Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Unwanted search engine redirects

Started by lmg0116 , Dec 25 2010 12:22 AM

  • Please log in to reply

#1
lmg0116
Posted 25 December 2010 - 12:22 AM

lmg0116

    New Member

  • Member
  • Pip
  • 1 posts
Hi all,
Merry Christmas! Working on my parent's computer with no luck. I already went through Rorschach112's awesome guide but I'm still having redirects (from any search engine) even though TDSSKiller came up with no hits.

Logs are below.

Thanks a bunch; ya'll are awesome!

OTL Log:
All processes killed
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\LM Gonzalez\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\LM Gonzalez\My Documents\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33739 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 492988 bytes
->Flash cache emptied: 24975 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 702830 bytes
->Flash cache emptied: 405 bytes

User: LM Gonzalez
->Temp folder emptied: 5168865235 bytes
->Temporary Internet Files folder emptied: 431714617 bytes
->Java cache emptied: 58530906 bytes
->FireFox cache emptied: 114199382 bytes
->Google Chrome cache emptied: 22143395 bytes
->Flash cache emptied: 177444 bytes

User: Lewis
->Temp folder emptied: 23132808 bytes
->Temporary Internet Files folder emptied: 768588533 bytes
->Java cache emptied: 49720431 bytes
->FireFox cache emptied: 49418324 bytes
->Flash cache emptied: 41651 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1503762 bytes
%systemroot%\System32 .tmp files removed: 1262609 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 162705220 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 68329 bytes
RecycleBin emptied: 1039087701 bytes

Total Files Cleaned = 7,527.00 mb

Restore point Set: OTM Restore Point (0)

OTM by OldTimer - Version 3.1.17.2 log created on 12242010_231242

Files moved on Reboot...
C:\WINDOWS\temp\Perflib_Perfdata_110.dat moved successfully.

Registry entries deleted on Reboot...


GooredFix Log:
GooredFix by jpshortstuff (03.07.10.1)
Log created at 23:46 on 24/12/2010 (LM Gonzalez)
Firefox version 3.6.13 (en-US)

========== GooredScan ==========

Removing Orphan:
"[email protected]"="C:\Program Files\MyWebSearch\bar\1.bin" -> Success!
Deleting HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{097C2F99-EF5E-4FDF-A83B-A2529021FBA0} -> Success!
Deleting C:\Documents and Settings\LM Gonzalez\Local Settings\Application Data\{097C2F99-EF5E-4FDF-A83B-A2529021FBA0} -> Success!
Deleting HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{63B2C484-1782-459E-BC59-43BB1ABF0064} -> Success!
Deleting C:\Documents and Settings\Lewis\Local Settings\Application Data\{63B2C484-1782-459E-BC59-43BB1ABF0064} -> Success!

========== GooredLog ==========

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [06:04 21/09/2009]
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [20:48 21/09/2009]
{635abd67-4fe9-1b23-4f01-e679fa7484c1} [00:37 16/03/2010]

C:\Documents and Settings\LM Gonzalez\Application Data\Mozilla\Firefox\Profiles\opkg4sfe.default\extensions\
{88c7f2aa-f93f-432c-8f0e-b7d85967a527} [02:30 20/12/2010]
{7b13ec3e-999a-4b70-b9cb-2617b8323822} [21:52 23/07/2010]
{AE93811A-5C9A-4d34-8462-F7B864FC4696} [21:52 23/07/2010]
[email protected] [00:01 01/11/2010]
[email protected] [02:30 20/12/2010]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files\Java\jre6\lib\deploy\jqs\ff" [20:48 21/09/2009]
"{3f963a5b-e555-4543-90e2-c3908898db71}"="C:\Program Files\AVG\AVG9\Firefox" [02:47 06/04/2010]
"[email protected]"="C:\Program Files\AVG\AVG9\Toolbar\Firefox\[email protected]" [16:12 26/10/2010]
"{cb84136f-9c44-433a-9048-c5cd9df1dc16}"="C:\Program Files\PC Tools Security\BDT\Firefox\" [02:33 13/12/2010]

-=E.O.F=-
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Forum
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP