Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

google redirect (I think)


  • Please log in to reply
8 replies to this topic

#1 bobelly

bobelly

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:12 AM

Posted 02 August 2011 - 08:07 PM

got google redirect with CA 201 that wont enable email scanning (may or may not be related. Disabling CA firewall seems to cure it for a while and disabling Win Sys Protection and reboot seems to help, ut it always come back. Used some of Broni's tools, here is what I got:


Results of screen317's Security Check version 0.99.7
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
Java™ 6 Update 26
Out of date Java installed!
Adobe Flash Player 10.2.153.1
Adobe Reader X (10.1.0)
Mozilla Firefox (x86 en-US..) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Malwarebytes' Anti-Malware mbamservice.exe
CA CA Internet Security Suite CA Anti-Virus Plus caamsvc.exe
CA CA Internet Security Suite CA Anti-Virus Plus isafe.exe
``````````End of Log````````````

MiniToolBox by Farbar
Ran by Phone (administrator) on 02-08-2011 at 20:05:56
Windows 7 Home Premium Service Pack 1 (X64)

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : randy-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-16-17-B4-B2-46
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ac6d:9b7:e8c1:a909%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, August 02, 2011 6:31:17 PM
Lease Expires . . . . . . . . . . : Wednesday, August 03, 2011 6:31:16 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234886679
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-84-D2-7E-00-16-17-B4-B2-46
DNS Servers . . . . . . . . . . . : 192.168.15.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3c34:3910:3f57:fe9b(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c34:3910:3f57:fe9b%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{E302F2AB-4AF3-4117-AEFC-705D6436A748}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: mygateway1.Motorola
Address: 192.168.15.1

Name: google.com
Addresses: 74.125.93.106
74.125.93.147
74.125.93.99
74.125.93.103
74.125.93.104
74.125.93.105


Pinging google.com [74.125.93.106] with 32 bytes of data:
Reply from 74.125.93.106: bytes=32 time=56ms TTL=52
Reply from 74.125.93.106: bytes=32 time=52ms TTL=52

Ping statistics for 74.125.93.106:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 52ms, Maximum = 56ms, Average = 54ms
Server: mygateway1.Motorola
Address: 192.168.15.1

Name: yahoo.com
Addresses: 72.30.2.43
98.137.149.56
209.191.122.70
67.195.160.76
69.147.125.65


Pinging yahoo.com [72.30.2.43] with 32 bytes of data:
Reply from 72.30.2.43: bytes=32 time=115ms TTL=51
Reply from 72.30.2.43: bytes=32 time=112ms TTL=51

Ping statistics for 72.30.2.43:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 112ms, Maximum = 115ms, Average = 113ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
9...00 16 17 b4 b2 46 ......Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.100 276
192.168.1.100 255.255.255.255 On-link 192.168.1.100 276
192.168.1.255 255.255.255.255 On-link 192.168.1.100 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.100 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.100 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:4137:9e76:3c34:3910:3f57:fe9b/128
On-link
9 276 fe80::/64 On-link
15 306 fe80::/64 On-link
15 306 fe80::3c34:3910:3f57:fe9b/128
On-link
9 276 fe80::ac6d:9b7:e8c1:a909/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
9 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/02/2011 09:25:06 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (08/01/2011 06:46:57 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (08/01/2011 04:11:30 PM) (Source: Bonjour Service) (User: )
Description: 508: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 04:11:30 PM) (Source: Bonjour Service) (User: )
Description: 500: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 04:11:30 PM) (Source: Bonjour Service) (User: )
Description: 492: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 04:11:30 PM) (Source: Bonjour Service) (User: )
Description: 484: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 01:39:48 PM) (Source: Bonjour Service) (User: )
Description: 452: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 01:39:48 PM) (Source: Bonjour Service) (User: )
Description: 320: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 01:39:48 PM) (Source: Bonjour Service) (User: )
Description: 224: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (08/01/2011 00:16:47 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).


System errors:
=============
Error: (08/02/2011 06:30:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/02/2011 06:19:27 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/02/2011 06:00:03 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/02/2011 04:21:29 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/02/2011 07:23:36 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/01/2011 08:14:13 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer BOBELLY-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{E302F2AB-4AF3-4117-AEFC-705D6436A748}.
The master browser is stopping or an election is being forced.

Error: (08/01/2011 05:34:55 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/01/2011 04:41:54 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/01/2011 04:12:50 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (08/01/2011 03:23:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.


Microsoft Office Sessions:
=========================
