WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


The Connection was interrupted-Message when attempting to open gmail

2 posters

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyThe Connection was interrupted-Message when attempting to open gmail12th December 2010, 11:02 pm

more_horiz
Unable to open Gmail or other websites with I.E. or Firfox. I get redirected and get the connection was interrupted message. If I attempt to download any software I just get redirected. Had a HDD malware last week and used malwarebytes to remove. Any help will be appreciated.

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail12th December 2010, 11:32 pm

more_horiz
Hello.

Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail12th December 2010, 11:41 pm

more_horiz
OTL logfile created on: 12/12/2010 7:35:51 PM - Run 2
OTL by OldTimer - Version 3.2.17.3 Folder = D:\
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,007.00 Mb Total Physical Memory | 626.00 Mb Available Physical Memory | 62.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 744 1488 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27.95 Gb Total Space | 3.10 Gb Free Space | 11.09% Space Free | Partition Type: NTFS
Drive D: | 3.81 Gb Total Space | 3.80 Gb Free Space | 99.74% Space Free | Partition Type: FAT32

Computer Name: ETZ | User Name: Eric Etzler | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/12/12 17:31:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
PRC - [2010/03/22 08:29:19 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/01/07 20:59:56 | 000,382,384 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jucheck.exe
PRC - [2008/12/18 09:47:08 | 009,158,656 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
PRC - [2007/08/04 14:48:31 | 001,836,544 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
PRC - [2007/07/31 19:37:34 | 000,815,104 | ---- | M] (brother) -- C:\Program Files\Brownie\BrStsWnd.exe
PRC - [2007/07/23 17:45:48 | 000,090,112 | ---- | M] (brother) -- C:\Program Files\Brownie\brpjp04a.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/01/19 13:22:20 | 000,049,152 | ---- | M] (Pinnacle Systems) -- c:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
PRC - [2004/09/03 04:58:48 | 000,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Ahead\ODD Toolkit\dvdtray.exe
PRC - [2003/05/26 16:00:00 | 000,099,840 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S4I2G1.EXE
PRC - [2003/04/15 23:01:28 | 000,258,048 | ---- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\00THotkey.exe
PRC - [2003/03/14 14:38:12 | 000,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe
PRC - [2003/03/13 23:44:22 | 000,049,152 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe
PRC - [2003/01/21 21:00:06 | 000,126,976 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TouchED\TouchED.exe
PRC - [2002/09/20 19:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
PRC - [2002/03/19 15:15:46 | 000,036,864 | ---- | M] (D-Link) -- C:\Program Files\WZCBDL Service\WZCBDLS.exe


========== Modules (SafeList) ==========

MOD - [2010/12/12 17:31:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail12th December 2010, 11:47 pm

more_horiz
OTL logfile created on: 12/12/2010 7:35:51 PM - Run 2
OTL by OldTimer - Version 3.2.17.3 Folder = D:\
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,007.00 Mb Total Physical Memory | 626.00 Mb Available Physical Memory | 62.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 744 1488 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27.95 Gb Total Space | 3.10 Gb Free Space | 11.09% Space Free | Partition Type: NTFS
Drive D: | 3.81 Gb Total Space | 3.80 Gb Free Space | 99.74% Space Free | Partition Type: FAT32

Computer Name: ETZ | User Name: Eric Etzler | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/12/12 17:31:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
PRC - [2010/03/22 08:29:19 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/01/07 20:59:56 | 000,382,384 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jucheck.exe
PRC - [2008/12/18 09:47:08 | 009,158,656 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
PRC - [2007/08/04 14:48:31 | 001,836,544 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
PRC - [2007/07/31 19:37:34 | 000,815,104 | ---- | M] (brother) -- C:\Program Files\Brownie\BrStsWnd.exe
PRC - [2007/07/23 17:45:48 | 000,090,112 | ---- | M] (brother) -- C:\Program Files\Brownie\brpjp04a.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/01/19 13:22:20 | 000,049,152 | ---- | M] (Pinnacle Systems) -- c:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
PRC - [2004/09/03 04:58:48 | 000,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Ahead\ODD Toolkit\dvdtray.exe
PRC - [2003/05/26 16:00:00 | 000,099,840 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S4I2G1.EXE
PRC - [2003/04/15 23:01:28 | 000,258,048 | ---- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\00THotkey.exe
PRC - [2003/03/14 14:38:12 | 000,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe
PRC - [2003/03/13 23:44:22 | 000,049,152 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe
PRC - [2003/01/21 21:00:06 | 000,126,976 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TouchED\TouchED.exe
PRC - [2002/09/20 19:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
PRC - [2002/03/19 15:15:46 | 000,036,864 | ---- | M] (D-Link) -- C:\Program Files\WZCBDL Service\WZCBDLS.exe


========== Modules (SafeList) ==========

MOD - [2010/12/12 17:31:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2008/12/18 09:47:08 | 009,158,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe -- (MSSQL$PINNACLESYS)
SRV - [2008/06/26 09:25:00 | 000,031,592 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe -- (getPlus(R) Helper) getPlus(R)
SRV - [2007/08/04 14:48:31 | 001,836,544 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager)
SRV - [2006/01/19 13:22:20 | 000,049,152 | ---- | M] (Pinnacle Systems) [Auto | Running] -- c:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe -- (PinnacleSys.MediaServer)
SRV - [2005/05/04 01:42:56 | 000,323,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE -- (SQLAgent$PINNACLESYS)
SRV - [2003/03/13 23:44:22 | 000,049,152 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)
SRV - [2002/09/20 19:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))
SRV - [2002/03/19 15:15:46 | 000,036,864 | ---- | M] (D-Link) [Auto | Running] -- C:\Program Files\WZCBDL Service\WZCBDLS.exe -- (WZCBDLService)


========== Driver Services (SafeList) ==========

DRV - [2005/11/21 01:48:20 | 000,016,512 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2005/06/02 23:28:38 | 000,171,008 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005/02/09 15:59:00 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2004/08/03 22:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2004/03/10 18:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
DRV - [2003/05/23 05:00:36 | 000,158,976 | R--- | M] (D-Link. All Rights Reserved.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETR33X.sys -- (NETR33X) D-Link Air Wireless Adapter(RTL)
DRV - [2003/04/23 13:10:12 | 000,033,335 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wa301a.sys -- ({E2B953A6-195A-44F9-9BA3-3D5F4E32BB55})
DRV - [2003/01/31 20:45:56 | 000,090,416 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2002/12/20 17:07:34 | 001,164,576 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002/12/13 03:41:48 | 000,099,577 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2002/09/27 21:21:26 | 000,022,912 | ---- | M] (D-Link Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\NIOC.sys -- (NIOC)
DRV - [2002/08/28 18:59:26 | 000,154,624 | ---- | M] (Lucent Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wlluc48.sys -- (wlluc48)
DRV - [2002/06/28 19:29:12 | 000,156,672 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wlags48b.sys -- (wlags48b)
DRV - [2002/06/21 02:53:28 | 000,005,300 | ---- | M] (Toshiba Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\TVALD.SYS -- (TVALD)
DRV - [2002/01/24 17:43:40 | 000,006,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Tbiosdrv.sys -- (TBiosDrv)
DRV - [2001/09/13 22:53:02 | 000,005,936 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\TVALG.SYS -- (TVALG)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q="
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.2
FF - prefs.js..keyword.URL: "http://search.avg.com/route/?d=4cff739e&v=6.010.023.001&i=27&tp=ab&iy=b&ychte=us&lng=en-US&q="
FF - prefs.js..network.proxy.type: 1


FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/22 08:30:44 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/12 22:04:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/12 21:43:26 | 000,000,000 | ---D | M]

[2008/12/13 16:01:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Extensions
[2010/12/12 14:54:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions
[2010/01/05 12:58:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/11/12 20:09:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2008/11/12 20:09:53 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010/03/20 05:10:28 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2008/07/22 20:54:55 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}
[2009/05/01 17:19:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\moveplayer@movenetworks(2).com
[2010/03/20 05:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Eric Etzler\Application Data\Mozilla\Firefox\Profiles\c012y9ws.default\extensions\staged-xpis
[2010/12/12 22:04:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2006/05/05 07:06:18 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2007/03/09 19:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll

O1 HOSTS File: ([2010/12/09 10:26:01 | 000,001,602 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 89.149.230.144 www.google.com
O1 - Hosts: 89.149.230.144 www.google.de
O1 - Hosts: 89.149.230.144 www.google.fr
O1 - Hosts: 89.149.230.144 www.google.co.uk
O1 - Hosts: 89.149.230.144 www.google.com.br
O1 - Hosts: 89.149.230.144 www.google.it
O1 - Hosts: 89.149.230.144 www.google.es
O1 - Hosts: 89.149.230.144 www.google.co.jp
O1 - Hosts: 89.149.230.144 www.google.com.mx
O1 - Hosts: 89.149.230.144 www.google.ca
O1 - Hosts: 89.149.230.144 www.google.com.au
O1 - Hosts: 89.149.230.144 www.google.nl
O1 - Hosts: 89.149.230.144 www.google.co.za
O1 - Hosts: 89.149.230.144 www.google.be
O1 - Hosts: 89.149.230.144 www.google.gr
O1 - Hosts: 89.149.230.144 www.google.at
O1 - Hosts: 89.149.230.144 www.google.se
O1 - Hosts: 89.149.230.144 www.google.ch
O1 - Hosts: 89.149.230.144 www.google.pt
O1 - Hosts: 89.149.230.144 www.google.dk
O1 - Hosts: 89.149.230.144 www.google.fi
O1 - Hosts: 89.149.230.144 www.google.ie
O1 - Hosts: 89.149.230.144 www.google.no
O1 - Hosts: 89.149.230.144 search.yahoo.com
O1 - Hosts: 6 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C7768536-96F8-4001-B1A2-90EE21279187} - No CLSID value found.
O4 - HKLM..\Run: [00THotkey] C:\WINDOWS\system32\00THotkey.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [Auto EPSON Stylus CX5400 on YOUR-8136243806] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [BrStsWnd] C:\Program Files\Brownie\BrstsWnd.exe (brother)
O4 - HKLM..\Run: [C:\WINDOWS\system32\kdlco.exe] C:\WINDOWS\System32\kdlco.exe File not found
O4 - HKLM..\Run: [DVDTray] C:\Program Files\Ahead\ODD Toolkit\dvdtray.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [EPSON Stylus CX5400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [TouchED] C:\Program Files\Toshiba\TouchED\TouchED.exe (TOSHIBA Corporation)
O4 - HKCU..\Run: [cdloader] C:\Documents and Settings\Eric Etzler\Application Data\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKCU..\Run: [FreeCall] C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe File not found
O4 - HKCU..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe (Google)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe (Matsushita Electric Industrial Co., Ltd.)
O4 - Startup: C:\Documents and Settings\Eric Etzler\Start Menu\Programs\Startup\PowerReg Scheduler.exe ()
O4 - Startup: C:\Documents and Settings\Eric Etzler\Start Menu\Programs\Startup\PowerReg SchedulerV2.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O8 - Extra context menu item: &ieSpell Options - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Check &Spelling - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files\ieSpell\Merriam Webster.HTM ()
O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files\ieSpell\wikipedia.HTM ()
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} https://www.windowsonecare.com/install/cli/1.1.1067.14/WinSSWebAgent.CAB (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1133421398774 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1133433328951 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.0.1 192.168.2.1
O18 - Protocol\Filter\text/html - No CLSID value found
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - Explorer.exe ()
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Eric Etzler\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Eric Etzler\Local Settings\Application Data\Microsoft\Wallpaper2.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/01/04 23:42:06 | 000,000,095 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{e96fb1d0-303d-11dd-9a8b-00055d98195b}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e96fb1d0-303d-11dd-9a8b-00055d98195b}\Shell\AutoRun\command - "" = E:\autorun.exe -- File not found
O33 - MountPoints2\{e96fb1d0-303d-11dd-9a8b-00055d98195b}\Shell\phone\command - "" = E:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/12/13 09:46:10 | 000,891,248 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\Eric Etzler\Desktop\avg_free_stb_all_9_40_cnet.exe
[2010/12/13 07:27:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Eric Etzler\Application Data\AVG8
[2010/12/12 22:27:08 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/12 22:27:01 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/12 21:47:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Temp
[2010/12/12 21:11:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iEdLf02900
[2010/12/12 10:47:53 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/12/08 08:05:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Eric Etzler\Local Settings\Application Data\AVG Security Toolbar
[2010/12/08 08:02:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/12/08 08:01:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2010/12/08 07:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2010/12/08 07:59:59 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2010/12/07 22:10:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2010/12/07 16:38:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Eric Etzler\Application Data\Malwarebytes
[2010/12/07 16:38:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/12/07 16:38:02 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/11/25 21:54:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Eric Etzler\Desktop\(2).temp
[2010/11/24 17:14:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Eric Etzler\Desktop\.temp
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/12/13 09:53:03 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/12 22:27:08 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/12 22:24:49 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-527371578-748045836-1027142360-500.job
[2010/12/12 22:04:44 | 000,001,161 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\2155960424.dat
[2010/12/12 21:56:39 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2010/12/12 19:34:49 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-527371578-748045836-1027142360-1005.job
[2010/12/12 19:34:48 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-527371578-748045836-1027142360-1005.job
[2010/12/12 18:22:03 | 000,001,161 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\2295642277.dat
