Jump to content

Nova1205

Members
  • Posts

    19
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Also malwarebytes anti-malware pops up everytime I open windows. it says I am not protected. What is wrong with it?
  2. Several days ago I was on the web site of a major at museum. I could not see the images of the paintings, (I had no problem with the Hermitage art museum web site before) and it asked me to install ActiveX, after that my space bar, B, N, ? stopped working on my key board along with the arrow buttons. I am using an externat key board for usb, I have told dell about the issue and they say get a new keyboard, well waiting for them has been no help at all. Since that time my right and left click have gone out a few days ago. What virus is this???? I also have a redircet virus in firefox that I could never get rid of, even with help on here in an old post. The same issue with the DLL error that was caused by a virus. ==================== (removed today)pup.bundlelns virus pup.installbrain Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Database version: v2012.12.04.12 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 Dwayne Brazil :: DWAYNEBRAZIL-PC [administrator] 12/5/2012 3:35:13 PM mbam-log-2012-12-05 (15-35-13).txt Scan type: Full scan (C:\|D:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 439667 Time elapsed: 2 hour(s), 39 minute(s), 52 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 1 C:\ProgramData\IBUpdaterService (PUP.InstallBrain) -> Quarantined and deleted successfully. Files Detected: 2 C:\Program Files\Uninstall Information\ib_uninst_455\uninstall.exe (PUP.BundleInstaller.IB) -> Quarantined and deleted successfully. C:\ProgramData\IBUpdaterService\repository.xml (PUP.InstallBrain) -> Quarantined and deleted successfully. (end)
  3. However I was able to get adobe reader back, and I downloaded a new AVG.
  4. In safe mode I ran this "%userprofile%\desktop\sega.com" /killall but it did not work. So I tried to run the program, but it will now work correctly with AVG. So I used the remove AVG program. However even after reboot into safe mode it still detected AVG (Even though it is gone)??
  5. I ran it "combofix" three times, the last time it removed some files however it has not put out a report.
  6. I am having a problem with combofx "failed to get data EnableLUA" also I am only to stage 50 and no report. I had to trun off AVG disable botton has a problem.
  7. I still see SUPERAntiSpyware.com and avast in the log even though i removed them, why?
  8. Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.21.09 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 Dwayne Brazil :: DWAYNEBRAZIL-PC [administrator] Protection: Enabled 7/21/2012 1:29:03 PM mbam-log-2012-07-21 (13-29-03).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 247906 Time elapsed: 53 minute(s), 32 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1 Run by Dwayne Brazil at 14:26:37 on 2012-07-21 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2037.567 [GMT -5:00] . AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: AVG Internet Security 2012 *Disabled* {621CC794-9486-F902-D092-0484E8EA828B} . ============== Running Processes =============== . C:\PROGRA~1\AVG\AVG2012\avgrsx.exe C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Dell\DellDock\DockLogin.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\WLTRYSVC.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\WLANExt.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\Program Files\AVG\AVG2012\avgfws.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe C:\Windows\system32\lxcecoms.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files\AVG\AVG2012\avgnsx.exe C:\Program Files\AVG\AVG2012\avgemcx.exe C:\Program Files\Dell\DellDock\DellDock.exe C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\STacSV.