Gutted. Searchqu. Can anyone help out a novice?

[cashbl0wer]

Hello,

I know close to squat diddley about computors but what Ive read about Searchqu worries me.

Really my machine isnt behaving any differently apart from any internet search uses searchqu instead of google chrome & possibly its a bit slower.

I used add/remove programmes to remove ilivid (I think that was the name) which a google search said was something to do with this searchqu thing - that seemed to change nothing.

Ive looked through the forum & followed the instructions here: http://forums.malwarebytes.org//index.php?showtopic=9573

I use google chrome, I have windows 7, AVG & Ive run malwarebytes but the searchqu thing still lives!! << I know this makes me look like a cheap skate. Really Im not, Im just poor at the moment.

Here's the DDs & the attach.txt files copy&pasted. Can anyone help?

Ive enabled email notifications & I can check back everyday during my lunchbreak at 12:30 - 1:00 GMT

Many thanks for any help.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 9.0.8112.16421

Run by Mycheala Thompson at 23:38:05 on 2012-01-10

.

============== Running Processes ===============

.

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.bigseekpro.com/hypercam/{F9D65E66-55BD-40A6-BFBF-93F05E0E36CF}

mStart Page = hxxp://www.bigseekpro.com/hypercam/{F9D65E66-55BD-40A6-BFBF-93F05E0E36CF}

uInternet Settings,ProxyOverride = *.local

mSearchAssistant = hxxp://start.facemoods.com/?a=gppc&s={searchTerms}&f=4

uURLSearchHooks: agihelper.AGUtils: {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll

uURLSearchHooks: ToolbarURLSearchHook Class: {ca3eb689-8f09-4026-aa10-b9534c691ce0} - c:\program files\hyperionics db toolbar\tbhelper.dll

uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

mWinlogon: Userinit=c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit,

BHO: AutorunsDisabled - No File

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

BHO: agihelper.AGUtils: {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~1\wi3c8a~1\datamngr\toolbar\searchqudtx.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: SMTTB2009 Class: {fcbccb87-9224-4b8d-b117-f56d924beb18} - c:\program files\hyperionics db toolbar\tbcore3.dll

BHO: Yontoo Layers: {fd72061e-9fde-484d-a58a-0bab4151cad8} - c:\program files\yontoo layers runtime\YontooIEClient.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll

TB: Kiwee Toolbar: {1c99b848-84cb-4ce4-8cd8-ed5719484d9f} - mscoree.dll

TB: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~1\wi3c8a~1\datamngr\toolbar\searchqudtx.dll

TB: Hyperionics DB Toolbar: {338b4dfe-2e2c-4338-9e41-e176d497299e} - c:\program files\hyperionics db toolbar\tbcore3.dll

TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

uRun: [Google Update] "c:\users\mycheala thompson\appdata\local\google\update\GoogleUpdate.exe" /c

uRun: [JumiController] c:\program files\jumi\jumi.exe

uRun: [PCinMyHand Server] c:\program files\pc in my hand\pcinmyhand.exe

uRun: [FreeCT] c:\program files\freecountdowntimer\FreeCountdownTimer.exe -autorun

mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

uPolicies-explorer: HideSCANetwork = 1 (0x1)

uPolicies-explorer: DisableThumbnailsOnNetworkFolders = 1 (0x1)

mPolicies-explorer: HideSCAHealth = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: DisableStartupSound = 1 (0x1)

mPolicies-system: DisableStatusMessages = 1 (0x1)

IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html

IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\program files\pokerstars\PokerStarsUpdate.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~1\office12\ONBttnIE.dll

IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - c:\program files\bonjour\ExplorerPlugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL

DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab

DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 192.168.1.254

TCP: Interfaces\{51F512C8-193A-432E-8AD4-F168270BF933} : DhcpNameServer = 192.168.1.254

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

.

============= SERVICES / DRIVERS ===============

.

.

=============== Created Last 30 ================

.

2012-01-10 23:30:30 -------- d--h--w- c:\windows\PIF

2012-01-10 22:10:29 -------- d-----w- c:\users\mychea~1\appdata\roaming\Malwarebytes

2012-01-10 22:10:04 -------- d-----w- c:\progra~1\MALWAREBYTES ANTI-MALWARE

2012-01-10 22:09:41 -------- d-----w- c:\programdata\Malwarebytes

2012-01-10 22:09:39 20464 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-01-10 22:09:39 -------- d-----w- c:\progra~1\Malwarebytes' Anti-Malware

2011-12-28 18:00:37 315904 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\hpfpp70w.dll

2011-12-25 13:46:52 -------- d-----w- c:\progra~1\Yahoo!

2011-12-25 13:43:50 -------- d-----w- c:\progra~1\common~1\HP

2011-12-25 13:43:48 -------- d-----w- c:\progra~1\common~1\Hewlett-Packard

2011-12-25 13:42:45 -------- d-----w- c:\windows\hpoj4500g510g-m

2011-12-25 13:40:29 372736 ----a-w- c:\windows\system32\hppldcoi.dll

2011-12-25 13:40:26 966656 ----a-w- c:\windows\system32\hpwtiop5.dll

2011-12-25 13:40:26 749568 ----a-w- c:\windows\system32\hpwwiax6.dll

2011-12-25 13:40:16 315392 ----a-w- c:\windows\system32\hpwvst01.dll

2011-12-25 13:39:46 452408 ----a-w- c:\windows\system32\hpzids01.dll

2011-12-25 13:39:25 123904 ----a-w- c:\windows\system32\hpf3l70w.dll

2011-12-25 13:37:33 -------- d-----w- c:\progra~1\HP

2011-12-14 23:00:08 2342912 ----a-w- c:\windows\system32\win32k.sys

2011-12-14 22:59:52 2048 ----a-w- c:\windows\system32\tzres.dll

2011-12-14 22:58:00 534528 ----a-w- c:\windows\system32\EncDec.dll

2011-12-14 22:57:55 38912 ----a-w- c:\windows\system32\csrsrv.dll

2011-12-14 22:57:24 3912560 ----a-w- c:\windows\system32\ntoskrnl.exe

2011-12-14 22:57:23 3967856 ----a-w- c:\windows\system32\ntkrnlpa.exe

.

==================== Find3M ====================

.

2011-11-07 21:28:38 56208 ----a-w- c:\windows\system32\drivers\RapportKELL.sys

2011-11-03 22:47:42 1798144 ----a-w- c:\windows\system32\jscript9.dll

2011-11-03 22:40:21 1427456 ----a-w- c:\windows\system32\inetcpl.cpl

2011-11-03 22:39:47 1127424 ----a-w- c:\windows\system32\wininet.dll

2011-11-03 22:31:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb

.

============= FINISH: 23:41:31.43 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

.

==== Disk Partitions =========================

.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP367: 30/12/2011 01:50:27 - Scheduled Checkpoint

RP368: 06/01/2012 16:26:10 - Scheduled Checkpoint

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

32 Bit HP CIO Components Installer

4500_G510gm_Help

4500G510gm

4500G510gm_Software_Min

Acrobat.com

Adobe AIR

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Reader X

Adobe Shockwave Player 11.5

Apple Application Support

Apple Mobile Device Support

Apple Software Update

AVG 2012

AVS Server 1.4.3

Bonjour

BufferChm

FSX Flight Weather Report

Google Chrome

Google Earth

Google Earth Plug-in

Google Update Helper

HP Officejet 4500 G510g-m

HyperCam 2

Hyperionics DB Toolbar

iTunes

Java 2 Runtime Environment, SE v1.4.1

Java Web Start

Java 6 Update 26

Junk Mail filter update

Malwarebytes Anti-Malware version 1.60.0.1800

Microsoft .NET Framework 4 Client Profile

[MrCharlie]

Welcome to the forum.

Please download Farbar Service Scanner and run it on the computer with the issue.

• Make sure the following options are checked:
  
  • Internet Services
    
  • Windows Firewall
    
  • System Restore
    
  • Security Center
    
  • Windows Update
    

  [*]Press "Scan".

  [*]It will create a log (FSS.txt) in the same directory the tool is run.

  [*]Please copy and paste the log to your reply.

Please download and run RogueKiller.

Choose 1 to scan the system

Post back the report.

---------------------------------------

also.......

Please download OTL from one of the links below:

http://oldtimer.geekstogo.com/OTL.exe

http://oldtimer.geekstogo.com/OTL.com (<---renamed version)

Save it to your desktop.

Double click on the icon on your desktop.

Click the Scan All Users checkbox.

Push the Quick Scan button.

Two reports will open, copy and paste them in a reply here: (or attach them as .txt files)

OTL.txt <-- Will be opened

Extra.txt <-- Will be minimized

The scan will take about 10 minutes...depends on your hard drive size.

MrC

[LDTate]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!