Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

google links redirects to wrong place


  • This topic is locked This topic is locked
2 replies to this topic

#1 knewidea

knewidea

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:05:36 PM

Posted 05 July 2009 - 07:57 PM

Hi,
I need help getting rid of something that is redirecting my Google links to the wrong places.
I have copied and pasted the DDS logs below and will also attach them.
Thanks


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-06-26.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 5/8/2009 1:04:28 PM
System Uptime: 7/5/2009 12:23:40 AM (17 hours ago)

Motherboard: Dell Inc. | | 0MG532
Processor: Genuine Intel® CPU T2050 @ 1.60GHz | Microprocessor | 1596/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 51 GiB total, 10.045 GiB free.
D: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP5: 5/8/2009 4:30:25 PM - Installed Windows XP KB923561.
RP6: 5/8/2009 5:35:23 PM - Removed Windows Installer Clean Up
RP7: 5/9/2009 9:43:40 AM - Removed HP Photo and Imaging 1.0 - Scanjet 3500c Series
RP8: 5/10/2009 11:16:12 PM - System Checkpoint
RP9: 5/12/2009 10:11:52 AM - System Checkpoint
RP10: 5/14/2009 10:18:36 PM - System Checkpoint
RP11: 5/15/2009 11:25:42 PM - System Checkpoint
RP12: 5/17/2009 10:17:48 AM - System Checkpoint
RP13: 5/18/2009 3:18:25 PM - System Checkpoint
RP14: 5/19/2009 3:41:38 PM - System Checkpoint
RP15: 5/20/2009 7:14:56 PM - System Checkpoint
RP16: 5/22/2009 12:28:32 PM - System Checkpoint
RP17: 5/24/2009 10:07:19 AM - System Checkpoint
RP18: 5/25/2009 2:35:24 PM - System Checkpoint
RP19: 5/26/2009 3:30:56 PM - System Checkpoint
RP20: 5/26/2009 5:59:25 PM - Installed Windows Media Player 11
RP21: 5/26/2009 6:02:52 PM - Installed Windows XP MSCompPackV1.
RP22: 5/27/2009 6:34:30 PM - System Checkpoint
RP23: 5/29/2009 12:01:43 PM - System Checkpoint
RP24: 5/30/2009 12:53:59 PM - System Checkpoint
RP25: 5/31/2009 1:46:20 PM - System Checkpoint
RP26: 6/2/2009 10:49:01 AM - System Checkpoint
RP27: 6/3/2009 11:22:39 AM - System Checkpoint
RP28: 6/4/2009 11:58:26 AM - System Checkpoint
RP29: 6/5/2009 12:04:26 PM - System Checkpoint
RP30: 6/6/2009 12:32:35 PM - System Checkpoint
RP31: 6/7/2009 1:17:23 PM - System Checkpoint
RP32: 6/8/2009 2:21:02 PM - System Checkpoint
RP33: 6/9/2009 2:32:51 PM - System Checkpoint
RP34: 6/10/2009 2:52:19 PM - System Checkpoint
RP35: 6/11/2009 3:49:41 PM - System Checkpoint
RP36: 6/12/2009 4:58:52 PM - System Checkpoint
RP37: 6/14/2009 9:51:51 AM - System Checkpoint
RP38: 6/15/2009 10:29:39 AM - System Checkpoint
RP39: 6/17/2009 11:25:50 AM - System Checkpoint
RP40: 6/18/2009 12:11:38 PM - System Checkpoint
RP41: 6/19/2009 3:49:54 PM - System Checkpoint
RP42: 6/20/2009 4:27:48 PM - System Checkpoint
RP43: 6/21/2009 4:36:46 PM - System Checkpoint
RP44: 6/22/2009 5:09:18 PM - System Checkpoint
RP45: 6/23/2009 7:05:31 PM - System Checkpoint
RP46: 6/24/2009 9:59:25 AM - Removed Bonjour
RP47: 6/24/2009 4:15:03 PM - Removed Creative WebCam Center
RP48: 6/24/2009 4:15:33 PM - Configured Engine Installer
RP49: 6/25/2009 5:08:57 PM - System Checkpoint
RP50: 6/26/2009 3:11:29 PM - Installed STOPzilla. Available with Windows Installer version 1.2 and later.
RP51: 6/27/2009 9:03:23 AM - Removed Get Yahoo! Messenger
RP52: 6/28/2009 10:38:46 AM - System Checkpoint
RP53: 6/29/2009 10:52:33 AM - System Checkpoint
RP54: 6/30/2009 11:04:27 AM - System Checkpoint
RP55: 7/1/2009 11:44:34 AM - System Checkpoint
RP56: 7/2/2009 11:48:55 AM - System Checkpoint
RP57: 7/3/2009 12:04:19 PM - System Checkpoint
RP58: 7/5/2009 2:30:39 PM - System Checkpoint

==== Installed Programs ======================

32 Bit HP CIO Components Installer
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Reader 9.1.1
Adobe Stock Photos 1.0
AOLIcon
Apple Mobile Device Support
Apple Software Update
Azureus
B44Inst
Backup Dell-Installed Programs
BlackBerry Desktop Software 4.3
Broadcom 440x Driver Installer
Canon Digital Camera USB WIA Driver
Canon Utilities EOS Utility
Conexant HDA D110 MDC V.92 Modem
CP_AtenaShokunin1Config
CP_CalendarTemplates1
CP_Package_Basic1
CP_Panorama1Config
Crystal Report ActiveX Viewer
CueTour
Daily Mugshot Windows Reminder
Dell CinePlayer
Dell Digital Jukebox Driver
Dell Driver Reset Tool
Dell ResourceCD
Dell System Restore
Dell Wireless WLAN Card
Destination Component
DeviceDiscovery
DeviceFunctionQFolder
Digital Content Portal
Digital Line Detect
DocProc
Earth 3D Space Tour screensaver v1.1
EarthLink setup files
Easy CD Creator 5 Basic
eFax Messenger
FullDPAppQFolder
Get High Speed Internet!
Google Desktop
Google Earth
Google Talk (remove only)
Google Toolbar for Internet Explorer
Google Updater
GoToMeeting 4.0.0.320
hp deskjet 3600
hp deskjet 9600 series
HP Image Zone 5.3
HP Imaging Device Functions 10.0
hpg4850QFolder
InstantShareDevices
Intel® Graphics Media Accelerator Driver
iTunes
Java 2 Runtime Environment, SE v1.4.2_03
K-Lite Codec Pack 2.71 Full
Learn2 Player (Uninstall Only)
LifeGlobe Sharks, Terrors of the Deep
Logitech QuickCam
Logitech QuickCam Driver Package
Lotus NotesSQL 3.01 driver
Lotus SmartSuite - English
Macromedia Flash Player
MCU
Mechanical Clock 3D Screensaver 1.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Office Basic Edition 2003
Microsoft Office PowerPoint Viewer 2003
Microsoft Outlook Personal Folders Backup
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (NR2007)
Microsoft SQL Server Desktop Engine (MICROSOFTSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Mixer
Mobile Broadband Drivers
Modem Helper
Mozilla Firefox (3.0.11)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 Parser and SDK
MSXML 6 Service Pack 2 (KB954459)
Musicmatch® Jukebox
Neat Business Cards Scanner Drivers
Neat Business Cards v2.1.0
Neat OCR15
NeatReceipts Database Controller
NetWaiting
NetZeroInstallers
overland
PanoStandAlone
PhotoGallery
Propalms Connection Manager
QuickBooks Product Listing Service
QuickSet
QuickTime
RandMap
RealPlayer Basic
Rosetta Stone V3
Roxio DLA
Roxio Media Manager
Roxio MyDVD LE
Roxio RecordNow Audio
Roxio RecordNow Copy
Roxio RecordNow Data
SBA
ScannerCopy
Search Assist
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows XP (KB923561)
ShareIns
SkinsHP1
Sonic Activation Module
Sonic Update Manager
Sonic_PrimoSDK
Sound Blaster Audigy ADVANCED MB Demo
Status
STOPzilla
SupportSoft Assisted Service
Synaptics Pointing Device Driver
TrayApp
URL Assistant
VC 9.0 Runtime
Viewpoint Media Player
VZAccess Manager
WebCyberCoach 3.2 Dell
WebEx
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8 Release Candidate 1
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
WinRAR archiver
ZoneAlarm
ZoneAlarm Spy Blocker

==== Event Viewer Messages From Past Week ========

6/29/2009 9:28:05 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the wuauserv service.
6/29/2009 8:12:11 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time-a.nist.gov,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
6/29/2009 7:56:23 PM, error: Service Control Manager [7023] - The HP CUE DeviceDiscovery Service service terminated with the following error: Unspecified error
6/29/2009 7:56:20 PM, error: Service Control Manager [7022] - The HP CUE DeviceDiscovery Service service hung on starting.
6/29/2009 7:38:02 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Netman service.
6/29/2009 7:26:18 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the RasMan service.
6/29/2009 7:25:18 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the w32time service.
6/29/2009 7:24:48 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SENS service.
6/29/2009 7:24:18 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Schedule service.
6/29/2009 5:17:27 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the wscsvc service.
6/29/2009 5:16:57 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the ShellHWDetection service.
6/29/2009 5:16:27 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the BITS service.
6/29/2009 5:15:57 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the AudioSrv service.

