Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help

User Tag List

Per your instructions

This is a discussion on Per your instructions within the Virus/Trojan/Spyware Help forums, part of the Tech Support Forum category. dont know if I did this right, but here are the 2 attachments you requested for virus cleaning.... 1. had


Closed Thread
 
Thread Tools Search this Thread
Old 08-26-2017, 11:49 AM   #1
Registered Member
 
Join Date: Apr 2012
Posts: 122
OS: win7



dont know if I did this right, but here are the 2 attachments you requested for virus cleaning....
1. had previous problem booting up windows 7 prof. finally did get booted
2. have run antivirus/spyware/malwarebytes etc, no evidence of aforementioned.
3. computer has acted weird: is not letting me open links, not allowing me to open sites
4. currently, have kept updated but now...says I have 8 win updates; when closing, it "downloads"; then when I check after it does this, its the same update numbers as before (looping); also when checking for updates, its giving me an error installation failed.

thanks for your help; awaiting instructions what to do next. let me know asap please, and if you need anything else.

DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 11.0.9600.18739
Run by Sue at 14:35:46 on 2017-08-26
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.12245.10044 [GMT -4:00]
.
AV: adaware antivirus *Disabled/Updated* {2C8A0DAA-E78D-4944-DB01-263173C8FFD9}
AV: McAfee VirusScan *Enabled/Updated* {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
SP: adaware antivirus *Disabled/Updated* {97EBEC4E-C1B7-46CA-E1B1-1D43084FB564}
SP: Spybot - Search and Destroy *Disabled/Outdated* {A16C3F68-9280-E053-1818-342707FECF4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee VirusScan *Enabled/Updated* {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall *Enabled* {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\windows\system32\mfevtps.exe
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\windows\system32\mfevtps.exe
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\McAfee\MfeAV\MFEAvSvc.exe
C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\windows\explorer.exe
C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Bar = Preserve
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Dashlane BHO: {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\Dashlanei.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Dashlane Toolbar: {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Sue\AppData\Roaming\Dashlane\ie\KWIEBar.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [Dashlane] "C:\Users\Sue\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
uRun: [DashlanePlugin] "C:\Users\Sue\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551} : DHCPNameServer = 75.114.81.1 75.114.81.2
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\6427F6E6479656270243030313 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C6164697 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{24527B5B-F460-40AD-9A1B-7BA35A7C1551}\7697073797C616469743 : DHCPNameServer = 192.168.254.254
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
AppInit_DLLs= C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL
SSODL: WebCheck - <orphaned>
mASetup: {438363A8-F486-4C37-834C-4955773CB3D3} - msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
x64-mStart Page = about:blank
x64-mDefault_Page_URL = hxxp://hp13.msn.com
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: McAfee WebAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll
x64-BHO: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - <orphaned>
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Hosts: 127.0.0.1 spywareinfo.comÂ*-Â*This website is for sale!Â*-Â*spywareinfo Resources and Information.
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Sue\AppData\Roaming\Mozilla\Firefox\Profiles\huqhw87e.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.ixquick.com/do/mypage.pl?prf=5f3fcc14ac928f3e5d00a721545f09bb
FF - plugin: c:\PROGRA~1\mcafee\msc\npMcSnFFPl64.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
FF - plugin: C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll
FF - plugin: C:\windows\System32\Macromed\Flash\NPSWF64_26_0_0_151.dll
.
============= SERVICES / DRIVERS ===============
.
R0 EUBAKUP;EUBAKUP;C:\windows\System32\drivers\eubakup.sys [2017-1-1 66040]
R0 EUBKMON;EUBKMON;C:\windows\System32\drivers\EUBKMON.sys [2017-1-1 53240]
R0 iaStorA;iaStorA;C:\windows\System32\drivers\iaStorA.sys [2015-3-13 670056]
R0 iaStorF;iaStorF;C:\windows\System32\drivers\iaStorF.sys [2015-3-13 30360]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\windows\System32\drivers\iusb3hcs.sys [2016-5-5 22800]
