1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: Firefox links / sponsored links don't always open

Discussion in 'Web & Email' started by Tanglefoot1, Jan 28, 2010.

Thread Status:
Not open for further replies.
Advertisement
  1. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Hi, can anyone please help me with this problem. Some links from within websites often just won't open, a new page appears but it remains blank and in the bottom left hand corner it says "Done". This also happens quite a lot with sponsored links in Google too, they just don't open.

    After reading some previous posts, I have tried disabling Add-Ons to no avail. I also read one entry where somebody posted a HJT log and from that, was helped by one of you good people, could I possibly do the same?

    Thanks.
     
  2. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
  3. Augie65

    Augie65

    Joined:
    Mar 23, 2005
    Messages:
    6,052
  4. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Hi, sorry for the delay in getting back to this. Thanks for the reply, much appreciated. I've tried creating a new profile and the problem remains the same. For example in Google I enter 'car dealers' and a sponsored link at the top for webuyanycar.com is at the top, I select this and the new screen opens (or at least tries to) but all I get it a blank page saying 'Done' in the bottom left corner.
     
  5. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
  6. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
  7. Speedbird1

    Speedbird1

    Joined:
    Oct 22, 2009
    Messages:
    154
    I often have trouble downloading using Firefox. I was unable to get my new TrendNet router started-up while using Firefox. The routers' instructions say that Firefox can be used but it didn't work. I finally switched-over to Internet Explorer and it worked fine. What's the problem with Firefox?
     
  8. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Well I'm hoping I can avoid switching back to IE, I quite like Firefox, but if I don't find another solution then maybe that's what I'll have to do. Can anyone shed any light in this?
     
  9. Speedbird1

    Speedbird1

    Joined:
    Oct 22, 2009
    Messages:
    154
    I also prefer Firefox to IE. I attempted to download my photos from my camera into my PC using Firefox and I cannot find the file. I spent over 1 hour uploading those photos and they disappeared.
     
  10. TerryNet

    TerryNet Moderator

    Joined:
    Mar 23, 2005
    Messages:
    78,048
    First Name:
    Terry
    It sounds like some add-on (yes, I did notice that you disabled them) or plug-in or security application (firewall, anti-virus, etc.) is seeing an ad or something suspicious and not displaying the page.

    With one or a couple of the problem sites try Firefox's Safe Mode and also IE. If you get the same results with IE then it's probably not a problem with the browser.
     
  11. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Right ok, that makes sense. I tried the below link (a sponsored page) on Firefox and it wouldn't open and also on IE and it wouldn't open either. So it''s not a browser problem thanks for helping me establish that.

    So, where do I look next, what is the likely suspect?


    http://www.googleadservices.com/pagead/aclk?sa=L&ai=CPBmxBRx0S47JK4zY0QSzk_C0BNjQtKIBpML3pA3CqqAFEAEgtlQoBVDZoJCPBmC7jrCD0AqgAejKo_YDyAEBqQKu0m6PvRm3PqoEIU_QUZXsfLJBcrzFcxiuLE2-VIqp9tPhefGD7wUQL-Ew8oAFkE4&num=3&val=ChAxMmI1MWM4ZDAwYzYwYTA2EOeKvNgEGggQrcHHFm353CABKAAwl4TsndrD2Yj8AQ&sig=AGiWqtwQSV3998Zs29e3GOkN2luYWIrfZw&adurl=http://www.vivastreet.co.uk/
     
  12. Augie65

    Augie65

    Joined:
    Mar 23, 2005
    Messages:
    6,052
    Check all your security programs, firewall, anti-spyware or other you have to see if
    http://www.vivastreet.co.uk is being blocked.
     
  13. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    this sounds like a badly configured security software blocking sponsored links in google ( not uncommon) BUT I won't rule out malware at this stage

    Download RSIT (random's system information tool) from here to your desktop, then click on the RSIT.exe to start the scan.

    If necessary allow it to locate or download a copy of HijackThis as needed.

    Once the scan completes a textbox will open - copy/paste those contents here for review please. The log can also be found at C:\rsit\log.txt.

    RSIT will also create a second log, info.txt, which will be minimized to your taskbar. Post that here as well please (it will also be stored at C:\rsit\info.txt).

