Being redirected when I click search results

Geri,
Here is the latest HJT log:
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe
C:\WINDOWS\System32\WgaTray.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\System32\wuauclt.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_16_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_16_0.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SSC_UserPrompt] "C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe "
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MySpaceIM] "C:\Program Files\MySpace\IM\MySpaceIM.exe "
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Startup: Snapfish Picture Mover.lnk = C:\Program Files\Snapfish Picture Mover\SnapfishPictureMover.exe
O4 - Startup: Yahoo! Widget Engine.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} -
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) -
O16 - DPF: {19E28AFC-EAE3-4CE5-AC83-2407B42F57C9} (MSSecurityAdvisor Class) -
O16 - DPF: {2ED9BC2B-4DF1-472E-9B5E-55477D2C97F5} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/odc.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} -
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) -
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -
O16 - DPF: {A1B09066-C95C-4EF6-8DFD-3DD0AFE610B6} - http://pak02.pictures.aol.com/ygp/aol/plugin/screensaver/YGPPicScreensaver.9.0.1.4.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://aol123.pogo.com/game/deluxe/zuma/popcaploader_v5.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

--
End of file - 4795 bytes


When I ran ATF, It said "Done" ATF has cleaned 16.000KBs


Thanks,
fortunateden

 

Hi
OK lets get a on-line scan.

Please do an online scan with Kaspersky WebScanner

Click on "Accept" If your pop "“up blocker blocks the ActiveX download allow it, click on "Accept" again

You will be promted to install an ActiveX component from Kaspersky, Click Yes or Install.

• The program will launch and then begin downloading the latest definition files:
• Once the files have been downloaded click on NEXT
  
• Now click on Scan Settings
• In the scan settings make that the following are selected:
  • Scan using the following Anti-Virus database:
  • Extended (if available otherwise Standard)
  • Scan Options:
  • Scan Archives
    Scan Mail Bases
• Click OK
• Now under select a target to scan:
  • Select My Computer
• This will program will start and scan your system.
• The scan will take a while so be patient and let it run.
• Once the scan is complete it will display if your system has been infected.
  • Now click on the Save as Text button:
• Save the file to your desktop.
• Copy and paste that information in your next post.

This was just updated, let me know if there was any problems.

Post the Kaspersky results.
Geri

 

Geri,
When I click on "accept" for the terms and liscence aggreement, nothing happens. Then I tried to click on the Kaspersky file scanner link above accept or decline, and it brings to their home page.

 

Hi
Did a pop-up blocker bar show up at the top of your browser?

FireFox may be blocking the download of the ActiveX control. You need to allow it

Geri

 

Hi fortunateden

OK I just tried using Kaspersky with Firefox, It will not work.

You will need to use Internet Explorer to get a scan.

Geri

 

Geri,
I know this is awful, but I dont know how to switch browsers. Every time I have tried, it always says: Page cannot be displayed.

 

Geri,
When I click on "accept" for the terms and liscence aggreement, nothing happens. Then I tried to click on the Kaspersky file scanner link above accept or decline, and it brings to their home page.


Ooops, didnt mean to post this one again, sorry!

 

Hi
OK, Can you open IE?
Do you have the incon on your desk top?

If not, then click on start > All Programs. Look for Internet Explorer in the list and click on it.

Once it's open copy and paste this into the Address Bar and click on the go button to the right of the address bar,

Code:

http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html

Geri

 

Hi Geri,
No icon on desktop, nor is it on all programs. Dont think I have ever used it on this computer. For some reason, I am thinking it was deleted at one time...

 

Highlight and copy the following bolded command, quotes included.

"%programfiles%\Internet Explorer\iexplore.exe "

Now click Start>Run and paste the command in the run dialog, then hit enter.

 

Hey there Dave!,
It says cannot find server...should I close out of Mozilla first..I'll try that..

 

Having Mozilla open shouldn't matter. After IE opens, paste the following in the address window then hit enter.

http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html

 

I cant open it though, it says page cannot be displayed. And this is in the address Bar :http://www.msn.com/

 

When I just clicked on the link from the repy above, it took to MSN's home page, so can I run Kasperky on that?

 

No. You have to go to the kaspersky link with IE.

http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html

 

I have followed all the directions as far as getting IE. It is saying page cannot be displayed...I can download it but the Windows home page wants to know what operating system I have and I never got the servicepak 2, can I still download it?

 

Just tried to download it, and it says IE is not supported by this operating system.

 

I'm a bit confused.

1. You did open Internet Explorer successfully?

2. You were able to view the msn.com homepage with Internet Explorer?

3. You used Internet Explorer to go to the Kaspersky link in my post(s) above, but it says 'page cannot be displayed'?

4. Just what page wants to know what operating system you have, and what are you intending to download (provide a link please)?

 

1. Never opened Internet explorer successfully.
Kept getting error message "page cannot be displayed ", but then I got :http://www.msn.com/ in the address bar.
2. Went to the MSN homepage, search and found link to go toWindows directly and download Internet explorer http://www.microsoft.com/windows/downloads/ie/getitnow.mspx
This is the page that asked me what operating system I have.
I tried to download IE 7 for Windows Server , and then I got the message, "not supported by this operating system "

 

OK ........ please don't download and install anything until we get your problems sorted out, other than what is recommended.

Download Winsock XP Fix. Close all open programs and connections. Run winsock XP Fix and select Fix.

Reboot.

Now try running Internet Explorer again.