R0 mfehidk;McAfee Inc. mfehidk;C:\windows\System32\drivers\mfehidk.sys [2017-4-3 918544]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\windows\System32\drivers\mfewfpk.sys [2017-4-3 252432]
R2 adawareantivirusservice;adaware antivirus service;C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.1.856.11526\AdAwareService.exe [2017-7-19 585784]
R2 McAPExe;McAfee AP Service;C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe [2017-6-9 984480]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
R2 mfemms;McAfee Service Controller;C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [2017-6-9 390656]
R2 ModuleCoreService;McAfee Module Core Service;C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2017-6-9 1543248]
R3 cfwids;McAfee Inc. cfwids;C:\windows\System32\drivers\cfwids.sys [2017-4-3 76824]
R3 IntelReadyModeDriver;Intel® Ready Mode Technology Service;C:\windows\System32\drivers\IntelReadyModeDriver.sys [2014-1-23 24776]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\windows\System32\drivers\iusb3hub.sys [2016-5-5 388880]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\windows\System32\drivers\iusb3xhc.sys [2016-5-5 799504]
R3 keycrypt;keycrypt;C:\windows\System32\drivers\KeyCrypt64.sys [2016-2-19 143904]
R3 mfeaack;McAfee Inc. mfeaack;C:\windows\System32\drivers\mfeaack.sys [2017-4-3 476176]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\windows\System32\drivers\mfeavfk.sys [2017-4-3 353808]
R3 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2017-6-9 241656]
R3 mfefirek;McAfee Inc. mfefirek;C:\windows\System32\drivers\mfefirek.sys [2017-4-3 504336]
R3 mfevtp;McAfee Validation Trust Protection Service;C:\windows\System32\mfevtps.exe [2017-6-9 343544]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2016-12-2 1026304]
R3 RTSUER;Realtek USB Card Reader - UER;C:\windows\System32\drivers\RtsUer.sys [2016-8-14 402136]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;C:\windows\System32\drivers\XtuAcpiDriver.sys [2016-11-22 54344]
S1 CLVirtualDrive;CLVirtualDrive;C:\windows\System32\drivers\CLVirtualDrive.sys [2016-2-11 91912]
S1 EUDSKACS;EUDSKACS;C:\windows\System32\drivers\eudskacs.sys [2017-1-1 23544]
S1 EUFDDISK;EUFDDISK;C:\windows\System32\drivers\EuFdDisk.sys [2017-1-1 197624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-4-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-4-21 128648]
S2 DiagTrack;Diagnostics Tracking Service;C:\windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
S2 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2017-8-6 39616]
S2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-2-11 1148744]
S2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-7 31776]
S2 ibtsiva;Intel Bluetooth Service;C:\windows\System32\ibtsiva --> C:\windows\System32\ibtsiva [?]
S2 IRMTService;Intel(R) Ready Mode Technology;C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [2015-1-5 180520]
S2 iumsvc;Intel(R) Update Manager;C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-8-12 177376]
S2 MacriumService;Macrium Service;C:\Program Files\Macrium\Common\MacriumService.exe [2017-6-7 3894760]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2017-8-5 590880]
S2 McBootDelayStartSvc;McAfee Boot Delay Start Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 mccspsvc;McAfee CSP Service;C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe [2017-5-30 2139832]
S2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-6-9 641520]
S2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-2-11 1795912]
S2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2016-2-11 19439944]
S2 PEFService;Intel Security PEF Service;C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2017-6-9 1042288]
S2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-11-26 307456]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2016-2-19 4088608]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2015-6-12 3831200]
S3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2016-4-11 153616]
S3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2014-6-17 1424184]
S3 btmlehid;Intel Bluetooth Low Energy HID Service;C:\windows\System32\drivers\btmlehid.sys [2014-2-3 83256]
S3 ClientAnalyticsService;ClientAnalyticsService;C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [2017-6-9 1752992]
S3 dmvsc;dmvsc;C:\windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 gzflt;gzflt;C:\windows\System32\drivers\gzflt.sys [2017-2-8 178384]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\windows\System32\drivers\HipShieldK.sys [2017-6-9 209608]
S3 hpvision;hpvision;C:\windows\System32\drivers\hp64vision.sys [2016-2-12 26912]
S3 htcnprot;HTC NDIS Protocol Driver;C:\windows\System32\drivers\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port;C:\windows\System32\drivers\HtcVComV64.sys [2010-3-9 121800]
S3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\windows\System32\drivers\ibtusb.sys [2016-11-19 214272]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2017-7-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-5-13 887256]
S3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-8-13 154584]
S3 mfencbdc;McAfee Inc. mfencbdc;C:\windows\System32\drivers\mfencbdc.sys [2017-4-7 495632]
S3 mfencrk;McAfee Inc. mfencrk;C:\windows\System32\drivers\mfencrk.sys [2017-4-7 107544]
S3 mfeplk;McAfee Inc. mfeplk;C:\windows\System32\drivers\mfeplk.sys [2017-4-3 109072]
S3 mfesapsn;McAfee Process Start Notification Service;C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-8-5 111608]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-6-12 268192]
S3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-2-11 19272]
S3 NVSWCFilter;NVIDIA SHIELD Wireless Controller Trackpad Service;C:\windows\System32\drivers\nvswcfilter.sys [2016-2-11 19616]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\drivers\nvvad64v.sys [2016-2-11 38048]
S3 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2016-4-9 19456]
S3 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2016-2-19 1738168]
S3 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2016-2-19 235984]
S3 stornvme;stornvme;C:\windows\System32\drivers\stornvme.sys [2014-12-9 50616]
S3 StorSvc;Storage Service;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2016-5-4 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2016-5-4 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2016-2-22 1255736]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\windows\System32\drivers\wdcsam64.sys [2015-4-30 23200]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-6-17 1202552]
S4 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-7-14 1710456]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-7-14 1161592]
.
=============== Created Last 30 ================
.
2017-08-12 17:00:15 5 ----a-w- C:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2017-08-12 12:27:32 -------- d-----w- C:\Program Files (x86)\Macrium
2017-08-06 21:11:47 -------- d-----w- C:\Program Files\adaware
2017-08-06 2147 -------- d-----w- C:\ProgramData\adaware
2017-08-06 14:33:35 -------- d-----w- C:\windows\System32\appmgmt
2017-08-05 06:40:10 1721576 ----a-w- C:\windows\System32\WdfCoInstaller01009.dll
2017-08-04 03:19:05 -------- d-----w- C:\ProgramData\Recovery
.
==================== Find3M ====================
.
2017-08-15 17:28:56 803328 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2017-08-15 17:28:56 144896 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-06 04:00:17 471040 --sha-w- C:\EUMONBMP.SYS
2017-08-05 06:55:10 402136 ----a-w- C:\windows\System32\drivers\RtsUer.sys
2017-08-05 06:48:16 41984 ----a-w- C:\windows\System32\drivers\USB3Ver.dll
2017-07-06 04:56:32 119296 ----a-w- C:\windows\System32\drivers\bthpan.sys
2017-06-30 02:57:24 2319872 ----a-w- C:\windows\System32\tquery.dll
2017-06-30 02:57:21 2058240 ----a-w- C:\windows\System32\Query.dll
2017-06-30 02:57:17 99840 ----a-w- C:\windows\System32\mssprxy.dll
2017-06-30 02:57:17 778240 ----a-w- C:\windows\System32\mssvp.dll
2017-06-30 02:57:17 75264 ----a-w- C:\windows\System32\msscntrs.dll
2017-06-30 02:57:17 491520 ----a-w- C:\windows\System32\mssph.dll
2017-06-30 02:57:17 288256 ----a-w- C:\windows\System32\mssphtb.dll
2017-06-30 02:57:17 2222080 ----a-w- C:\windows\System32\mssrch.dll
2017-06-30 02:57:17 14336 ----a-w- C:\windows\System32\msshooks.dll
2017-06-30 02:57:17 115200 ----a-w- C:\windows\System32\mssitlb.dll
2017-06-30 02:40:25 591872 ----a-w- C:\windows\System32\SearchIndexer.exe
2017-06-30 02:40:18 249856 ----a-w- C:\windows\System32\SearchProtocolHost.exe
2017-06-30 02:39:38 113664 ----a-w- C:\windows\System32\SearchFilterHost.exe
2017-06-30 02:39:01 1549312 ----a-w- C:\windows\SysWow64\tquery.dll
2017-06-30 02:38:58 1363968 ----a-w- C:\windows\SysWow64\Query.dll
2017-06-30 02:38:54 666624 ----a-w- C:\windows\SysWow64\mssvp.dll
2017-06-30 02:38:54 59392 ----a-w- C:\windows\SysWow64\msscntrs.dll
2017-06-30 02:38:54 34816 ----a-w- C:\windows\SysWow64\mssprxy.dll
2017-06-30 02:38:54 337408 ----a-w- C:\windows\SysWow64\mssph.dll
2017-06-30 02:38:54 197120 ----a-w- C:\windows\SysWow64\mssphtb.dll
2017-06-30 02:38:54 1400320 ----a-w- C:\windows\SysWow64\mssrch.dll
2017-06-30 02:38:54 104448 ----a-w- C:\windows\SysWow64\mssitlb.dll
2017-06-30 02:27:15 427520 ----a-w- C:\windows\SysWow64\SearchIndexer.exe
2017-06-30 02:27:04 164352 ----a-w- C:\windows\SysWow64\SearchProtocolHost.exe
2017-06-30 02:26:41 86528 ----a-w- C:\windows\SysWow64\SearchFilterHost.exe
2017-06-30 02:26:20 9728 ----a-w- C:\windows\SysWow64\msshooks.dll
2017-06-29 06:19:09 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2017-06-29 06:18:58 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2017-06-29 06:04:12 66560 ----a-w- C:\windows\System32\iesetup.dll
2017-06-29 06:03:28 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2017-06-29 06:03:20 417792 ----a-w- C:\windows\System32\html.iec
2017-06-29 06:02:52 88064 ----a-w- C:\windows\System32\MshtmlDac.dll
2017-06-29 06:02:46 576512 ----a-w- C:\windows\System32\vbscript.dll
2017-06-29 05:50:26 144384 ----a-w- C:\windows\System32\ieUnatt.exe
2017-06-29 05:50:26 116224 ----a-w- C:\windows\System32\ieetwcollector.exe
2017-06-29 05:50:10 814080 ----a-w- C:\windows\System32\jscript9diag.dll
2017-06-29 05:44:36 5975552 ----a-w- C:\windows\System32\jscript9.dll
2017-06-29 05:43:07 968704 ----a-w- C:\windows\System32\MsSpellCheckingFacility.exe
2017-06-29 05:35:46 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2017-06-29 05:31:50 77824 ----a-w- C:\windows\System32\JavaScriptCollectionAgent.dll
2017-06-29 05:31:23 87552 ----a-w- C:\windows\System32\tdc.ocx
2017-06-29 05:23:40 62464 ----a-w- C:\windows\SysWow64\iesetup.dll
2017-06-29 05:23:38 499200 ----a-w- C:\windows\SysWow64\vbscript.dll
2017-06-29 05:23:03 47616 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2017-06-29 05:22:54 341504 ----a-w- C:\windows\SysWow64\html.iec
2017-06-29 05:22:01 64000 ----a-w- C:\windows\SysWow64\MshtmlDac.dll
2017-06-29 05:13:38 115712 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2017-06-29 05:13:19 620032 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2017-06-29 05:08:32 1359360 ----a-w- C:\windows\System32\mshtmlmedia.dll
2017-06-29 05:07:16 2132992 ----a-w- C:\windows\System32\inetcpl.cpl
2017-06-29 05:01:01 60416 ----a-w- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-06-29 05:00:32 73216 ----a-w- C:\windows\SysWow64\tdc.ocx
2017-06-29 04:53:46 3240960 ----a-w- C:\windows\System32\wininet.dll
2017-06-29 04:52:52 4549632 ----a-w- C:\windows\SysWow64\jscript9.dll
2017-06-29 04:46:33 2057216 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2017-06-29 04:46:20 1155072 ----a-w- C:\windows\SysWow64\mshtmlmedia.dll
2017-06-29 04:28:59 2767872 ----a-w- C:\windows\SysWow64\wininet.dll
2017-06-22 14:58:48 3223040 ----a-w- C:\windows\System32\win32k.sys
2017-06-15 20:23:49 753664 ----a-w- C:\windows\System32\drivers\http.sys
2017-06-12 22:54:32 95464 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2017-06-12 22:54:32 154856 ----a-w- C:\windows\System32\drivers\ksecpkg.sys
2017-06-12 22:54:31 370920 ----a-w- C:\windows\System32\clfs.sys
2017-06-12 22:29:03 96768 ----a-w- C:\windows\SysWow64\sspicli.dll
2017-06-12 22:29:03 82944 ----a-w- C:\windows\SysWow64\bcrypt.dll
2017-06-12 22:29:03 666112 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2017-06-12 22:29:03 444928 ----a-w- C:\windows\SysWow64\wvc.dll
2017-06-12 22:29:02 172032 ----a-w- C:\windows\SysWow64\wdigest.dll
2017-06-12 22:29:02 1227264 ----a-w- C:\windows\SysWow64\wdc.dll
2017-06-12 22:29:01 65536 ----a-w- C:\windows\SysWow64\TSpkg.dll
2017-06-12 22:29:01 390144 ----a-w- C:\windows\SysWow64\sysmon.ocx
2017-06-12 22:28:59 22016 ----a-w- C:\windows\SysWow64\secur32.dll
2017-06-12 22:28:58 254464 ----a-w- C:\windows\SysWow64\schannel.dll
2017-06-12 22:28:58 141312 ----a-w- C:\windows\SysWow64\rpchttp.dll
2017-06-12 22:28:57 47104 ----a-w- C:\windows\SysWow64\pdhui.dll
2017-06-12 22:28:54 223232 ----a-w- C:\windows\SysWow64\ncrypt.dll
2017-06-12 22:28:53 60416 ----a-w- C:\windows\SysWow64\msobjs.dll
2017-06-12 22:28:53 261120 ----a-w- C:\windows\SysWow64\msv1_0.dll
2017-06-12 22:28:52 146432 ----a-w- C:\windows\SysWow64\msaudite.dll
2017-06-12 22:28:51 554496 ----a-w- C:\windows\SysWow64\kerberos.dll
2017-06-12 22:28:48 17408 ----a-w- C:\windows\SysWow64\credssp.dll
2017-06-12 22:28:47 342528 ----a-w- C:\windows\SysWow64\certcli.dll
2017-06-12 22:28:46 690688 ----a-w- C:\windows\SysWow64\adtschema.dll
2017-06-12 22:19:20 64000 ----a-w- C:\windows\System32\auditpol.exe
2017-06-12 22:14:07 379392 ----a-w- C:\windows\System32\msinfo32.exe
2017-06-12 22:14:06 172544 ----a-w- C:\windows\System32\perfmon.exe
2017-06-12 22:14:04 103936 ----a-w- C:\windows\System32\resmon.exe
2017-06-12 22:12:49 159744 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
2017-06-12 22:12:16 291328 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
2017-06-12 22:12:14 129536 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
2017-06-12 22:11:32 30720 ----a-w- C:\windows\System32\lsass.exe
2017-06-12 22:09:30 50176 ----a-w- C:\windows\SysWow64\auditpol.exe
2017-06-12 2251 157184 ----a-w- C:\windows\SysWow64\perfmon.exe
2017-06-12 2250 303616 ----a-w- C:\windows\SysWow64\msinfo32.exe
2017-06-12 2250 103424 ----a-w- C:\windows\SysWow64\resmon.exe
.
============= FINISH: 14:36:41.49 ===============
Attached Files
File Type: txt attach.txt (22.0 KB, 16 views)
catsears is offline  
Sponsored Links
Advertisement
 
