host Intrusion Prevention (Version: 7.00.0700)
McAfee VirusScan Enterprise (Version: 8.7.00004)
Menu Templates - Starter Kit (Version: 9.6.0.0)
Microsoft .NET Compact Framework 2.0 SP2 (Version: 2.0.7045)
Microsoft .NET Compact Framework 3.5 (Version: 3.5.7283)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Connection Manager
Microsoft Device Emulator version 3.0 - ENU (Version: 9.0.21022)
Microsoft Document Explorer 2008
Microsoft Document Explorer 2008 (Version: 9.0.21022)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Web Components (Version: 11.0.6558.0)
Microsoft Office Professional Edition 2003 (Version: 11.0.5614.0)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Visual Web Developer 2007 (Version: 12.0.4518.1066)
Microsoft Office Visual Web Developer MUI (English) 2007 (Version: 12.0.4518.1066)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SOAP Toolkit 3.0 (Version: 3.0.1325.4)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Backward compatibility (Version: 8.05.1054)
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) (Version: 9.2.3042.00)
Microsoft SQL Server 2005 Tools (Version: 9.00.1399.06)
Microsoft SQL Server 2008 Management Objects (Version: 10.0.1600.22)
Microsoft SQL Server Compact 3.5 for Devices ENU (Version: 3.5.5386.0)
Microsoft SQL Server Compact 3.5 SP1 Design Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0)
Microsoft SQL Server Database Publishing Wizard 1.3 (Version: 10.0.1600.22)
Microsoft SQL Server Native Client (Version: 9.00.3042.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.3042.00)
Microsoft SQL Server VSS Writer (Version: 9.00.3042.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual FoxPro 6.0
Microsoft Visual FoxPro 9.0 Professional - English
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Visual Studio 2008 Professional Edition - ENU
Microsoft Visual Studio 2008 Professional Edition - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2008 Professional Edition - ENU Service Pack 1 (KB945140) (Version: 1)
Microsoft Visual Studio Web Authoring Component (Version: 12.0.4518.1066)
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools - enu (Version: 3.5.21022)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Tools (Version: 6.1.5294.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Win32 Tools (Version: 6.1.5294.17011)
Movie Templates - Starter Kit (Version: 9.6.0.0)
Mozilla Firefox 9.0.1 (x86 en-US) (Version: 9.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
Neoteris VPN Patch (Version: 1.0.0)
Nero 9 Essentials
Nero BurnRights (Version: 3.4.13.100)
Nero BurnRights Help (Version: 3.4.4.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero CoverDesigner (Version: 4.4.23.100)
Nero DiscSpeed (Version: 5.4.13.100)
Nero DriveSpeed (Version: 4.4.12.100)
Nero Express Help (Version: 9.4.39.100)
Nero InfoTool (Version: 6.4.12.100)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero ShowTime (Version: 5.4.27.100)
Nero StartSmart (Version: 9.4.40.100)
Nero StartSmart Help (Version: 9.4.40.100)
Nero Vision (Version: 6.4.19.100)
Nero Vision Help (Version: 6.4.15.100)
NeroExpress (Version: 1.0.0.0)
neroxml (Version: 1.0.0)
Oracle Data Provider for .NET Help (Version: 10.2.000)
Oracle Database 10g Express Edition (Version: 10.2.1015)
Oracle XML Publisher Desktop (Version: 5.6.2.0.0)
OZ776 SCR Driver V1.1.4.202 (Version: 1.1.4.202)
Picasa 3 (Version: 3.8)
Post-itŪ Software Notes Lite
PowerDVD (Version: 7.0)
PrimoPDF -- brought to you by Nitro PDF Software (Version: 4.1.0.11)
PrimoPDF (Version: 3.0)
PrimoPDF Redistribution Package (Version: 1.0.0.0)
Quest Installer
Quest Software Toad for DB2 Freeware 4.0 (Version: 4.0.1.921)
Quest SQL Optimizer 7.4.1 for Oracle (Version: 7.4.1.818)
Quest SQL Optimizer for Oracle Common (Version: 1.0.0.100)
Quest SQL Tuning for Oracle (Version: SQL Tuning)
QuickTime (Version: 7.69.80.9)
SigmaTel Audio (Version: 5.10.5210.0)
SlideShow Expressions
SnagIt 8 (Version: 8.2.3)
SQL Server System CLR Types (Version: 10.0.1600.22)
StuffIt 2010 (Version: 14.0.1)
Toad for Oracle (Version: 9.7.2.5)
Uninstall Startup Inspector
Visual C++ 2008 IA64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 IA64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - (v9.0.30729.4148) (Version: 9.0.30729.4148)
Visual C++ 2008 x86 Runtime - (v9.0.30729.6161) (Version: 9.0.30729.6161)
Visual C++ 2008 x86 Runtime - KB2465361 - (v9.0.30729.5570) (Version: 9.0.30729.5570)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - v9.0.30729.4148 (Version: 9.0.30729.4148)
Visual C++ 2008 x86 Runtime - v9.0.30729.5570 (Version: 9.0.30729.5570)
Visual C++ 2008 x86 Runtime - v9.0.30729.6161 (Version: 9.0.30729.6161)
Visual FoxPro 9.0 Baseline - English (Version: 9.00.2412)
Visual FoxPro 9.0 Professional - English (Version: 9.00.5815)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.30729)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (Version: 1)
VNC Free Edition 4.1.1 (Version: 4.1.1)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Media Format 11 runtime
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile 5.0 SDK R2 for Pocket PC (Version: 5.00.1700.5.14343.06)
Windows Mobile 5.0 SDK R2 for Smartphone (Version: 5.00.1700.5.14343.06)
Windows Server 2003 Administration Tools Pack (Version: 5.2.3790)
Windows XP Service Pack 3 (Version: 20080414.031525)
wstuner (Version: 8.1.01)
wstuner Wrapper (Version: 1.0.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 29%
Total physical RAM: 3062.05 MB
Available physical RAM: 2172.43 MB
Total Pagefile: 4425.57 MB
Available Pagefile: 2983.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.44 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:74.46 GB) (Free:35.41 GB) NTFS
3 Drive f: (New Volume) (Network) (Total:410.18 GB) (Free:2.84 GB) NTFS
4 Drive g: (Common) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS
5 Drive h: (Admin) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS
6 Drive i: (OS) (Network) (Total:43.95 GB) (Free:23.14 GB) NTFS
7 Drive j: (Data) (Network) (Total:24.15 GB) (Free:16.98 GB) NTFS
8 Drive k: () (Network) (Total:272.24 GB) (Free:46.8 GB) NTFS
9 Drive l: () (Network) (Total:97.6 GB) (Free:87.4 GB) NTFS
10 Drive m: (ERPDisk) (Network) (Total:204.72 GB) (Free:120.77 GB) NTFS
11 Drive n: (Production) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS
12 Drive o: (Accounting) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS
13 Drive q: () (Network) (Total:940.79 GB) (Free:208.3 GB) NTFS
14 Drive v: (Data) (Network) (Total:24.15 GB) (Free:16.98 GB) NTFS
15 Drive w: (Data2) (Network) (Total:1114.86 GB) (Free:855.36 GB) NTFS
16 Drive x: (Scanner) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS
17 Drive y: (ERPDisk) (Network) (Total:204.72 GB) (Free:120.77 GB) NTFS
18 Drive z: (Home) (Network) (Total:819.2 GB) (Free:20.46 GB) NTFS

