User Tag List

Please help

This is a discussion on Please help within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. How do I get rid of the following bad stuff? . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29


 
 
Thread Tools Search this Thread
Old 11-26-2011, 06:00 PM   #1
Registered Member
 
theladyperseph's Avatar
 
Join Date: Nov 2011
Posts: 3
OS: Windows 7 Ultimate



How do I get rid of the following bad stuff?

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29
Run by Robin at 19:47:23 on 2011-11-26
.
============== Running Processes ===============
.
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Browser Defender\BDTUpdateService.exe
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Users\Robin\AppData\Local\Google\Update\1.3.21.79\GoogleCrashHandler.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Ascentive\Performance Center\ApcMain.exe
C:\Program Files (x86)\Ascentive\PC ScanAndSweep\PCScanAndSweep.exe
C:\Program Files (x86)\Ascentive\ActiveSpeed\AS.exe
C:\Program Files (x86)\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe
C:\Program Files (x86)\Ascentive\Spyware Striker\SpywareStriker.exe
C:\Program Files (x86)\Ascentive\Spyware Striker\SBAMSvc.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Robin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2BERRH1L\dds.scr
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, optimized for Bing and MSN
uStart Page = hxxp://www.yahoo.com/
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
BHO: PC Tools Browser Guard BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - C:\Program Files (x86)\Browser Defender\PCTBrowserDefender.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} - C:\Program Files (x86)\Browser Defender\PCTBrowserDefender.dll
TB: Foxit Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
TB: SearchAXIS: {a28c8067-4d01-4c07-8220-e3ea5a67e3cb} - C:\Program Files (x86)\SearchAXIS\SearchAXIS.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [Pareto_Update] C:\Program Files (x86)\Common Files\ParetoLogic\UUS2\Pareto_Update.exe
uRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [SpeedTestPro] "C:\Program Files\SpeedTestPro\SpeedTestPro.exe"
uRun: [UniblueRegistryBooster] "C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe" delay 20000
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Google Update] "C:\Users\Robin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [UpdatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"
mRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
mRun: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun: [Microsoft Works Update Detection] C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
mRun: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Performance Center] C:\Program Files (x86)\Ascentive\Performance Center\ApcMain.exe -m
mRun: [PC SpeedScan Pro] C:\Program Files (x86)\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
mRun: [ActiveSpeed] C:\Program Files (x86)\Ascentive\ActiveSpeed\AS.exe -b
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [PC ScanAndSweep] C:\Program Files (x86)\Ascentive\PC ScanAndSweep\PCScanAndSweep.exe -m
mRun: [Spyware Striker Pro] C:\Program Files (x86)\Ascentive\Spyware Striker\SpywareStriker.exe -m
uPolicies-system: WallpaperStyle = 2
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
dPolicies-system: WallpaperStyle = 2
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
Trusted Zone: yahoo.com\m.www
Trusted Zone: youravon.com\www
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} - hxxp://h20364.www2.hp.com/CSMWeb/Customer/cabs/HPISDataManager.CAB