[2010/12/12 15:50:14 | 000,492,688 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/12 15:50:14 | 000,093,132 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/12 15:47:11 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/12/12 15:46:39 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Brownie.ini
[2010/12/12 14:44:51 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/12/12 14:44:49 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-527371578-748045836-1027142360-500.job
[2010/12/12 14:44:39 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/12 14:44:38 | 1055,772,672 | -HS- | M] () -- C:\hiberfil.sys
[2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/11/29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/11/22 18:30:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/11/18 20:08:22 | 000,000,360 | ---- | M] () -- C:\Documents and Settings\Eric Etzler\My Documents\spider.sav
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/12/12 22:27:08 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/12 22:24:43 | 1055,772,672 | -HS- | C] () -- C:\hiberfil.sys
[2010/12/12 22:20:41 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-527371578-748045836-1027142360-500.job
[2010/12/12 22:20:41 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-527371578-748045836-1027142360-500.job
[2010/12/12 18:22:03 | 000,001,161 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\2295642277.dat
[2010/12/07 16:17:33 | 000,001,161 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\2155960424.dat
[2010/12/01 20:17:54 | 000,000,290 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-527371578-748045836-1027142360-1005.job
[2008/06/06 17:40:53 | 000,000,410 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2008/06/06 17:40:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\brmx2001.ini
[2008/06/06 17:40:15 | 000,000,145 | ---- | C] () -- C:\WINDOWS\BRVIDEO.INI
[2008/06/06 17:39:46 | 000,000,114 | ---- | C] () -- C:\WINDOWS\System32\brlmw03a.ini
[2008/06/06 17:39:45 | 000,009,853 | ---- | C] () -- C:\WINDOWS\HL-2140.INI
[2008/06/06 17:39:14 | 000,000,278 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2008/05/18 08:54:54 | 000,000,285 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2008/04/27 09:16:25 | 003,049,984 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008/04/27 09:16:25 | 000,404,480 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2008/04/27 09:16:25 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2008/04/27 09:16:25 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2008/03/18 17:34:51 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2008/02/21 16:00:31 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2007/03/31 21:35:55 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\pdfmona.dll
[2007/03/31 21:35:55 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll
[2007/03/31 21:14:46 | 000,000,162 | ---- | C] () -- C:\WINDOWS\EPSON Stylus CX5400.ini
[2006/12/04 15:51:14 | 000,194,248 | ---- | C] () -- C:\WINDOWS\System32\LTRFD13n.DLL
[2006/12/04 15:45:39 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\Eric Etzler\Local Settings\Application Data\fusioncache.dat
[2006/12/04 15:13:43 | 000,001,208 | ---- | C] () -- C:\WINDOWS\VFO.INI
[2006/12/04 15:13:41 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\macd32.dll
[2006/12/04 15:13:41 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2006/12/04 15:13:41 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\mamc32.dll
[2006/12/04 15:13:41 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\masd32.dll
[2006/12/04 15:13:41 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2006/11/19 09:55:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2006/10/10 22:30:07 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2006/07/29 21:14:22 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2006/07/14 16:18:40 | 000,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/05/05 07:01:51 | 000,000,084 | ---- | C] () -- C:\WINDOWS\gbsaver.ini
[2006/01/08 19:17:21 | 000,000,247 | ---- | C] () -- C:\WINDOWS\qwimp.ini
[2005/11/29 12:27:01 | 000,000,017 | ---- | C] () -- C:\WINDOWS\JeppECData.ini
[2005/11/29 12:26:36 | 000,000,009 | ---- | C] () -- C:\WINDOWS\JeppView3.ini
[2005/11/29 12:22:40 | 000,000,052 | ---- | C] () -- C:\WINDOWS\Jeppesen.ini
[2005/09/13 22:03:57 | 000,112,128 | ---- | C] () -- C:\Documents and Settings\Eric Etzler\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/08/23 00:07:41 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
[2005/08/09 15:36:55 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2005/07/18 21:47:53 | 000,000,024 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2005/07/18 21:47:40 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2004/03/18 11:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[2003/08/12 13:49:01 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/08/11 14:06:10 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_setup.ini
[2003/08/11 14:03:52 | 000,000,067 | ---- | C] () -- C:\WINDOWS\swupdate.ini
[2003/08/11 14:00:12 | 000,000,589 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2003/08/11 13:59:44 | 000,001,130 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2003/08/11 13:53:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2003/08/11 13:47:55 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\getnode.dll
[2003/08/11 13:26:23 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2003/08/11 13:22:12 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2003/08/11 13:22:12 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2003/08/11 13:22:12 | 000,009,780 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2003/08/11 13:22:12 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2003/08/11 13:08:22 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/11 13:04:40 | 000,006,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Tbiosdrv.sys
[2003/08/11 12:28:39 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/08/11 12:19:25 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2003/08/11 11:57:48 | 000,000,382 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/11 05:14:43 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2002/06/09 16:07:30 | 000,053,315 | ---- | C] () -- C:\WINDOWS\System32\DevCtrl.dll
[2002/03/13 18:46:46 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\zlib.dll
[1999/04/24 10:57:16 | 000,018,854 | ---- | C] () -- C:\WINDOWS\ntctrm.sys

< End of report >

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail12th December 2010, 11:50 pm

more_horiz
Hope these are what you want. Could not find "Extras.txt"

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail13th December 2010, 12:31 am

more_horiz
Hello.

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C7768536-96F8-4001-B1A2-90EE21279187} - No CLSID value found.
    O4 - HKLM..\Run: [C:\WINDOWS\system32\kdlco.exe] C:\WINDOWS\System32\kdlco.exe File not found
    O4 - Startup: C:\Documents and Settings\Eric Etzler\Start Menu\Programs\Startup\PowerReg Scheduler.exe ()
    O4 - Startup: C:\Documents and Settings\Eric Etzler\Start Menu\Programs\Startup\PowerReg SchedulerV2.exe ()
    [2010/12/12 18:22:03 | 000,001,161 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\2295642277.dat
    [2010/12/07 16:17:33 | 000,001,161 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\2155960424.dat

    :commands
    [resethosts]
    [emptytemp]
    [reboot]


  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail13th December 2010, 12:52 am

more_horiz
All processes killed
Error: Unable to interpret <[emptytemp]> in the current context!
Error: Unable to interpret <[reboot]> in the current context!

OTL by OldTimer - Version 3.2.17.3 log created on 12122010_204529

Files\Folders moved on Reboot...
C:\Documents and Settings\Eric Etzler\Local Settings\Temporary Internet Files\Content.IE5\CAYSCVF2\google_com[1].htm moved successfully.
C:\Documents and Settings\Eric Etzler\Local Settings\Temporary Internet Files\Content.IE5\AM402823\acCAHXPLCO.htm moved successfully.
C:\Documents and Settings\Eric Etzler\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully.

Registry entries deleted on Reboot...

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail13th December 2010, 1:06 am

more_horiz
I think this fixed it unless you see something else. Thanks

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail13th December 2010, 1:48 am

more_horiz
Please download and run this tool.

Download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.

Post the contents of the MBAM Log.

descriptionThe Connection was interrupted-Message when attempting to open gmail EmptyRe: The Connection was interrupted-Message when attempting to open gmail

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum