302 error

Good day

I too have that annoying error. I have not clicked on the blue link and find my browser works fine ..just a little slow maybe. I ran MBAB but still have the error problem. Any help would be appreciated thank you :sad:

Hello and welcome to GeekPolice.Net My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
***********************************************************
SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
•Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.
***************************************************
Download DDS from HERE or HERE and save it to your desktop.

Vista users right click on dds and select Run as administrator (you will receive a UAC prompt, please allow it)

* XP users Double click on dds to run it.
* If your antivirus or firewall try to block DDS then please allow it to run.
* When finished DDS will open two (2) logs.

1) DDS.txt
2) Attach.txt

* Save both logs to your desktop.
* Please copy and paste the entire contents of both logs in your next reply.

Note: DDS will instruct you to post the Attach.txt log as an attachment.
Please just post it as you would any other log by copying and pasting it into the reply.

Thanks for replying. here is the log for SAS
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 07/26/2011 at 06:09 PM

Application Version : 4.55.1000

Core Rules Database Version : 7466
Trace Rules Database Version: 5278

Scan type : Quick Scan
Total Scan Time : 00:18:55

Memory items scanned : 702
Memory threats detected : 0
Registry items scanned : 2627
Registry threats detected : 0
File items scanned : 9189
File threats detected : 44

Adware.Tracking Cookie
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@invitemedia[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@findagrave[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@atdmt[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@bellcan.adbureau[2].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@casalemedia[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@content.yieldmanager[2].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@content.yieldmanager[3].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@click.geopaysys[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@media6degrees[2].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@ad.yieldmanager[1].txt
C:\Users\Janette\AppData\Roaming\Microsoft\Windows\Cookies\janette@adxpose[1].txt
content.yieldmanager.edgesuite.net [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
ia.media-imdb.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
img.mycountry.6waves.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
media.mtvnservices.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
media1.break.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
msnbcmedia.msn.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
s0.2mdn.net [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
secure-us.imrworldwide.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
stat.easydate.biz [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
static.discoverymedia.com [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
vitamine.networldmedia.net [ C:\Users\Janette\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\PRUMN87B ]
.ad.yieldmanager.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.ad.yieldmanager.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.atdmt.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.atdmt.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.doubleclick.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.fastclick.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.fastclick.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.fastclick.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.interclick.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.interclick.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.interclick.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.microsoftwindows.112.2o7.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.statse.webtrendslive.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.msnportal.112.2o7.net [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.weborama.fr [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.vdwp.solution.weborama.fr [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.vdwp.solution.weborama.fr [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.vdwp.solution.weborama.fr [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
.vdwp.solution.weborama.fr [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]
statse.webtrendslive.com [ C:\Users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\ficgtjog.default\cookies.sqlite ]

Trojan.Agent/Gen-SVC[Fake]
D:\ESET\NODENABLER V3.4.1\OLD NE UNINSTALLER X86.EXE

Trojan.Agent/Gen
D:\AFTER FORMAT APP'S PACK\NERO 8.3.20.0 LITE AND MICRO\KEYGENS\NERO 8.X KEYMAKER BY EMBRACE.EXE


When I try to run DDS all I get is a DOS window. I am running Windows7 if that helps

Janette

When I try to run DDS all I get is a DOS window. I am running Windows7 if that helps

It still should run on Windows 7. Please try this one.

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  
• Under the Custom Scan box paste this in
  
  netsvcs
  msconfig
  safebootminimal
  safebootnetwork
  activex
  drivers32
  %SYSTEMDRIVE%\*.exe
  %systemroot%\*. /mp /s
  c:\$recycle.bin\*.* /s
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
  /md5start
  eventlog.dll
  scecli.dll
  netlogon.dll
  cngaudit.dll
  sceclt.dll
  ntelogon.dll
  logevent.dll
  iaStor.sys
  nvstor.sys
  nvstor32.sys
  atapi.sys
  IdeChnDr.sys
  viasraid.sys
  AGP440.sys
  vaxscsi.sys
  nvatabus.sys
  viamraid.sys
  nvata.sys
  nvgts.sys
  iastorv.sys
  ViPrt.sys
  eNetHook.dll
  explorer.exe
  svchost.exe
  userinit.exe
  qmgr.dll
  ws2_32.dll
  proquota.exe
  imm32.dll
  kernel32.dll
  ndis.sys
  autochk.exe
  spoolsv.exe
  xmlprov.dll
  ntmssvc.dll
  mswsock.dll
  Beep.SYS
  ntfs.sys
  termsrv.dll
  sfcfiles.dll
  st3shark.sys
  ahcix86.sys
  srsvc.dll
  nvrd32.sys
  /md5stop
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job /lockedfiles
  
• Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
  
  
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time
    
  
  

It seems I didn't run the DDs correctly. After I hit enter the program. Here are the results.

.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26
Run by Janette at 18:22:15 on 2011-07-26
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3001.2134 [GMT -4:00]
.
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
D:\uTorrent.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.myheritage.com
mStart Page = hxxp://search.myheritage.com
uURLSearchHooks: H - No File
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: MediaBar: {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - c:\progra~1\bearsh~1\mediabar\datamngr\toolbar\bsdtxmltbpi.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: MediaBar: {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - c:\progra~1\bearsh~1\mediabar\datamngr\toolbar\bsdtxmltbpi.dll
TB: {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [uTorrent] "D:\uTorrent.exe"
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [RegWork] c:\program files\regwork\RegWork.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
uPolicies-explorer: NoTrayItemsDisplay = 00000000
uPolicies-explorer: TaskbarNoNotification = 0 (0x0)
uPolicies-explorer: NoWindowsUpdate = 0 (0x0)
mPolicies-explorer: NoCustomizeThisFolder = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: NoDispAppearancePage = 0 (0x0)
mPolicies-system: NoVirtMemPage = 0 (0x0)
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{49A684A2-39AA-4CEF-97B0-B6B0C2ABDF25} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{49A684A2-39AA-4CEF-97B0-B6B0C2ABDF25}\0516470274C656E6E6370205C6163656 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{49A684A2-39AA-4CEF-97B0-B6B0C2ABDF25}\4596E69702D41676E6F6C69616D27657563747 : DhcpNameServer = 64.59.176.13 64.59.176.15 64.59.177.226
TCP: Interfaces\{49A684A2-39AA-4CEF-97B0-B6B0C2ABDF25}\7457563747 : DhcpNameServer = 10.60.18.7 10.60.18.8
TCP: Interfaces\{49A684A2-39AA-4CEF-97B0-B6B0C2ABDF25}\C696E6B6379737 : DhcpNameServer = 216.211.26.14 216.211.26.15
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\607\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\janette\appdata\roaming\mozilla\firefox\profiles\8gnq6twn.default\
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&appid=133&systemid=2&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\wat\npWatWeb.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-14 34176]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-12 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-12-21 137144]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-1-12 810144]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-12-21 95384]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-13 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2011-3-7 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-7-26 41272]
S3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2011-3-6 20080]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-3-8 15872]
S3 rt70x86;Belkin Wireless G USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr70.sys [2007-10-9 291840]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-3-8 52224]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-6-16 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]
.
=============== Created Last 30 ================
.
2011-07-26 21:44:52 -------- d-----w- c:\users\janette\appdata\roaming\SUPERAntiSpyware.com
2011-07-26 21:44:52 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-07-26 21:44:43 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-07-26 17:16:16 -------- d-----w- c:\users\janette\appdata\local\{B9F1EBDC-2C32-4BA2-989A-8AE2C797A328}
2011-07-26 15:06:43 6881616 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{06f827cf-fb9a-47c5-9aa4-1ce8cd1950fd}\mpengine.dll
2011-07-26 12:43:42 -------- d-----w- c:\users\janette\appdata\roaming\Malwarebytes
2011-07-26 12:43:33 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-26 12:43:31 -------- d-----w- c:\programdata\Malwarebytes
2011-07-26 12:43:28 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-26 12:43:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-07-26 05:15:11 -------- d-----w- c:\users\janette\appdata\local\{98E6FFC8-8182-4222-B738-7B3453E14836}
2011-07-25 17:14:44 -------- d-----w- c:\users\janette\appdata\local\{65A9B1AA-BC99-4E9D-AEC6-2A01BDA7ECE6}
2011-07-25 05:14:18 -------- d-----w- c:\users\janette\appdata\local\{41A36540-86C0-4F6F-9B57-83EE5DD42D7B}
2011-07-24 18:22:17 -------- d-----w- C:\LIMITLESS
2011-07-24 17:13:46 -------- d-----w- c:\users\janette\appdata\local\{7FCFA26C-E968-43B3-BAD8-F43AA28A2E58}
2011-07-23 12:46:03 -------- d-----w- c:\users\janette\appdata\local\{E8BACD90-3B8F-4753-A5DC-3E10996C10CF}
2011-07-22 14:16:13 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2011-07-22 14:16:12 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2011-07-18 03:32:55 608448 ----a-w- c:\windows\system32\comctl32.ocx
2011-07-18 03:32:55 137000 ----a-w- c:\windows\system32\msmapi32.ocx
2011-07-18 03:32:33 -------- d-----w- c:\program files\MyHeritage
2011-07-13 23:05:17 -------- d-----w- c:\windows\pss
2011-07-13 22:51:32 -------- d-----w- c:\programdata\2034E
2011-07-13 16:07:14 -------- d-----w- c:\users\janette\appdata\local\{9CAE4393-CE77-402A-BB2B-A4774353C929}
2011-07-11 14:14:44 -------- d-----w- c:\users\janette\appdata\local\{5806884D-18F0-410F-9707-168787DAB0D9}
2011-07-09 16:05:10 -------- d-----w- c:\users\janette\appdata\local\{B426E05C-869A-4229-A7C4-666942305519}
2011-07-08 10:19:12 -------- d-----w- c:\users\janette\appdata\local\{C0BADD11-D3CB-4E10-8870-82822C37D3CA}
2011-07-06 02:19:34 -------- d-----w- c:\users\janette\appdata\local\{1B4E1922-FA5D-4353-B06A-3FBF347F43CB}
2011-07-05 11:33:47 -------- d-----w- c:\users\janette\appdata\local\{254DED4D-617F-4D56-8415-3F120331781A}
2011-07-04 14:47:50 -------- d-----w- c:\users\janette\appdata\local\{BA521A0C-ECA9-4483-ABDE-1D88224777EC}
2011-07-03 05:09:24 -------- d-----w- c:\users\janette\appdata\local\{E78AF6E0-C597-40B5-9DF1-E0BE926A5435}
2011-07-02 15:18:59 -------- d-----w- c:\users\janette\appdata\local\{B69762C9-8B73-41B2-9458-3E9BE2E6A523}
2011-07-02 03:18:16 -------- d-----w- c:\users\janette\appdata\local\{A4F765A6-C878-444F-9603-A796FA0F01F4}
2011-07-01 14:30:23 -------- d-----w- c:\users\janette\appdata\local\{C0D0A08A-5821-489D-B5EF-7C90EDC3DCE7}
2011-06-30 22:47:42 -------- d-----w- c:\users\janette\appdata\local\{79083548-349C-4467-95EB-BA25F6FC6031}
2011-06-30 10:46:56 -------- d-----w- c:\users\janette\appdata\local\{A631AF9A-7143-4BAF-AE95-84119904AD93}
2011-06-29 20:29:28 -------- d-----w- c:\users\janette\appdata\local\{1CEFE0C3-FAAA-4B67-A568-6BE847CF75BF}
2011-06-29 00:58:52 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-29 00:58:46 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-29 00:58:45 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-29 00:58:44 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-29 00:58:44 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-29 00:58:44 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-29 00:58:43 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-29 00:58:42 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-29 00:58:42 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-29 00:58:41 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-06-28 18:50:27 -------- d-----w- c:\users\janette\appdata\local\{58365B05-D096-4D77-A431-A209BC36B296}
2011-06-28 04:40:38 -------- d-----w- c:\users\janette\appdata\local\{B6154EE7-FE14-4655-9695-7599B1176D14}
2011-06-27 14:45:22 -------- d-----w- c:\users\janette\appdata\local\{8C36FBFC-D55B-4458-A116-78ECDDBE4FAE}
2011-06-27 02:44:57 -------- d-----w- c:\users\janette\appdata\local\{A1166173-98F6-4069-A97C-C4FEE7A0B865}
.
==================== Find3M ====================
.
2011-06-22 00:23:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-15 08:23:56 60156 ----a-w- c:\windows\system32\drivers\scdemu.sys
2011-06-11 02:29:25 2334208 ----a-w- c:\windows\system32\win32k.sys
2011-06-06 23:10:21 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-03 06:01:04 169984 ----a-w- c:\windows\system32\winsrv.dll
2011-06-03 05:59:23 290816 ----a-w- c:\windows\system32\KernelBase.dll
2011-06-03 05:56:57 271872 ----a-w- c:\windows\system32\conhost.exe
2011-06-03 03:48:32 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-06-03 03:48:31 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-06-03 03:48:31 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-06-03 03:48:31 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-05-24 23:14:10 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-05-06 02:39:12 225280 ----a-w- c:\windows\system32\net_rim_plazmic_flint_dialog.dll
2011-05-03 04:30:02 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 02:46:33 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-29 02:46:15 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 02:46:10 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
.
============= FINISH: 18:23:27.26 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume2
Install Date: 3/6/2011 2:32:57 PM
System Uptime: 7/26/2011 6:10:14 PM (0 hours ago)
.
Motherboard: Acer | | Homa
Processor: Intel(R) Pentium(R) Dual CPU T3200 @ 2.00GHz | U2E1 | 1320/166mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 54.124 GiB free.
D: is FIXED (NTFS) - 112 GiB total, 46.396 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP89: 7/19/2011 8:35:35 AM - Windows Update
RP90: 7/22/2011 10:40:40 AM - Windows Update
RP91: 7/26/2011 11:06:15 AM - Windows Update
.
==== Installed Programs ======================
.
µTorrent
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X (10.1.0)
AnyDVD
BlackBerry Desktop Software 6.1
BlackBerry Theme Studio 6.0
CloneDVD2
ConvertXtoDVD 4.1.7.343
D3DX10
DVD Decrypter (Remove Only)
DVD Shrink 3.2
dvdSanta 4.00
ESET NOD32 Antivirus
EVEREST Ultimate Edition v4.00
Fast AVI MPEG Joiner 1.2.0812
Free YouTube Downloader 3.2.77
HDAUDIO Soft Data Fax Modem with SmartCP
Intel(R) Graphics Media Accelerator Driver
Intel(R) TV Wizard
Java Auto Updater
Java(TM) 6 Update 26
Junk Mail filter update
Malwarebytes' Anti-Malware version 1.51.1.1800
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft IntelliPoint 8.1
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 5.0 (x86 en-GB)
Mozilla Thunderbird (3.1.11)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 7 Ultra Edition
neroxml
PeerBlock 1.1 (r518)
Power Management
PowerISO
PowerISO48
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Skype™ 5.1
SUPERAntiSpyware
TNod User & Password Finder
VideoLAN VLC media player 0.7.2
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR archiver
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
7/19/2011 8:40:12 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.107.2067.0).
.
==== End Of File ===========================

I will need to disable my AV to download the OTL. If you think that is what I need to do I will

Good. I love DDS.

P2P - I see you have P2P software installed on your machine (µTorrent). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
**************************************************
Registry cleaners are extremely powerful applications and their potential for harming your OS far outweighs any small potential for improving your computer's performance.
regwork
There are a number of them available and some are more safe than others. Keep in mind that no two registry cleaners work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad" entry. One cleaner may find entries on your system that will not cause a problem when removed, another may not find the same entries, and still another may want to remove entries required for a program to work. Without research into what the registry entry selected for deletion is, a registry cleaner can end up being an automated method to cause problems with the registry.

For routine use by those not familiar with the registry, the benefits to your computer are negligible while the potential risks are great.

Further reading: XP Fixes Myth #1: Registry Cleaners
***************************************************

I will need to disable my AV to download the OTL. If you think that is what I need to do I will

Please hold off on that for the moment and do this instead. You shouldn't need to disable your AV to download OTL.

Download OTL to your desktop.

* Open OTL
* Copy and Paste the following text in the codebox into the Custom Scans/Fixes window.



* Click Run Fix
* OTLI2 may ask to reboot the machine. Please do so if asked.
* Click OK
* A report will open. Copy and Paste that report in your next reply.
***********************************************************
Download ComboFix by sUBs from one of the below links. Be sure to save it to the Desktop.

link # 1
Link # 2
If you are using Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

Close any open web browsers (Firefox, Internet Explorer, etc) before starting ComboFix.

Temporarily disable your anti-virus, and any anti-spyware real-time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Right-click combofix.exe and select Run as Administrator and follow the prompts.
When finished, ComboFix will produce a log for you.
Post the ComboFix login your next reply.

NOTE: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

Remember to re-enable your anti-virus and anti-spyware protection when ComboFix is complete.

I was going to try to attach a snap of the message I get when I click on the OTL link but can't seem to figure it out

Hello again
here is the OTL log file

All processes killed
========== OTL ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: All Users.WINDOWS

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56502 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Janette
->Temp folder emptied: 1603659223 bytes
->Temporary Internet Files folder emptied: 88779959 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 533274965 bytes
->Flash cache emptied: 49604 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 30728018 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 2,152.00 mb


OTL by OldTimer - Version 3.2.26.1 log created on 07282011_150839

Files\Folders moved on Reboot...
C:\Users\Janette\AppData\Local\Temp\radDA7D2.tmp\bin\Gadget.Interop.dll moved successfully.
C:\Users\Janette\AppData\Local\Temp\rad4ED3D.tmp\bin\x86\sharpwrapi_Win32.dll moved successfully.

Registry entries deleted on Reboot...

OK..I downloaded and ran ComboFix.....here is the log

ComboFix 11-07-28.06 - Janette 07/28/2011 15:24:54.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3001.2071 [GMT -4:00]
Running from: c:\users\Janette\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\users\Janette\AppData\Roaming\inst.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-06-28 to 2011-07-28 )))))))))))))))))))))))))))))))
.
.
2011-07-28 19:30 . 2011-07-28 19:31 -------- d-----w- c:\users\Janette\AppData\Local\temp
2011-07-28 19:30 . 2011-07-28 19:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-28 19:22 . 2011-07-28 19:22 -------- d-----w- C:\32788R22FWJFW
2011-07-28 19:08 . 2011-07-28 19:08 -------- d-----w- C:\_OTL
2011-07-26 21:44 . 2011-07-26 21:44 -------- d-----w- c:\users\Janette\AppData\Roaming\SUPERAntiSpyware.com
2011-07-26 21:44 . 2011-07-26 21:44 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-07-26 21:44 . 2011-07-26 21:45 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-07-26 15:06 . 2011-07-13 03:39 6881616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{06F827CF-FB9A-47C5-9AA4-1CE8CD1950FD}\mpengine.dll
2011-07-26 12:43 . 2011-07-26 12:43 -------- d-----w- c:\users\Janette\AppData\Roaming\Malwarebytes
2011-07-26 12:43 . 2011-07-06 23:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-26 12:43 . 2011-07-26 12:43 -------- d-----w- c:\programdata\Malwarebytes
2011-07-26 12:43 . 2011-07-06 23:52 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-26 12:43 . 2011-07-26 12:43 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-07-24 18:22 . 2011-07-26 15:46 -------- d-----w- C:\LIMITLESS
2011-07-22 14:16 . 2011-07-22 14:16 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-07-22 14:16 . 2011-07-22 14:16 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-07-18 03:32 . 2000-05-22 20:58 608448 ----a-w- c:\windows\system32\comctl32.ocx
2011-07-18 03:32 . 1998-06-24 04:00 137000 ----a-w- c:\windows\system32\msmapi32.ocx
2011-07-18 03:32 . 2011-07-18 03:49 -------- d-----w- c:\program files\MyHeritage
2011-07-13 22:51 . 2011-07-13 22:51 -------- d-----w- c:\programdata\2034E
2011-07-13 22:50 . 2011-07-13 22:50 -------- d-----w- c:\program files\Common Files\Adobe
2011-06-29 00:58 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-29 00:58 . 2011-05-04 04:32 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-29 00:58 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-29 00:58 . 2011-05-04 04:32 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-29 00:58 . 2011-05-04 04:28 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-29 00:58 . 2011-05-04 04:28 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-29 00:58 . 2011-05-04 04:32 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-29 00:58 . 2011-05-04 04:32 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-29 00:58 . 2011-05-04 04:28 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-29 00:58 . 2011-05-04 04:32 59392 ----a-w- c:\windows\system32\msscntrs.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-22 22:06 . 2011-06-22 22:06 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2011-06-22 22:06 . 2011-06-22 22:06 4283672 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2011-06-22 22:05 . 2011-06-22 22:05 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2011-06-22 22:05 . 2011-06-22 22:05 539968 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-06-22 00:23 . 2011-06-22 00:23 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-15 08:23 . 2011-06-15 08:23 60156 ----a-w- c:\windows\system32\drivers\scdemu.sys
2011-06-06 23:10 . 2011-06-06 23:10 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-24 23:14 . 2011-03-06 20:08 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-05-06 02:39 . 2011-05-06 02:39 225280 ----a-w- c:\windows\system32\net_rim_plazmic_flint_dialog.dll
2011-05-03 04:30 . 2011-06-15 14:45 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-05-03 00:47 . 2011-05-03 00:47 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-05-03 00:47 . 2011-05-03 00:47 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-05-03 00:47 . 2011-05-03 00:47 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-05-03 00:47 . 2011-05-03 00:47 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-05-03 00:47 . 2011-05-03 00:47 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-05-03 00:47 . 2011-05-03 00:47 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-05-03 00:47 . 2011-05-03 00:47 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-05-03 00:47 . 2011-05-03 00:47 367104 ----a-w- c:\windows\system32\html.iec
2011-05-03 00:47 . 2011-05-03 00:47 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-05-03 00:47 . 2011-05-03 00:47 161792 ----a-w- c:\windows\system32\msls31.dll
2011-05-03 00:47 . 2011-05-03 00:47 152064 ----a-w- c:\windows\system32\wextract.exe
2011-05-03 00:47 . 2011-05-03 00:47 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-05-03 00:47 . 2011-05-03 00:47 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-05-03 00:47 . 2011-05-03 00:47 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-05-03 00:47 . 2011-05-03 00:47 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-05-03 00:47 . 2011-05-03 00:47 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-05-03 00:47 . 2011-05-03 00:47 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-05-03 00:47 . 2011-05-03 00:47 11776 ----a-w- c:\windows\system32\mshta.exe
2011-05-03 00:47 . 2011-05-03 00:47 101888 ----a-w- c:\windows\system32\admparse.dll
2011-07-22 14:16 . 2011-05-06 21:09 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VirtualExpanderFile.1]
@="{E4000AC4-5E5F-4956-807A-C5854405D64F}"
[HKEY_CLASSES_ROOT\CLSID\{E4000AC4-5E5F-4956-807A-C5854405D64F}]
2011-04-03 17:25 87552 ----a-w- c:\users\Janette\AppData\Local\Sony Corporation\VirtualExpander\VEShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"uTorrent"="D:\uTorrent.exe" [2011-03-25 399736]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-06-30 2424192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 167424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 144384]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-04-13 1808784]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12 2219184]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-07-06 1047656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"NoVirtMemPage"= 0 (0x0)
"SynchronousMachineGroupPolicy"= 0 (0x0)
"SynchronousUserGroupPolicy"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoCustomizeThisFolder"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"TaskbarNoNotification"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKLM\~\startupfolder\C:^Users^Janette^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^VirtualExpander.lnk]
path=c:\users\Janette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VirtualExpander.lnk
backup=c:\windows\pss\VirtualExpander.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 16:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
2009-11-04 17:35 3115968 ----a-w- d:\new folder\AnyDVD\AnyDVDtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-03-12 18:49 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-11-10 06:54 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-09 23:53 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RIMBBLaunchAgent.exe]
2011-02-18 15:47 79192 ----a-w- c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-07-06 41272]
R3 pbfilter;pbfilter;c:\program files\PeerBlock\pbfilter.sys [2010-11-07 20080]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 rt70x86;Belkin Wireless G USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr70.sys [2007-10-09 291840]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-06-17 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 O2MDRDR;O2MDRDR;c:\windows\system32\DRIVERS\o2media.sys [2005-11-14 34176]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-12 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.myheritage.com
mStart Page = hxxp://search.myheritage.com
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Janette\AppData\Roaming\Mozilla\Firefox\Profiles\8gnq6twn.default\
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&appid=133&systemid=2&q=
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
BHO-{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - c:\progra~1\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll
Toolbar-{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - c:\progra~1\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll
Toolbar-10 - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
HKLM-Run-RegWork - c:\program files\RegWork\RegWork.exe
Notify-GoToAssist - c:\program files\Citrix\GoToAssist\607\G2AWinLogon.dll
MSConfigStartUp-limewire plus+ - c:\program files\Limewire Plus+\limewire.exe
AddRemove-dvdSanta 4.00 - Create Your Own DVD Movies!_is1 - d:\dvdsanta\unins000.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-07-28 15:33:09
ComboFix-quarantined-files.txt 2011-07-28 19:33
.
Pre-Run: 60,130,660,352 bytes free
Post-Run: 59,775,741,952 bytes free
.
- - End Of File - - 5515C717991F913CE3756706B3BD4CFA

Sorry for being late. I wasn't notified of your reply.

Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Unzip SecurityCheck.zip and a folder named Security Check should appear.
* Open the Security Check folder and double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.
*****************************************************
SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

• Double click Sysprot.exe to start the program.
  
• Click on the Log tab.
  
• In the Write to log box select the following items.
  
  
  
  • Process << Selected
    
  • Kernel Modules << Selected
    
  • SSDT << Selected
    
  • Kernel Hooks << Selected
    
  • IRP Hooks << NOT Selected
    
  • Ports << NOT Selected
    
  • Hidden Files << Selected
    
  
  
• At the bottom of the page
  
  
  
  • Hidden Objects Only << Selected
    
  
  
• Click on the Create Log button on the bottom right.
  
• After a few seconds a new window should appear.
  
• Select Scan Root Drive. Click on the Start button.
  
• When it is complete a new window will appear to indicate that the scan is finished.
  
• The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.
  

No worries...here are the logs
Results of screen317's Security Check version 0.99.18
Windows 7 Service Pack 1 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
ESET NOD32 Antivirus
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
Java(TM) 6 Update 26
Adobe Flash Player 10.3.181.22
Adobe Reader X (10.1.0)
Mozilla Firefox (x86 en-GB..)
Mozilla Thunderbird (3.1.11) Thunderbird Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent
``````````End of Log````````````

I ran SYSPROT...tells me I need to run as an administrator.....I'm lost...lol

got it..here's the log

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

No Processes found

******************************************************************************************
******************************************************************************************
No Kernel Modules found

******************************************************************************************
******************************************************************************************
No SSDT Hooks found

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
No hidden files/folders found

How's your computer running now? Any more errors?

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.
•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

Hi...my computer is running fine. I wasn't getting thet error message everytime but enough to be annoying and as far as I know it is still there.
Running ESET now

Here is the ESET log

SETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=c0fbdf0bc4ed394896810b08145ec375
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-07-30 12:12:13
# local_time=2011-07-29 08:12:13 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 0 63525864 0 0
# compatibility_mode=8199 39157117 100 98 0 17033523 0 0
# scanned=92125
# found=0
# cleaned=0
# scan_time=3662
# nod_component=V3 Build:0x30000000

Hello again

ARRGGGHHHH...still have that error302

What browser are you using? Please try this.

Download CCleaner Slim and save it to your Desktop - Alternate download link

When the file has been saved, go to your Desktop and double-click on ccsetupxxx_slim.exe
Follow the prompts to install the program.

* Double-click the CCleaner shortcut on the desktop to start the program.
* Click on the Options block on the left, then choose Cookies.
* Under Cookies to Delete, highlight any cookies you would like to retain permanently
* Click the right arrow > to move them to the Cookies to Keep window.
* Go into Options > Advanced uncheck Only delete files in Windows Temp folders older than 48 hours
* Click Cleaner on the left then Run Cleaner on the right to run the program.
* Important: Make sure that ALL browser windows are closed before selecting Run Cleaner

Caution: Only use the Registry feature if you are very familiar with the registry.
Always back up your registry before making any changes. Exit CCleaner after it has completed it's process.
*********************************************************
To Run the SFC /SCANNOW Command in Windows 7
1. Open an elevated command prompt.

2. To Scan and Repair System Files
NOTE: Scans the integrity of all protected system files and repairs the system files if needed.
A) In the elevated command prompt, type sfc /scannow and press Enter. (see screenshot below)
NOTE: This may take some time to finish.



B) Go to step 4.

3. To Only Verify if the System Files are Corrupted
NOTE: Scans and only verifies the integrity of all proteced system files only.
A) In the elevated command prompt, type sfc /verifyonly and press Enter.

4. When the scan is complete, hopefully you will see all is ok like the screenshot below.
NOTE: If not, then you can attempt to run a System Restore using a restore point dated before the bad file occured to fix it. You may need to repeat doing a System Restore until you find a older restore point that may work.



5. When done, close the elevated command prompt.

now I am getting annoyed...I can't run sfc/scannow because I am not an administrator yet my user account says I am...I can't run sfc/scannow

I'm going to consult someone on this problem. I'll be back as soon as I find some way of helping you.

OK...Thank you very much

Hello Again
I got sfc/scannow to run..here are the results.




Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.

C:\Windows\system32>sfc/scannow

Beginning system scan. This process will take some time.

Beginning verification phase of system scan.
Verification 100% complete.

Windows Resource Protection did not find any integrity violations.

C:\Windows\system32>

I got it running by right-clicking on the command prompty link

Could you please describe to me exactly how and when you receive that 302 error?

the firefox window is blank except for in the upper left corner where the message is

ERROR 302
"Has been moved here"
the word "here" is blue underlined


it happens about every 3rd time I open firefox

I havent clicked on the blue but read elsewhere that it's just like a loop..keeps re-directing you back to the same page.
I am able to use my bookmarks and links in email and on webpages..which I very seldom do BTW....

• Open Start > Run, and enter the following exactly: %APPDATA%\Mozilla\Firefox\Profiles then press OK.
  
• You will see an eight-character folder, which is your Firefox profile. (xxxxxxxx.default) (x=random character)
  
• Right-click on that folder and select Copy. Then, go to My Documents and right-click and select Paste. (If we make an error, at least the data for your current Firefox profile will be backed up, so it can be safely restored.)
  
• Go to Start > Run. Enter the following: firefox.exe -ProfileManager and then press OK.
  
• To start the Create Profile Wizard, click Create Profile... in the Profile Manager.
  
• Click Next and enter the name of the profile. Use a profile name that is descriptive, such as your personal name. This name is not exposed on the Internet.
  
• You can also choose where to store the profile, which is useful if you plan on exporting your data and settings to another computer or setup in the future. To choose its storage location on your system, click Choose Folder....
  
• Note: If you choose a custom location for the profile, store it in a new or clean folder. When you choose to remove the profile, all contents stored in the same folder are removed.
  
• To create the new profile, click Finish.
  
• The new profile is displayed in the Profile Manager.
  
• Lastly. Choose the New Profile and click Start Firefox. If you do not want it to prompt you, then click Don't Ask at Startup.
  

Please let me know if this worked or not.

Hi Janette. I haven't heard back from you to see if that latest fix I recommended worked.

I am sorry I haven't replied...haven't been feeling well. I will post results as soon as I do what you asked.

OK
I ran the first and copied but when I ran the second one it opened firefox..is thatwhat it was supposed to do??

Janette MacDonald wrote:

OK
I ran the first and copied but when I ran the second one it opened firefox..is thatwhat it was supposed to do??

It was supposed to cure the 302 error that you've been receiving.

Ok thanks. If the error happens again I will post here. Has anyone else been having the same error??
If it still happens do you think deleting firefox then re-installing may help..or just do a re-install of Win 7??

Ok thanks. If the error happens again I will post here. Has anyone else been having the same error??

You're welcome. I haven't noticed this same error too often but I suppose if I did a search I would find some threads.

If it still happens do you think deleting firefox then re-installing may help..or just do a re-install of Win 7??

If changing your profile name didn't help, I doubt that re-installing FF would help. I don't think a re-install of your OS will improve anything because I feel that the problem is with FF.

OK..thanks for your help. Funny thing is if I open FF through a link I don't get the error message...go figure...lol

Hi Jannette. Are you still getting that error? If not, we need to do some cleanup of all the tools we used.

Hi SD...sorry i haven't posted but I had some bad news....a friend passed away recently.

It seems that the error ia gone. if it pops up again i will PM you.
let me know how to clean up the tools we used and i will do that

Janette