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.4.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {8F2EACD9-51A6-4915-B9AD-2AA8657CB472} - hxxps://webpostage.stamps.com/webpostage/plugin/SdcWebClientServices.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{3DC90021-B8C9-42BC-B7FB-B45A8BA8812E} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{8BC08A35-3873-4179-B279-1AB909FB4CFF} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{8BC08A35-3873-4179-B279-1AB909FB4CFF}\05E4350214962707F62747 : DhcpNameServer = 10.128.128.128
TCP: Interfaces\{8BC08A35-3873-4179-B279-1AB909FB4CFF}\366616D693333333 : DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-X64: 0x1 - No File
BHO-X64: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO-X64: HP Print Enhancer - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
BHO-X64: AskBar BHO - No File
BHO-X64: PC Tools Browser Guard BHO: {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Browser Defender\PCTBrowserDefender.dll
BHO-X64: Browser Defender BHO - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
BHO-X64: HP Smart BHO Class - No File
TB-X64: PC Tools Browser Guard: {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Browser Defender\PCTBrowserDefender.dll
TB-X64: Foxit Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
TB-X64: SearchAXIS: {A28C8067-4D01-4C07-8220-E3EA5A67E3CB} - C:\Program Files (x86)\SearchAXIS\SearchAXIS.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB-X64: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
mRun-x64: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun-x64: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun-x64: [UpdatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"
mRun-x64: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
mRun-x64: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
mRun-x64: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun-x64: [Microsoft Works Update Detection] C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun-x64: [(Default)]
mRun-x64: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
mRun-x64: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [Performance Center] C:\Program Files (x86)\Ascentive\Performance Center\ApcMain.exe -m
mRun-x64: [PC SpeedScan Pro] C:\Program Files (x86)\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
mRun-x64: [ActiveSpeed] C:\Program Files (x86)\Ascentive\ActiveSpeed\AS.exe -b
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [PC ScanAndSweep] C:\Program Files (x86)\Ascentive\PC ScanAndSweep\PCScanAndSweep.exe -m
mRun-x64: [Spyware Striker Pro] C:\Program Files (x86)\Ascentive\Spyware Striker\SpywareStriker.exe -m
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\m9vfarb2.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.53\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Stamps.com Web Postage Plug-in\npsdcwc.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Robin\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\m9vfarb2.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============
.
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? fssfltr;fssfltr
R? fsssvc;Windows Live Family Safety Service
R? gupdate;Google Update Service (gupdate)
R? gupdatem;Google Update Service (gupdatem)
R? mfeavfk;McAfee Inc. mfeavfk
R? mferkdk;McAfee Inc. mferkdk
R? mfesmfk;McAfee Inc. mfesmfk
R? MsDepSvc;Web Deployment Agent Service
R? NETw1v64;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit
R? netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit
R? osppsvc;Office Software Protection Platform
R? RdpVideoMiniport;Remote Desktop Video Miniport Driver
R? RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader
R? RtsUIR;Realtek IR Driver
R? SrvHsfHDA;SrvHsfHDA
R? SrvHsfV92;SrvHsfV92
R? SrvHsfWinac;SrvHsfWinac
R? Synth3dVsc;Synth3dVsc
R? TsUsbFlt;TsUsbFlt
R? tsusbhub;tsusbhub
R? USBAAPL64;Apple Mobile USB Driver
R? VGPU;VGPU
R? WatAdminSvc;Windows Activation Technologies Service
R? wlcrasvc;Windows Live Mesh remote connections service
R? WSDPrintDevice;WSD Print Support via UMB
R? yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller
S? AdobeARMservice;Adobe Acrobat Update Service
S? AESTFilters;Andrea ST Filters Service
S? Browser Defender Update Service;Browser Defender Update Service
S? HP LaserJet Service;HP LaserJet Service
S? HP Support Assistant Service;HP Support Assistant Service
S? HPDrvMntSvc.exe;HP Quick Synchronization Service
S? HPSIService;HP SI Service
S? IntcHdmiAddService;Intel(R) High Definition Audio HDMI
S? mfehidk;McAfee Inc. mfehidk
S? MpFilter;Microsoft Malware Protection Driver
S? MpNWMon;Microsoft Malware Protection Network Driver
S? NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit
S? NisDrv;Microsoft Network Inspection System
S? NisSrv;Microsoft Network Inspection
S? RTL8167;Realtek 8167 NT Driver
S? SBAMSvc;AntiMalware
S? vwififlt;Virtual WiFi Filter Driver
S? vwifimp;Microsoft Virtual WiFi Miniport Service
.
=============== Created Last 30 ================
.
2011-11-27 0138 -------- dc----w- C:\ProgramData\Sunbelt Software
2011-11-27 00:16:17 69000 -c--a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6B2AFD14-EE50-4E18-8A8A-B3A590376A5F}\offreg.dll
2011-11-26 23:49:54 8570192 -c--a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6B2AFD14-EE50-4E18-8A8A-B3A590376A5F}\mpengine.dll
2011-11-26 23:13:10 6672200 -c--a-w- C:\Program Files (x86)\ActiveSpeed_setup.exe
2011-11-26 23:12:25 6634456 -c--a-w- C:\Program Files (x86)\ScanAndSweep_setup.exe
2011-11-26 22:46:08 -------- dc----w- C:\ProgramData\Ascentive
2011-11-26 22:45:55 -------- dc----w- C:\Program Files (x86)\Ascentive
2011-11-26 21:33:12 -------- dc----w- C:\Users\Robin\AppData\Local\{AE62826D-A90A-4DFB-B8B8-CBB26DD7CE90}
2011-11-26 21:33:00 -------- dc----w- C:\Users\Robin\AppData\Local\{C9BA9514-E7C3-48F2-BE3E-789D66004FA1}
2011-11-25 20:27:49 -------- dc----w- C:\ProgramData\{9BE3DA6A-4249-4BEC-9AE7-CA0EA247E62C}
2011-11-25 20:27:40 -------- dc----w- C:\ProgramData\{C243CCC8-5474-45FC-A546-7FBC284A692E}
2011-11-25 20:27:26 -------- dc----w- C:\ProgramData\{1B3AFCD2-CC54-4C5A-B5F1-F15580CB52FE}
2011-11-15 02:47:56 -------- dc----w- C:\Users\Robin\AppData\Local\{697F6149-29A3-4B9A-9AE4-D58533F06E72}
2011-11-15 02:47:43 -------- dc----w- C:\Users\Robin\AppData\Local\{8DE465EB-B12B-4FFB-A9C7-FDABFB278375}
2011-11-08 19:40:41 3144704 ----a-w- C:\Windows\System32\win32k.sys
2011-11-08 19:40:38 1923952 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-11-08 19:40:37 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2011-11-08 19:40:36 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
2011-10-31 00:20:45 159744 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
.
==================== Find3M ====================
.
2011-11-26 23:08:34 414368 -c--a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-24 19:29:02 94208 -c--a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
2011-10-24 19:29:02 69632 -c--a-w- C:\Windows\SysWow64\QuickTime.qts
2011-10-13 21:07:32 2309120 ----a-w- C:\Windows\System32\jscript9.dll
2011-10-13 21:07:31 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2011-10-13 21:07:31 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
2011-10-13 21:07:31 1389056 ----a-w- C:\Windows\System32\wininet.dll
2011-10-13 21:07:30 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-10-13 21:07:29 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-10-13 2140 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2011-10-13 2140 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2011-10-13 2140 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2011-10-13 2140 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2011-10-13 21:05:44 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2011-10-13 21:05:44 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2011-10-13 21:05:44 331776 ----a-w- C:\Windows\System32\oleacc.dll
2011-10-13 21:05:44 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2011-10-03 1103 472808 -c--a-w- C:\Windows\SysWow64\deployJava1.dll
2011-09-29 06:54:00 14045800 -c--a-w- C:\Program Files (x86)\Firefox Setup 7.0.1.exe
2011-08-31 04:05:32 96104 -c--a-w- C:\Windows\System32\dns-sd.exe
2011-08-31 04:05:32 85864 -c--a-w- C:\Windows\System32\dnssd.dll
2011-08-31 04:05:04 83816 -c--a-w- C:\Windows\SysWow64\dns-sd.exe
2011-08-31 04:05:04 73064 -c--a-w- C:\Windows\SysWow64\dnssd.dll
2011-07-07 11:29:16 13683064 -c--a-w- C:\Program Files (x86)\Firefox Setup 5.0.exe
2011-03-07 22:05:02 221248 -c--a-w- C:\Program Files (x86)\pdffilt.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine8.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine7.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine6.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine5.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine4.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine3.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine2.dll
2011-03-07 22:04:58 2952256 -c--a-w- C:\Program Files (x86)\IFilterEngine1.dll
2010-12-09 18:05:22 1992185 -c--a-w- C:\Program Files (x86)\fpdfcjk.bin
2010-07-31 03:15:22 1228416 -c--a-w- C:\Program Files (x86)\MasterCollection_CS5_LS1.exe
2010-01-20 06:10:59 38413824 -c--a-w- C:\Program Files (x86)\Business Plan Pro 15th Anniversary Edition.msi
2010-01-02 07:16:24 1301325 -c--a-w- C:\Program Files (x86)\StingPkg.Exe
2010-01-02 07:16:14 22786 -c--a-w- C:\Program Files (x86)\SNG302.NAP
2009-12-15 06:09:30 27386280 -c--a-w- C:\Program Files\Common Files\AdbeRdr920_en_US.exe
2009-12-15 06:09:30 27386280 -c--a-w- C:\Program Files (x86)\AdbeRdr920_en_US.exe
2009-12-11 07:20:32 4917121 -c--a-w- C:\Program Files\Common Files\FlexibleTreeView.TrialSetup.exe
2009-12-11 07:20:32 4917121 -c--a-w- C:\Program Files (x86)\FlexibleTreeView.TrialSetup.exe
2009-12-11 06:41:26 10239488 -c--a-w- C:\Program Files\Common Files\MicrosoftDeploymentToolkit2010_x64.msi
2009-12-10 18:25:55 120024160 -c--a-w- C:\Program Files\DJ_AIO_06_F2400_NonNet_Full_Win_enu_130_163.exe
2009-12-10 18:25:55 120024160 -c--a-w- C:\Program Files (x86)\DJ_AIO_06_F2400_NonNet_Full_Win_enu_130_163.exe
2009-11-24 07:11:13 225280 -c--a-w- C:\Program Files\TRI_2008_FL_v08.exe
2009-11-24 06:49:34 131072 -c--a-w- C:\Program Files\TRI_2008_VI_v08.exe
2009-11-24 06:48:44 4743168 -c--a-w- C:\Program Files\TRI_2008_US_v08.exe
2009-11-24 06:47:52 196608 -c--a-w- C:\Program Files\TRI_2008_FED_v08.exe
2009-11-10 16:50:18 171206672 -c--a-w- C:\Program Files (x86)\AIO_CDB_Full_Network_enu_NB.exe
2009-08-20 08:13:26 9815040 -c--a-w- C:\Program Files (x86)\openofficeorg31.msi
2009-03-26 10:36:32 451928 -c--a-w- C:\Program Files (x86)\setup.exe
2008-05-04 22:02:26 4603904 -c--a-w- C:\Program Files\LaunchPad.exe
2008-05-02 16:41:48 3493888 -c--a-w- C:\Program Files\Launchpad Removal.exe
2007-12-09 22:00:48 593920 -c--a-w- C:\Program Files\PelicanExtension.dll
2007-10-23 16:35:16 718336 -c--a-w- C:\Program Files\U3LauncherSetup.msi
2007-10-23 16:35:16 718336 -c--a-w- C:\Program Files (x86)\U3LauncherSetup.msi
2007-10-23 16:33:16 2129920 -c--a-w- C:\Program Files\LPSecurityExtension.dll
2007-10-23 16:33:16 2129920 -c--a-w- C:\Program Files (x86)\LPSecurityExtension.dll
2007-10-23 16:32:10 544768 -c--a-w- C:\Program Files\SanDiskFormatExtension.dll
2007-10-23 15:44:48 54584 -c--a-w- C:\Program Files\U3AccessGrant.exe
2007-10-23 07:45:39 1336632 -c--a-r- C:\Program Files\LaunchU3.exe
2002-03-11 0930 1822520 -c--a-w- C:\Program Files (x86)\instmsiw.exe
2002-03-11 08:45:04 1708856 -c--a-w- C:\Program Files (x86)\instmsia.exe
.
============= FINISH: 19:52:45.48 ===============

and also this bad stuff?

.
==== Installed Programs ======================
.
ActiveSpeed
Adobe AIR
Adobe Reader X (10.1.1)
Apple Application Support
Apple Software Update
ArcSoft Print Creations
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations plug-in for Olympus Master 2
ATL Module for Windows
BizDoc Version 7.12
Browser Defender 3.0.0.312
BufferChm
Business Plan Pro 15th Anniversary Edition
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
ClickArt Fonts 5
Copy
Corel Painter Photo Essentials 4
CyberLink DVD Suite
CyberLink YouCam
D3DX10
DCOM95
Definition update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations
DeviceDiscovery
DJ_AIO_06_F2400_SW_Min
Driver Detective
F2400
Feedback Tool
Foxit PDF Editor
Foxit Reader
Foxit Toolbar
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
GoToMeeting 4.8.0.723
GPBaseService2
Hewlett-Packard ACLM.NET v1.1.1.0
HP Advisor
HP Customer Experience Enhancements
HP DVD Play 3.7
HP Games
HP Product Detection
HP Quick Launch Buttons
HP Setup
HP Support Assistant
HP Update
HP User Guides 0148
HP Wireless Assistant
HPDiagnosticAlert
HPPhotoGadget
hppLaserJetService
hppP1100P1560P1600SeriesLaserJetService
hpPrintProjects
HPProductAssistant
hppusgP1100P1560P1600Series
HPSSupply
hpWLPGInstaller
IDT Audio
Intel(R) Control Center
Java Auto Updater
Java(TM) 6 Update 16
Java(TM) 6 Update 29
Junk Mail filter update
LabelPrint
LightScribe Applications
LightScribe System Software
Marketing Plan Pro 11.0 Powered by Duct Tape Marketing
MarketResearch
MDAC 2.7 Sp1 (English)
Mesh Runtime
Messenger Companion
MFCDLL Shared Library - Retail Version
Microsoft (R) C Runtime Library
Microsoft (R) C++ Runtime Library
Microsoft ASP.NET MVC 1.0
Microsoft ASP.NET MVC 2
Microsoft Common Controls 2 ActiveX Control DLL
Microsoft Common Controls 3 ActiveX Control DLL
Microsoft Component Category Manager Library
Microsoft Default Manager
Microsoft Expression Encoder 3
Microsoft Expression Web 3
Microsoft Expression Web 3 SP1
Microsoft Live Labs Pivot
Microsoft Live Search Toolbar
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office CorrectAddress® Add-in
Microsoft Office Excel MUI (English) 2010
Microsoft Office Live Add-in 1.5
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft OLE 2.40 for Windows NT(TM) and Windows 95(TM) Operating Systems
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Picture It! Publishing Platinum 2002
Microsoft Silverlight
Microsoft UI Engine
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual FoxPro 9 Report Applications
Mozilla Firefox 6.0 (x86 en-US)
Mozilla Firefox 6.0.2 (x86 en-US)
MSVCRT
MSVCRT_amd64
MSXML 4.0
MyAttorney Home & Business
OLYMPUS Master 2
PC ScanAndSweep
PC SpeedScan Pro
Performance Center
PHP 5.2.13
Power2Go
PowerDirector
PowerRecover
Punch! Weekend Project
QLBCASL
QuickTime
Realtek 8136 8168 8169 Ethernet Driver
Realtek USB 2.0 Card Reader
Safari
Scan
Search AXIS Toolbar
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft Excel 2010 (KB2553070)
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)
Shipping Assistant 3.6
SmartWebPrinting
SolutionCenter
Spelling Dictionaries Support For Adobe Reader X
Spyware Striker
Stamps.com
Stamps.com Address Book Support for Windows Contacts for Vista
Stamps.com Application Support for Microsoft Word 2000-2010
Stamps.com support for Microsoft Word 2000-2010
Stamps.com support for Windows Contacts for Vista
Stamps.com Web Postage Plug-in
Startup Explorer ver. 5.0.0.25
Status
Sunbelt
Toolbox
TrayApp
TunePlus
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553455) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
VC User CRT
VC User CRT IO
VC User MFC
Visual Basic Virtual Machine
Visual FoxPro ODBC Driver Merge Module
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)
WebReg
Windows Common Controls ActiveX Control DLL
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Encoder 9 Series
WinZip 14.0
Yahoo! Install Manager
Yahoo! Software Update
.
==== End Of File ===========================


Thank you for your time and help
theladyperseph is offline  
Sponsored Links
Advertisement
 
Old 11-28-2011, 05:32 PM   #2
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please explain why this computer has no antivirus program installed and running. This is an open invitation for infection.

It can take as little as eight seconds to infect an unprotected computer.

Please keep this computer offline except when downloading tools and posting in the forum until we get one installed. Let me know your intentions for an antivirus program.

------------------------------------------------------

Open Task Manager by pressing (Ctrl + Alt + Del) > Start Task Manager

Under the Processes tab, right-click and click 'End Process' > 'End Process' on each of the following:

ApcMain.exe
AS.exe
PCScanAndSweep.exe
PCSpeedScan.exe
SBAMSvc.exe
SpywareStriker.exe


------------------------------------------------------

Please uninstall the following via Start->(or Computer)->Control Panel->Programs->Programs and Features if they still exist:

ActiveSpeed
PC ScanAndSweep
PC SpeedScan Pro
Performance Center
Spyware Striker


If any fail to uninstall, move on to the next one and let me know if any gave you trouble.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

Please note that tools are best Run from the Desktop. Save to the Desktop and then Run from the Desktop.

Quote:
C:\Users\Robin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2BERRH1L\dds.scr
Easier to find and perform specialized functions which may be required. Thanks.

------------------------------------------------------

Please download ComboFix and Save it to your Desktop.

**Note: It is important that it is saved directly to your desktop**

* Ensure you have disabled all antivirus and antimalware programs so they do not interfere with the running of ComboFix.

Get help here

Double-click ComboFix.exe and follow the prompts to run it.

Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.

When finished, it shall produce a log for you. Please post that log, C:\ComboFix.txt, in your next reply.

Please re-enable your antivirus before posting the ComboFix.txt log.

If you get an 'Illegal operation attempted on a Registry key which has been marked for deletion' error message, please reboot your machine.

------------------------------------------------------
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 11-30-2011, 01:01 PM   #3
Registered Member
 
theladyperseph's Avatar
 
Join Date: Nov 2011
Posts: 3
OS: Windows 7 Ultimate



Dear Chemist,

I am responding to your reply. There is in fact an anti-viral/malware software installed on this computer. Microsoft Security Essentials. I will follow the instructions as you have indicated.
theladyperseph is offline  
Sponsored Links
Advertisement
 
Old 11-30-2011, 03:57 PM   #4
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Sorry, it didn't show as installed in your Installed Programs list, and isn't shown as running under Running Processes. Let me know how it goes.
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 12-03-2011, 06:24 PM   #5
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Still with us, theladyperseph? Any trouble with those last instructions?
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 12-04-2011, 10:11 AM   #6
Registered Member
 
theladyperseph's Avatar
 
Join Date: Nov 2011
Posts: 3
OS: Windows 7 Ultimate



Chemist,

I am still here. Sorry for the MIA, I'm taking finals. OK for me to contact you on Tuesday?
theladyperseph is offline  
Old 12-04-2011, 10:38 AM   #7
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Sure, let me know. Good luck with finals.
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 12-09-2011, 09:27 AM   #8
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Still with us, theladyperseph? Any trouble with those last instructions?
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 12-13-2011, 05:47 PM   #9
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Still with us, theladyperseph? I generally unsubscribe from threads after 3 days of inactivity. If you do not reply within 24 hours, this thread will be closed.

------------------------------------------------------
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
Old 12-15-2011, 04:02 AM   #10
Security Team
Moderator, Analyst
Rangemaster, TSF Academy
 
chemist's Avatar

Microsoft Most Valuable Professional
 
Join Date: Oct 2007
Location: Georgia
Posts: 29,790
OS: XP/Win7/Win10



Due to lack of response, this topic will now be closed. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

IMPORTANT - Read This Before Posting For Malware Removal Help

------------------------------------------------------
__________________
Our services are free, but you may contribute to the author of ComboFix via PayPal

Proud member of UNITE

Microsoft MVP - Consumer Security 2014, 2015
chemist is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 04:55 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts