Solved windows update redirects to msn.com

kirktheturk · 2008/11/16

[Resolved] windows update redirects to msn.com

also receive this error, this unit has clean reinstall...
'The domain "download.microsoft.com" is invalid.'‏

stated you ned a log:

Logfile of random's system information tool 1.04 (written by random/random)
Run by Jason at 2008-11-16 11:01:22
Microsoft Windows XP Professional Service Pack 2
System drive C: has 36 GB (95%) free of 38 GB
Total RAM: 254 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:01:25 AM, on 11/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Jason\Local Settings\Temporary Internet Files\Content.IE5\OQZEFAZA\RSIT[1].exe
C:\Program Files\trend micro\Jason.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

--
End of file - 1644 bytes

======Registry dump======

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS "=C:\Program Files\Messenger\msmsgs.exe [2004-08-04 1667584]
"ctfmon.exe "=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername "=0
"legalnoticecaption "=
"legalnoticetext "=
"shutdownwithoutlogon "=1
"undockwithoutlogon "=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun "=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "

======List of files/folders created in the last 3 months======

2008-11-16 10:59:24 ----D---- C:\Program Files\trend micro
2008-11-16 10:59:23 ----D---- C:\rsit
2008-11-16 05:02:36 ----D---- C:\Documents and Settings\Jason\Application Data\Malwarebytes
2008-11-16 05:02:32 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-11-16 05:02:31 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-11-16 04:38:17 ----D---- C:\Documents and Settings\Jason\Application Data\Macromedia
2008-11-16 04:37:31 ----D---- C:\Documents and Settings\Jason\Application Data\Adobe
2008-11-16 04:32:53 ----D---- C:\WINDOWS\WBEM
2008-11-16 04:32:52 ----D---- C:\WINDOWS\system32\en-US
2008-11-16 04:31:37 ----HDC---- C:\WINDOWS\ie7
2008-11-16 04:31:16 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-11-16 04:31:02 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2008-11-16 04:31:00 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-11-16 04:30:43 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-11-16 04:30:39 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-11-16 04:30:39 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-16 04:30:35 ----N---- C:\WINDOWS\system32\xmllite.dll
2008-11-16 04:07:31 ----D---- C:\WINDOWS\SoftwareDistribution
2008-11-16 04:07:22 ----SD---- C:\WINDOWS\system32\Microsoft
2008-11-16 04:07:22 ----D---- C:\WINDOWS\Prefetch
2008-11-16 03:59:17 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2008-11-16 03:58:35 ----A---- C:\WINDOWS\system32\wuweb.dll
2008-11-16 03:58:35 ----A---- C:\WINDOWS\system32\wups.dll
2008-11-16 03:58:35 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-11-16 03:58:35 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2008-11-16 03:58:34 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2008-11-16 03:58:34 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-11-16 03:58:34 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2008-11-16 03:58:34 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2008-11-16 03:58:21 ----A---- C:\WINDOWS\system32\fltMc.exe
2008-11-16 03:58:21 ----A---- C:\WINDOWS\system32\fltlib.dll
2008-11-16 03:50:07 ----A---- C:\WINDOWS\system32\irclass.dll
2008-11-16 03:50:06 ----A---- C:\WINDOWS\system32\spxcoins.dll
2008-11-16 03:49:33 ----RA---- C:\WINDOWS\SET22.tmp
2008-11-16 03:49:30 ----RA---- C:\WINDOWS\SET16.tmp
2008-11-16 03:49:28 ----RA---- C:\WINDOWS\SET15.tmp
2008-11-16 03:40:45 ----A---- C:\WINDOWS\UPGRADE.TXT
2008-11-16 03:16:58 ----SHD---- C:\WINDOWS\Installer
2008-11-16 03:16:55 ----D---- C:\Documents and Settings\Jason\Application Data\Identities
2008-11-16 03:16:49 ----HD---- C:\Program Files\Uninstall Information
2008-11-16 03:16:42 ----SD---- C:\Documents and Settings\Jason\Application Data\Microsoft
2008-11-16 03:16:42 ----ASH---- C:\Documents and Settings\Jason\Application Data\desktop.ini
2008-11-16 03:15:10 ----SHD---- C:\System Volume Information
2008-11-16 03:15:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-16 03:10:54 ----D---- C:\WINDOWS\system32\xircom
2008-11-16 03:10:54 ----D---- C:\Program Files\xerox
2008-11-16 03:10:54 ----D---- C:\Program Files\microsoft frontpage
2008-11-16 03:10:10 ----A---- C:\WINDOWS\control.ini
2008-11-16 03:10:10 ----A---- C:\AUTOEXEC.BAT
2008-11-16 03:09:59 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-16 03:09:55 ----A---- C:\WINDOWS\system32\mapi32.dll
2008-11-16 03:08:37 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-11-16 03:08:37 ----RD---- C:\WINDOWS\Offline Web Pages
2008-11-16 03:08:28 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2008-11-16 03:08:06 ----D---- C:\WINDOWS\srchasst
2008-11-16 03:07:56 ----D---- C:\WINDOWS\system32\DirectX
2008-11-16 03:07:55 ----D---- C:\WINDOWS\system32\Macromed
2008-11-16 03:07:45 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2008-11-16 03:07:45 ----A---- C:\WINDOWS\system32\qmgr.dll
2008-11-16 03:07:44 ----D---- C:\Program Files\Movie Maker
2008-11-16 03:07:26 ----A---- C:\WINDOWS\system32\safrslv.dll
2008-11-16 03:07:26 ----A---- C:\WINDOWS\system32\safrdm.dll
2008-11-16 03:07:26 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2008-11-16 03:07:26 ----A---- C:\WINDOWS\system32\racpldlg.dll
2008-11-16 03:07:26 ----A---- C:\WINDOWS\system32\atrace.dll
2008-11-16 03:07:22 ----A---- C:\WINDOWS\system32\desktop.ini
2008-11-16 03:07:22 ----A---- C:\WINDOWS\desktop.ini
2008-11-16 03:07:16 ----D---- C:\WINDOWS\system32\Restore
2008-11-16 03:07:16 ----A---- C:\WINDOWS\system32\srsvc.dll
2008-11-16 03:07:16 ----A---- C:\WINDOWS\system32\srrstr.dll
2008-11-16 03:07:16 ----A---- C:\WINDOWS\system32\srclient.dll
2008-11-16 03:07:15 ----D---- C:\Program Files\Windows Media Player
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\msconf.dll
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\mnmdd.dll
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2008-11-16 03:07:14 ----A---- C:\WINDOWS\system32\ils.dll
2008-11-16 03:07:11 ----D---- C:\WINDOWS\PCHEALTH
2008-11-16 03:07:11 ----D---- C:\Program Files\NetMeeting
2008-11-16 03:07:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2008-11-16 03:07:10 ----D---- C:\Program Files\Common Files\Services
2008-11-16 03:07:10 ----A---- C:\WINDOWS\system32\msoeacct.dll
2008-11-16 03:07:10 ----A---- C:\WINDOWS\system32\acctres.dll
2008-11-16 03:07:09 ----A---- C:\WINDOWS\system32\inetres.dll
2008-11-16 03:07:08 ----A---- C:\WINDOWS\system32\inetcomm.dll
2008-11-16 03:07:05 ----SD---- C:\WINDOWS\Tasks
2008-11-16 03:07:05 ----D---- C:\Program Files\Outlook Express
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\mstinit.exe
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\mstask.dll
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\isign32.dll
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\inetcfg.dll
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\icwphbk.dll
2008-11-16 03:07:04 ----A---- C:\WINDOWS\system32\icwdial.dll
2008-11-16 03:07:03 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2008-11-16 03:07:01 ----D---- C:\Program Files\Common Files\MSSoap
2008-11-16 03:06:57 ----D---- C:\Program Files\Common Files\System
2008-11-16 03:06:55 ----D---- C:\Program Files\Internet Explorer
2008-11-16 03:05:58 ----D---- C:\Program Files\ComPlus Applications
2008-11-16 03:05:56 ----A---- C:\WINDOWS\vbaddin.ini
2008-11-16 03:05:56 ----A---- C:\WINDOWS\vb.ini
2008-11-16 03:05:51 ----D---- C:\WINDOWS\Registration
2008-11-16 03:05:43 ----HD---- C:\Program Files\WindowsUpdate
2008-11-16 03:05:43 ----D---- C:\Program Files\Online Services
2008-11-16 03:05:35 ----D---- C:\Program Files\Messenger
2008-11-16 03:05:26 ----D---- C:\Program Files\MSN Gaming Zone
2008-11-16 03:05:26 ----A---- C:\WINDOWS\system32\write.exe
2008-11-16 03:05:15 ----A---- C:\WINDOWS\system32\accwiz.exe
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\sndvol32.exe
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\sndrec32.exe
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\mplay32.exe
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\hypertrm.dll
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\hticons.dll
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\avwav.dll
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\avtapi.dll
2008-11-16 03:05:14 ----A---- C:\WINDOWS\system32\avmeter.dll
2008-11-16 03:05:13 ----D---- C:\Program Files\Windows NT
2008-11-16 03:05:13 ----A---- C:\WINDOWS\system32\winchat.exe
2008-11-16 03:05:12 ----A---- C:\WINDOWS\system32\mspaint.exe
2008-11-16 03:05:07 ----A---- C:\WINDOWS\system32\getuname.dll
2008-11-16 03:05:07 ----A---- C:\WINDOWS\system32\clipbrd.exe
2008-11-16 03:05:06 ----A---- C:\WINDOWS\system32\charmap.exe
2008-11-16 03:05:06 ----A---- C:\WINDOWS\system32\calc.exe
2008-11-16 03:05:05 ----A---- C:\WINDOWS\system32\wuauserv.dll
2008-11-16 03:05:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-11-16 03:05:05 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\reset.exe
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\remotepg.dll
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\rdshost.exe
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\mstscax.dll
2008-11-16 03:05:04 ----A---- C:\WINDOWS\system32\mstsc.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tslabels.ini
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tskill.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\tscon.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\termsrv.dll
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\sessmgr.exe
2008-11-16 03:05:03 ----A---- C:\WINDOWS\system32\rdchost.dll
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\shadow.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\rwinsta.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\regini.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\rdpclip.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\qwinsta.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\qprocess.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\qappsrv.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\msg.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\logoff.exe
2008-11-16 03:05:02 ----A---- C:\WINDOWS\system32\icaapi.dll
2008-11-16 03:05:01 ----D---- C:\WINDOWS\system32\MsDtc
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\xolehlp.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\mtxoci.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\msdtctm.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2008-11-16 03:05:01 ----A---- C:\WINDOWS\system32\cdmodem.dll
2008-11-16 03:05:00 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2008-11-16 03:05:00 ----A---- C:\WINDOWS\system32\msdtclog.dll
2008-11-16 03:05:00 ----A---- C:\WINDOWS\system32\msdtc.exe
2008-11-16 03:05:00 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2008-11-16 03:04:59 ----D---- C:\WINDOWS\system32\Com
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\stclient.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\mtxex.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\mtxdm.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\comrepl.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\comaddin.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\colbact.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\clbcatex.dll
2008-11-16 03:04:59 ----A---- C:\WINDOWS\system32\catsrvps.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\comuid.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\comsvcs.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\comsnap.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\clbcatq.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\catsrvut.dll
2008-11-16 03:04:58 ----A---- C:\WINDOWS\system32\catsrv.dll
2008-11-16 03:04:46 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2008-11-16 03:04:46 ----A---- C:\WINDOWS\system32\servdeps.dll
2008-11-16 03:04:46 ----A---- C:\WINDOWS\system32\mmfutil.dll
2008-11-16 03:04:46 ----A---- C:\WINDOWS\system32\licwmi.dll
2008-11-16 03:04:46 ----A---- C:\WINDOWS\system32\cmprops.dll
2008-11-15 22:42:40 ----D---- C:\WINDOWS\Provisioning
2008-11-15 22:42:40 ----D---- C:\WINDOWS\PeerNet
2008-11-15 22:42:40 ----D---- C:\WINDOWS\ehome
2008-11-15 22:02:59 ----A---- C:\WINDOWS\system32\h323log.txt
2008-11-15 21:58:07 ----A---- C:\WINDOWS\system32\i81xdnt5.dll
2008-11-15 21:57:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2008-11-15 21:56:45 ----A---- C:\WINDOWS\imsins.BAK
2008-11-15 21:56:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-15 21:56:39 ----D---- C:\Program Files\Common Files\ODBC
2008-11-15 21:56:39 ----A---- C:\WINDOWS\ODBCINST.INI
2008-11-15 21:56:36 ----RD---- C:\Program Files
2008-11-15 21:56:36 ----D---- C:\Program Files\Common Files\SpeechEngines
2008-11-15 21:56:36 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-11-15 21:56:36 ----D---- C:\Program Files\Common Files
2008-11-15 21:56:22 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2008-11-15 21:56:22 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2008-11-15 21:56:20 ----A---- C:\WINDOWS\system32\CONFIG.TMP
2008-11-15 21:56:19 ----A---- C:\WINDOWS\system32\storprop.dll
2008-11-15 21:56:11 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2008-11-15 21:56:06 ----RA---- C:\WINDOWS\SET7.tmp
2008-11-15 21:56:03 ----RA---- C:\WINDOWS\SET3.tmp
2008-11-15 21:55:58 ----D---- C:\WINDOWS\system32\CatRoot2
2008-11-15 21:55:58 ----D---- C:\WINDOWS\system32\CatRoot
2008-11-15 21:55:52 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-11-15 21:55:43 ----A---- C:\WINDOWS\setuplog.txt
2008-11-15 21:55:39 ----D---- C:\Documents and Settings
2008-11-15 21:54:29 ----SH---- C:\boot.ini
2008-11-15 21:51:23 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-11-15 21:51:23 ----RD---- C:\WINDOWS\Web
2008-11-15 21:51:23 ----D---- C:\WINDOWS\WinSxS
2008-11-15 21:51:23 ----D---- C:\WINDOWS\twain_32
2008-11-15 21:51:23 ----D---- C:\WINDOWS\Temp
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\wbem
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\usmt
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\Setup
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\oobe
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\npp
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\mui
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\inetsrv
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\IME
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\icsxml
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\ias
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\export
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\3com_dmi
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\3076
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\2052
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1054
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1042
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1041
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1037
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1033
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1031
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1028
2008-11-15 21:51:23 ----D---- C:\WINDOWS\system32\1025
2008-11-15 21:51:23 ----D---- C:\WINDOWS\security
2008-11-15 21:51:23 ----D---- C:\WINDOWS\Resources
2008-11-15 21:51:23 ----D---- C:\WINDOWS\mui
2008-11-15 21:51:23 ----D---- C:\WINDOWS\msapps
2008-11-15 21:51:23 ----D---- C:\WINDOWS\ime
2008-11-15 21:51:23 ----D---- C:\WINDOWS\Driver Cache
2008-11-15 21:51:23 ----D---- C:\WINDOWS\Debug
2008-11-15 21:51:23 ----D---- C:\WINDOWS\Connection Wizard
2008-11-15 21:51:23 ----D---- C:\WINDOWS\AppPatch
2008-11-15 21:51:23 ----D---- C:\WINDOWS\addins
2008-11-15 21:51:22 ----RSD---- C:\WINDOWS\Fonts
2008-11-15 21:51:22 ----HD---- C:\WINDOWS\inf
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\wins
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\spool
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\ShellExt
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\ras
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\drivers
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\dhcp
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32\config
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system32
2008-11-15 21:51:22 ----D---- C:\WINDOWS\system
2008-11-15 21:51:22 ----D---- C:\WINDOWS\repair
2008-11-15 21:51:22 ----D---- C:\WINDOWS\msagent
2008-11-15 21:51:22 ----D---- C:\WINDOWS\Media
2008-11-15 21:51:22 ----D---- C:\WINDOWS\java
2008-11-15 21:51:22 ----D---- C:\WINDOWS\Help
2008-11-15 21:51:22 ----D---- C:\WINDOWS\Cursors
2008-11-15 21:51:22 ----D---- C:\WINDOWS\Config
2008-11-15 21:51:22 ----D---- C:\WINDOWS

======List of files/folders modified in the last 3 months======

2008-11-16 04:00:57 ----A---- C:\WINDOWS\win.ini
2008-11-16 03:50:12 ----A---- C:\WINDOWS\system.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 P3;Intel PentiumIII Processor Driver; C:\WINDOWS\System32\DRIVERS\p3.sys [2004-08-04 42496]
R3 ac97intc;Intel(r) 82801 Audio Driver Install Service (WDM); C:\WINDOWS\system32\drivers\ac97intc.sys [2001-08-17 96256]
R3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-23 9600]
R3 i81x;i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [2004-08-03 161020]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12160]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 iAimFP0;iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [2004-08-03 12415]
S3 iAimFP1;iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [2004-08-03 12127]
S3 iAimFP2;iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [2004-08-03 11775]
S3 iAimFP3;iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [2004-08-03 12063]
S3 iAimFP4;iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [2004-08-03 19455]
S3 iAimFP5;iAimFP5; C:\WINDOWS\system32\DRIVERS\wADV07nt.sys [2004-08-03 11807]
S3 iAimFP6;iAimFP6; C:\WINDOWS\system32\DRIVERS\wADV08nt.sys [2004-08-03 11295]
S3 iAimFP7;iAimFP7; C:\WINDOWS\system32\DRIVERS\wADV09nt.sys [2004-08-03 11871]
S3 iAimTV0;iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [2004-08-03 29311]
S3 iAimTV1;iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [2004-08-03 19551]
S3 iAimTV2;iAimTV2; C:\WINDOWS\System32\DRIVERS\wATV03nt.sys []
S3 iAimTV3;iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [2004-08-03 33599]
S3 iAimTV4;iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [2004-08-03 23615]
S3 iAimTV5;iAimTV5; C:\WINDOWS\system32\DRIVERS\wATV10nt.sys [2004-08-03 25471]
S3 iAimTV6;iAimTV6; C:\WINDOWS\system32\DRIVERS\wATV06nt.sys [2004-08-03 22271]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

All services whitelisted

-----------------EOF-----------------
take a look let me know if you see a glitche, thanks

noahdfear · 2008/11/16

Hi kirk,

Log looks clean. Did MBAM find anything?

kirktheturk · 2008/11/16

no, everything 0
using comcast cable net
dns? set at auto?

kirktheturk · 2008/11/16

Malwarebytes' Anti-Malware 1.30
Database version: 1401
Windows 5.1.2600 Service Pack 2

11/16/2008 5:39:34 AM
mbam-log-2008-11-16 (05-39-34).txt

Scan type: Full Scan (C:\|)
Objects scanned: 45500
Time elapsed: 7 minute(s), 25 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
unit 1

noahdfear · 2008/11/16

I don't see anything that would cause that problem. I'll post to your other topic that you're clean. Maybe someone else will then have some suggestions there.

kirktheturk · 2008/11/16

domain "download.microsoft.com" is invalid this post was unrelated to this one for another pc but also did both these actions? i have two units in house doing same thing
!. new install
2. older system

i cannot access anyting related to microsoft for upgrade or download, anything else ok???

noahdfear · 2008/11/16

Ahh sorry. Didin't realize it was a different PC. Try resetting your router - not just toggle off and on, but use a pencil tip or toothpick to press and hold the reset button located on the back. Hold it for at least 5 seconds.

kirktheturk · 2008/11/16

ok, thanks was considering that
i'll let you know
i believe it maybe comcast.
had similar problem when trying to download mcafee:
http://community.mcafee.com/showthread.php?t=225374 you may want to look at it

kirktheturk · 2008/11/17

i've reset router same situation...?

Arie · 2008/11/18

Bypass the router & connect directly. Here's one with the exact same problem.

kirktheturk · 2008/11/18

Arie, tried reset again.
This time worked, what do they say "it's always the unobvious."
To everyone look at source first and work to pc,
so you don't have a ID.10.T error like me
thanks everyone for your help!!!

noahdfear · 2008/11/18

Glad to hear the issue is resolved.

Log in or Sign up

Solved windows update redirects to msn.com

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

kirktheturk Inactive Thread Starter

Arie Administrator Administrator Staff

kirktheturk Inactive Thread Starter

noahdfear Inactive

Share This Page

Log in or Sign up

Solved windows update redirects to msn.com

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

noahdfear Inactive

kirktheturk Inactive Thread Starter

kirktheturk Inactive Thread Starter

Arie Administrator Administrator Staff

kirktheturk Inactive Thread Starter

noahdfear Inactive

Share This Page

Useful Searches