« previous next »
Pages: 1 2 [3]

Author Topic: yoog  (Read 6846 times)

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #40 on: June 20, 2009, 07:50:09 PM »
OTListIt2 is outdated
Can you do the following:
Please download [color=\"blue\"]OTS.exe[/color][/url] to your Desktop.

  • Close ALL OTHER PROGRAMS.
  • RIGHT-Click on OTS.exe and choose Run as Administrator.
  • Under Additional Scans (purple bar) click "Extras".
  • Check the box next to Include 64bit scans (on the left side of the gray toolbar)
  • Do not change any other settings.
  • Now click the Run Scan button on the left side of the toolbar.
  • Let it run unhindered until it finishes.
  • When the scan is complete, Notepad will open with the report file loaded in it.
  • Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.
Post that log back here
« Last Edit: June 20, 2009, 07:50:45 PM by guestolo »
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #41 on: June 20, 2009, 09:44:02 PM »
Trying to post log, but having a hard time. I removed the word wrap check under format. I copy and paste and hit add reply and it vanishes.
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #42 on: June 20, 2009, 09:45:51 PM »
See if you can just Upload the log
In a reply box, click on Browse.... on the bottom right
browse to the log and select it, then click the UPLOAD button
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #43 on: June 20, 2009, 10:01:49 PM »
[quote name=\'guestolo\' post=\'463593\' date=\'Jun 20 2009, 10:45 PM\']See if you can just Upload the log
In a reply box, click on Browse.... on the bottom right
browse to the log and select it, then click the UPLOAD button[/quote]

Hope this is right!
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #44 on: June 20, 2009, 10:29:56 PM »
When you say 'yoog' in on your Internet Explorer, what do you mean by that?
In your Search engine?
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #45 on: June 30, 2009, 07:09:18 AM »
I went to use Internet Explorer, which is not the main search engine I use and noticed in the search box that yoog is listed as the search engine. I did not click on it. I just closed internet explorer. I use mozilla firefox for my searches, which is fine.
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #46 on: July 01, 2009, 03:04:48 PM »
  • Download [color=\"#FF0000\"]OTL[/color][/url] to your desktop.
  • Double click on the icon to run it.
  • Under the [color=\"#0000FF\"]Custom Scans/Fixes[/color] box at the bottom, paste in the entire contents of the Code box below, starting with :OTL, not including the work code
Code: [Select]
:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www2.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www3.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www5.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www6.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www7.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www8.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www9.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www10.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www11.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www13.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www14.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www15.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www26.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www27.yoog.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www28.yoog.com/
FF - prefs.js..browser.search.defaulturl: "http://www28.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www28.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www28.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www28.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaultenginename: "Yoog Search"
FF - prefs.js..browser.search.defaulturl: "http://www14.yoog.com/search.php?q="
FF - prefs.js..browser.search.selectedEngine: "Yoog Search"
FF - prefs.js..keyword.URL: "http://www14.yoog.com/search.php?q="
FF - user.js..browser.search.defaultenginename: "Yoog Search"
FF - user.js..browser.search.defaulturl: "http://www14.yoog.com/search.php?q="
FF - user.js..browser.search.selectedEngine: "Yoog Search"
FF - user.js..keyword.URL: "http://www14.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www8.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www8.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www8.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www8.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www15.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www15.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www5.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www7.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www7.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www7.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www7.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www13.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www13.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www13.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www13.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www3.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www3.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www3.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www3.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www10.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www10.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www10.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www10.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www11.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www11.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www11.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www11.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www2.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www2.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www2.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www2.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www26.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www26.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www26.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www26.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www5.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www5.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www5.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www5.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www1.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www1.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www1.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www1.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www9.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www9.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www9.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www9.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www6.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www6.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www6.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www6.yoog.com/search.php?q="
FF - prefs.js..browser.search.defaulturl: "http://www27.yoog.com/search.php?q="
FF - prefs.js..keyword.URL: "http://www27.yoog.com/search.php?q="
FF - user.js..browser.search.defaulturl: "http://www27.yoog.com/search.php?q="
FF - user.js..keyword.URL: "http://www27.yoog.com/search.php?q="
FF - user.js..keyword.enabled: true

:Files
%ProgramFiles%\IEToolbar
%ProgramFiles%\Mozilla Firefox\components\nsadzgalore.dll
%ProgramFiles%\Mozilla Firefox\components\nsadsoftinc.dll
%ProgramFiles%\Mozilla Firefox\components\nsBrowserOpt.dll
%ProgramFiles%\Mozilla Firefox\searchplugins\Yoog.xml
%ProgramFiles%\Mozilla Firefox\components\nsBrowserDc.dll
%ProgramFiles%\Mozilla Firefox\components\nsdcads.dll
%APPDATA%\Mozilla\Firefox\Profiles\Yoog Search.xml /s
%PROGRAMFILES%\Mozilla Firefox\components\mexmgzdhgnvqilpib.dll
%SystemRoot%\system32\mexmgzdhgnvqilpib.dll
%PROGRAMFILES%\mozilla firefox\components\zvakwomxas.dll
%SystemRoot%\system32\zawcukanoit.exe
%SystemRoot%\System32\lkvwtxiako.dll  
%SystemRoot%\system32\zvakwomxas.dll
%SystemRoot%\system32\dgbzetddjouspgzqz.dll
%SystemRoot%\System32\nsn*.dll
%SystemRoot%\nmwi*.exe
%SystemRoot%\system32\nsx*.dll
%SystemRoot%\system32\nsj*.dll
%SystemRoot%\system32\nsv*.dll
%systemroot%\system32\nsf*.dll
%systemroot%\mutfp*.exe
%systemroot%\obwu*.exe
%systemroot%\ntaj*.exe
%systemroot%\nwuhr*.exe
%systemroot%\System32\nss*.dll
%SystemRoot%\system32\*-uninst.exe
%SystemRoot%\system32\*-remove.exe
%systemroot%\system32\nsr*.dll
%systemroot%\reax*.exe
%systemroot%\giptf*.exe
%systemroot%\tkoo*.exe
%systemroot%\axjth*.exe
%systemroot%\ertbg*.exe
%systemroot%\jnnmp*.exe
%systemroot%\bprxe*.exe
%systemroot%\xwisg*.exe
%systemroot%\jpng*.exe
%systemroot%\fhsv*.exe
%systemroot%\dfmqc*.exe
%systemroot%\wgfp*.exe
%systemroot%\gweq*.exe
%systemroot%\pxwis*.exe
%systemroot%\fcvmq*.exe
%systemroot%\System32\hfkxlchuhv.dll
%systemroot%\System32\nst*.dll
%systemroot%\dmkv*.exe
%systemroot%\system32\nseE*.dll
%systemroot%\System32\nsk*.dll
%systemroot%\system32\mexmgzdhgnvqilpib.dll
%systemroot%\system32\ibgyxrpdcrlay.dll
%systemroot%\system32\ympweffizcodl.exe
%systemroot%\kdiue732.txt
%systemroot%\system32\jmcvcflmiugsrfia.exe
%PROGRAMFILES%\VnrBlock
%PROGRAMFILES%\iCheck
%systemroot%\tvilp*.exe
%systemroot%\itqot*.exe
%systemroot%\system32\wskuofzpxkxdb.exe
%systemroot%\tutvo*.exe
%systemroot%\hsep*.exe
%systemroot%\system32\pihtwcdtsghokinvg.dll
%systemroot%\system32\juluypfvhofv.dll
%systemroot%\system32\nsi*.dll
%systemroot%\system32\nsl*.dll
%systemroot%\system32\gchnamepziopknko.dll
%systemroot%\system32\pihtwcdtsghokinvg.dll
%systemroot%\system32\yprhhrqubcbujp.exe
%systemroot%\system32\ucicolizrhssr.dll
%systemroot%\system32\hiwdrlnk.exe
%systemroot%\System32\nsg*.dll
%systemroot%\System32\jifgoojjyhmkthcfk.dll
%USERPROFILE%\Start Menu\Programs\Startup\runit_32.lnk
%PROGRAMFILES%\runit
%systemroot%\System32\dsygtypzdloyoxivg.exe
%systemroot%\System32\qdfggdhhofhhylbfx.exe
%ProgramFiles%\mozilla firefox\components\????????-????-????-????-????????????.dll
%systemroot%\System32\????????-????-????-????-????????????.exe

