Hotmail/Microsoft.com Hijacker #1

Hello,
I have followed all the procedures outlined in the READ AND RUN me first post and wish to submit the log files for additional help.

I believe i have a hijacker on this machine that is preventing anyone from going to Hotmail.com, MSN.com or Miscrsoft.com on this machine. When i attempt to goto one of these web sights the browser takes a long amount of time trying to connect before finally giving a message the web sight is not available.

 

Re: Hotmail/Microsoft.com Hijacker #2

Additional files.

 

Thanks for the welcome and the help, i normally can work through these problems on my own but this one is kicking me arse!

This computer im working on is the one the Crew use to check there email so there is no telling who or what has been put on this machine. I work on an offshore drilling rig currently assigned in Australia.

Ok CounterSpy found nothing, sorry i forgot that one but it didn't generate anything except a "no problems found message".

The 2 bat files you mentioned in your second post i have removed from this machine but i saved them in case you might want me to send them to you in case you want to try and figure out what they are. I will not post them here as they could be something nasty but if you want them i have them in a zip file and can email them to you if your curious and want to have a look.

I attempted to go to Hotmail using Firefox from my memory stick or U3 drive and that was unsuccessful. Not that i thought it would make any difference i actually installed Firefox on this machine just to see ,myself personally i do not use IE i use Firefox and SeaMonkey. Installing Firefox on this machine did not make a difference either.

Just to let you know i have already made sure the windows firewall setting where put back in default and i have also attempted to access Hotmail, Microsoft and msn with the windows firewall turned off and nada.

We have multiple machines on this network and this is the only machine i am having this problem with.

I try msn.com it times out and says Connection was reset (Firefox)

I try hotmail.com it times out same message (firefox)

I try Microsoft.com it times out same message again (firefox)

Hopefully something can be figured out before i admit defeat and do the dreaded format and reinstall rolleyes

 

I will go ahead and attach those bat files anyway but i figured out what they where, my company uses an online IT support group called the Techcess Group, anyway they are scripts they ran on this machine to try and sort this problem and from what i found out they threw in the towel a couple of weeks ago just like they do with most difficult issues and leave it up to us Electronics's Techs to sort.

Techcess attempts to manage out IT remotely and they do fine for simple task but anything complicated my kids do a better Job.

One of the files was a script to run Spybot and the other was a script to delete the temporary internet folder.

I did exactly what you instructed and am still having the same problem with this machine.

Something else i just noticed thats real strange, on every user login the Window Update shortcut is missing and the only place i can find a shortcut now to windows update is through the Help and Support Center window.

Its even missing those shortcuts when i log in as "Administrator" which is also very strange because the no one except the ET's and IT's have access to this login.

And no it will not access windows update either, basically anything related to Microsoft as far as the web is concerned is inaccessible.

What next and again thanks for all the help.