Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Web browsers will not access google.com or bing.com


  • Please log in to reply
10 replies to this topic

#1 thundergod76

thundergod76

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 PM

Posted 11 September 2013 - 12:48 PM

I was referred to this forum topic by nasdaq in the malware removal topic. He advised that the logs I ran for him came back clean for malware. He believes the network settings on this machine are at fault. He suggested I run the MiniToolBox and post the results here.

Any help would be greatly appreciated!

Thanks!

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by GARNETT FUMC (administrator) on 11-09-2013 at 12:41:59
Running from "C:\Documents and Settings\GARNETT FUMC\Desktop\Fix Tools"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® 82562V-2 10/100 Network Connection = Local Area Connection (Connected)

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=static addr=208.67.222.222 register=PRIMARY
add dns name="Local Area Connection" addr=208.67.220.220 index=2
set wins name="Local Area Connection" source=dhcp

popd
# End of interface IP configuration

 

Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : FUMC

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : Intel® 82562V-2 10/100 Network Connection

        Physical Address. . . . . . . . . : 00-1A-A0-9F-2B-84

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.2.4

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.2.1

        DHCP Server . . . . . . . . . . . : 192.168.2.1

        DNS Servers . . . . . . . . . . . : 208.67.222.222

                                            208.67.220.220

        Lease Obtained. . . . . . . . . . : Wednesday, September 11, 2013 9:02:21 AM

        Lease Expires . . . . . . . . . . : Saturday, September 14, 2013 9:02:21 AM

Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    google.com
Address:  87.125.87.99

 

Pinging google.com [87.125.87.99] with 32 bytes of data:

 

Reply from 87.125.87.99: bytes=32 time=55ms TTL=50

Reply from 87.125.87.99: bytes=32 time=55ms TTL=50

 

Ping statistics for 87.125.87.99:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 55ms, Maximum = 55ms, Average = 55ms

Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    yahoo.com
Addresses:  98.138.253.109, 206.190.36.45, 98.139.183.24

 

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

 

Reply from 98.138.253.109: bytes=32 time=49ms TTL=52

Reply from 98.138.253.109: bytes=32 time=54ms TTL=52

 

Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 49ms, Maximum = 54ms, Average = 51ms

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1a a0 9f 2b 84 ...... Intel® 82562V-2 10/100 Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1     192.168.2.4   20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      192.168.2.0    255.255.255.0      192.168.2.4     192.168.2.4   20
      192.168.2.4  255.255.255.255        127.0.0.1       127.0.0.1   20
    192.168.2.255  255.255.255.255      192.168.2.4     192.168.2.4   20
        224.0.0.0        240.0.0.0      192.168.2.4     192.168.2.4   20
  255.255.255.255  255.255.255.255      192.168.2.4     192.168.2.4   1
Default Gateway:       192.168.2.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/05/2013 10:47:49 AM) (Source: Microsoft Office 11) (User: )
Description: Faulting application excel.exe, version 11.0.8347.0, stamp 4fbfd97b, faulting module excel.exe, version 11.0.8347.0, stamp 4fbfd97b, debug? 0, fault address 0x00027975.

Error: (08/19/2013 02:59:04 PM) (Source: Application Error) (User: )
Description: Faulting application , version 0.0.0.0, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [!ws!]

Error: (08/15/2013 11:15:06 AM) (Source: Microsoft Office 11) (User: )
Description: Faulting application winword.exe, version 11.0.8402.0, stamp 5156197e, faulting module winword.exe, version 11.0.8402.0, stamp 5156197e, debug? 0, fault address 0x0026d0b9.

Error: (08/14/2013 01:32:33 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 unspecified, P2 hardeningtelemetry, P3 hardeningtelemetrydisablertp, P4 4.3.215.0, P5 unspecified, P6 unspecified, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (08/13/2013 01:07:23 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 unspecified, P2 hardeningtelemetry, P3 hardeningtelemetrydisablertp, P4 4.3.215.0, P5 unspecified, P6 unspecified, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (08/10/2013 10:24:54 AM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 4.3.215.0, P3 timeout, P4 1.1.9700.0, P5 fixed, P6 2 _ 2049+, P7 5 _ not boot, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (08/10/2013 10:24:52 AM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 4.3.215.0, P3 timeout, P4 1.1.9700.0, P5 fixed, P6 2 _ 2049+, P7 5 _ not boot, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (08/10/2013 10:24:52 AM) (Source: Application Hang) (User: )
Description: Hanging application TeamViewer.exe, version 8.0.20202.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/10/2013 10:24:52 AM) (Source: Application Hang) (User: )
Description: Hanging application TeamViewer.exe, version 8.0.20202.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/10/2013 10:24:48 AM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile, P4 4.3.215.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P6 unspecified, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