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b0d2e786-354b-fea1-8de7-883e7524e6d2}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2fe5f61-3eb4-4e22-7c84-f52993635f52}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f20e8516-7d08-c1e3-e689-96d39bb42220}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{ad7781e6-d262-25f8-389d-967a6d974748}"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{314506e6-db9d-d679-08b6-c16f288ad5c9}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AC4A7813-6844-2FF3-D929-DCB471E346AB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77cab7d9-e377-ddfc-7d69-cd9cab0e10ff}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8620A38-0404-12B1-FA60-5A0C1FB1C6A5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B188763A-902C-98E9-780E-DAA0BF25BBFD}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4c18a538-eb55-9029-1fdb-37769fbefee2}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{314506e6-db9d-d679-08b6-c16f288ad5c9}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AC4A7813-6844-2FF3-D929-DCB471E346AB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58b39041-fe10-d989-5b61-50d6fe664b48}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{994b5fb4-0103-44a6-b6b3-c73572b362bc}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c8217294-fa91-dd4d-ba56-4561001b63c8}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{670b520c-3f08-4d72-94a5-047740c07766}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78f9a905-789c-d4b1-d5d6-336920981691}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78ff6579-e7fe-8225-43c1-3fe7864edc62}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e8217e11-e93b-fc21-7455-fea561f86263}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\nlhbxrcsmhodrzf]

:Commands
[purity]
[emptytemp]
[Reboot]
  • Close down ALL browser windows that are open, especially Firefox
       
  • Then click the [color=\"#FF0000\"]Run Fix[/color] button at the top
       
  • Let the program run unhindered, reboot the PC when it is done
  • The fix should only take a few minutes to run. If it appears to freeze then try it again.