    You can use separate posts here when replying and posting the log files if needed.
     
  14. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Thanks for the help, I'll check as you suggest, much appreciated. I'm also going to do as dvk01 suggests too.
     
  15. Tanglefoot1

    Tanglefoot1 Thread Starter

    Joined:
    Oct 20, 2009
    Messages:
    265
    Here's the first logfile:-

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Gary at 2010-02-11 22:10:38
    Microsoft® Windows Vista™ Home Premium Service Pack 2
    System drive C: has 84 GB (57%) free of 148 GB
    Total RAM: 2047 MB (44% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:10:49, on 11/02/2010
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18882)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\RtHDVCpl.exe
    C:\Acer\Empowering Technology\SysMonitor.exe
    C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\ESET\ESET Smart Security\egui.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Users\Gary\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Program Files\Secunia\PSI\psi.exe
    C:\Users\Gary\AppData\Local\Google\Update\1.2.183.13\GoogleCrashHandler.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\Gary\AppData\Local\Yahoo!\BrowserPlus\2.4.21\BrowserPlusCore.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Gary\Desktop\RSIT.exe
    C:\Program Files\trend micro\Gary.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.uk.acer.yahoo.com
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
    O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Gary\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
    O4 - Startup: Dropbox.lnk = C:\Users\Gary\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Global Startup: Empowering Technology Launcher.lnk = ?
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - http://www.sky.com (file missing)
    O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O15 - Trusted Zone: http://*.mcafee.com
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
    O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-29-0.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
    O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\system32\bgsvcgen.exe
    O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
    O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
    O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    O23 - Service: Google Update Service (gupdate1ca1b99decc913) (gupdate1ca1b99decc913) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

    --
    End of file - 8875 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\Google Software Updater.job
    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-42169913-382833386-455557682-1000Core.job
    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-42169913-382833386-455557682-1000UA.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
    &Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2007-09-05 816400]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
    Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-08-12 668656]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-05 142896]


    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
    "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-07-06 4669440]
    "Acer Empowering Technology Monitor"=C:\Acer\Empowering Technology\SysMonitor.exe [2008-01-10 326176]
    "PCMMediaSharing"=C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [2008-01-26 204908]
    "eDataSecurity Loader"=C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-03-05 526896]
    "WarReg_PopUp"=C:\Acer\WR_PopUp\WarReg_PopUp.exe [2006-11-06 57344]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10 49152]
    "WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-10-10 320832]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]
    "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2009-12-18 40368]
    "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
    "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-11-16 2054360]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
    "Google Update"=C:\Users\Gary\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-05 133104]
    "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "FlashPlayerUpdate"=C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe [2009-10-28 257440]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe
    HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

    C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    Dropbox.lnk - C:\Users\Gary\AppData\Roaming\Dropbox\bin\Dropbox.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA"=0
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "BindDirectlyToPropertySetStorage"=
    "NoDrives"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
    "C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
    "C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
    "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
    "C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
    "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
    "C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
    "C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
    "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
    "C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======File associations======

    .ini - open - "C:\Program Files\GetDiz\GetDiz.exe" "%1"
    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*
    .txt - open - "C:\Program Files\GetDiz\GetDiz.exe" "%1"