========================= Users: ========================================

User accounts for \\NBXPGSO0356

Administrator Guest HelpAssistant
SUPPORT_388945a0


**** End of log ****

aswMBR scan:

aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software
Run date: 2012-01-13 14:35:27
-----------------------------
14:35:27.939 OS Version: Windows 5.1.2600 Service Pack 3
14:35:27.939 Number of processors: 2 586 0xF02
14:35:27.939 ComputerName: NBXPGSO0356 UserName: tom setliff
14:35:28.752 Initialize success
14:38:30.056 AVAST engine defs: 12011301
14:38:45.711 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
14:38:45.711 Disk 0 Vendor: ST980825AS 8.04 Size: 76319MB BusType: 3
14:38:45.727 Disk 0 MBR read successfully
14:38:45.727 Disk 0 MBR scan
14:38:45.805 Disk 0 Windows XP default MBR code
14:38:45.805 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
14:38:45.852 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76245 MB offset 144585
14:38:45.883 Disk 0 scanning sectors +156296385
14:38:45.961 Disk 0 scanning C:\windows\system32\drivers
14:39:14.460 Service scanning
14:39:14.819 Service ACPI C:\windows\system32\DRIVERS\ACPI.sys **LOCKED** 32
14:39:16.179 Modules scanning
14:39:22.522 Disk 0 trace - called modules:
14:39:22.975 ntkrnlpa.exe CLASSPNP.SYS disk.sys iomdisk.sys hal.dll ACPI.sys atapi.sys >>UNKNOWN [0x8ab6b911]<<
14:39:22.975 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8af89ab8]
14:39:22.975 3 CLASSPNP.SYS[ba0f8fd7] -> nt!IofCallDriver -> [0x8af01940]
14:39:22.975 5 iomdisk.sys[ba340eef] -> nt!IofCallDriver -> \Device\00000088[0x8afec978]
14:39:22.975 7 ACPI.sys[b9f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8af07940]
14:39:23.413 AVAST engine scan C:\windows
14:39:32.068 AVAST engine scan C:\windows\system32
14:43:03.604 AVAST engine scan C:\windows\system32\drivers
14:43:32.870 AVAST engine scan C:\Documents and Settings\Tom Setliff
14:58:33.168 AVAST engine scan C:\Documents and Settings\All Users
15:00:03.074 Scan finished successfully
15:05:38.934 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Tom Setliff\Desktop\MBR.dat"
15:05:38.949 The log file has been saved successfully to "C:\Documents and Settings\Tom Setliff\Desktop\aswMBR.txt"

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 03:34 PM

I still need MBAM log.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 03:37 PM

oops... sorry...

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.13.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.13
tom setliff :: NBXPGSO0356 [administrator]

1/13/2012 1:45:41 PM
mbam-log-2012-01-13 (13-45-41).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 206094
Time elapsed: 8 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Documents and Settings\Tom Setliff\Local Settings\Temp\20.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Tom Setliff\Local Settings\Temp\5690.sys (Heuristics.Shuriken) -> Quarantined and deleted successfully.

(end)

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 03:43 PM

Your "hosts" file has been hijacked.

Please, go here: http://support.microsoft.com/kb/972034#FixItForMeAlways and click on "Fix it" button to reset your "hosts" file.

Download following "hosts" file: http://www.bleepstatic.com/fhost/uploads/0/hosts
Open Windows Explorer and paste downloaded file to C:\WINDOWS\SYSTEM32\DRIVERS\ETC folder.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2

64-bit users go HERE
  • Double-click SystemLook.exe to run it.
  • Vista\Win 7 users:: Right click on SystemLook.exe, click Run As Administrator
  • Copy the content of the following box into the main textfield:
    :dir
    C:\WINDOWS\SYSTEM32\DRIVERS\ETC
    
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 04:03 PM

Not sure I understand the difference between steps one and two. Seems they accomplish the same thing. Resetting the host file.

I did the first option but I have not restarted. I did not do the second because what was being pasted in looked the same as what was done by the fix.

