random search engines connect to internet

First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal
If you already have any of the programs linked in the tutorial please double check your version to make sure you have the latest one and that you have any/all updates for the programs.

NOTE: In order to resolve the issues you are having it is very important that you at least try to perform all the steps as outlined. If you have any difficulty please post back letting us know what steps you have completed, what you found while doing the scans if anything and details about any problems you have encountered in completing the steps. The more details you can provide the better.


After doing ALL of the above if you still have a problem:

Make sure you have HijackThis 1.99 and follow the guidelines on where to install it and how to post a log as an attachment. This is all covered in the sticky thread NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

Now post a HijackThis log as an attachment to your message (Do not post the log inline). All running programs should be closed, including your web browser, e-mail. Close before running Hijack This!

To repeat: Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file. Place it in its own folder, for example C:\Program Files\HJT

 

Please finish following my directions!

 

Re: someone please please analyze

This is a good way to get delayed in getting help! You should have posted in your original thread. Not a new one! I'm moving you back there now.

 

Re: someone please please analyze

Please do not run HSremove anymore. You don't need it. I don't think you ever did. It is only for HSA hijacks.

Please click Start, Run and enter msconfig and click OK! Then check the Normal Startup option. Then reboot and post a new HJT log. Right now you are blocking things from loading and I want to see what they are.

Note: the below does not appear to be valid. What version of Ad-Aware SE do you have? And is it the free version or did you buy it?


O21 - SSODL: Ad-Aware SE Personal - {8AC8465D-1AF3-1746-3018-F56F987A88F4} - C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Aware.dll

 

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://hsremove.com/done.htm
O21 - SSODL: Ad-Aware SE Personal - {8AC8465D-1AF3-1746-3018-F56F987A88F4} - C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Aware.dll

After clicking Fix, exit HJT.

Boot into safe mode and use Windows Explorer to delete:

C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Aware.dll

This is more than likely the below full path name (but you will have to check):
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.dll

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

 

If you could not find Windows Explorer how did you delet the file? That's what you used.
There are many ways to bring it up.
- MyComputer
- click Start, Explore
- run it from Accessories.....etc

The file is gone and so is the entry in HJT. How are you problems?

 

You delete a DLL that has absolutely nothing to do with Ad-Aware from Lavasoft and looks to me like it is related to malware and popups according to what I found.