Author Topic: [Resolved] Search Engine Abnormalities (Read 3353 times)

lifer_refil · « **Reply #15 on:** September 10, 2011, 05:43:29 PM »

It turns out I don't even have that file.

C:\WINDOWS\system32\drivers\etc\hosts does not exist and when Spybot ran it said "cannot create..." that file.

So, what's next?

Hoov · « **Reply #16 on:** September 10, 2011, 06:07:01 PM »

It might be hidden.

1.Double-click on the My Computer icon.
2.Select the Tools menu and click Folder Options.
3.After the new window appears select the View tab.
4.Put a checkmark in the checkbox labeled Display the contents of system folders.
5.Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.
6.Remove the checkmark from the checkbox labeled Hide file extensions for known file types.
7.Remove the checkmark from the checkbox labeled Hide protected operating system files.
8.Press the Apply button and then the OK button and close My Computer.
9.Now your computer is configured to show all hidden files.

Now see if the Hosts file is visible.

lifer_refil · « **Reply #17 on:** September 10, 2011, 07:16:31 PM »

Got ownership. Reran Spybot, then ran HostsXpert. Here are the DDS logs:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Admin at 19:11:08 on 2011-09-10
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2014.1006 [GMT -6:00]
.
AV: Norton AntiVirus Online *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus Online *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AutoInstall\AR9170_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE
C:\Program Files\Qwest 11n Wireless WPS Tool\WpsCenterV.exe
C:\Program Files\CenturyLink\Desktop\CenturyLinkTouchPointAgent.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Admin\AppData\Local\Lexar Media\LxrAutorun.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Users\Admin\AppData\Local\Temp\RarSFX0\AutoInstallEJCDSVC.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\LxrSII1s.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton antivirus\engine\18.6.0.29\ips\IPSBHO.DLL
BHO: {9D425283-D487-4337-BAB6-AB8354A81457} - No File
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: {9D425283-D487-4337-BAB6-AB8354A81457} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [VoipStunt] "c:\program files\voipstunt.com\voipstunt\VoipStunt.exe" -nosplash -minimized
uRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
uRun: [Weather] c:\program files\aws\weatherbug\Weather.exe 1
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [LxrAutorun] c:\users\admin\appdata\local\lexar media\LxrAutorun.exe
uRun: [Google Update] "c:\users\admin\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AutoEJCD_0ACE20FF] c:\program files\autoinstall\ar9170_auto_install_cd_only_gen_0ace20ff\AutoEJCD.EXE /VID=0ACE /PID=20FF
mRun: [Qwest 11n Wireless WPS Tool] c:\program files\qwest 11n wireless wps tool\WpsCenterV.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [CenturyLinkTouchPointAgent] "c:\program files\centurylink\desktop\CenturyLinkTouchPointAgent.exe" /autostart
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 2 (0x2)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 192.168.0.1 205.171.3.25
TCP: Interfaces\{863473D3-EB68-48E4-8CC2-67DF61811975} : DhcpNameServer = 192.168.0.1 205.171.3.25
TCP: Interfaces\{E2EF76AE-D5D5-4473-88E9-D967FF83A8D9} : DhcpNameServer = 192.168.0.1 205.171.3.25
Hosts: 64.86.16.113 google.com
.
============= SERVICES / DRIVERS ===============
.
R0 amacpi;Microsoft Away Mode System;c:\windows\system32\drivers\null.sys [2008-8-5 4608]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nav\1206000.01d\symds.sys [2011-9-8 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1206000.01d\symefa.sys [2011-9-8 744568]
R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.5.0.125\definitions\bashdefs\20110901.001\BHDrvx86.sys [2011-9-2 815736]
R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.5.0.125\definitions\ipsdefs\20110909.030\IDSvix86.sys [2011-9-9 368248]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nav\1206000.01d\ironx86.sys [2011-9-8 136312]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nav\1206000.01d\symtdiv.sys [2011-9-8 331384]
R2 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [2007-12-5 77824]
R2 AutoInstallEJCD;Auto Install Eject CD Service;c:\users\admin\appdata\local\temp\rarsfx0\AutoInstallEJCDSvc.exe [2010-7-21 16384]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-8-5 21504]
R2 LxrSII1d;Secure II Driver;c:\windows\system32\drivers\LxrSII1d.sys [2009-9-13 72672]
R2 NAV;Norton AntiVirus;c:\program files\norton antivirus\engine\18.6.0.29\ccsvchst.exe [2011-9-8 130008]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2011-9-10 1153368]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-9-8 105592]
R3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2008-8-5 987648]
R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2008-8-5 251904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 EraserSvc11013;Symantec Eraser Service;"c:\program files\norton antivirus\engine\18.5.0.125\ccsvchst.exe" /h cccommon --> c:\program files\norton antivirus\engine\18.5.0.125\ccSvcHst.exe [?]
S3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.12.1;c:\windows\system32\drivers\libusb0.sys [2009-3-17 28672]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-9-10 41272]
S3 QW720V32;Qwest 802.11n XN720 Driver(vista);c:\windows\system32\drivers\WLANUHN.sys [2010-7-21 449536]
S3 TIAcxubt;D-Link WLAN USB Boot Device;c:\windows\system32\drivers\tiacxubt.sys [2011-7-8 17536]
S3 TIACXUSB;D-Link AirPlus DWL-120+ Wireless USB Adapter;c:\windows\system32\drivers\tiacxusb.sys [2011-7-8 177280]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 ZDCNDIS5;ZDCNDIS Protocol Driver;c:\windows\system32\ZDCndis5.sys [2010-7-21 29056]
.
=============== Created Last 30 ================
.
2011-09-10 22:41:01   --------   d-----w-   c:\programdata\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-09-10 22:31:55   --------   dc-h--w-   c:\programdata\~0
2011-09-10 22:31:47   --------   d-----w-   c:\users\admin\appdata\local\PackageAware
2011-09-10 17:06:59   --------   d-----w-   c:\program files\HostsXpert
2011-09-10 14:29:51   --------   d-----w-   c:\programdata\Spybot - Search & Destroy
2011-09-10 14:29:51   --------   d-----w-   c:\program files\Spybot - Search & Destroy
2011-09-10 07:30:29   --------   d-----w-   c:\users\admin\appdata\roaming\Malwarebytes
2011-09-10 07:30:20   41272   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2011-09-10 07:30:20   --------   d-----w-   c:\programdata\Malwarebytes
2011-09-10 07:30:17   22712   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-09-10 07:30:17   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2011-09-10 06:33:41   --------   d-----w-   c:\program files\CCleaner
2011-09-10 04:16:08   388096   ----a-r-   c:\users\admin\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-09-10 04:16:07   --------   d-----w-   c:\program files\Trend Micro
2011-09-10 02:43:37   876032   ----a-w-   c:\windows\system32\XpsPrint.dll
2011-09-10 02:18:16   --------   d-----w-   c:\program files\Windows Portable Devices
2011-09-10 02:14:35   92672   ----a-w-   c:\windows\system32\UIAnimation.dll
2011-09-10 02:14:35   1164800   ----a-w-   c:\windows\system32\UIRibbonRes.dll
2011-09-10 02:14:34   3023360   ----a-w-   c:\windows\system32\UIRibbon.dll
2011-09-10 02:11:54   555520   ----a-w-   c:\windows\system32\UIAutomationCore.dll
2011-09-10 02:11:54   4096   ----a-w-   c:\windows\system32\oleaccrc.dll
2011-09-10 02:11:54   234496   ----a-w-   c:\windows\system32\oleacc.dll
2011-09-10 02:06:33   2409784   ----a-w-   c:\program files\windows mail\OESpamFilter.dat
2011-09-10 02:05:20   3602832   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2011-09-10 02:05:20   3550096   ----a-w-   c:\windows\system32\ntoskrnl.exe
2011-09-10 02:05:16   375808   ----a-w-   c:\windows\system32\winsrv.dll
2011-09-10 02:04:57   905104   ----a-w-   c:\windows\system32\drivers\tcpip.sys
2011-09-10 02:04:56   2048   ----a-w-   c:\windows\system32\tzres.dll
2011-09-10 02:04:50   231424   ----a-w-   c:\windows\system32\msshsq.dll
2011-09-10 01:41:51   --------   d-----w-   c:\windows\system32\eu-ES
2011-09-10 01:41:51   --------   d-----w-   c:\windows\system32\ca-ES
2011-09-10 01:41:50   --------   d-----w-   c:\windows\system32\vi-VN
2011-09-09 06:25:17   --------   d-----w-   c:\users\admin\appdata\roaming\Tific
2011-09-09 06:25:13   --------   d-----w-   c:\users\admin\appdata\local\Symantec
2011-09-09 05:38:43   --------   d-----w-   c:\users\admin\appdata\local\CrashDumps
2011-09-09 05:15:59   149504   ----a-w-   c:\program files\common files\microsoft shared\ink\tabskb.dll
2011-09-09 05:14:19   136704   ----a-w-   c:\windows\system32\drivers\exfat.sys
2011-09-09 05:14:02   986600   ----a-w-   c:\windows\system32\winload.exe
2011-09-09 05:14:02   926184   ----a-w-   c:\windows\system32\winresume.exe
2011-09-09 04:49:59   --------   d-----w-   c:\program files\common files\Windows Live
2011-09-09 04:32:53   --------   d-sh--w-   C:\found.001
2011-09-09 02:32:15   79872   ----a-w-   c:\windows\system32\drivers\mrxsmb20.sys
2011-09-09 02:32:15   214016   ----a-w-   c:\windows\system32\drivers\mrxsmb10.sys
2011-09-09 02:32:15   106496   ----a-w-   c:\windows\system32\drivers\mrxsmb.sys
2011-09-09 02:32:09   146432   ----a-w-   c:\windows\system32\drivers\srv2.sys
2011-09-09 02:32:09   102400   ----a-w-   c:\windows\system32\drivers\srvnet.sys
2011-09-09 02:32:06   1169408   ----a-w-   c:\windows\system32\sdclt.exe
2011-09-09 02:32:04   1205080   ----a-w-   c:\windows\system32\ntdll.dll
2011-09-09 02:32:01   2043392   ----a-w-   c:\windows\system32\win32k.sys
2011-09-09 02:29:33   677888   ----a-w-   c:\windows\system32\mstsc.exe
2011-09-09 02:29:33   63488   ----a-w-   c:\windows\system32\tscupgrd.exe
2011-09-09 02:29:33   2067968   ----a-w-   c:\windows\system32\mstscax.dll
2011-09-09 02:26:59   276992   ----a-w-   c:\windows\system32\schannel.dll
2011-09-09 02:21:56   558080   ----a-w-   c:\windows\system32\sysmain.dll
2011-09-09 02:20:59   107520   ----a-w-   c:\windows\system32\imapi.dll
2011-09-09 01:02:24   87552   ----a-w-   c:\windows\system32\SearchFilterHost.exe
2011-09-09 01:01:59   313344   ----a-w-   c:\windows\system32\thawbrkr.dll
2011-09-09 01:00:56   89088   ----a-w-   c:\windows\system32\pintlgnt.ime
2011-09-09 00:29:05   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2011-09-08 22:14:16   744568   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symefa.sys
2011-09-08 22:14:16   331384   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symtdiv.sys
2011-09-08 22:14:16   296568   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symnets.sys
2011-09-08 22:14:15   516216   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\srtsp.sys
2011-09-08 22:14:15   50168   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\srtspx.sys
2011-09-08 22:14:15   340088   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symds.sys
2011-09-08 22:14:15   136312   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\ironx86.sys
2011-09-08 22:13:25   --------   d-----w-   c:\windows\system32\drivers\nav\1206000.01D
2011-09-08 21:52:22   126584   ----a-w-   c:\windows\system32\drivers\SYMEVENT.SYS
2011-09-08 21:52:22   --------   d-----w-   c:\program files\Symantec
2011-09-08 21:52:22   --------   d-----w-   c:\program files\common files\Symantec Shared
2011-09-08 21:51:07   --------   d-----w-   c:\windows\system32\drivers\NAV
2011-09-08 21:51:05   --------   d-----w-   c:\program files\Norton AntiVirus
2011-09-08 21:51:04   --------   d-----w-   c:\programdata\Norton
2011-09-08 21:51:01   --------   d-----w-   c:\programdata\NortonInstaller
2011-09-08 21:51:01   --------   d-----w-   c:\program files\NortonInstaller
2011-09-08 21:48:17   --------   d-----w-   c:\windows\system32\EventProviders
2011-09-08 21:38:58   7152464   ----a-w-   c:\programdata\microsoft\windows defender\definition updates\{4803d96d-8be0-4b18-a45e-d848a5944f00}\mpengine.dll
2011-09-08 21:35:46   --------   d-----w-   c:\programdata\CenturyLink
2011-09-08 21:35:18   --------   d-----w-   c:\program files\Qwest
2011-09-08 21:34:42   --------   d-----w-   c:\program files\CenturyLink
.
==================== Find3M ====================
.
2011-09-08 22:00:18   770048   ----a-w-   c:\windows\system32\nvcplui.exe
.
============= FINISH: 19:11:47.45 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 3/13/2009 4:49:40 PM
System Uptime: 9/10/2011 12:14:26 PM (7 hours ago)
.
Motherboard: Dell Inc. | | 0RY206
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ | Socket AM2 | 2000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 224 GiB total, 119.179 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 9 GiB total, 2.469 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1239: 9/9/2011 8:07:48 PM - Windows Update
RP1240: 9/9/2011 8:24:41 PM - Windows Update
RP1241: 9/9/2011 8:43:38 PM - Windows Update
RP1242: 9/9/2011 8:51:30 PM - Windows Update
RP1243: 9/9/2011 9:52:51 PM - Installed HiJackThis
RP1244: 9/9/2011 9:53:57 PM - Installed HiJackThis
RP1245: 9/9/2011 9:59:31 PM - Removed HiJackThis
RP1246: 9/9/2011 10:04:17 PM - Installed HiJackThis
RP1247: 9/9/2011 10:05:55 PM - Removed HiJackThis
RP1248: 9/9/2011 10:06:52 PM - Installed HiJackThis
RP1249: 9/9/2011 10:13:11 PM - Removed HiJackThis
RP1250: 9/9/2011 10:15:49 PM - Installed HiJackThis
RP1251: 9/10/2011 3:56:45 PM - Scheduled Checkpoint
.
==== Installed Programs ======================
.
Acrobat.com
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bonjour
CCleaner
CenturyLink Installer
DVD Flick 1.3.0.6
Google Chrome
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
ImgBurn
Java Auto Updater
Java(TM) 6 Update 26
Malwarebytes' Anti-Malware version 1.51.1.1800
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Norton AntiVirus
NVIDIA Drivers
QuickTime
Realtek High Definition Audio Driver
Safari
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Spelling Dictionaries Support For Adobe Reader 9
Spybot - Search & Destroy
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
VDownloader 0.83
VLC media player 0.9.2
.
==== Event Viewer Messages From Past Week ========
.
9/10/2011 9:08:10 AM, Error: Microsoft-Windows-Kernel-General [5] - {Registry Hive Recovered} Registry hive (file): '\??\C:\Users\Admin\AppData\Local\Microsoft\Windows\UsrClass.dat' was corrupted and it has been recovered. Some data might have been lost.
9/10/2011 12:14:59 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Null
9/10/2011 12:14:59 PM, Error: Service Control Manager [7000] - The Symantec Eraser Service service failed to start due to the following error: The system cannot find the path specified.
9/10/2011 12:14:59 PM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
.
==== End Of File ===========================

Hoov · « **Reply #18 on:** September 10, 2011, 08:29:30 PM »

Well that looks much better, but there is still one entry that bothers me. Please reboot the computer and run DDS again. Just post the top log, no need to post the second one.

Also check out your Google search and the results and see if there are any redirections. Let me know how your computer is running.

lifer_refil · « **Reply #19 on:** September 10, 2011, 08:38:06 PM »

My search engines are working properly. Here's the log:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Admin at 20:33:49 on 2011-09-10
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2014.937 [GMT -6:00]
.
AV: Norton AntiVirus Online *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus Online *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AutoInstall\AR9170_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE
C:\Program Files\Qwest 11n Wireless WPS Tool\WpsCenterV.exe
C:\Program Files\CenturyLink\Desktop\CenturyLinkTouchPointAgent.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Admin\AppData\Local\Lexar Media\LxrAutorun.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Users\Admin\AppData\Local\Temp\RarSFX0\AutoInstallEJCDSVC.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\LxrSII1s.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Windows\system32\DllHost.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton antivirus\engine\18.6.0.29\ips\IPSBHO.DLL
BHO: {9D425283-D487-4337-BAB6-AB8354A81457} - No File
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: {9D425283-D487-4337-BAB6-AB8354A81457} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [VoipStunt] "c:\program files\voipstunt.com\voipstunt\VoipStunt.exe" -nosplash -minimized
uRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
uRun: [Weather] c:\program files\aws\weatherbug\Weather.exe 1
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [LxrAutorun] c:\users\admin\appdata\local\lexar media\LxrAutorun.exe
uRun: [Google Update] "c:\users\admin\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AutoEJCD_0ACE20FF] c:\program files\autoinstall\ar9170_auto_install_cd_only_gen_0ace20ff\AutoEJCD.EXE /VID=0ACE /PID=20FF
mRun: [Qwest 11n Wireless WPS Tool] c:\program files\qwest 11n wireless wps tool\WpsCenterV.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [CenturyLinkTouchPointAgent] "c:\program files\centurylink\desktop\CenturyLinkTouchPointAgent.exe" /autostart
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 2 (0x2)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 192.168.0.1 205.171.3.25
TCP: Interfaces\{863473D3-EB68-48E4-8CC2-67DF61811975} : DhcpNameServer = 192.168.0.1 205.171.3.25
TCP: Interfaces\{E2EF76AE-D5D5-4473-88E9-D967FF83A8D9} : DhcpNameServer = 192.168.0.1 205.171.3.25
Hosts: 64.86.16.113 google.com
.
============= SERVICES / DRIVERS ===============
.
R0 amacpi;Microsoft Away Mode System;c:\windows\system32\drivers\null.sys [2008-8-5 4608]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nav\1206000.01d\symds.sys [2011-9-8 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1206000.01d\symefa.sys [2011-9-8 744568]
R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.5.0.125\definitions\bashdefs\20110901.001\BHDrvx86.sys [2011-9-2 815736]
R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.5.0.125\definitions\ipsdefs\20110909.030\IDSvix86.sys [2011-9-9 368248]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nav\1206000.01d\ironx86.sys [2011-9-8 136312]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nav\1206000.01d\symtdiv.sys [2011-9-8 331384]
R2 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [2007-12-5 77824]
R2 AutoInstallEJCD;Auto Install Eject CD Service;c:\users\admin\appdata\local\temp\rarsfx0\AutoInstallEJCDSvc.exe [2010-7-21 16384]
R2 LxrSII1d;Secure II Driver;c:\windows\system32\drivers\LxrSII1d.sys [2009-9-13 72672]
R2 NAV;Norton AntiVirus;c:\program files\norton antivirus\engine\18.6.0.29\ccsvchst.exe [2011-9-8 130008]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2011-9-10 1153368]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-9-8 105592]
R3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2008-8-5 987648]
R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2008-8-5 251904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 EraserSvc11013;Symantec Eraser Service;"c:\program files\norton antivirus\engine\18.5.0.125\ccsvchst.exe" /h cccommon --> c:\program files\norton antivirus\engine\18.5.0.125\ccSvcHst.exe [?]
S2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-8-5 21504]
S3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.12.1;c:\windows\system32\drivers\libusb0.sys [2009-3-17 28672]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-9-10 41272]
S3 QW720V32;Qwest 802.11n XN720 Driver(vista);c:\windows\system32\drivers\WLANUHN.sys [2010-7-21 449536]
S3 TIAcxubt;D-Link WLAN USB Boot Device;c:\windows\system32\drivers\tiacxubt.sys [2011-7-8 17536]
S3 TIACXUSB;D-Link AirPlus DWL-120+ Wireless USB Adapter;c:\windows\system32\drivers\tiacxusb.sys [2011-7-8 177280]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 ZDCNDIS5;ZDCNDIS Protocol Driver;c:\windows\system32\ZDCndis5.sys [2010-7-21 29056]
.
=============== Created Last 30 ================
.
2011-09-10 22:41:01   --------   d-----w-   c:\programdata\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-09-10 22:31:47   --------   d-----w-   c:\users\admin\appdata\local\PackageAware
2011-09-10 17:06:59   --------   d-----w-   c:\program files\HostsXpert
2011-09-10 14:29:51   --------   d-----w-   c:\programdata\Spybot - Search & Destroy
2011-09-10 14:29:51   --------   d-----w-   c:\program files\Spybot - Search & Destroy
2011-09-10 07:30:29   --------   d-----w-   c:\users\admin\appdata\roaming\Malwarebytes
2011-09-10 07:30:20   41272   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2011-09-10 07:30:20   --------   d-----w-   c:\programdata\Malwarebytes
2011-09-10 07:30:17   22712   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-09-10 07:30:17   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2011-09-10 06:33:41   --------   d-----w-   c:\program files\CCleaner
2011-09-10 04:16:08   388096   ----a-r-   c:\users\admin\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-09-10 04:16:07   --------   d-----w-   c:\program files\Trend Micro
2011-09-10 02:43:37   876032   ----a-w-   c:\windows\system32\XpsPrint.dll
2011-09-10 02:18:16   --------   d-----w-   c:\program files\Windows Portable Devices
2011-09-10 02:14:35   92672   ----a-w-   c:\windows\system32\UIAnimation.dll
2011-09-10 02:14:35   1164800   ----a-w-   c:\windows\system32\UIRibbonRes.dll
2011-09-10 02:14:34   3023360   ----a-w-   c:\windows\system32\UIRibbon.dll
2011-09-10 02:11:54   555520   ----a-w-   c:\windows\system32\UIAutomationCore.dll
2011-09-10 02:11:54   4096   ----a-w-   c:\windows\system32\oleaccrc.dll
2011-09-10 02:11:54   234496   ----a-w-   c:\windows\system32\oleacc.dll
2011-09-10 02:06:33   2409784   ----a-w-   c:\program files\windows mail\OESpamFilter.dat
2011-09-10 02:05:20   3602832   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2011-09-10 02:05:20   3550096   ----a-w-   c:\windows\system32\ntoskrnl.exe
2011-09-10 02:05:16   375808   ----a-w-   c:\windows\system32\winsrv.dll
2011-09-10 02:04:57   905104   ----a-w-   c:\windows\system32\drivers\tcpip.sys
2011-09-10 02:04:56   2048   ----a-w-   c:\windows\system32\tzres.dll
2011-09-10 02:04:50   231424   ----a-w-   c:\windows\system32\msshsq.dll
2011-09-10 01:41:51   --------   d-----w-   c:\windows\system32\eu-ES
2011-09-10 01:41:51   --------   d-----w-   c:\windows\system32\ca-ES
2011-09-10 01:41:50   --------   d-----w-   c:\windows\system32\vi-VN
2011-09-09 06:25:17   --------   d-----w-   c:\users\admin\appdata\roaming\Tific
2011-09-09 06:25:13   --------   d-----w-   c:\users\admin\appdata\local\Symantec
2011-09-09 05:38:43   --------   d-----w-   c:\users\admin\appdata\local\CrashDumps
2011-09-09 05:15:59   149504   ----a-w-   c:\program files\common files\microsoft shared\ink\tabskb.dll
2011-09-09 05:14:19   136704   ----a-w-   c:\windows\system32\drivers\exfat.sys
2011-09-09 05:14:02   986600   ----a-w-   c:\windows\system32\winload.exe
2011-09-09 05:14:02   926184   ----a-w-   c:\windows\system32\winresume.exe
2011-09-09 04:49:59   --------   d-----w-   c:\program files\common files\Windows Live
2011-09-09 04:32:53   --------   d-sh--w-   C:\found.001
2011-09-09 02:32:15   79872   ----a-w-   c:\windows\system32\drivers\mrxsmb20.sys
2011-09-09 02:32:15   214016   ----a-w-   c:\windows\system32\drivers\mrxsmb10.sys
2011-09-09 02:32:15   106496   ----a-w-   c:\windows\system32\drivers\mrxsmb.sys
2011-09-09 02:32:09   146432   ----a-w-   c:\windows\system32\drivers\srv2.sys
2011-09-09 02:32:09   102400   ----a-w-   c:\windows\system32\drivers\srvnet.sys
2011-09-09 02:32:06   1169408   ----a-w-   c:\windows\system32\sdclt.exe
2011-09-09 02:32:04   1205080   ----a-w-   c:\windows\system32\ntdll.dll
2011-09-09 02:32:01   2043392   ----a-w-   c:\windows\system32\win32k.sys
2011-09-09 02:29:33   677888   ----a-w-   c:\windows\system32\mstsc.exe
2011-09-09 02:29:33   63488   ----a-w-   c:\windows\system32\tscupgrd.exe
2011-09-09 02:29:33   2067968   ----a-w-   c:\windows\system32\mstscax.dll
2011-09-09 02:26:59   276992   ----a-w-   c:\windows\system32\schannel.dll
2011-09-09 02:21:56   558080   ----a-w-   c:\windows\system32\sysmain.dll
2011-09-09 02:20:59   107520   ----a-w-   c:\windows\system32\imapi.dll
2011-09-09 01:02:24   87552   ----a-w-   c:\windows\system32\SearchFilterHost.exe
2011-09-09 01:01:59   313344   ----a-w-   c:\windows\system32\thawbrkr.dll
2011-09-09 01:00:56   89088   ----a-w-   c:\windows\system32\pintlgnt.ime
2011-09-09 00:29:05   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2011-09-08 22:14:16   744568   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symefa.sys
2011-09-08 22:14:16   331384   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symtdiv.sys
2011-09-08 22:14:16   296568   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symnets.sys
2011-09-08 22:14:15   516216   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\srtsp.sys
2011-09-08 22:14:15   50168   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\srtspx.sys
2011-09-08 22:14:15   340088   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\symds.sys
2011-09-08 22:14:15   136312   ----a-w-   c:\windows\system32\drivers\nav\1206000.01d\ironx86.sys
2011-09-08 22:13:25   --------   d-----w-   c:\windows\system32\drivers\nav\1206000.01D
2011-09-08 21:52:22   126584   ----a-w-   c:\windows\system32\drivers\SYMEVENT.SYS
2011-09-08 21:52:22   --------   d-----w-   c:\program files\Symantec
2011-09-08 21:52:22   --------   d-----w-   c:\program files\common files\Symantec Shared
2011-09-08 21:51:07   --------   d-----w-   c:\windows\system32\drivers\NAV
2011-09-08 21:51:05   --------   d-----w-   c:\program files\Norton AntiVirus
2011-09-08 21:51:04   --------   d-----w-   c:\programdata\Norton
2011-09-08 21:51:01   --------   d-----w-   c:\programdata\NortonInstaller
2011-09-08 21:51:01   --------   d-----w-   c:\program files\NortonInstaller
2011-09-08 21:48:17   --------   d-----w-   c:\windows\system32\EventProviders
2011-09-08 21:38:58   7152464   ----a-w-   c:\programdata\microsoft\windows defender\definition updates\{4803d96d-8be0-4b18-a45e-d848a5944f00}\mpengine.dll
2011-09-08 21:35:46   --------   d-----w-   c:\programdata\CenturyLink
2011-09-08 21:35:18   --------   d-----w-   c:\program files\Qwest
2011-09-08 21:34:42   --------   d-----w-   c:\program files\CenturyLink
.
==================== Find3M ====================
.
2011-09-08 22:00:18   770048   ----a-w-   c:\windows\system32\nvcplui.exe
.
============= FINISH: 20:35:13.61 ===============

Hoov · « **Reply #20 on:** September 10, 2011, 09:18:29 PM »

Can you zip your hosts file up and attach it to a response?

lifer_refil · « **Reply #21 on:** September 10, 2011, 09:20:50 PM »

I'm sorry, what file is that?

Hoov · « **Reply #22 on:** September 10, 2011, 09:42:23 PM »

C:\WINDOWS\system32\drivers\etc\hosts

lifer_refil · « **Reply #23 on:** September 10, 2011, 09:44:46 PM »

Attached.

Hoov · « **Reply #24 on:** September 10, 2011, 10:14:58 PM »

Please replace it with the attached file. I edited out a single line.

Once you have replaced it, reboot your computer and then run DDS again and see if this line is at the bottom of the pseudo HJT section,

Hosts: 64.86.16.113 google.com

Let me know.

lifer_refil · « **Reply #25 on:** September 10, 2011, 10:23:14 PM »

The line is not there.

Hoov · « **Reply #26 on:** September 10, 2011, 10:32:47 PM »

OK, I will go thru the rest of the log tomorrow morning. How is everything working?

lifer_refil · « **Reply #27 on:** September 10, 2011, 10:36:49 PM »

Seems fine. Thanks.

lifer_refil · « **Reply #28 on:** September 10, 2011, 11:46:06 PM »

I thought I'd add some things I noticed that maybe you can look at tomorrow.

I couldn't download Adobe Reader nor Flash. I can download the .exe file, but system doesn't seem to run it.

My desktop is weird. My Recycle Bin icon disappeared and I see it in the "Desktop" folder, but not on the desktop, no matter what arranging I do by name/date/etc.

Hoov · « **Reply #29 on:** September 11, 2011, 07:35:30 AM »

Can you run any EXE file?

As for the recycle bin, right click on the desktop and select personalize. On the left select change desktop icons. Now make sure that the recycle bin is selected. If it is, unselect it click apply then reboot and then select it again and then click apply. See if the icon comes back.

News:

Author Topic: [Resolved] Search Engine Abnormalities (Read 3353 times)

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

lifer_refil

Re: [In Progress] Search Engine Abnormalities

Hoov

Re: [In Progress] Search Engine Abnormalities