Here is the SystemLook log:

SystemLook 30.07.11 by jpshortstuff
Log created at 16:00 on 13/01/2012 by tom setliff
Administrator - Elevation successful

========== dir ==========

C:\WINDOWS\SYSTEM32\DRIVERS\ETC - Parameters: "(none)"

---Files---
hosts --a---- 732 bytes [02:36 04/12/2011] [21:11 22/12/2011]
hosts.old --a---- 734 bytes [02:36 04/12/2011] [19:32 13/01/2012]
hosts_old -rahs-- 1395 bytes [02:36 04/12/2011] [14:16 13/01/2012]
lmhosts.sam --a---- 3683 bytes [10:00 04/08/2004] [10:00 04/08/2004]
networks --a---- 407 bytes [10:00 04/08/2004] [10:00 04/08/2004]
protocol --a---- 799 bytes [10:00 04/08/2004] [10:00 04/08/2004]
services --a---- 7116 bytes [10:00 04/08/2004] [10:00 04/08/2004]

---Folders---
None found.

-= EOF =-

#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 04:11 PM

Re-run MiniToolbox.


Checkmark following boxes:
  • List content of Hosts
Click Go and post the result.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 04:15 PM

MiniToolBox by Farbar
Ran by tom setliff (administrator) on 13-01-2012 at 16:14:58
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost


**** End of log ****

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 04:26 PM

Can you search now?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 04:30 PM

nope. still getting server not found

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 04:36 PM

Re-run MiniToolbox.

Checkmark following boxes:
  • Flush DNS
  • Reset IE Proxy Settings
  • Reset FF Proxy Settings
Click Go and post the result.

Restart computer.

Re-run MiniToolbox.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Users, Partitions and Memory size
Click Go and post the result.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 04:44 PM

First run of minitoolbox. Will restart computer and rerun as requested.

MiniToolBox by Farbar
Ran by tom setliff (administrator) on 13-01-2012 at 16:43:18
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


"Reset IE Proxy Settings": IE Proxy Settings were reset.

"Reset FF Proxy Settings": Firefox Proxy settings were reset.


**** End of log ****

#14 tgsetliff

tgsetliff
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2012 - 04:55 PM

MiniToolBox after restart

MiniToolBox by Farbar
Ran by tom setliff (administrator) on 13-01-2012 at 16:52:26
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1390 WLAN Mini-Card = Wireless Network Connection (Disconnected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : NBXPgso0356

Primary Dns Suffix . . . . . . . : na.averydennison.net

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : na.averydennison.net

averydennison.net

averydennison.com

fr.na.averydennison.net

op.na.averydennison.net

cv.na.averydennison.net

cp.na.averydennison.net

la.averydennison.net

ap.averydennison.net

eu.averydennison.net

rme.eu.averydennison.net



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : gso.ris.net

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller

Physical Address. . . . . . . . . : 00-18-8B-BF-49-19

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 147.121.242.179

Subnet Mask . . . . . . . . . . . : 255.255.252.0

Default Gateway . . . . . . . . . : 147.121.241.4

DHCP Server . . . . . . . . . . . : 147.121.241.98

DNS Servers . . . . . . . . . . . : 147.121.241.65

10.12.3.113

10.14.3.22

Primary WINS Server . . . . . . . : 147.121.241.98

Lease Obtained. . . . . . . . . . : Friday, January 13, 2012 4:46:32 PM

Lease Expires . . . . . . . . . . : Sunday, January 15, 2012 4:46:32 PM

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

DNS request timed out.
timeout was 2 seconds.
Ping request could not find host google.com. Please check the name and try again.

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

Name: yahoo.com
Addresses: 72.30.2.43, 98.137.149.56, 98.139.180.149, 209.191.122.70



Pinging yahoo.com [72.30.2.43] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 72.30.2.43:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Server: dcpdgso01.na.averydennison.net
Address: 147.121.241.65

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 18 8b bf 49 19 ...... Broadcom NetXtreme 57xx Gigabit Controller - McAfee NDIS Intermediate Filter Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 147.121.241.4 147.121.242.179 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
147.121.240.0 255.255.252.0 147.121.242.179 147.121.242.179 10
147.121.242.179 255.255.255.255 127.0.0.1 127.0.0.1 10
147.121.255.255 255.255.255.255 147.121.242.179 147.121.242.179 10
169.254.0.0 255.255.0.0 147.121.242.179 147.121.242.179 20
224.0.0.0 240.0.0.0 147.121.242.179 147.121.242.179 10
255.255.255.255 255.255.255.255 147.121.242.179 147.121.242.179 1
Default Gateway: 147.121.241.4
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\wshbth.dll [108032] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/13/2012 04:48:35 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:48:35 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:48:09 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:48:09 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:38:32 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:38:32 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:38:14 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:38:14 PM) (Source: Userenv) (User: SYSTEM)SYSTEM
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (01/13/2012 04:12:06 PM) (Source: McLogEvent) (User: )
Description: The McShield service terminated unexpectedly.

Please review event 5019 or 5051 for details.
The McShield service will be restarted in 5 seconds;

Error: (01/13/2012 04:12:04 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: A thread in process C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe took longer than 30000 ms to complete a request.

The process will be terminated.
Thread id : 3916 (0xf4c)

Thread address : 0x7C90E514

Thread message :

Build VSCORE.14.1.0.567 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll
by C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)


System errors:
=============
Error: (01/13/2012 04:48:12 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/13/2012 04:48:12 PM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/13/2012 04:38:12 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/13/2012 04:37:24 PM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/13/2012 04:37:24 PM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service failed to start due to the following error:
%%1053

Error: (01/13/2012 04:37:24 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the JavaQuickStarterService service.

Error: (01/13/2012 04:12:07 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated unexpectedly. It has done this 1 time(s).

Error: (01/13/2012 04:08:41 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (01/13/2012 04:08:31 PM) (Source: Service Control Manager) (User: )
Description: The SQL Server EXPRESS service terminated with the following error:
%%126

Error: (01/13/2012 02:03:25 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (01/13/2012 04:48:35 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 04:48:35 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 04:48:09 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 04:48:09 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 04:38:32 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 04:38:32 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 04:38:14 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (01/13/2012 04:38:14 PM) (Source: Userenv)(User: SYSTEM)SYSTEM
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (01/13/2012 04:12:06 PM) (Source: McLogEvent)(User: )
Description: 5

Error: (01/13/2012 04:12:04 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe300003916 (0xf4c)0x7C90E514
Build VSCORE.14.1.0.567 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll
by C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)


========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 3062.05 MB
Available physical RAM: 2178.34 MB
Total Pagefile: 4425.63 MB
Available Pagefile: 3038.79 MB
Total Virtual: 2047.88 MB
Available Virtual: 1981.67 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:74.46 GB) (Free:35.37 GB) NTFS
3 Drive f: (New Volume) (Network) (Total:410.18 GB) (Free:2.84 GB) NTFS
4 Drive g: (Common) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS
5 Drive h: (Admin) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS
6 Drive i: (OS) (Network) (Total:43.95 GB) (Free:23.14 GB) NTFS
7 Drive j: (Data) (Network) (Total:24.15 GB) (Free:16.98 GB) NTFS
8 Drive k: () (Network) (Total:272.24 GB) (Free:46.79 GB) NTFS
9 Drive l: () (Network) (Total:97.6 GB) (Free:87.4 GB) NTFS
10 Drive m: (ERPDisk) (Network) (Total:204.72 GB) (Free:120.77 GB) NTFS
11 Drive n: (Production) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS
12 Drive o: (Accounting) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS
13 Drive q: () (Network) (Total:940.79 GB) (Free:208.1 GB) NTFS
14 Drive v: (Data) (Network) (Total:24.15 GB) (Free:16.98 GB) NTFS
15 Drive w: (Data2) (Network) (Total:1114.86 GB) (Free:855.35 GB) NTFS
16 Drive x: (Scanner) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS
17 Drive y: (ERPDisk) (Network) (Total:204.72 GB) (Free:120.77 GB) NTFS
18 Drive z: (Home) (Network) (Total:819.2 GB) (Free:20.45 GB) NTFS

========================= Users: ========================================

User accounts for \\NBXPGSO0356

Administrator Guest HelpAssistant
SUPPORT_388945a0


**** End of log ****

#15 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:56 AM

Posted 13 January 2012 - 04:59 PM

Are you familiar with averydennison.net?
Is it business computer?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users