    ======List of files/folders created in the last 1 months======

    2010-02-10 08:28:56 ----A---- C:\Windows\system32\ntoskrnl.exe
    2010-02-10 08:28:56 ----A---- C:\Windows\system32\ntkrnlpa.exe
    2010-02-10 08:28:01 ----A---- C:\Windows\system32\quartz.dll
    2010-02-10 08:28:00 ----A---- C:\Windows\system32\msvidc32.dll
    2010-02-10 08:27:59 ----A---- C:\Windows\system32\tsbyuv.dll
    2010-02-10 08:27:59 ----A---- C:\Windows\system32\msyuv.dll
    2010-02-10 08:27:58 ----A---- C:\Windows\system32\msrle32.dll
    2010-02-10 08:27:57 ----A---- C:\Windows\system32\iyuv_32.dll
    2010-02-10 08:27:55 ----A---- C:\Windows\system32\mciavi32.dll
    2010-02-10 08:27:54 ----A---- C:\Windows\system32\msvfw32.dll
    2010-02-10 08:27:54 ----A---- C:\Windows\system32\avifil32.dll
    2010-02-04 15:27:03 ----D---- C:\Program Files\Activision
    2010-02-04 11:52:56 ----D---- C:\Program Files\Common Files\Designer
    2010-01-31 23:00:52 ----D---- C:\Windows\Minidump
    2010-01-28 11:57:05 ----D---- C:\ProgramData\Sun
    2010-01-28 11:57:03 ----D---- C:\Program Files\Common Files\Java
    2010-01-28 11:56:49 ----A---- C:\Windows\system32\javaws.exe
    2010-01-28 11:56:48 ----A---- C:\Windows\system32\javaw.exe
    2010-01-28 11:56:48 ----A---- C:\Windows\system32\java.exe
    2010-01-22 09:12:34 ----D---- C:\Program Files\Microsoft
    2010-01-22 08:17:13 ----A---- C:\Windows\system32\mshtml.dll
    2010-01-22 08:17:11 ----A---- C:\Windows\system32\ieframe.dll
    2010-01-22 08:17:07 ----A---- C:\Windows\system32\urlmon.dll
    2010-01-22 08:17:07 ----A---- C:\Windows\system32\iertutil.dll
    2010-01-22 08:17:06 ----A---- C:\Windows\system32\wininet.dll
    2010-01-22 08:17:05 ----A---- C:\Windows\system32\occache.dll
    2010-01-22 08:17:05 ----A---- C:\Windows\system32\msfeeds.dll
    2010-01-22 08:17:05 ----A---- C:\Windows\system32\iedkcs32.dll
    2010-01-22 08:17:02 ----A---- C:\Windows\system32\ieui.dll
    2010-01-22 08:17:01 ----A---- C:\Windows\system32\msfeedsbs.dll
    2010-01-22 08:17:01 ----A---- C:\Windows\system32\ieUnatt.exe
    2010-01-22 08:17:01 ----A---- C:\Windows\system32\iesysprep.dll
    2010-01-22 08:17:01 ----A---- C:\Windows\system32\iepeers.dll
    2010-01-22 08:17:00 ----A---- C:\Windows\system32\jsproxy.dll
    2010-01-22 08:17:00 ----A---- C:\Windows\system32\ie4uinit.exe
    2010-01-22 08:16:59 ----A---- C:\Windows\system32\msfeedssync.exe
    2010-01-22 08:16:59 ----A---- C:\Windows\system32\iesetup.dll
    2010-01-22 08:16:59 ----A---- C:\Windows\system32\iernonce.dll
    2010-01-13 09:15:07 ----A---- C:\Windows\system32\t2embed.dll
    2010-01-13 09:15:06 ----A---- C:\Windows\system32\fontsub.dll

    ======List of files/folders modified in the last 1 months======

    2010-02-11 22:10:49 ----D---- C:\Windows\Prefetch
    2010-02-11 22:10:49 ----D---- C:\Program Files\Trend Micro
    2010-02-11 22:10:42 ----D---- C:\Windows\Temp
    2010-02-11 22:09:39 ----D---- C:\Users\Gary\AppData\Roaming\Skype
    2010-02-11 22:03:45 ----D---- C:\Program Files\Mozilla Firefox
    2010-02-11 20:47:21 ----D---- C:\Windows\Tasks
    2010-02-11 16:06:26 ----D---- C:\Users\Gary\AppData\Roaming\skypePM
    2010-02-11 15:50:12 ----D---- C:\Users\Gary\AppData\Roaming\Dropbox
    2010-02-11 13:32:05 ----SHD---- C:\Windows\Installer
    2010-02-11 13:31:39 ----D---- C:\Program Files\Google
    2010-02-11 12:51:27 ----D---- C:\Windows\system32\Tasks
    2010-02-11 11:02:42 ----SHD---- C:\System Volume Information
    2010-02-11 08:00:09 ----D---- C:\Windows\System32
    2010-02-11 08:00:09 ----D---- C:\Windows\inf
    2010-02-11 08:00:09 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2010-02-10 09:24:41 ----D---- C:\Windows\winsxs
    2010-02-10 09:14:31 ----D---- C:\Windows\system32\catroot
    2010-02-10 09:09:46 ----D---- C:\Windows\system32\drivers
    2010-02-10 09:09:40 ----D---- C:\Program Files\Windows Mail
    2010-02-10 08:28:18 ----D---- C:\Windows\system32\catroot2
    2010-02-04 16:10:18 ----D---- C:\Windows\system32\config
    2010-02-04 16:10:14 ----D---- C:\Windows\system32\wbem
    2010-02-04 16:10:14 ----D---- C:\Windows\system32\spool
    2010-02-04 16:10:14 ----D---- C:\Windows\system32\Msdtc
    2010-02-04 16:10:14 ----D---- C:\Windows\registration
    2010-02-04 16:10:14 ----D---- C:\Windows
    2010-02-04 16:10:14 ----D---- C:\Users\Gary\AppData\Roaming\.BitTornado
    2010-02-04 16:10:14 ----D---- C:\ProgramData\HP Product Assistant
    2010-02-04 15:27:40 ----HD---- C:\Program Files\InstallShield Installation Information
    2010-02-04 15:27:03 ----RD---- C:\Program Files
    2010-02-04 12:38:02 ----D---- C:\Windows\system
    2010-02-04 12:38:02 ----D---- C:\Program Files\Common Files\microsoft shared
    2010-02-04 11:54:27 ----A---- C:\Windows\ODBC.INI
    2010-02-04 11:53:05 ----D---- C:\Program Files\Microsoft ActiveSync
    2010-02-04 11:53:01 ----D---- C:\Windows\ShellNew
    2010-02-04 11:52:56 ----D---- C:\Program Files\Common Files
    2010-02-04 11:52:34 ----RSD---- C:\Windows\Fonts
    2010-02-01 19:26:20 ----A---- C:\Windows\system32\mrt.exe
    2010-01-28 11:57:05 ----D---- C:\ProgramData
    2010-01-28 11:56:44 ----D---- C:\Program Files\Java
    2010-01-27 08:38:25 ----D---- C:\Program Files\Internet Explorer
    2010-01-22 08:22:55 ----D---- C:\Windows\system32\migration
    2010-01-22 08:04:11 ----D---- C:\Program Files\Microsoft Silverlight
    2010-01-19 17:49:31 ----D---- C:\Program Files\Common Files\Adobe
    2010-01-19 17:49:24 ----D---- C:\ProgramData\Adobe
    2010-01-19 17:49:01 ----D---- C:\Program Files\Adobe
    2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 cdrbsdrv;cdrbsdrv; C:\Windows\system32\drivers\cdrbsdrv.sys [2008-10-20 33408]
    R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
    R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-11-16 116520]
    R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-12-18 135048]
    R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-12-18 38240]
    R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2007-07-03 15392]
    R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-05 16944]
    R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-05 60464]
    R2 tvicport;tvicport; \??\C:\Windows\system32\drivers\tvicport.sys [2007-11-06 14544]
    R2 zntport;zntport; \??\C:\Windows\system32\drivers\zntport.sys [2007-11-06 6080]
    R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]
    R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]
    R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]
    R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-01-08 33096]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-07-18 1841312]
    R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-03-19 6144]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-27 9509832]
    R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
    R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
    S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [2002-07-17 84832]
    S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-08-14 3076608]
    S3 catchme;catchme; \??\C:\Users\Gary\AppData\Local\Temp\catchme.sys []
    S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2009-06-17 12648]
    S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
    S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    S4 epfwtdi;epfwtdi; C:\Windows\system32\DRIVERS\epfwtdi.sys []
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-01-26 269448]
    R2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2007-10-17 28672]
    R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\system32\bgsvcgen.exe [2008-10-20 145504]
    R2 eDataSecurity Service;eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-05 500784]
    R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
    R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-09-10 57344]
    R2 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-12-20 24576]
    R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-04 1181328]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
    R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-07-19 262247]
    R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
    R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-08-14 610304]
    S2 gupdate1ca1b99decc913;Google Update Service (gupdate1ca1b99decc913); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-12 133104]
    S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-12 190448]
    S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
    S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-11-16 20680]
    S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]

    -----------------EOF-----------------
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/898314

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice