Solve : IE7 internet search redirection problem? – InterviewSolution

InterviewSolution

1.	Solve : IE7 internet search redirection problem?
Answer» "Frank" - 2007-07-08 2:48:42 - COMBOFIX 07-07-07.3 - Service Pack 2 ((((((((((((((((((((((((( Files Created from 2007-06-08 to 2007-07-08 ))))))))))))))))))))))))))))))) 2007-07-08 02:4651,200--a------C:\WINDOWS\nircmd.exe 2007-07-07 06:30d--------C:\Program Files\CCleaner 2007-07-06 21:08d--------C:\Program Files\SUPERAntiSpyware 2007-07-06 21:08d--------C:\Program Files\Common Files\Wise Installation Wizard 2007-07-06 21:08d--------C:\DOCUME~1\Frank\APPLIC~1\SUPERAntiSpyware.com 2007-07-06 21:08d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com 2007-07-04 20:4810,872--a------C:\WINDOWS\system32\drivers\AvgAsCln.sys 2007-07-04 18:47d--------C:\Program Files\Enigma Software Group 2007-07-04 13:00d--------C:\WINDOWS\BDOSCAN8 2007-07-02 19:03490,272--a------C:\WINDOWS\system32\LVUI2.dll 2007-07-02 19:03465,696--a------C:\WINDOWS\system32\LVUI2RC.dll 2007-07-02 19:03416,544--a------C:\WINDOWS\system32\lvcodec2.dll 2007-07-02 19:0341,888--a------C:\WINDOWS\system32\drivers\LVUSBSta.sys 2007-07-02 19:033,580,832--a------C:\WINDOWS\system32\drivers\lvuvc.sys 2007-07-02 19:0322,560--a------C:\WINDOWS\system32\drivers\lvuvcflt.sys 2007-07-02 19:0315,558--a------C:\WINDOWS\system32\Repository.reg 2007-07-02 19:031,921,184--a------C:\WINDOWS\system32\drivers\lvpopflt.sys 2007-07-02 19:02d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech 2007-07-02 18:19d--------C:\WINDOWS\system32\appmgmt 2007-07-02 18:19d--------C:\WINDOWS\SxsCaPendDel 2007-06-30 17:4658,368--a------C:\WINDOWS\pfpick.dll 2007-06-30 17:4640,129--a------C:\WINDOWS\iccsigs.dat 2007-06-30 17:4637,376--a------C:\WINDOWS\kpsys32.dll 2007-06-30 17:46210,944--a------C:\WINDOWS\system32\MSVCRT10.DLL 2007-06-30 17:4620,992--a------C:\WINDOWS\icccodes.dll 2007-06-30 17:46197,120--a------C:\WINDOWS\kpcp32.dll 2007-06-30 17:46133,120--a------C:\WINDOWS\sprof32.dll 2007-06-30 17:46d--------C:\WINDOWS\system32\COLOR 2007-06-30 17:46d--------C:\KPCMS 2007-06-30 17:42299,520--a------C:\WINDOWS\uninst.exe 2007-06-30 17:41d--------C:\DOCUME~1\Frank\WINDOWS 2007-06-25 19:17d--------C:\Program Files\Marvell 2007-06-21 20:52d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd 2007-06-21 20:39d--------C:\Program Files\MSXML 6.0 2007-06-08 17:56d--------C:\Program Files\SanDisk 2007-06-08 17:56d--------C:\DOCUME~1\Frank\APPLIC~1\InstallShield (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-07-07 18:32:54664----a-wC:\WINDOWS\system32\d3d9caps.dat 2007-07-02 23:05:40--------d-----wC:\Program Files\Common Files\LogiShrd 2007-06-08 21:56:54--------d--h--wC:\Program Files\InstallShield Installation Information 2007-05-22 00:57:03--------d-----wC:\DOCUME~1\Frank\APPLIC~1\MSNInstaller 2007-05-16 22:00:10--------d-----wC:\Program Files\Common Files\AOL 2007-05-16 15:12:02683,520----a-wC:\WINDOWS\system32\inetcomm.dll 2007-05-15 22:15:50--------d-----wC:\DOCUME~1\Frank\APPLIC~1\AOL 2007-05-11 21:30:1625,888----a-wC:\WINDOWS\system32\drivers\LVPr2Mon.sys 2007-05-11 21:29:542,142,752----a-wC:\WINDOWS\system32\drivers\LVMVdrv.sys 2007-05-11 21:28:32195,360----a-wC:\WINDOWS\system32\lvci1100.dll 2007-05-11 21:27:582,107,808----a-wC:\WINDOWS\system32\drivers\Lvckap.sys 2007-04-25 14:21:15144,896----a-wC:\WINDOWS\system32\schannel.dll 2007-04-18 16:14:432,854,400----a-wC:\WINDOWS\system32\msi.dll 2007-04-17 02:47:3633,624----a-wC:\WINDOWS\system32\wups.dll 2007-04-17 02:45:541,710,936----a-wC:\WINDOWS\system32\wuaueng.dll 2007-04-17 02:45:48549,720----a-wC:\WINDOWS\system32\wuapi.dll 2007-04-17 02:45:42325,976----a-wC:\WINDOWS\system32\wucltui.dll 2007-04-17 02:45:2892,504----a-wC:\WINDOWS\system32\cdm.dll 2007-04-17 02:45:2053,080----a-wC:\WINDOWS\system32\wuauclt.exe 2007-04-17 02:45:2043,352----a-wC:\WINDOWS\system32\wups2.dll 2007-04-17 02:43:44203,096----a-wC:\WINDOWS\system32\wuweb.dll 2007-04-13 17:31:03103,984----a-wC:\WINDOWS\system32\AOLDial.dll((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) Note empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] 2006-10-22 23:0862080--a------C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] 2005-05-31 02:04853672--a------C:\PROGRA~1\SPYBOT~1\SDHelper.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}] 2006-10-31 16:29198136--a------C:\Program Files\Yahoo!\Common\yiesrvc.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] 2007-03-14 03:43501400--a------C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MPFEXE"="C:\Program Files\mcafee.com\personal firewall\MPfTray.exe" [2006-03-07 16:05] "LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-05-17 10:52] "LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" [2007-05-17 10:53] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43] "sscRun"="C:\Program Files\Common Files\AOL\1167361348\ee\SSCRun.exe" [2006-11-20 16:42] "SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2005-05-19 21:11] "SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2005-09-07 16:35] "SansaDispatch"="C:\Program Files\SanDisk\Sansa Updater\SansaDispatch.exe" [2007-05-02 19:00] "OASClnt"="C:\Program Files\mcafee.com\antivirus\oasclnt.exe" [2005-08-18 17:57] "LWBMOUSE"="C:\Program Files\NASDAK\OmniMouse Driver\4.06\MOUSE32A.EXE" [2001-11-09 02:47] "LWBKEYBOARD"="C:\Program Files\Omni\Omni keyboard driver\5.0\KbdAp32A.exe" [2004-05-12 11:10] "HydraVisionDesktopManager"="C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2003-09-15 22:00] "HostManager"="C:\Program Files\Common Files\AOL\1167361348\ee\AOLSoftware.exe" [2006-09-25 20:52] "High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2004-10-27 16:21 C:\WINDOWS\system32\HdAShCut.exe] "EmailScan"="C:\Program Files\mcafee.com\antivirus\mcvsescn.exe" [2005-10-19 13:13] "ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2005-08-12 15:43] "AOLSPScheduler"="C:\Program Files\Common Files\AOL\1167361348\ee\services\safetyCore\ver210_5_2_1\AOLSP Scheduler.exe" [2006-11-20 16:42] "AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23 08:50] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-15 08:00] "AOL Fast Start"="C:\Program Files\America Online 9.0\AOL.exe" [2005-07-12 07:17] [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "MySpaceIM"=C:\Program Files\MySpace\IM\MySpaceIM.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"=01000000 "NoLogoff"=01000000 "NoRecentDocsMenu"=01000000 "ClearRecentDocsOnExit"=00000000 "NoRecentDocsHistory"=01000000 "NoRecentDocsNetHood"=01000000 "NoSMMyDocs"=01000000 "NoNetworkConnections"=01000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" [2007-05-30 08:29] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"="C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 13:55] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Avg7Alrt"=2 (0x2) "AVGEMS"=2 (0x2) "Avg7UpdSvc"=2 (0x2) Contents of the 'Scheduled Tasks' folder 2007-07-04 07:30:00 C:\WINDOWS\tasks\RegistrySmart Scheduled SCAN.job ************************************************************************ catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-07-08 02:52:36 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden PROCESSES ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ Completion time: 2007-07-08 2:54:13 - machine was rebooted C:\ComboFix-quarantined-files.txt ... 2007-07-08 02:54 --- E O F --- everything is back to normal and a system restore point was made one again thank you You're welcome, Frank. Everything's looking good; let's hope it STAYS that way! Take care.As this issue appears to be resolved, I am closing this TOPIC. If you are the original poster and you would like this topic to be re-opened for any reason, PM me or another moderator and it can be arranged. If you are not the original poster and you require help, please start a New Topic with information about your computer and your problem.

Discussion

No Comment Found

Related InterviewSolutions