Post back the log that opens on startup, keep me informed of any problems
A copy of the log can also be found in the following folder>>C:\_OTL\MovedFiles
« Last Edit: July 01, 2009, 03:10:54 PM by guestolo »
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #47 on: July 01, 2009, 07:54:58 PM »
All processes killed
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Prefs.js: "http://www28.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www28.yoog.com/search.php?q=" removed from keyword.URL
C:\Users\home\AppData\Roaming\Mozilla\FireFox\Profiles\yk9dkhpe.default\user.js moved successfully.
Prefs.js: "Yoog Search" removed from browser.search.defaultenginename
Prefs.js: "http://www14.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "Yoog Search" removed from browser.search.selectedEngine
Prefs.js: "http://www14.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www8.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www8.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www15.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www7.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www7.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www13.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www13.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www3.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www3.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www10.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www10.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www11.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www11.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www2.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www2.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www26.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www26.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www5.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www5.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www1.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www1.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www9.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www9.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www6.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www6.yoog.com/search.php?q=" removed from keyword.URL
Prefs.js: "http://www27.yoog.com/search.php?q=" removed from browser.search.defaulturl
Prefs.js: "http://www27.yoog.com/search.php?q=" removed from keyword.URL
========== FILES ==========
File/Folder C:\Program Files (x86)\IEToolbar not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\nsadzgalore.dll not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\nsadsoftinc.dll not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\nsBrowserOpt.dll not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\searchplugins\Yoog.xml not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\nsBrowserDc.dll not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\nsdcads.dll not found.
File/Folder C:\Users\home\AppData\Roaming\Mozilla\Firefox\Profiles\Yoog Search.xml not found.
File/Folder C:\Program Files (x86)\Mozilla Firefox\components\mexmgzdhgnvqilpib.dll not found.
File/Folder C:\Windows\system32\mexmgzdhgnvqilpib.dll not found.
File/Folder C:\Program Files (x86)\mozilla firefox\components\zvakwomxas.dll not found.
File/Folder C:\Windows\system32\zawcukanoit.exe not found.
File/Folder C:\Windows\System32\lkvwtxiako.dll not found.
File/Folder C:\Windows\system32\zvakwomxas.dll not found.
File/Folder C:\Windows\system32\dgbzetddjouspgzqz.dll not found.
File/Folder C:\Windows\System32\nsn*.dll not found.
File/Folder C:\Windows\nmwi*.exe not found.
File/Folder C:\Windows\system32\nsx*.dll not found.
File/Folder C:\Windows\system32\nsj*.dll not found.
File/Folder C:\Windows\system32\nsv*.dll not found.
File/Folder C:\Windows\system32\nsf*.dll not found.
File/Folder C:\Windows\mutfp*.exe not found.
File/Folder C:\Windows\obwu*.exe not found.
File/Folder C:\Windows\ntaj*.exe not found.
File/Folder C:\Windows\nwuhr*.exe not found.
File/Folder C:\Windows\System32\nss*.dll not found.
File/Folder C:\Windows\system32\*-uninst.exe not found.
File/Folder C:\Windows\system32\*-remove.exe not found.
File/Folder C:\Windows\system32\nsr*.dll not found.
File/Folder C:\Windows\reax*.exe not found.
File/Folder C:\Windows\giptf*.exe not found.
File/Folder C:\Windows\tkoo*.exe not found.
File/Folder C:\Windows\axjth*.exe not found.
File/Folder C:\Windows\ertbg*.exe not found.
File/Folder C:\Windows\jnnmp*.exe not found.
File/Folder C:\Windows\bprxe*.exe not found.
File/Folder C:\Windows\xwisg*.exe not found.
File/Folder C:\Windows\jpng*.exe not found.
File/Folder C:\Windows\fhsv*.exe not found.
File/Folder C:\Windows\dfmqc*.exe not found.
File/Folder C:\Windows\wgfp*.exe not found.
File/Folder C:\Windows\gweq*.exe not found.
File/Folder C:\Windows\pxwis*.exe not found.
File/Folder C:\Windows\fcvmq*.exe not found.
File/Folder C:\Windows\System32\hfkxlchuhv.dll not found.
File/Folder C:\Windows\System32\nst*.dll not found.
File/Folder C:\Windows\dmkv*.exe not found.
File/Folder C:\Windows\system32\nseE*.dll not found.
File/Folder C:\Windows\System32\nsk*.dll not found.
File/Folder C:\Windows\system32\mexmgzdhgnvqilpib.dll not found.
File/Folder C:\Windows\system32\ibgyxrpdcrlay.dll not found.
File/Folder C:\Windows\system32\ympweffizcodl.exe not found.
File/Folder C:\Windows\kdiue732.txt not found.
File/Folder C:\Windows\system32\jmcvcflmiugsrfia.exe not found.
File/Folder C:\Program Files (x86)\VnrBlock not found.
File/Folder C:\Program Files (x86)\iCheck not found.
File/Folder C:\Windows\tvilp*.exe not found.
File/Folder C:\Windows\itqot*.exe not found.
File/Folder C:\Windows\system32\wskuofzpxkxdb.exe not found.
File/Folder C:\Windows\tutvo*.exe not found.
File/Folder C:\Windows\hsep*.exe not found.
File/Folder C:\Windows\system32\pihtwcdtsghokinvg.dll not found.
File/Folder C:\Windows\system32\juluypfvhofv.dll not found.
DllUnregisterServer procedure not found in C:\Windows\system32\nsi.dll
C:\Windows\system32\nsi.dll NOT unregistered.
File move failed. C:\Windows\system32\nsi.dll scheduled to be moved on reboot.
File/Folder C:\Windows\system32\nsl*.dll not found.
File/Folder C:\Windows\system32\gchnamepziopknko.dll not found.
File/Folder C:\Windows\system32\pihtwcdtsghokinvg.dll not found.
File/Folder C:\Windows\system32\yprhhrqubcbujp.exe not found.
File/Folder C:\Windows\system32\ucicolizrhssr.dll not found.
File/Folder C:\Windows\system32\hiwdrlnk.exe not found.
File/Folder C:\Windows\System32\nsg*.dll not found.
File/Folder C:\Windows\System32\jifgoojjyhmkthcfk.dll not found.
File/Folder C:\Users\home\Start Menu\Programs\Startup\runit_32.lnk not found.
File/Folder C:\Program Files (x86)\runit not found.
File/Folder C:\Windows\System32\dsygtypzdloyoxivg.exe not found.
File/Folder C:\Windows\System32\qdfggdhhofhhylbfx.exe not found.
File/Folder C:\Program Files (x86)\mozilla firefox\components\????????-????-????-????-????????????.dll not found.
File/Folder C:\Windows\System32\????????-????-????-????-????????????.exe not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b0d2e786-354b-fea1-8de7-883e7524e6d2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b0d2e786-354b-fea1-8de7-883e7524e6d2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2fe5f61-3eb4-4e22-7c84-f52993635f52}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2fe5f61-3eb4-4e22-7c84-f52993635f52}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f20e8516-7d08-c1e3-e689-96d39bb42220}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f20e8516-7d08-c1e3-e689-96d39bb42220}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{ad7781e6-d262-25f8-389d-967a6d974748} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ad7781e6-d262-25f8-389d-967a6d974748}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{314506e6-db9d-d679-08b6-c16f288ad5c9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314506e6-db9d-d679-08b6-c16f288ad5c9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AC4A7813-6844-2FF3-D929-DCB471E346AB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AC4A7813-6844-2FF3-D929-DCB471E346AB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77cab7d9-e377-ddfc-7d69-cd9cab0e10ff}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{77cab7d9-e377-ddfc-7d69-cd9cab0e10ff}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8620A38-0404-12B1-FA60-5A0C1FB1C6A5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B8620A38-0404-12B1-FA60-5A0C1FB1C6A5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B188763A-902C-98E9-780E-DAA0BF25BBFD}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B188763A-902C-98E9-780E-DAA0BF25BBFD}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4c18a538-eb55-9029-1fdb-37769fbefee2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4c18a538-eb55-9029-1fdb-37769fbefee2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{314506e6-db9d-d679-08b6-c16f288ad5c9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314506e6-db9d-d679-08b6-c16f288ad5c9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AC4A7813-6844-2FF3-D929-DCB471E346AB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AC4A7813-6844-2FF3-D929-DCB471E346AB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58b39041-fe10-d989-5b61-50d6fe664b48}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{58b39041-fe10-d989-5b61-50d6fe664b48}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{994b5fb4-0103-44a6-b6b3-c73572b362bc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{994b5fb4-0103-44a6-b6b3-c73572b362bc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c8217294-fa91-dd4d-ba56-4561001b63c8}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c8217294-fa91-dd4d-ba56-4561001b63c8}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{670b520c-3f08-4d72-94a5-047740c07766}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{670b520c-3f08-4d72-94a5-047740c07766}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78f9a905-789c-d4b1-d5d6-336920981691}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78f9a905-789c-d4b1-d5d6-336920981691}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78ff6579-e7fe-8225-43c1-3fe7864edc62}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78ff6579-e7fe-8225-43c1-3fe7864edc62}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e8217e11-e93b-fc21-7455-fea561f86263}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e8217e11-e93b-fc21-7455-fea561f86263}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\nlhbxrcsmhodrzf\ not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: AppData
 
User: Default
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Default User
->Temporary Internet Files folder emptied: 0 bytes
 
User: home
File delete failed. C:\Users\home\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 115230645 bytes
->Java cache emptied: 17118336 bytes
->FireFox cache emptied: 87809001 bytes
->Google Chrome cache emptied: 137545201 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
Windows Temp folder emptied: 2832700 bytes
 
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 343.87 mb
 
 
OTL by OldTimer - Version 3.0.6.1 log created on 07012009_204855

Files\Folders moved on Reboot...
DllUnregisterServer procedure not found in C:\Windows\system32\nsi.dll
C:\Windows\system32\nsi.dll NOT unregistered.
File move failed. C:\Windows\system32\nsi.dll scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #48 on: July 01, 2009, 08:23:41 PM »
Quote
keep me informed of any problems

Any problems? Any sign of yoog?
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #49 on: July 02, 2009, 01:33:10 PM »
For internet explorer, it is still showing yoog as the default search engine.  Mozilla is fine, no sign of yoog.
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
yoog
« Reply #50 on: July 02, 2009, 10:02:59 PM »
I run Firefox also as my Primary browser
I'm running Internet Explorer 8, should be similiar to version 7

Open IE
Beside the Search bar, should be a drop down arrow (magnify glass)
In the drop down box
Select "Manage Search Engines"
Highlight "Yoog" and Remove it
Highlight your preferred Search engine and set to default

Close IE and reboot
Reopen IE, does that help you out?
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline sona

  • Newbie
  • *
  • Posts: 33
  • Karma: +0/-0
    • View Profile
yoog
« Reply #51 on: July 03, 2009, 09:20:50 AM »
Yes! Thank you!
Logged
Pages: 1 2 [3]
« previous next »