Error: (04/15/2011 11:38:21 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 36 seconds with 0 seconds of active time. This session ended with a crash.

Error: (01/19/2011 07:04:36 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 25788 seconds with 1020 seconds of active time. This session ended with a crash.

Error: (12/09/2010 07:34:26 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 153430 seconds with 1860 seconds of active time. This session ended with a crash.

Error: (09/13/2010 04:15:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 9050 seconds with 0 seconds of active time. This session ended with a crash.

Error: (03/07/2010 11:36:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 41455 seconds with 2580 seconds of active time. This session ended with a crash.

Error: (02/01/2010 10:59:07 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 110 seconds with 60 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

(Version: 6.2)
Update for Microsoft Office 2007 (KB2508958)
1Click DVD Copy 5.8.5.0
1Click DVD Copy Pro 4.2.1.6
2007 Microsoft Office Suite Service Pack 2 (SP2)
360Share Pro(remove only)
ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621)
Adobe After Effects CS4 (Version: 9)
Adobe After Effects CS4 Presets (Version: 9)
Adobe After Effects CS4 Template Projects & Footage (Version: 9)
Adobe After Effects CS4 Third Party Content (Version: 9)
Adobe AIR (Version: 2.6.0.19120)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles AE CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Creative Suite 4 Production Premium (Version: 4.0)
Adobe Creative Suite 5 Design Premium (Version: 5.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe CS4 French Speech Analysis Models (Version: 1)
Adobe CS4 German Speech Analysis Models (Version: 1)
Adobe CS4 International English Speech Analysis Models (Version: 1)
Adobe CS4 Italian Speech Analysis Models (Version: 1)
Adobe CS4 Japanese Speech Analysis Models (Version: 1)
Adobe CS4 Korean Speech Analysis Models (Version: 1)
Adobe CS4 Spanish Speech Analysis Models (Version: 1)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe Encore CS4 (Version: 4)
Adobe Encore CS4 Codecs (Version: 4)
Adobe Encore CS4 Library (Version: 4)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.26)
Adobe Flash Player 10 Plugin (Version: 10.2.153.1)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS4 (Version: 14.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Additional Exporter (Version: 1.0)
Adobe Media Encoder CS4 Dolby (Version: 1.0)
Adobe Media Encoder CS4 Exporter (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe MotionPicture Color Files CS4 (Version: 2.0)
Adobe OnLocation CS4 (Version: 4)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop 5.5 (Version: 5.5)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop Elements (Version: 1.0)
Adobe Premiere Pro CS4 (Version: 4)
Adobe Premiere Pro CS4 Functional Content (Version: 4)
Adobe Premiere Pro CS4 Third Party Content (Version: 4)
Adobe Reader X (10.1.0) (Version: 10.1.0)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 11.5 (Version: 11.5.2.602)
Adobe Soundbooth CS4 (Version: 2)
Adobe Soundbooth CS4 Codecs (Version: 2)
Adobe Support Advisor (Version: 1.0.1)
Adobe SVG Viewer (Version: 1.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
AMRT (Version: 1.6.418)
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
APH placeholder
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
ArcSoft MediaImpression 2 (Version: 2.0.29.444)
ArcSoft Panorama Maker 4 (Version: 4.5.0.112)
ArcSoft Photo Book Screen Saver (Version: 2.0.0.13)
ArcSoft PhotoStudio Darkroom 2 (Version: 2.0.0.174)
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Brochures & Flyers
ArcSoft Print Creations - Funhouse II
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Photo Prints
ArcSoft Print Creations - Poster Creator
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ArcSoft Print Creations (Version: 3.0.255.500)
ArcSoft RAW Thumbnail Viewer (Version: 2.0.0.11)
ArcSoft Scan-n-Stitch Deluxe (Version: 1.1.0.17)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
Bonjour (Version: 3.0.0.2)
CA Anti-Virus Plus (Version: 3.0.0.99)
CA Internet Security Suite (Version: 7.0.0.117)
CA Personal Firewall (Version: 12.0.0.393)
Cisco Network Magic (Version: 5.5.09195.0)
Connect (Version: 1.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
DNAMigrator (Version: 13.0.0.264)
DoorKing Account Manager (Version: 0.9.12)
Drivers Install For Linksys Easylink Advisor (Version: 2.0.9)
Emicsoft FLV Converter
eReg (Version: 1.20.138.34)
File Uploader (Version: 1.2.5)
Garmin BaseCamp (Version: 3.2.1)
Garmin City Navigator North America 2009 (Version: 10.0.0.0)
Garmin Communicator Plugin (Version: 2.9.3)
Garmin HomePort (Version: 2.0.4.0)
Garmin MapInstall (Version: 3.14.4)
Garmin MapSource (Version: 6.16.3)
Garmin USB Drivers (Version: 2.3.0.0)
Google Chrome (Version: 12.0.742.122)
Google Earth Plug-in (Version: 6.0.3.2197)
Google Update Helper (Version: 1.3.21.57)
HP Product Detection (Version: 9.7.3)
Intel® Processor ID Utility (Version: 4.20.0000)
IrfanView (remove only)
iSEEK AnswerWorks English Runtime (Version: 009.000.0002)
iTunes (Version: 10.4.0.80)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
kuler (Version: 2.0)
Lexmark Printable Web (Version: 1.0.0.0)
Lexmark S600 Series
Lexmark Tools for Office (Version: 1.29.0.0)
LightScribe Applications (Version: 1.18.5.1)
LightScribe System Software (Version: 1.18.9.1)
Linksys EasyLink Advisor 1.6 (0032)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech SetPoint 6.15 (Version: 6.15.25)
Malwarebytes' Anti-Malware version 1.51.1.1800 (Version: 1.51.1.1800)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Outlook Personal Folders Backup (Version: 1.10.0.0)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Motorola SM56 Speakerphone Modem (Version: 6.12.25.06)
Mozilla Firefox 4.0.1 (x86 en-US) (Version: 4.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
neroxml (Version: 1.0.0)
Network Magic (Version: 5.5.9195.0)
Nikon Message Center (Version: 0.92.000)
Nikon Transfer (Version: 1.5.3)
NOOK for PC (Version: 2.5.2.458)
NVIDIA Display Control Panel (Version: 6.14.11.9745)
NVIDIA Drivers (Version: 1.10.59.37)
Oracle JInitiator 1.3.1.28
Pantech PCSuite (Version: 1.0)
Partition Wizard Home Edition 5.0
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
PerfectDisk 11 Professional (Version: 11.00.185)
PerfectSpeed PC Optimizer (Version: 2.00.116)
Photo Viewer s2.5
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Picasa 3 (Version: 3.6)
Pixel Bender Toolkit (Version: 1.0)
Pure Networks Platform (Version: 11.2.09195.1)
PVSonyDll (Version: 1.00.0001)
Quicken 2008 (Version: 17.1.1.24)
Quicken 2010 (Version: 19.1.2.22)
QuickTime (Version: 7.69.80.9)
RealFlight Basic R/C Simulator
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek AC'97 Audio (Version: 5.37)
RealUpgrade 1.1 (Version: 1.1.0)
Remote Control USB Driver (Version: 2.3.2.317)
Runtime (Version: 1.00.0000)
Scrubly (Version: 0.0.237)
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.1 (Version: 5.1.112)
Sony Picture Utility (Version: 4.3.03.07070)
Suite Shared Configuration CS4 (Version: 1.0)
TurboTax 2009
TurboTax 2009 wfliper (Version: 009.000.0562)
TurboTax 2009 WinPerFedFormset (Version: 009.000.1480)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0282)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0218)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2010
TurboTax 2010 wfliper (Version: 010.000.1070)
TurboTax 2010 WinPerFedFormset (Version: 010.000.3441)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0414)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0199)
TurboTax 2010 wnciper (Version: 010.000.1103)
TurboTax 2010 wrapper (Version: 010.000.0157)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2509470)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2553975)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 2686.43 MB
Available physical RAM: 1541.18 MB
Total Pagefile: 5371.05 MB
Available Pagefile: 3824.18 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.15 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:161.17 GB) (Free:92.28 GB) NTFS
2 Drive d: (mainboot) (Fixed) (Total:81.27 GB) (Free:11.5 GB) NTFS
3 Drive e: (PRESARIO) (Fixed) (Total:179.8 GB) (Free:49.97 GB) NTFS
4 Drive f: (Programs) (Fixed) (Total:54.69 GB) (Free:42.95 GB) NTFS
5 Drive g: (PRESARIO_RP) (Fixed) (Total:6.5 GB) (Free:1.19 GB) FAT32
6 Drive h: (Oakleaf Club) (CDROM) (Total:0.02 GB) (Free:0 GB) UDF
9 Drive k: (HP SimpleSave) (Fixed) (Total:1862.36 GB) (Free:672.37 GB) NTFS

========================= Users: ========================================

User accounts for \\RANDY-PC

Administrator Guest Phone
randy

========================= Minidump Files ==================================

No minidump file found

== End of log ==

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7357

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

8/2/2011 8:20:08 PM
mbam-log-2011-08-02 (20-20-08).txt

Scan type: Quick scan
Objects scanned: 192512
Time elapsed: 10 minute(s), 7 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Ran GMER too but nothing found. Help!

Randy

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:12 AM

Posted 02 August 2011 - 08:14 PM

Hello and welcome, Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?


Please follow our Removal Guide here How to remove Google Redirects. You will move to the Automated Removal Instructions

If it finds something make sure Cure is selected
Next click Continue then Reboot now
A log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 bobelly

bobelly
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:12 AM

Posted 02 August 2011 - 08:25 PM

Thanks for the reply, 4 computers on home network, I'm the only one redirecting, IE and Chrome, didn't try firefox but have it installed. Removal guide pretty good? Thanks.

Randy

#4 bobelly

bobelly
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:12 AM

Posted 02 August 2011 - 08:31 PM

TDSSKiller didn't find anything

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:12 AM

Posted 02 August 2011 - 08:39 PM

Turn off FF addons and see..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 bobelly

bobelly
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:12 AM

Posted 02 August 2011 - 08:46 PM

dont see a way to do that

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:12 AM

Posted 02 August 2011 - 08:58 PM

http://support.mozilla.com/en-US/kb/Uninstalling%20add-ons
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 bobelly

bobelly
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:12 AM

Posted 02 August 2011 - 09:12 PM

Disabled all addons and extensions in all 3 browsers no help. Again if I disable Windows System Protection the problem goes away at least temporarily.

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:12 AM

Posted 02 August 2011 - 09:24 PM

OK,me thinks we need a deeper look then.
Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users