Old 08-31-2017, 08:55 AM   #2
Registered Member
 
Join Date: Apr 2012
Posts: 122
OS: win7



still awaiting further instructions??? thanks
catsears is offline  
Old 09-02-2017, 12:47 PM   #3
Registered Member
 
Join Date: Apr 2012
Posts: 122
OS: win7



hi, did as instructed and attached the 2 results.

now I'm awaiting further instructions from TechSupport to proceed with getting rid of malware/virus/etc that I've been told is on my computer.

It is acting weird, not doing updates; wont let me open websites, etc.

very frustrating!!! PLEASE send help ASAP.

thanks for your help!
catsears is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
Malware Removal Help Posting Instructions
Welcome to Tech Support Forum Virus/Trojan/Spyware Removal Help (formerly Hijackthis Log Help) * DO NOT FIX ANY ENTRIES OR DELETE ANY FILES YOURSELF. Do not run any specialized tools that you see being used in other threads without direct supervision from one of our trained analysts....
jcgriff2 Virus/Trojan/Spyware Help 0 02-23-2019 03:07 PM
Festival TTS instructions
I just completed my re-install of festival 2.1 on Slackware 13.37. At that time I wrote a step-by-step set of instructions so I won't forget. I noticed there was little information about the .festivalrc and what can go in it so I wrote a shell script to modify the siteinit.scm file, a .festivalrc...
geosman Linux Support 4 10-07-2011 10:16 PM
Windows constantly restarting - am unable to follow instructions
Hi I've been redirected here from the vista and security forums I have read the start instructions but am unable to follow them because of the following - When I boot up windows vista opens After a few seconds notifications open from Vista Security warning me of impending cataclysms
idp Inactive Malware Help Topics 2 04-19-2011 07:48 AM
Acer recovery Instructions
Here is the standard Acer Recovery Instructions 1. Power on the machine 2. At the white ACER BIOS screen, hold the “Alt” key and press the “F10” key simultaneously to start Acer eRecovery 3. Once eRecovery has loaded, click “Restore to Factory Default Settings” 4. Click “OK” to...
kodi Laptop Support 0 02-27-2007 03:34 PM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 12:10 PM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts