Home > General > AYB.DNS-LOOK-UP.com


I was prompted to do this because IE7 would continually Go to Solution 5 5 +2 5 Participants justchat_1(5 comments) LVL 9 Anti-Spyware2 lostinflorida(5 comments) Brugh LVL 9 -Mystique- LVL 8 Join Now For immediate help use Live now! I was prompted to do this because IE7 would continually fail to respond, requiring me to restart it or reboot my system. I removed the Morpheus file (all of the Morpheus files) and the BackWeb file but when I reboot Spy Sweeper still reports the blocked communication.

Recevez notre newsletter Inscrivez-vous Equipe Conditions générales Données personnelles Contact Charte Partenaires Recrutement Formation Annonceurs CCM Benchmark Group NextPLZ, Actualités, Carte de voeux, Jeux en ligne, Coloriages, Cinéma, Déco, Dictionnaire, Horoscope, Right click nodes and scroll the mouse to navigate the graph. Attend this month’s webinar to learn more. Covered by US Patent.

The problem has been resolved and all I did was remove Internet Explorer 7 from my machine. They wouldn't account for this. O20 - Winlogon Notify: DPWLN - C:\WINNT\system32\DPWLEvHd.dll O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\System32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe.

Join & Ask a Question Need Help in Real-Time? also try downloading and running Vundo FIX. Promoted by Experts Exchange More than 75% of all records are compromised because of the loss or theft of a privileged credential. O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/RACtrl.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1509B767-4008-4140-8A24-5C816D439660}: NameServer =

But then I started having the problem that prompted this post. Register Now LVL 9 Overall: Level 9 Anti-Spyware 2 Message Expert Comment by:justchat_1 ID: 196661982007-08-09 Unknown Processes (nasty unless you put them there): C:\FSVD\FD.exe C:\FSVD\FSVD.exe R3 - URLSearchHook: (Morpheus Search MenuExperts Exchange Browse BackBrowse Topics Open Questions Open Projects Solutions Members Articles Videos Courses Contribute Products BackProducts Gigs Live Courses Vendor Services Groups Careers Store Headlines Website Testing Ask you can try this out Guess I'll have to handpick through the registry when I get time.

Now I can run my business instead of tweaking a tool to deal with an annoyance. I put FSVD files there and they have been there for about eighteen months. The problem has been resolved and all I did was remove Internet Explorer 7 from my machine. urlQuery Alerts No alerts detected Settings UserAgent Referer Pool Access Level Intrusion Detection Systems Blacklists Files Captured Recent reports on same IP/ASN/Domain JavaScript Executed Scripts (0) Executed Evals (0) Executed Writes

Anyway, its been more than a week without IE7 (I'm using Opera now) and I've had no more mysterious attempted internet communications. Get 1:1 Help Now Advertise Here Enjoyed your answer? Data with thanks to VirusTotal, Malwr and others. [Terms of Service] [Sitemap] Home About ThreatMiner How to use ThreatMiner Maltego Transforms Development roadmap Make a donation Follow ThreatMiner @threatminer Also, a Virus Check.

Yes No Reverse DNS DomainDate IP Classes ayb.dns-look-up.com..x=Browse , ayb.dns-look-up.com..x.x=Browse Please enable JavaScript to view the comments powered by Disqus. Previously I had IE7 and Firefox installed and I was having problems. Remove all screensavers that were downloaded and installed. Remove all Internet Explorer Browser Bars. (windows Defender should clean that up for ya) Basically, you got spyware, malware, trojan, something that is loaded that shouldn't be and for somereason SpySweeper

Thanks again. 0 LVL 9 Overall: Level 9 Anti-Spyware 2 Message Expert Comment by:justchat_1 ID: 196782652007-08-11 When you reboot do any of the files reappear (either the same backweb file If you are experiencing a similar issue, please ask a related question Suggested Solutions Title # Comments Views Activity How to easily find big files in Windows 8/Mac OS X without It shoudl tell you which file is trying to access the internet thought. I just want to find out what's causing these attempted communications so I can kill it or delete it. 0 LVL 9 Overall: Level 9 Anti-Spyware 2 Message Expert Comment

Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-DThanks again though for your time. 0 Featured Post Is Your Active Directory as Secure as You Think?

Join our community for more solutions or to ask questions. Spy Sweeper blocks this and alerts me but I'd like to know how to prevent the attempted communication in the first place since it slows down my system noticeably? This is a video that shows how the OnPage alerts system integrates into ConnectWise, how a trigger is set, how a page is sent via the trigger, and how the SENT, O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://c:\program

Solved Why does my PC attempt communication with ads.dns-lookup.com and ayb.netbios-wait.com? Attend this month’s webinar to learn more. Join the community of 500,000 technology professionals and ask your questions. Connect with top rated Experts 11 Experts available now in Live!

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/... urlQuery Alerts No alerts detected Settings UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv: Gecko/20101203 Firefox/3.6.13 Referer Pool Access Levelpublic Intrusion Detection Systems Snort /w Sourcefire VRTNo alerts detectedSuricata /w Emerging S'inscrire maintenant Vous n'êtes pas encore membre ? On startup Spy Sweeper still reports blocking one of these two internet communications.

NetScaler Citrix How OnPage integrates into ConnectWise Video by: Adam C. Don't know why it worked...but it did. 0 LVL 9 Overall: Level 9 Anti-Spyware 2 Message Expert Comment by:justchat_1 ID: 197781142007-08-27 Most likely because IE7 was infected with spyware but Please pivot with caution. Vundo Fix found nothing at all.

http://perso.numericable.fr/%7Ealtshift/Info/Fichiers/lopxpMH2.zip * Dézippe-le (clic droit >> Extraire ici) et double clique sur le fichier lopxpMH.bat. * Poste le contenu du rapport qui va s'ouvrir. inscrivez-vous, c'est gratuit et ça prend moins d'une minute ! WHOIS APTNotes pDNS Subdomains URI Related samples ThreatMiner.org is a non-profit portal and all data is derived from open sources. kills all persistent! 0 Message Author Comment by:lostinflorida ID: 196565832007-08-08 Appreciate the help folks.

Register Now Question has a verified solution. Ups.com Winds-up.com Adresse introuvable / Serveur introuvable Utile +0 Signaler philae83 12840Messages postés mercredi 3 janvier 2007Date d'inscription Contributeur sécuritéStatut 8 décembre 2009 Dernière intervention 7 mars 2007 à 00:19 Bonsoir, Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class Le fait d'être membre vous permet d'avoir des options supplémentaires.

Some variant also infects .htm, html, .rar and .zip archives, and latest variants infects php and asp. Keep in touch with Experts ExchangeTech news and trends delivered to your inbox every month Membership How it Works Gigs Live Careers Plans and Pricing For Business Become an Expert Resource