==== End Of File ===========================

DDS (Ver_09-06-26.01) - NTFSx86
Run by James Gould at 17:43:33.07 on Sun 07/05/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.144 [GMT -7:00]

AV: ZoneAlarm Security Suite Antivirus *On-access scanning enabled* (Updated) {5D467B10-818C-4CAB-9FF7-6893B5B8F3CF}
FW: ZoneAlarm Security Suite Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
C:\Program Files\Neat Business Cards\exec\NeatReceiptsDBController.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\Explorer.EXE
C:\Program Files\STOPzilla!\STOPzilla.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Hewlett-Packard\hp deskjet 9600 series\Toolbox\HPWITBX.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Daily Mugshot Windows Reminder\DailyMugshot.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Tarantella Client\iqclntmgr.exe
C:\Program Files\eFax Messenger 4.4\J2GTray.exe
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://nytimes.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
mDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
BHO: ZILLAbar Browser Helper Object: {1827766b-9f49-4854-8034-f6ee26fcb1ec} - c:\program files\stopzilla!\SZSG.dll
BHO: {2a9cf8d5-0e75-4691-ac5d-35daac47aa0d} - No File
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: STOPzilla Browser Helper Object: {e3215f20-3212-11d6-9f8b-00d0b743919d} - c:\program files\stopzilla!\SZIEBHO.dll
TB: ZoneAlarm Spy Blocker: {f0d4b239-da4b-4daf-81e4-dfee4931a4aa} - c:\program files\zonealarmsb\bar\1.bin\SPYBLOCK.DLL
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: STOPzilla: {98828ded-a591-462f-83ba-d2f62a68b8b8} - c:\program files\stopzilla!\SZSG.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [googletalk] "c:\program files\google\google talk\googletalk.exe" /autostart
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [Creative WebCam Tray] "c:\program files\creative\shared files\CamTray.exe"
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [eFax 4.4] "c:\program files\efax messenger 4.4\J2GDllCmd.exe" /R
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [DLA] c:\windows\system32\dla\DLACTRLW.EXE
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
mRun: [HPWITOOLBOX] c:\program files\hewlett-packard\hp deskjet 9600 series\toolbox\HPWITBX.exe "-i"
mRun: [AdaptecDirectCD] "c:\program files\roxio\easy cd creator 5\directcd\DirectCD.exe"
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe
mRun: [VF0060 STISvc] RunDLL32.exe V0060Pin.dll,RunDLL32EP 513
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "c:\program files\common files\roxio shared\9.0\sharedcom\RoxWatchTray9.exe"
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe"
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam\Quickcam.exe" /hide
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [zzzHPSETUP] D:\Setup.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
dRun: [<NO NAME>] c:\windows\temp\tzvwdk.exe
dRun: [uidenhiufgsduiazghs] c:\windows\temp\tzvwdk.exe
dRunOnce: [WUAppSetup] c:\program files\common files\logishrd\WUApp32.exe -v 0x046d -p 0x09a2 -f video -m logitech -d 11.70.1196.0
dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe
dRunOnce: [RunNarrator] Narrator.exe
StartupFolder: c:\docume~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\startm~1\programs\startup\efax44~1.lnk - c:\program files\efax messenger 4.4\J2GTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\dailym~1.lnk - c:\program files\daily mugshot windows reminder\DailyMugshot.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\refres~1.lnk - c:\windows\installer\{ff2c0d82-66ee-4f08-9a26-5400c22f88fb}\IconFF2C0D82.exe
dPolicies-explorer: NoFolderOptions = 1 (0x1)
dPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-system: DisableRegistryTools = 1 (0x1)
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
LSP: c:\program files\common files\is3\anti-spyware\iS3lsp.dll
Trusted Zone: aol.com\free
Trusted Zone: musicmatch.com\online
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {F0642F3B-E7E7-438B-A457-050445B7DF36} - hxxp://e.brandwise.com/Setup/Brandwise.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll c:\windows\system32\finibona.dll,c:\windows\system32\hudivika.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
LSA: Authentication Packages = msv1_0 nwprovau
LSA: Notification Packages = scecli c:\windows\system32\hudivika.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\jamesg~1\applic~1\mozilla\firefox\profiles\sr7tpuyo.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?rls=ig&hl=en&source=iglk#restore
FF - component: c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
FF - plugin: c:\documents and settings\james gould\application data\mozilla\firefox\profiles\sr7tpuyo.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp07076007.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJava11.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJava12.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJava13.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJava14.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJava32.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJPI142_03.dll
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPOJI610.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npatgpc.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPZoneSB.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - HiddenExtension: XUL Cache: No Registry Reference - c:\program files\mozilla firefox\extensions\{BD99F98C-15B6-4A88-A0C4-1500E7BC4AF3}

============= SERVICES / DRIVERS ===============

R0 szkg5;szkg;c:\windows\system32\drivers\SZKG.sys [2009-5-12 61328]
R1 KLIF;KLIF;c:\windows\system32\drivers\klif.sys [2009-6-23 148496]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2008-11-15 353672]
R2 NeatReceipts Database Controller;NeatReceipts Database Controller;c:\program files\neat business cards\exec\NeatReceiptsDBController.exe [2007-6-13 231008]
R2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S3 GoogleDesktopManager-093007-112848;Google Desktop Manager 5.5.709.30344;c:\program files\google\google desktop search\GoogleDesktop.exe [2006-7-28 29744]
S3 MSSQL$NR2007;SQL Server (NR2007);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2007-6-13 29178224]

=============== Created Last 30 ================

2009-07-03 06:58 1,448 a------- c:\windows\system32\drivers\kgpcpy.cfg
2009-06-26 16:21 16 a------- c:\windows\system32\drivers\fidbox.dat.szfi
2009-06-26 15:12 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SITEguard
2009-06-26 15:11 <DIR> --d----- c:\program files\STOPzilla!
2009-06-26 15:11 <DIR> --d----- c:\program files\common files\iS3
2009-06-26 15:11 <DIR> --d----- c:\docume~1\alluse~1\applic~1\STOPzilla!
2009-06-23 18:45 180 ac------ C:\rollback.ini
2009-06-23 18:30 <DIR> --d----- c:\docume~1\jamesg~1\applic~1\MailFrontier
2009-06-23 18:05 <DIR> --d----- c:\program files\AskBarDis
2009-06-23 18:04 1,221,512 a------- c:\windows\system32\zpeng25.dll
2009-06-19 13:58 <DIR> --d----- c:\docume~1\jamesg~1\applic~1\Malwarebytes
2009-06-19 13:58 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes

==================== Find3M ====================

2009-07-05 17:41 1,170,371,360 a--sh--- c:\windows\system32\drivers\fidbox.dat
2009-07-03 06:58 0 a------- c:\windows\system32\drivers\lvuvc.hs
2009-07-03 06:58 0 a------- c:\windows\system32\drivers\logiflt.iad
2009-07-02 16:07 14,628,020 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-06-23 18:25 4,212 a---h--- c:\windows\system32\zllictbl.dat
2009-06-02 15:06 256 a------- c:\documents and settings\james gould\pool.bin
2009-05-28 14:16 17,408 a----r-- c:\windows\system32\SZIO5.dll
2009-05-28 14:15 294,912 a----r-- c:\windows\system32\SZBase5.dll
2009-05-28 14:14 540,672 a----r-- c:\windows\system32\SZComp5.dll
2009-05-12 14:13 61,328 a----r-- c:\windows\system32\drivers\SZKG.sys
2009-05-08 16:25 87,699 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-05-08 12:45 23,428 a------- c:\windows\system32\emptyregdb.dat
2009-02-27 16:57 60,744 a------- c:\documents and settings\james gould\g2mdlhlpx.exe
2009-01-04 09:04 1,626,485 a------- c:\program files\gorilla-1.4.exe
2008-06-27 11:56 61,224 a------- c:\documents and settings\james gould\GoToAssistDownloadHelper.exe
2007-11-12 15:14 630,784 a------- c:\documents and settings\james gould\GoToAssist_chat2way__317_en.exe

============= FINISH: 17:44:47.37 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 DocSatan

DocSatan

    Bleepin' Wanna-Be


  • Members
  • 2,156 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston, Ma.
  • Local time:08:36 PM

Posted 12 July 2009 - 10:52 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

#3 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:07:36 PM

Posted 17 July 2009 - 09:58 AM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users