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\DRIVERS\xaudio.exe C:\Program Files\AVG\AVG2012\avgidsagent.exe C:\Program Files\Raxco\PerfectDisk2008\PD91AgentS1.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\System32\bcmwltry.exe C:\Program Files\DellTPad\Apoint.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\System32\WLTRAY.EXE C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Dell\MediaDirect\PCMService.exe C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\PC Tools\Outlook Express API\launcher.exe C:\Program Files\Ask.com\Updater\Updater.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Common Files\Apple\Internet Services\ubd.exe C:\Program Files\Digital Line Detect\DLG.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\DellTPad\ApMsgFwd.exe C:\Program Files\DellTPad\HidFind.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\Macromed\Flash\FlashUtil32_11_3_300_265_ActiveX.exe C:\Program Files\Giraffic\Veoh_Giraffic.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Windows\notepad.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\RacAgent.exe . ============== Pseudo HJT Report =============== . uSearch Page = hxxp://www.google.com uStart Page = hxxp://www.google.com/ uSearch Bar = Preserve uWindow Title = Internet Explorer provided by Dell uInternet Settings,ProxyOverride = 192.168.*.*;*.local uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s mURLSearchHooks: H - No File BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File BHO: {134da043-566e-4572-82e6-8978d0ed03d8} - JetMP3 BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll BHO: blekko search bar: {8769adce-dba5-48e9-afb5-67b12cdf2e61} - blekko search bar BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.1.0.20\AVG Secure Search_toolbar.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\dell\bae\BAE.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll TB: Veoh Web Player Video Finder: {0fbb9689-d3d7-4f7a-a2e2-585b10099bfc} - c:\program files\veoh networks\veohwebplayer\VeohIEToolbar.dll TB: blekko search bar: {8769adce-dba5-48e9-afb5-67b12cdf2e61} - TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.1.0.20\AVG Secure Search_toolbar.dll TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File {e7df6bff-55a5-4eb7-a673-4ed3e9456d39} uRun: [VeohPlugin] "c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide mRun: [Apoint] c:\program files\delltpad\Apoint.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe mRun: [iAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe" mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe" mRun: [Dell DataSafe Online] "c:\program files\dell datasafe online\DataSafeOnline.exe" /m mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [Nektra OEAPI] c:\program files\common files\pc tools\outlook express api\Launcher.exe mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW mRun: [LXCECATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\LXCEtime.dll,_RunDLLEntry@16 mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mRun: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe mRun: [vProt] "c:\program files\avg secure search\vprot.exe" mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" StartupFolder: c:\users\dwayne~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab TCP: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 TCP: Interfaces\{2416E992-A504-4179-B2B8-031BC444FA60} : DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\12.1.3\ViProtocol.dll Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll Notify: igfxcui - igfxdev.dll AppInit_DLLs: c:\progra~2\bprote~1\22453~1.59\protec~1.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL . ================= FIREFOX =================== . FF - ProfilePath - c:\users\dwayne brazil\appdata\roaming\mozilla\firefox\profiles\z9f285ei.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=DMDTDF&PC=VEOH&q= FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B94bef496-6159-4b9e-9346-85db4ec55333%7D&mid=e06a377a3b7047d19764d168dd110558-012448c3d9867908ac62aa5a7627bf1e4a7f5de6&ds=AVG&v=11.1.0.7〈=en&pr=pr&d=2012-06-20%2016%3A07%3A34&sap=ku&q= FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\11.2.0\npsitesafety.dll FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll FF - plugin: c:\program files\msn toolbar\platform\4.0.0417.0\npwinext.dll FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_265.dll FF - plugin: c:\windows\system32\npDeployJava1.dll FF - plugin: c:\windows\system32\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-1-31 31952] R1 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwd6x.sys [2011-5-23 47968] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-2-22 235216] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-12-23 41040] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-3-19 301248] R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-7-21 27496] R2 avgfws;AVG Firewall;c:\program files\avg\avg2012\avgfws.exe [2012-3-23 2321520] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-4-30 5106744] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288] R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-5-2 161048] R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504] R2 Giraffic;Veoh Giraffic Video Accelerator;c:\program files\giraffic\veoh_girafficwatchdog.exe --service --> c:\program files\giraffic\Veoh_GirafficWatchdog.exe --service [?] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-6-19 655944] R2 MotoHelper;MotoHelper Service;c:\program files\motorola\motohelper\MotoHelperService.exe [2011-12-6 214896] R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-12-31 693512] R2 vToolbarUpdater12.1.3;vToolbarUpdater12.1.3;c:\program files\common files\avg secure search\vtoolbarupdater\12.1.3\ToolbarUpdater.exe [2012-7-21 830048] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2008-11-11 111616] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-6-19 22344] S2 AESTFilters;Andrea ST Filters Service; [x] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-7-2 250056] S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2012-6-19 30192] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-29 113120] S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-12-31 910600] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-07-21 18:09:20 711240 ----a-w- c:\windows\isRS-000.tmp 2012-07-21 15:48:04 27496 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2012-07-21 15:47:59 -------- d-----w- c:\program files\AVG Secure Search 2012-07-21 15:29:34 -------- d-----w- c:\users\dwayne brazil\appdata\local\{3E8AD64A-4902-4EA6-933D-72A4BB88390C} 2012-07-21 15:29:03 -------- d-----w- c:\users\dwayne brazil\appdata\local\{F5139D57-DDA8-46EF-8354-8273507A5A02} 2012-07-21 02:13:28 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8817C592-BB13-4D9F-8E6C-5CA0C9400890} 2012-07-20 14:12:12 -------- d-----w- c:\users\dwayne brazil\appdata\local\{874CB392-6DF6-4453-AFD0-FE56BE91EE92} 2012-07-20 14:11:41 -------- d-----w- c:\users\dwayne brazil\appdata\local\{D9AEE32E-2291-4997-9D84-8D63AB3B0FEA} 2012-07-20 01:40:19 -------- d-----w- c:\users\dwayne brazil\appdata\local\{AB79D4A1-C308-453A-910C-45EF807DA7BC} 2012-07-20 01:39:58 -------- d-----w- c:\users\dwayne brazil\appdata\local\{CE8CB43B-8B9B-4307-866D-05B5A4036AF1} 2012-07-19 13:39:07 -------- d-----w- c:\users\dwayne brazil\appdata\local\{1584D27C-8A79-4CF4-9634-9A18CDEC4214} 2012-07-19 13:38:42 -------- d-----w- c:\users\dwayne brazil\appdata\local\{5592D07E-9501-491F-BE5B-938E57223023} 2012-07-19 04:51:27 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8DB58A49-B18A-42AA-AD7F-F39270712CFB} 2012-07-18 01:58:31 -------- d-----w- c:\users\dwayne brazil\appdata\local\{20BC8DD1-C6FF-4635-B514-3D42817AC17D} 2012-07-18 01:58:07 -------- d-----w- c:\users\dwayne brazil\appdata\local\{016247E9-32C0-424D-AFC9-ABF98D5674BC} 2012-07-17 13:57:43 -------- d-----w- c:\users\dwayne brazil\appdata\local\{89ACF64D-72CC-43CA-A411-D625F38FC93D} 2012-07-17 13:57:20 -------- d-----w- c:\users\dwayne brazil\appdata\local\{B79342AB-CAB8-4426-9D76-6D4428BF3171} 2012-07-17 01:56:42 -------- d-----w- c:\users\dwayne brazil\appdata\local\{4132BEA3-C19A-4325-8709-95FC79395333} 2012-07-17 01:56:18 -------- d-----w- c:\users\dwayne brazil\appdata\local\{16399073-57CB-4D2E-A0A8-32D41FF8C3DA} 2012-07-16 13:55:40 -------- d-----w- c:\users\dwayne brazil\appdata\local\{AEA185F6-C57D-4D1C-A206-C7ED534F9D18} 2012-07-16 13:55:19 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9BFC50B8-787F-485B-9D46-0FAC433EA3E7} 2012-07-15 16:15:09 -------- d-----w- c:\users\dwayne brazil\appdata\local\{CC0D7BA7-DF22-4B48-AEAA-4CCB2951F793} 2012-07-15 16:14:46 -------- d-----w- c:\users\dwayne brazil\appdata\local\{23CF12B2-0106-4586-A124-31E55FE8A434} 2012-07-14 23:17:27 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6275B715-65EF-4615-983A-573EC70D8682} 2012-07-14 23:16:57 -------- d-----w- c:\users\dwayne brazil\appdata\local\{D5B4B168-259E-46A5-B010-0B9591343732} 2012-07-14 02:03:09 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8BBD552D-FCFB-4D0D-A968-D930E6FA5740} 2012-07-14 02:02:46 -------- d-----w- c:\users\dwayne brazil\appdata\local\{BAD2647D-52B3-40EA-9657-26F3AE0B8D77} 2012-07-13 14:02:05 -------- d-----w- c:\users\dwayne brazil\appdata\local\{5DFABFDD-6DA0-4AFB-A017-D905EA4BE7D5} 2012-07-13 14:01:41 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9697E04C-C8C8-43AD-9657-4075AB647014} 2012-07-13 02:01:00 -------- d-----w- c:\users\dwayne brazil\appdata\local\{701FBB44-E828-4F3E-A2A3-96909CF9C04C} 2012-07-13 02:00:37 -------- d-----w- c:\users\dwayne brazil\appdata\local\{D0593395-1587-4554-95FD-3D6BE7028E48} 2012-07-12 13:59:36 -------- d-----w- c:\users\dwayne brazil\appdata\local\{89B2158F-36FD-4680-8067-BFA5F7C6A02F} 2012-07-12 13:59:12 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9B44C3BC-C6B2-4C0F-8234-7CCC7808EEBE} 2012-07-12 04:26:43 1129472 ----a-w- c:\windows\system32\wininet.dll 2012-07-12 04:26:40 678912 ----a-w- c:\program files\internet explorer\iedvtool.dll 2012-07-12 00:47:15 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-12 00:40:21 -------- d-----w- C:\e3fa374b8fb0eab1134d3959 2012-07-11 16:40:22 -------- d-----w- c:\users\dwayne brazil\appdata\local\{4432EBC5-282B-430E-816C-126417B20AED} 2012-07-11 16:40:01 -------- d-----w- c:\users\dwayne brazil\appdata\local\{348CE649-8A7A-45DE-87BE-B9E7DFE4B3CF} 2012-07-11 14:32:32 1401856 ----a-w- c:\windows\system32\msxml6.dll 2012-07-11 14:32:32 1248768 ----a-w- c:\windows\system32\msxml3.dll 2012-07-11 14:32:29 708608 ----a-w- c:\program files\common files\system\ado\msado15.dll 2012-07-11 14:32:23 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-07-11 14:32:23 278528 ----a-w- c:\windows\system32\schannel.dll 2012-07-11 14:32:23 204288 ----a-w- c:\windows\system32\ncrypt.dll 2012-07-11 04:39:22 -------- d-----w- c:\users\dwayne brazil\appdata\local\{16BB4608-B610-4CFD-9EE5-6F91B5FF15BB} 2012-07-11 04:39:01 -------- d-----w- c:\users\dwayne brazil\appdata\local\{66D51D01-B0AF-4D5F-AADA-1CA3A486C7D9} 2012-07-10 16:38:16 -------- d-----w- c:\users\dwayne brazil\appdata\local\{70AB398E-862B-4CBA-A1C9-25E5AA508AE8} 2012-07-10 16:37:55 -------- d-----w- c:\users\dwayne brazil\appdata\local\{B20D248A-6EDE-4877-918B-6563CCD84AD7} 2012-07-10 01:44:13 -------- d-----w- c:\users\dwayne brazil\appdata\local\{45594C78-9740-4E5E-BE06-161D26157C62} 2012-07-10 01:43:40 -------- d-----w- c:\users\dwayne brazil\appdata\local\{820A151A-42E6-47DD-A46A-D75AD6245CE9} 2012-07-09 13:42:43 -------- d-----w- c:\users\dwayne brazil\appdata\local\{87758640-800E-4795-8F84-BF0C289AB578} 2012-07-09 13:42:21 -------- d-----w- c:\users\dwayne brazil\appdata\local\{B8DF31B4-21FA-4D9B-8DF5-33833309B977} 2012-07-08 22:22:13 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9525226C-E31C-4DC2-9B40-C1CA5C7C1823} 2012-07-08 22:21:47 -------- d-----w- c:\users\dwayne brazil\appdata\local\{A7D5ABD0-03E6-4349-BF88-824910A08253} 2012-07-08 17:02:45 -------- d-----w- c:\users\dwayne brazil\appdata\local\{88612293-F52F-4930-AE36-A349B6AD468D} 2012-07-08 17:02:18 -------- d-----w- c:\users\dwayne brazil\appdata\local\{AA05A257-7EB1-424E-9C85-317F46B78ECE} 2012-07-08 04:21:12 -------- d-----w- c:\users\dwayne brazil\appdata\local\{927F61BE-0CF4-433E-A6E8-C78E7B623042} 2012-07-08 04:20:48 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8C178EFB-41A4-4BC9-A2BB-03C173A25362} 2012-07-07 21:53:29 -------- d-----w- c:\users\dwayne brazil\appdata\roaming\FixCleaner 2012-07-07 21:53:13 -------- d-----w- c:\program files\FixCleaner 2012-07-07 19:35:59 -------- d-----w- C:\searchplugins 2012-07-07 19:35:59 -------- d-----w- C:\bProtectorForWindows 2012-07-07 19:31:05 -------- d-----w- c:\users\dwayne brazil\appdata\local\Promosoft Corporation 2012-07-07 16:20:07 -------- d-----w- c:\users\dwayne brazil\appdata\local\{E29E0143-15D2-4A78-B96F-98BCC7BF150C} 2012-07-07 16:19:47 -------- d-----w- c:\users\dwayne brazil\appdata\local\{E325DC03-6545-45C0-AFF1-A3F063EB0AC4} 2012-07-07 03:56:52 -------- d-----w- c:\users\dwayne brazil\appdata\local\{527012A8-E157-403A-A34C-94BFEC7C2D9D} 2012-07-07 03:56:31 -------- d-----w- c:\users\dwayne brazil\appdata\local\{73A2C109-2048-4122-8518-07E77FC23403} 2012-07-06 15:55:53 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8FD27F59-14FC-42A8-878E-6ACBB4A1A6EA} 2012-07-06 15:55:32 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6F6E0AC6-CAE7-42CE-9FEA-7BB80CD08788} 2012-07-06 03:54:51 -------- d-----w- c:\users\dwayne brazil\appdata\local\{1B7C01ED-B1BB-471A-BE4D-87289D7AB3EC} 2012-07-06 03:54:29 -------- d-----w- c:\users\dwayne brazil\appdata\local\{79CA4285-F7FE-4A83-94BE-17368013559E} 2012-07-05 15:54:05 -------- d-----w- c:\users\dwayne brazil\appdata\local\{5FABC33E-3E72-43EF-BBB0-9FBE5A0E87FC} 2012-07-05 15:53:43 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6865A132-40FA-4324-AE1A-04683BBC53A6} 2012-07-05 03:53:01 -------- d-----w- c:\users\dwayne brazil\appdata\local\{3EEAE9EC-65DF-4C83-B0BB-746440152D7B} 2012-07-05 03:52:33 -------- d-----w- c:\users\dwayne brazil\appdata\local\{01326AE5-472D-437E-9746-EB5E28816C45} 2012-07-04 15:51:36 -------- d-----w- c:\users\dwayne brazil\appdata\local\{145D41D6-4C42-4466-BFC0-3146DAD14A99} 2012-07-04 15:51:09 -------- d-----w- c:\users\dwayne brazil\appdata\local\{72462683-99A0-4566-A1EC-F900C6E14B3E} 2012-07-04 02:29:56 -------- d-----w- c:\users\dwayne brazil\appdata\local\{B1301911-8B3F-42CB-9CAD-DBFF27F76A9E} 2012-07-04 02:29:35 -------- d-----w- c:\users\dwayne brazil\appdata\local\{93F6E7A3-3C88-4995-BCA4-BB0EF42BB0AF} 2012-07-03 14:28:43 -------- d-----w- c:\users\dwayne brazil\appdata\local\{36C660EE-AE37-4BB7-A9D8-F271B4BCC63D} 2012-07-03 14:27:50 -------- d-----w- c:\users\dwayne brazil\appdata\local\{1880C47B-CDEF-4CFC-A3F6-3AAADCC5A521} 2012-07-03 02:26:48 -------- d-----w- c:\users\dwayne brazil\appdata\local\{912944B3-7BB0-4DBF-BFE4-D792722B5D72} 2012-07-03 02:26:26 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6EEE3CA6-A40D-4E31-A478-0FF9944D55A4} 2012-07-02 20:36:57 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-07-02 20:36:57 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-02 14:25:45 -------- d-----w- c:\users\dwayne brazil\appdata\local\{8E12204F-A978-4718-88F5-50280F9C92CD} 2012-07-02 14:25:23 -------- d-----w- c:\users\dwayne brazil\appdata\local\{E0082D17-96C0-4E33-A500-AB7F3E99DE1A} 2012-07-01 20:11:33 -------- d-----w- c:\users\dwayne brazil\appdata\local\{F70FACE6-37D1-48C7-B5E7-51BE0716EB24} 2012-07-01 20:11:08 -------- d-----w- c:\users\dwayne brazil\appdata\local\{0BF9B124-3B63-46F4-9809-683C434DBBAA} 2012-06-30 22:39:30 -------- d-----w- c:\users\dwayne brazil\appdata\local\{09976377-D34B-43A2-ABC4-98C8D8129DFB} 2012-06-30 22:39:09 -------- d-----w- c:\users\dwayne brazil\appdata\local\{56652E80-74C3-46A2-8950-639EF7502546} 2012-06-30 03:53:44 -------- d-----w- c:\users\dwayne brazil\appdata\local\{80262053-0385-4E8C-B51F-015F776409C3} 2012-06-30 03:53:19 -------- d-----w- c:\users\dwayne brazil\appdata\local\{D291C0F5-A067-4C30-8134-7CC4C3D1E92F} 2012-06-30 03:19:35 -------- d-----w- c:\users\dwayne brazil\appdata\local\{C0A6DAAE-06BF-464E-899F-278D3AB3E89B} 2012-06-29 19:23:01 -------- d-----w- c:\users\dwayne brazil\appdata\local\Apple 2012-06-29 15:19:11 -------- d-----w- c:\users\dwayne brazil\appdata\local\{C0B84BDD-2F53-4D5C-9B34-659506115AE0} 2012-06-29 15:18:51 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9A57BAA2-5818-49AF-A045-953183ABEA11} 2012-06-29 03:18:12 -------- d-----w- c:\users\dwayne brazil\appdata\local\{FB1F81A9-32AB-4AA5-B49E-F5BA4297B771} 2012-06-29 03:17:51 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9AA8879C-14AB-40D0-9373-911C628EAC80} 2012-06-28 15:17:05 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6E98FC34-CD7A-449E-98F8-0C155F007F79} 2012-06-28 15:16:43 -------- d-----w- c:\users\dwayne brazil\appdata\local\{4E1EF9FA-1619-4E03-972F-1D6C37AC4EE0} 2012-06-26 16:45:38 -------- d-----w- c:\programdata\AVAST Software 2012-06-26 14:58:16 -------- d-----w- c:\users\dwayne brazil\appdata\local\{9A3D93FD-8BBE-4B9E-8446-17702907EBD5} 2012-06-26 14:57:37 -------- d-----w- c:\users\dwayne brazil\appdata\local\{510DD920-E1A5-4824-B6EF-4D06F5302DA0} 2012-06-26 02:13:36 -------- d-----w- c:\users\dwayne brazil\appdata\local\{1F28A52D-FD13-4470-9443-918B48842DD9} 2012-06-26 02:13:12 -------- d-----w- c:\users\dwayne brazil\appdata\local\{5EFDF81B-D50E-4C86-9B5B-2CBD6BBC46F9} 2012-06-25 14:12:19 -------- d-----w- c:\users\dwayne brazil\appdata\local\{AC3AB486-75D1-496E-A6A1-7FA5FD723697} 2012-06-25 14:11:48 -------- d-----w- c:\users\dwayne brazil\appdata\local\{739FB1D3-1003-4F9C-8E63-A06E4659A6F8} 2012-06-24 17:33:10 -------- d-----w- c:\users\dwayne brazil\appdata\local\{0B08CBDB-CB58-4004-B446-204D453F655F} 2012-06-24 17:32:49 -------- d-----w- c:\users\dwayne brazil\appdata\local\{2EBC0259-36A0-439E-BCA2-042EF261CF37} 2012-06-24 15:21:21 -------- d-----w- c:\users\dwayne brazil\appdata\roaming\SUPERAntiSpyware.com 2012-06-24 15:18:20 -------- d-----w- c:\programdata\SUPERAntiSpyware.com 2012-06-24 15:18:20 -------- d-----w- c:\program files\SUPERAntiSpyware 2012-06-24 14:57:02 -------- d-----w- c:\users\dwayne brazil\appdata\local\{037BE981-4444-4F26-B2E3-DE96A22587AD} 2012-06-24 02:22:34 -------- d-----w- c:\users\dwayne brazil\appdata\local\{07BB2F47-BADC-471F-9584-15C228996200} 2012-06-24 02:22:13 -------- d-----w- c:\users\dwayne brazil\appdata\local\{415F46C9-56E6-4FE6-93BD-EC9B9F9F6207} 2012-06-23 15:52:21 -------- d-----w- c:\program files\Oracle 2012-06-23 15:51:20 772504 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-06-23 15:48:00 -------- d-----w- c:\program files\DllErrorsFix 2012-06-23 14:21:23 -------- d-----w- c:\users\dwayne brazil\appdata\local\{28C1B69E-66A5-4D9B-B8D4-DD9C895001C5} 2012-06-23 14:21:02 -------- d-----w- c:\users\dwayne brazil\appdata\local\{F0C687DA-A860-42EC-BBDA-241FDA8AE300} 2012-06-23 14:09:05 -------- d-----w- c:\users\dwayne brazil\appdata\local\Apple Computer 2012-06-23 07:03:06 -------- d-----w- c:\program files\common files\searchplugins 2012-06-23 07:03:06 -------- d-----w- c:\program files\common files\bProtectorForWindows 2012-06-23 07:00:46 -------- d-----w- c:\users\dwayne brazil\appdata\local\Adobe 2012-06-23 05:47:54 98816 ----a-w- c:\windows\sed.exe 2012-06-23 05:47:54 518144 ----a-w- c:\windows\SWREG.exe 2012-06-23 05:47:54 256000 ----a-w- c:\windows\PEV.exe 2012-06-23 05:47:54 208896 ----a-w- c:\windows\MBR.exe 2012-06-23 05:47:07 -------- d-s---w- C:\ComboFix 2012-06-23 05:36:02 -------- d-----w- c:\users\dwayne brazil\appdata\local\Macromedia 2012-06-23 02:20:18 -------- d-----w- c:\users\dwayne brazil\appdata\local\{6A15C4A2-1093-494C-BCAB-95690739605E} 2012-06-23 02:19:38 -------- d-----w- c:\users\dwayne brazil\appdata\local\{82F71EDE-E5CF-485C-AD61-484C16C3007C} 2012-06-23 01:02:48 -------- d-----w- c:\program files\ESET 2012-06-22 15:25:44 -------- d-----w- c:\users\dwayne brazil\searchplugins 2012-06-22 15:25:44 -------- d-----w- c:\users\dwayne brazil\bProtectorForWindows 2012-06-22 14:24:03 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-22 14:23:02 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-22 14:22:46 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-22 14:22:46 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-22 14:19:03 -------- d-----w- c:\users\dwayne brazil\appdata\local\{08B7A4BC-F48D-4F90-A67C-0176E2B5E9D4} 2012-06-22 14:18:24 -------- d-----w- c:\users\dwayne brazil\appdata\local\{03D8DAD3-28E9-4D69-A4D5-F8A85C73FCD5} 2012-06-22 01:42:44 -------- d-----w- c:\users\dwayne brazil\appdata\local\{BC3B54B1-C300-441C-8B41-07685BD5FA8D} 2012-06-22 01:42:20 -------- d-----w- c:\users\dwayne brazil\appdata\local\{63802B09-E244-48C1-89B5-AB26E259F247} . ==================== Find3M ==================== . 2012-07-03 18:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-06-19 17:45:25 319456 ----a-w- c:\windows\DIFxAPI.dll 2012-06-02 08:33:25 1800192 ----a-w- c:\windows\system32\jscript9.dll 2012-06-02 08:25:03 1427968 ----a-w- c:\windows\system32\inetcpl.cpl 2012-06-02 08:20:33 142848 ----a-w- c:\windows\system32\ieUnatt.exe 2012-06-02 08:16:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-05-05 00:29:16 687504 ----a-w- c:\windows\system32\deployJava1.dll 2012-05-01 14:03:49 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-04-23 16:00:53 984064 ----a-w- c:\windows\system32\crypt32.dll 2012-04-23 16:00:53 98304 ----a-w- c:\windows\system32\cryptnet.dll 2012-04-23 16:00:53 133120 ----a-w- c:\windows\system32\cryptsvc.dll . ============= FINISH: 14:29:33.06 ===============
  9. Avast is gone, with no problems (I still have my google gadgets) I removed avira & super anti spyware.
  10. I will remove avast however I have been stuck with avast for several years. Avast is expired, only the registration work which pops up all the time. I gave up trying to get rid of it, I went to computer people and it is almost impossible to to without causing chaos. If I download a program from Avast to remove it, my google gadgets will be blocked, along with images from web sites, youtube and dozens of other issues. Even the people at windows could not figure this out. If I try to download the newest Avast (I tried for several yeas) it will not allow me to due so by have an existing program (or part of one).
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.