shollan

i was given this pc because it was "full of viruses" i want to make sure it is clean. im not sure what the previous owners have installed on it but Mcafee comes up with a "genericpup.z" warning i helped my parents with a similar problem with help from this forum. just want to clean it up please help.

DDS (Ver_09-05-14.01) - NTFSx86
Run by Jeannina Holland at 22:28:19.14 on Sat 05/16/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1494 [GMT -7:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\fxssvc.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP Optical 4 Button USB Mouse\KMaestro.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Jeannina Holland\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.comcast.net/
uDefault_Page_URL = hxxp://www.dell4me.com/myway
uSearch Bar = hxxp://bfc.myway.com/search/de_srchlft.html
uWindow Title = Windows Internet Explorer provided by Comcast
mWindow Title = Windows Internet Explorer provided by Comcast
mURLSearchHooks: H - No File
mWinlogon: Userinit=c:\windows\regedit /s c:\pav.reg,c:\windows\system32\pavdr.exe,c:\windows\system32\userinit.exe,
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\mcafee\virusscan\scriptsn.dll
TB: {BA52B914-B692-46c4-B683-905236F6F655} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [SoundMAXPnP] c:\program files\analog devices\soundmax\SMax4PNP.exe
mRun: [PCMService] "c:\program files\dell\media experience\PCMService.exe"
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [MMTray] c:\program files\musicmatch\musicmatch jukebox\mm_tray.exe
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [WildTangent CDA] RUNDLL32.exe "c:\program files\wildtangent\apps\cda\cdaEngine0400.dll",cdaEngineMain
mRun: [mmtask] c:\program files\musicmatch\musicmatch jukebox\mmtask.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [BtcMouseMaestro] "c:\program files\hp optical 4 button usb mouse\KMaestro.exe"
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [mcagent_exe] c:\program files\mcafee.com\agent\mcagent.exe /runkey
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
IE: {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1242503293755
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
Notify: igfxcui - igfxdev.dll

============= SERVICES / DRIVERS ===============

R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2009-5-16 201320]
R2 McProxy;McAfee Proxy Service;c:\progra~1\common~1\mcafee\mcproxy\mcproxy.exe [2009-5-16 359248]
R2 McShield;McAfee Real-time Scanner;c:\progra~1\mcafee\viruss~1\mcshield.exe [2009-5-16 144704]
R3 McSysmon;McAfee SystemGuards;c:\progra~1\mcafee\viruss~1\mcsysmon.exe [2009-5-16 695624]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2009-5-16 79304]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2009-5-16 35240]
R3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2009-5-16 40488]
S3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2009-5-16 33832]

=============== Created Last 30 ================

2009-05-16 22:20 <DIR> --dsh--- c:\documents and settings\jeannina holland\IECompatCache
2009-05-16 22:20 <DIR> --dsh--- c:\documents and settings\jeannina holland\PrivacIE
2009-05-16 21:06 <DIR> --d----- c:\windows\system32\LogFiles
2009-05-16 15:04 <DIR> --dsh--- c:\documents and settings\jeannina holland\IETldCache
2009-05-16 14:28 <DIR> --d----- c:\windows\ie8updates
2009-05-16 14:28 102,400 -------- c:\windows\system32\dllcache\iecompat.dll
2009-05-16 14:26 <DIR> -cd-h--- c:\windows\ie8
2009-05-16 13:31 <DIR> --d----- c:\program files\CCleaner
2009-05-16 13:25 <DIR> --d----- c:\windows\system32\scripting
2009-05-16 13:25 <DIR> --d----- c:\windows\l2schemas
2009-05-16 13:25 <DIR> --d----- c:\windows\system32\en
2009-05-16 13:25 <DIR> --d----- c:\windows\system32\bits
2009-05-16 13:22 <DIR> --d----- c:\windows\ServicePackFiles
2009-05-16 13:19 <DIR> --d----- c:\windows\network diagnostic
2009-05-16 13:13 <DIR> --d----- c:\windows\EHome
2009-05-16 13:11 272,128 -------- c:\windows\system32\dllcache\bthport.sys
2009-05-16 13:10 284,160 -------- c:\windows\system32\dllcache\pdh.dll
2009-05-16 13:10 35,328 -------- c:\windows\system32\dllcache\sc.exe
2009-05-16 13:10 401,408 -------- c:\windows\system32\dllcache\rpcss.dll
2009-05-16 13:10 110,592 -------- c:\windows\system32\dllcache\services.exe
2009-05-16 13:10 473,600 -------- c:\windows\system32\dllcache\fastprox.dll
2009-05-16 13:10 227,840 -------- c:\windows\system32\dllcache\wmiprvse.exe
2009-05-16 13:10 453,120 -------- c:\windows\system32\dllcache\wmiprvsd.dll
2009-05-16 13:10 729,088 -------- c:\windows\system32\dllcache\lsasrv.dll
2009-05-16 13:10 714,752 -------- c:\windows\system32\dllcache\ntdll.dll
2009-05-16 13:10 617,472 -------- c:\windows\system32\dllcache\advapi32.dll
2009-05-16 13:10 2,145,280 -------- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-05-16 13:10 2,189,056 -------- c:\windows\system32\dllcache\ntoskrnl.exe
2009-05-16 13:09 2,023,936 -------- c:\windows\system32\dllcache\ntkrpamp.exe
2009-05-16 13:06 1,041,536 -------- c:\windows\system32\drivers\hsfdpsp2.sys
2009-05-16 13:06 685,056 -------- c:\windows\system32\drivers\hsfcxts2.sys
2009-05-16 13:06 220,032 -------- c:\windows\system32\drivers\hsfbs2s2.sys
2009-05-16 13:06 129,045 -------- c:\windows\system32\drivers\cxthsfs2.cty
2009-05-16 13:04 203,136 -------- c:\windows\system32\dllcache\rmcast.sys
2009-05-16 13:04 455,296 -------- c:\windows\system32\dllcache\mrxsmb.sys
2009-05-16 13:04 333,952 -------- c:\windows\system32\dllcache\srv.sys
2009-05-16 13:04 331,776 -------- c:\windows\system32\dllcache\msadce.dll
2009-05-16 13:03 691,712 -------- c:\windows\system32\dllcache\inetcomm.dll
2009-05-16 13:02 247,326 -------- c:\windows\system32\dllcache\strmdll.dll
2009-05-16 13:02 1,106,944 -------- c:\windows\system32\dllcache\msxml3.dll
2009-05-16 12:50 2,560 -------- c:\windows\system32\xpsp4res.dll
2009-05-16 12:50 1,203,922 -------- c:\windows\system32\dllcache\sysmain.sdb
2009-05-16 12:50 215,552 -------- c:\windows\system32\dllcache\wordpad.exe
2009-05-16 12:49 23,576 a------- c:\windows\system32\wuapi.dll.mui
2009-05-16 12:39 7,905 a------- c:\windows\system32\Config.MPF
2009-05-16 12:38 143,360 a------- c:\windows\system32\dunzip32.dll
2009-05-16 12:35 33,832 a------- c:\windows\system32\drivers\mferkdk.sys
2009-05-16 12:35 40,488 a------- c:\windows\system32\drivers\mfesmfk.sys
2009-05-16 12:35 35,240 a------- c:\windows\system32\drivers\mfebopk.sys
2009-05-16 12:35 201,320 a------- c:\windows\system32\drivers\mfehidk.sys
2009-05-16 12:35 79,304 a------- c:\windows\system32\drivers\mfeavfk.sys
2009-05-16 12:35 113,952 a------- c:\windows\system32\drivers\Mpfp.sys
2009-05-16 12:34 <DIR> --d----- c:\program files\common files\McAfee
2009-05-16 12:34 <DIR> --d----- c:\program files\McAfee
2009-05-16 12:16 98,358 a------- c:\windows\dla.exe
2009-05-16 12:16 87,488 a------- c:\windows\system32\drivers\drvmcdb.sys
2009-05-16 12:16 61,498 a------- c:\windows\system32\tfswapi.dll
2009-05-16 12:16 40,480 a------- c:\windows\system32\drivers\drvnddm.sys
2009-05-16 12:16 23,545 a------- c:\windows\system32\drivers\ssrtln.sys
2009-05-16 12:16 5,627 a------- c:\windows\system32\drivers\sscdbhk5.sys
2009-05-16 03:14 <DIR> --d----- c:\program files\Activision
2009-05-16 02:36 299,008 a------- c:\windows\uninst.exe
2009-05-16 02:36 <DIR> --d----- c:\documents and settings\jeannina holland\WINDOWS
2009-05-16 02:17 0 a------- c:\windows\PowerReg.dat
2009-05-16 01:56 <DIR> --d----- c:\program files\Infogrames
2009-05-03 12:52 <DIR> --d----- c:\docume~1\jeanni~1\applic~1\Malwarebytes
2009-05-03 12:52 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-05-03 12:52 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-05-03 12:52 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-05-03 12:52 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-05-02 23:46 83,480 -------- c:\windows\system32\MmRemove.exe
2009-05-02 23:46 <DIR> --d----- c:\program files\HP Optical 4 Button USB Mouse
2009-05-02 23:44 21,504 a------- c:\windows\system32\hidserv.dll
2009-05-02 23:22 2 a------- c:\windows\msoffice.ini
2009-05-02 23:14 <DIR> --d----- c:\program files\MSXML 4.0
2009-05-02 23:12 14,592 a------- c:\windows\system32\drivers\kbdhid.sys

==================== Find3M ====================

2009-05-16 13:30 77,939 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-03-21 07:06 989,696 -------- c:\windows\system32\dllcache\kernel32.dll
2009-03-08 14:09 638,816 -------- c:\windows\system32\dllcache\iexplore.exe
2009-03-08 14:09 391,536 -------- c:\windows\system32\dllcache\iedkcs32.dll
2009-03-08 04:41 5,937,152 a------- c:\windows\system32\dllcache\mshtml.dll
2009-03-08 04:34 914,944 a------- c:\windows\system32\wininet.dll
2009-03-08 04:34 914,944 a------- c:\windows\system32\dllcache\wininet.dll
2009-03-08 04:34 1,206,784 a------- c:\windows\system32\dllcache\urlmon.dll
2009-03-08 04:34 236,544 -------- c:\windows\system32\dllcache\webcheck.dll
2009-03-08 04:34 43,008 a------- c:\windows\system32\licmgr10.dll
2009-03-08 04:34 43,008 -------- c:\windows\system32\dllcache\licmgr10.dll
2009-03-08 04:34 105,984 -------- c:\windows\system32\dllcache\url.dll
2009-03-08 04:34 193,536 -------- c:\windows\system32\dllcache\msrating.dll
2009-03-08 04:34 109,568 -------- c:\windows\system32\dllcache\occache.dll
2009-03-08 04:33 759,296 -------- c:\windows\system32\dllcache\VGX.dll
2009-03-08 04:33 18,944 a------- c:\windows\system32\corpol.dll
2009-03-08 04:33 18,944 -------- c:\windows\system32\dllcache\corpol.dll
2009-03-08 04:33 25,600 -------- c:\windows\system32\dllcache\jsproxy.dll
2009-03-08 04:33 726,528 -------- c:\windows\system32\dllcache\jscript.dll
2009-03-08 04:33 229,376 -------- c:\windows\system32\dllcache\ieaksie.dll
2009-03-08 04:33 420,352 a------- c:\windows\system32\vbscript.dll
2009-03-08 04:33 420,352 -------- c:\windows\system32\dllcache\vbscript.dll
2009-03-08 04:33 125,952 -------- c:\windows\system32\dllcache\ieakeng.dll
2009-03-08 04:32 72,704 a------- c:\windows\system32\admparse.dll
2009-03-08 04:32 72,704 -------- c:\windows\system32\dllcache\admparse.dll
2009-03-08 04:32 173,056 -------- c:\windows\system32\dllcache\ie4uinit.exe
2009-03-08 04:32 163,840 -------- c:\windows\system32\dllcache\ieakui.dll
2009-03-08 04:32 71,680 a------- c:\windows\system32\iesetup.dll
2009-03-08 04:32 71,680 -------- c:\windows\system32\dllcache\iesetup.dll
2009-03-08 04:32 55,808 -------- c:\windows\system32\dllcache\iernonce.dll
2009-03-08 04:32 128,512 -------- c:\windows\system32\dllcache\advpack.dll
2009-03-08 04:32 94,720 -------- c:\windows\system32\dllcache\inseng.dll
2009-03-08 04:32 611,840 -------- c:\windows\system32\dllcache\mstime.dll
2009-03-08 04:31 183,808 -------- c:\windows\system32\dllcache\iepeers.dll
2009-03-08 04:31 348,160 -------- c:\windows\system32\dllcache\dxtmsft.dll
2009-03-08 04:31 34,816 a------- c:\windows\system32\imgutil.dll
2009-03-08 04:31 216,064 -------- c:\windows\system32\dllcache\dxtrans.dll
2009-03-08 04:31 34,816 -------- c:\windows\system32\dllcache\imgutil.dll
2009-03-08 04:31 46,592 -------- c:\windows\system32\dllcache\pngfilt.dll
2009-03-08 04:31 66,560 -------- c:\windows\system32\dllcache\mshtmled.dll
2009-03-08 04:31 48,128 a------- c:\windows\system32\mshtmler.dll
2009-03-08 04:31 48,128 -------- c:\windows\system32\dllcache\mshtmler.dll
2009-03-08 04:31 45,568 a------- c:\windows\system32\mshta.exe
2009-03-08 04:31 45,568 -------- c:\windows\system32\dllcache\mshta.exe
2009-03-08 04:24 68,608 -------- c:\windows\system32\dllcache\hmmapi.dll
2009-03-08 04:22 156,160 a------- c:\windows\system32\msls31.dll
2009-03-08 04:22 156,160 -------- c:\windows\system32\dllcache\msls31.dll
2009-03-06 07:22 284,160 a------- c:\windows\system32\pdh.dll
2009-03-02 16:04 1,499,136 -------- c:\windows\system32\dllcache\shdocvw.dll
2005-09-12 19:30 848 a--sh--- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 22:29:09.76 ===============

Attached Files

ark.zip (3.0 KB, 0 views)

shollan

also I installed internet explorer 8 and all the windows updates including service pack 3, the pc has not been connected to the net for a couple years. now IE8 is running with add ons disabled. i have researched and tried to solve this problem but the solution that seems to be the most common is to change the target in the shortcut. but i cant find this option. doing some research i found that it may be caused by virus or malware or something. thought that might help. rebuilding this pc has proven to be a pain please help.

shollan

bump please