System errors:
=============
Error: (09/11/2013 09:02:15 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.4 for the Network Card with network address 001AA09F2B84 has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (08/13/2013 01:23:57 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\AVAST Software\Avast\asOutExt.dll.
Reference error message: The operation completed successfully.
.

Error: (08/13/2013 01:23:57 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.ATL.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (08/13/2013 01:23:57 PM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC90.ATL could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (08/13/2013 01:23:36 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\AVAST Software\Avast\AvastUI.exe.
Reference error message: The operation completed successfully.
.

Error: (08/13/2013 01:23:36 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.MFC.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (08/13/2013 01:23:36 PM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC90.MFC could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (08/13/2013 08:59:05 AM) (Source: Service Control Manager) (User: )
Description: The 5660 service failed to start due to the following error:
%%2

Error: (08/13/2013 08:58:45 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\AVAST Software\Avast\avastUI.exe.
Reference error message: The operation completed successfully.
.

Error: (08/13/2013 08:58:45 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.MFC.
Reference error message: The referenced assembly is not installed on your system.
.

Microsoft Office Sessions:
=========================
Error: (09/05/2013 10:47:49 AM) (Source: Microsoft Office 11)(User: )
Description: excel.exe11.0.8347.04fbfd97bexcel.exe11.0.8347.04fbfd97b000027975

Error: (08/19/2013 02:59:04 PM) (Source: Application Error)(User: )
Description: 0.0.0.0unknown0.0.0.000000000

Error: (08/15/2013 11:15:06 AM) (Source: Microsoft Office 11)(User: )
Description: winword.exe11.0.8402.05156197ewinword.exe11.0.8402.05156197e00026d0b9

Error: (08/14/2013 01:32:33 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetryunspecifiedhardeningtelemetryhardeningtelemetrydisablertp4.3.215.0unspecifiedunspecifiedunspecifiedNILNILNIL

Error: (08/13/2013 01:07:23 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetryunspecifiedhardeningtelemetryhardeningtelemetrydisablertp4.3.215.0unspecifiedunspecifiedunspecifiedNILNILNIL

Error: (08/10/2013 10:24:54 AM) (Source: MPSampleSubmission)(User: )
Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)4.3.215.0timeout1.1.9700.0fixed2 _ 2049+5 _ not bootNILNILNIL

Error: (08/10/2013 10:24:52 AM) (Source: MPSampleSubmission)(User: )
Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)4.3.215.0timeout1.1.9700.0fixed2 _ 2049+5 _ not bootNILNILNIL

Error: (08/10/2013 10:24:52 AM) (Source: Application Hang)(User: )
Description: TeamViewer.exe8.0.20202.0hungapp0.0.0.000000000

Error: (08/10/2013 10:24:52 AM) (Source: Application Hang)(User: )
Description: TeamViewer.exe8.0.20202.0hungapp0.0.0.000000000

Error: (08/10/2013 10:24:48 AM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry2152759308unspecifiedscanfile4.3.215.0microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)unspecifiedunspecifiedNILNILNIL

=========================== Installed Programs ============================

Active Disk
Adobe AIR (Version: 3.7.0.1860)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.168)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
America Online (Choose which version to remove)
AOL Coach Version 1.0(Build:20040229.1 en)
AOL Connectivity Services
AOLIcon (Version: 1.00.0000)
Browser Address Error Redirector (Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant D850 PCI V.92 Modem
Dell Automated PC TuneUp (Version: 1.0.3085)
Dell DataSafe Online (Version: 1.0.15)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Support Center (Version: 2.0.07282)
Dell System Restore (Version: 2.00.0000)
Digital Line Detect (Version: 1.10)
Documentation & Support Launcher (Version: 1.00.0000)
Dropbox (Version: 2.2.13)
EarthLink Setup Files (Version: 2005.2.178.0.2.2)
Font Installer
Games, Music, & Photos Launcher (Version: 1.00.0000)
Google Chrome (Version: 29.0.1547.66)
Google Desktop (Version: -)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4413.1752)
Google Update Helper (Version: 1.3.21.153)
Grammarly (Version: 5.0.1.1)
HiJackThis (Version: 1.0.0)
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections Drivers
Internet Service Offers Launcher (Version: 1.00.0000)
IomegaWare 4.0.3
J2SE Runtime Environment 5.0 Update 6 (Version: 1.5.0.60)
Learn2 Player (Uninstall Only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Works (Version: 08.05.0818)
Modem Diagnostic Tool (Version: 1.0.17.2)
Mouse Suite for Desktop Computers (Version: 2.50.025)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB954459) (Version: 6.20.1099.0)
NetWaiting (Version: 2.5.12)
NetZeroInstallers (Version: 1.0.0)
PhotoFiltre
PowerDVD (Version: 7.0)
QualxServ Service Agreement (Version: 1.11.0000)
QuickTime
QuickVerse 7.0
Realtek High Definition Audio Driver
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Drag-to-Disc (Version: 9.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
SearchAssist
Shared Add-in Support Update for Microsoft .NET Framework 2.0 (KB908002) (Version: 1.0.0)
Sonic Activation Module (Version: 1.0)
TeamViewer 8 (Version: 8.0.20202)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Conexant (winachsf) Modem  (07/03/2007 7.67.00.50) (Version: 07/03/2007 7.67.00.50)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (09/02/2008 5.10.0.5697) (Version: 09/02/2008 5.10.0.5697)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 3061.1 MB
Available physical RAM: 2390.81 MB
Total Pagefile: 4946.2 MB
Available Pagefile: 4416.44 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.76 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:295.03 GB) (Free:275.16 GB) NTFS

========================= Users: ========================================

User accounts for \\FUMC

Administrator            GARNETT FUMC             Guest                   
HelpAssistant            SUPPORT_388945a0        

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini060713-01.dmp
C:\WINDOWS\Minidump\Mini071813-01.dmp
C:\WINDOWS\Minidump\Mini090513-01.dmp
C:\WINDOWS\Minidump\Mini120512-01.dmp
========================= Restore Points ==================================

13-08-2013 14:51:43 System Checkpoint
13-08-2013 18:23:55 avast! Free Antivirus Setup
13-08-2013 18:42:52 Software Distribution Service 3.0
14-08-2013 18:57:31 Software Distribution Service 3.0
15-08-2013 19:49:17 Software Distribution Service 3.0
19-08-2013 14:07:52 Software Distribution Service 3.0
20-08-2013 17:13:03 System Checkpoint
21-08-2013 14:09:52 Software Distribution Service 3.0
22-08-2013 16:58:34 System Checkpoint
23-08-2013 14:04:52 Software Distribution Service 3.0
26-08-2013 14:10:02 Software Distribution Service 3.0
27-08-2013 15:13:07 System Checkpoint
28-08-2013 14:11:36 Software Distribution Service 3.0
28-08-2013 19:51:40 Software Distribution Service 3.0
29-08-2013 14:13:06 Software Distribution Service 3.0
30-08-2013 14:35:33 System Checkpoint
03-09-2013 14:08:29 Software Distribution Service 3.0
04-09-2013 14:18:08 Software Distribution Service 3.0
05-09-2013 17:03:10 System Checkpoint
06-09-2013 14:19:34 Software Distribution Service 3.0
09-09-2013 14:13:55 Software Distribution Service 3.0
10-09-2013 17:11:09 System Checkpoint
11-09-2013 14:13:23 Software Distribution Service 3.0

**** End of log ****

 



BC AdBot (Login to Remove)

 


#2 SpywareDoc

SpywareDoc

  • Members
  • 676 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Maryland, USA
  • Local time:08:01 PM

Posted 11 September 2013 - 07:09 PM

You might try changing your DNS servers to:

 

8.8.8.8

8.8.4.4

 

(Google's free DNS servers).



#3 chrisd87

chrisd87

  • Members
  • 811 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NC
  • Local time:07:01 PM

Posted 12 September 2013 - 08:40 AM

Are you receiving any errors when trying to access those 2 websites?

Are those 2 websites the only 2 websites giving you a problem?

What were you doing when this happened?

 

Give us some more detail, so we'll be able to assist you better please.


"Like car accidents, most hardware problems are due to driver ɹoɹɹǝ."

 


#4 thundergod76

thundergod76
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 PM

Posted 13 September 2013 - 12:40 PM

SpywareDoc,

Changing the DNS Server addresses to the suggested ones did not help the issue.

 

chrisd87,

This is a machine at my local church. The secretary asked me to look at it because this issue started. She waited for a while before saying anything. She does not recall what she was doing when the issue came about.
These seem to be the only two that it happens with. I can get to google.com with an IP address but not the named address.

When I try to go to the address, if I start at yahoo.com, it sits at "Waiting for google.com" for a bit and then bounces back to yahoo. If I go to google via IP addy and the try google.com, it goes to waiting for site and then it says "Internet Explorer can not display the webpage".

 

Any help you can offer will be very appreciated!

Thanks,

Steve



#5 SpywareDoc

SpywareDoc

  • Members
  • 676 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Maryland, USA
  • Local time:08:01 PM

Posted 13 September 2013 - 12:46 PM

 I can get to google.com with an IP address but not the named address.

 

Which points to a DNS server issue. Or, it could possibly be malware, an entry in the HOSTS file, ...



#6 thundergod76

thundergod76
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 PM

Posted 13 September 2013 - 01:13 PM

Unfortunately, I ran through the Malware forums and nadaq referred me here as the scans came back clean. Subject is linked below.

http://www.bleepingcomputer.com/forums/t/502919/ie-will-not-go-to-search-engines-unless-ip-address-is-keyed-please-help/#entry3147331

 

I'm at a loss and not sure where I need to go from here.



#7 chrisd87

chrisd87

  • Members
  • 811 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NC
  • Local time:07:01 PM

Posted 13 September 2013 - 01:48 PM

Have you tried to flush the dns cache via command prompt?

 

1. Hold Win Key and Press r to open run box

 

2. Type cmd to open command prompt

 

3. Type ipconfig /flushdns *Hit enter*

 

4. Type ipconfig /registerdns *Hit enter*

 

5. Type net stop "dns client" *Hit enter*

 

6. Type net start "dns client" *Hit enter*

 

7. See what happens after you do this. If this doesn't fix it, we can try to use the Windows AIO program.


Edited by chrisd87, 13 September 2013 - 01:52 PM.

"Like car accidents, most hardware problems are due to driver ɹoɹɹǝ."

 


#8 thundergod76

thundergod76
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 PM

Posted 23 September 2013 - 12:40 PM

 I apologize for the delay in responding!

 

I ran these steps and still have the same issue. 



#9 chrisd87

chrisd87

  • Members
  • 811 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NC
  • Local time:07:01 PM

Posted 23 September 2013 - 01:58 PM

Thanks for your reply,

 

Lets take a look at your hosts file.

 

Please go to C:\Windows\System32\drivers\etc\ and you'll see the hosts file. You can open this file with notepad. Please open the hosts file and let's see what entries you have present.


"Like car accidents, most hardware problems are due to driver ɹoɹɹǝ."

 


#10 coxchris

coxchris

  • Members
  • 1,151 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Atwater
  • Local time:05:01 PM

Posted 23 September 2013 - 02:04 PM

Your pinging fine to what your report says That leds to a host file compromised

 

In junction with chrisd87 compare this code block to the one you have
 

 

 

# Copyright © 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
# 127.0.0.1 localhost
# ::1 localhost

 

 

 

 

In the quote is the original working host file.

 

After your post your host file for chrisd87. I would like to reset your host file by using http://support.microsoft.com/kb/972034


AA in Computer Networking Technology

BS in Information Technology 

Comptia A+, Project+, L+

Renewable:  N+,S+

CIW Web Design Specialist, JavaScript Specialist,  Database Design Specialist 

LPIC-1, SUSE 


#11 thundergod76

thundergod76
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:01 PM

Posted 24 September 2013 - 12:34 PM

There is one entry as follows. There are no #'s. This is a copy of the contents:

 

127.0.0.1            localhost






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users