1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Advertising noise playing in background

Discussion in 'Virus & Other Malware Removal' started by monnagirl, Jan 21, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. monnagirl

    monnagirl Thread Starter

    Joined:
    Jan 20, 2013
    Messages:
    1
    I keep getting these annoying advertisement noises running in the background. I've deleted programs and run my anti-virus multiple times, but it still keeps happening. It's driving me crazy, and interfering with my work. TIA for the help!

    Here are my logs:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 11:49:14 AM, on 1/21/2013
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v7.00 (7.00.6002.18005)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
    C:\Program Files\Synaptics\SynTP\SynTPStart.exe
    C:\Windows\PixArt\Pac207\Monitor.exe
    C:\Windows\RtHDVCpl.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\AVG\AVG10\avgtray.exe
    C:\Program Files\National Consumer Panel\NCP Internet Transporter\HSTrans.exe
    C:\Program Files\AVG SafeGuard toolbar\vprot.exe
    C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    C:\Program Files\BatteryCare\BatteryCare.exe
    C:\Users\Rodrick\Local Settings\Apps\F.lux\flux.exe
    C:\Users\Rodrick\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Users\Rodrick\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe
    C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
    C:\Users\Rodrick\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Synaptics\SynTP\SynToshiba.exe
    C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    c:\Users\Rodrick\Downloads\HijackThis.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\14.0.0.14\AVG SafeGuard toolbar_toolbar.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\14.0.0.14\AVG SafeGuard toolbar_toolbar.dll
    O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
    O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
    O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [Skytel] Skytel.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
    O4 - HKLM\..\Run: [MegaPanel] "C:\Program Files\National Consumer Panel\NCP Internet Transporter\HSTrans.exe"
    O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG SafeGuard toolbar\vprot.exe"
    O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Rodrick\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [BatteryCare] C:\Program Files\BatteryCare\BatteryCare.exe
    O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Rodrick\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
    O4 - HKCU\..\Run: [F.lux] "C:\Users\Rodrick\Local Settings\Apps\F.lux\flux.exe" /noshow
    O4 - Startup: Dropbox.lnk = C:\Users\Rodrick\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Startup: Facebook Messenger.lnk = C:\Users\Rodrick\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\14.0.1\ViProtocol.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
    O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: pinger - Unknown owner - C:\TOSHIBA\IVP\ISM\pinger.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
    O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
    O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    O23 - Service: vToolbarUpdater14.0.1 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe

    --
    End of file - 9478 bytes
    ----------------
    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 10.11.2
    Run by Rodrick at 11:50:32 on 2013-01-21
    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2038.261 [GMT -6:00]
    .
    AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    .
    ============== Running Processes ================
    .
    C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\WLANExt.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\agrsmsvc.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
    C:\Program Files\Synaptics\SynTP\SynTPStart.exe
    C:\Windows\PixArt\Pac207\Monitor.exe
    C:\Windows\RtHDVCpl.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\National Consumer Panel\NCP Internet Transporter\HSTrans.exe
    C:\TOSHIBA\IVP\ISM\pinger.exe
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\Program Files\AVG SafeGuard toolbar\vprot.exe
    C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    C:\Program Files\BatteryCare\BatteryCare.exe
    C:\Users\Rodrick\Local Settings\Apps\F.lux\flux.exe
    C:\Users\Rodrick\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Users\Rodrick\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe
    C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
    C:\Users\Rodrick\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe
    C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    C:\Windows\system32\TODDSrv.exe
    C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe
    C:\Program Files\AVG\AVG10\avgnsx.exe
    C:\Program Files\AVG\AVG10\avgemcx.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Synaptics\SynTP\SynToshiba.exe
    C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\PROGRA~1\AVG\AVG10\avgrsx.exe
    C:\Program Files\AVG\AVG10\avgcsrvx.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Users\Rodrick\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\RacAgent.exe
    C:\Windows\system32\rundll32.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    mDefault_Page_URL = hxxp://www.toshibadirect.com/dpdstart
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg10\avgssie.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
    BHO: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\14.0.0.14\AVG SafeGuard toolbar_toolbar.dll
    BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
    TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
    TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\14.0.0.14\AVG SafeGuard toolbar_toolbar.dll
    uRun: [TOSCDSPD] TOSCDSPD.EXE
    uRun: [Google Update] "c:\users\rodrick\appdata\local\google\update\GoogleUpdate.exe" /c
    uRun: [BatteryCare] c:\program files\batterycare\BatteryCare.exe
    uRun: [Facebook Update] "c:\users\rodrick\appdata\local\facebook\update\FacebookUpdate.exe" /c /nocrashserver
    uRun: [F.lux] "c:\users\rodrick\local settings\apps\f.lux\flux.exe" /noshow
    mRun: [Camera Assistant Software] "c:\program files\camera assistant software for toshiba\traybar.exe"
    mRun: [SynTPStart] c:\program files\synaptics\syntp\SynTPStart.exe
    mRun: [PAC207_Monitor] c:\windows\pixart\pac207\Monitor.exe
    mRun: [RtHDVCpl] RtHDVCpl.exe
    mRun: [Skytel] Skytel.exe
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
    mRun: [MegaPanel] "c:\program files\national consumer panel\ncp internet transporter\HSTrans.exe"
    mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
    StartupFolder: c:\users\rodrick\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\rodrick\appdata\roaming\dropbox\bin\Dropbox.exe
    StartupFolder: c:\users\rodrick\appdata\roaming\micros~1\windows\startm~1\programs\startup\facebo~1.lnk - c:\users\rodrick\appdata\local\facebook\messenger\2.1.4651.0\FacebookMessenger.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{51F86A52-EB4E-4B40-AF61-1B175B0A6954} : DHCPNameServer = 192.168.1.1
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\14.0.1\ViProtocol.dll
    Notify: igfxcui - igfxdev.dll
    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
    Hosts: 127.0.0.1 www.spywareinfo.com
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\rodrick\appdata\roaming\mozilla\firefox\profiles\weuidwyv.default\
    FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
    FF - prefs.js: browser.startup.homepage - hxxp://mysearch.avg.com/?cid={3D7DE1B6-8E07-45D6-B2A7-0BD2948E843C}&mid=2079269f47a847d68644d1e99771db5c-39e3ed827c72659072e941768e611830a3982e3e&lang=en&ds=AVG&pr=fr&d=2013-01-20 21:35:12&v=14.0.0.14&pid=safeguard&sg=1&sap=hp
    FF - prefs.js: keyword.URL - hxxp://mysearch.avg.com/search?cid={3D7DE1B6-8E07-45D6-B2A7-0BD2948E843C}&mid=2079269f47a847d68644d1e99771db5c-39e3ed827c72659072e941768e611830a3982e3e&lang=en&ds=AVG&pr=fr&d=2013-01-20 21:35:12&pid=safeguard&sg=1&v=14.0.0.14&sap=ku&q=
    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
    FF - plugin: c:\program files\google\update\1.3.21.124\npGoogleUpdate3.dll
    FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: c:\users\rodrick\appdata\local\facebook\messenger\2.1.4651.0\npFbDesktopPlugin.dll
    FF - plugin: c:\users\rodrick\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_146.dll
    FF - ExtSQL: 2012-12-12 12:53; {1E73965B-8B48-48be-9C8D-68B920ABC1C4}; c:\program files\avg\avg10\Firefox4
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
    R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
    R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-11-12 255968]
    R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
    R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-4 297168]
    R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-1-20 31576]
    R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2012-1-31 7391072]
    R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
    R2 vToolbarUpdater14.0.1;vToolbarUpdater14.0.1;c:\program files\common files\avg secure search\vtoolbarupdater\14.0.1\ToolbarUpdater.exe [2013-1-20 945328]
    R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-5-27 134480]
    R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
    R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 28624]
    R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2007-11-6 7168]
    S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
    S3 PAC207;PC Camer@;c:\windows\system32\drivers\PFC027.SYS [2008-2-13 618112]
    S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\batterycare\WinRing0.sys [2012-6-18 14416]
    .
    =============== Created Last 30 ================
    .
    2013-01-21 17:42:42 2422272 ----a-w- c:\windows\system32\wucltux.dll
    2013-01-21 17:42:03 88576 ----a-w- c:\windows\system32\wudriver.dll
    2013-01-21 17:41:47 33792 ----a-w- c:\windows\system32\wuapp.exe
    2013-01-21 17:41:47 171904 ----a-w- c:\windows\system32\wuwebv.dll
    2013-01-21 03:35:42 -------- d-----w- c:\users\rodrick\appdata\local\AVG SafeGuard toolbar
    2013-01-21 03:35:26 -------- d-----w- c:\programdata\AVG Security Toolbar
    2013-01-21 03:35:22 -------- d-----w- c:\programdata\AVG SafeGuard toolbar
    2013-01-21 03:35:09 31576 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
    2013-01-21 03:35:05 -------- d-----w- c:\program files\common files\AVG Secure Search
    2013-01-21 03:35:03 -------- d-----w- c:\program files\AVG SafeGuard toolbar
    2013-01-21 03:32:20 -------- d-----w- c:\programdata\AVG January 2013 Campaign
    2013-01-20 15:09:06 -------- d-----w- c:\windows\system32\eu-ES
    2013-01-20 15:09:06 -------- d-----w- c:\windows\system32\ca-ES
    2013-01-20 15:09:02 -------- d-----w- c:\windows\system32\vi-VN
    2013-01-20 04:59:54 -------- d-----w- c:\users\rodrick\appdata\local\Macromedia
    2013-01-20 00:50:02 -------- d-----w- c:\users\rodrick\appdata\local\Mozilla
    2013-01-20 00:41:26 -------- d-----w- c:\program files\Mozilla Maintenance Service
    2013-01-20 00:40:08 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    2013-01-20 00:40:05 864656 ----a-w- c:\program files\mozilla firefox\uninstall\helper.exe
    2013-01-20 00:26:14 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-01-20 00:11:27 -------- d-----w- c:\windows\system32\EventProviders
    2013-01-14 03:01:08 -------- d-----w- c:\users\rodrick\appdata\roaming\BitTorrent
    2012-12-27 19:12:45 -------- d-----w- c:\program files\National Consumer Panel
    2012-12-25 16:13:31 -------- d-----w- c:\program files\Dropbox
    .
    ==================== Find3M ====================
    .
    2013-01-20 04:29:49 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2013-01-20 04:29:49 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-12-06 22:30:16 821736 ----a-w- c:\windows\system32\npdeployJava1.dll
    2012-12-06 22:30:15 746984 ----a-w- c:\windows\system32\deployJava1.dll
    2012-11-18 23:30:53 101888 ----a-w- c:\windows\system32\ifxcardm.dll
    2012-11-18 23:30:51 82432 ----a-w- c:\windows\system32\axaltocm.dll
    2012-11-12 10:47:48 255968 ----a-w- c:\windows\system32\drivers\avgldx86.sys
    2012-10-26 00:08:38 60864 ----a-w- c:\users\rodrick\g2mdlhlpx.exe
    .
    ============= FINISH: 11:54:30.78 ===============


    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 3/18/2011 3:21:51 PM
    System Uptime: 1/21/2013 11:34:24 AM (0 hours ago)
    .
    Motherboard: Intel Corporation | | SANTA ROSA CRB
    Processor: Intel(R) Core(TM)2 Duo CPU T5450 @ 1.66GHz | U2E1 | 1667/mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 185 GiB total, 144.255 GiB free.
    D: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    .
    ==== Installed Programs ======================
    .
    Activation Assistant for the 2007 Microsoft Office suites
    Adobe AIR
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader X (10.0.1)
    AVG 2011
    AVG SafeGuard toolbar
    BatteryCare 0.9.12.1
    Bluetooth Stack for Windows by Toshiba
    Broadcom High Definition Video Decoder 2.6.0.9
    Camera Assistant Software for Toshiba
    CD/DVD Drive Acoustic Silencer
    Compatibility Pack for the 2007 Office system
    Dropbox
    DVD MovieFactory for TOSHIBA
    F.lux
    Facebook Messenger 2.1.4651.0
    GimpShop 2.8
    Google Chrome
    GoToMeeting 5.3.0.1010
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Intel(R) Graphics Media Accelerator Driver
    Intel(R) PROSet/Wireless Software
    Internet Transporter - NCP Link
    Java 7 Update 11
    Java Auto Updater
    Java(TM) 6 Update 35
    Malwarebytes' Anti-Malware
    Marvell Miniport Driver
    mCore
    mHelp
    Microsoft .NET Framework 3.5 SP1
    Microsoft Office 2007 Service Pack 3 (SP3)
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Home and Student 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office PowerPoint Viewer 2007 (English)
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Office XP Professional with FrontPage
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Works
    Microsoft XML Parser
    mMHouse
    Mozilla Firefox 18.0.1 (x86 en-US)
    Mozilla Maintenance Service
    mPfMgr
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    NCP Internet Transporter
    RAR Opener version 1.0
    Realtek High Definition Audio Driver
    Security Update for CAPICOM (KB931906)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
    Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
    Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
    Security Update for Windows Media Encoder (KB2447961)
    Security Update for Windows Media Encoder (KB954156)
    Skype Click to Call
    Skype™ 5.10
    SwordSearcher 5.3.1.3
    Synaptics Pointing Device Driver
    System Requirements Lab
    Texas Instruments PCIxx21/x515/xx12 drivers.
    TIPCI
    TOSHIBA Assist
    TOSHIBA ConfigFree
    TOSHIBA Disc Creator
    TOSHIBA DVD PLAYER
    TOSHIBA Extended Tiles for Windows Mobility Center
    TOSHIBA Games
    TOSHIBA Hardware Setup
    Toshiba Registration
    TOSHIBA SD Memory Utilities
    TOSHIBA Software Modem
    TOSHIBA Software Upgrades
    TOSHIBA Speech System Applications
    TOSHIBA Speech System SR Engine(U.S.) Version1.0
    TOSHIBA Speech System TTS Engine(U.S.) Version1.0
    TOSHIBA Supervisor Password
    TOSHIBA Value Added Package
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
    Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16)
    Windows Media Encoder 9 Series
    .
    ==== End Of File ===========================


    GMER 2.0.18444 - http://www.gmer.net
    Rootkit scan 2013-01-21 13:55:43
    Windows 6.0.6002 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4 Hitachi_HTS542520K9SA00 rev.BBDOC33P 186.31GB
    Running: f0dn4kf2.exe; Driver: C:\pwdirfob.sys


    ---- Kernel code sections - GMER 2.0 ----

    .text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x82F53000, 0x4036D, 0xE8000020]
    .dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x82F9C000, 0x510, 0x40000040]
    ? C:\Users\Rodrick\AppData\Local\Temp\mbr.sys The system cannot find the file specified. !

    ---- Files - GMER 2.0 ----

    File C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0R4HAMA8\P4FCAJRX25QCA35OM9TCAM6857MCAVJUNZXCA72P21HCAS96JQDCAAOITUBCA3FG3V3CAC6M24ECAJFZR17CAIU2YUECA9K0L4MCACL015UCAZ3SWVPCAHH5R6ECAV1F1MP.gif 0 bytes
    File C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0R4HAMA8\ZJVCA9G6CICCA5WSK6ZCA7HE05VCA6657IKCABVN4XYCA7OGE85CAC46BQACAF2VY1FCAKS6OU2CACYIMKQCAPH062KCAFI7CH9CA9T6HCPCAB73S9ACATB68DCCAEPR6LE.gif 0 bytes

    ---- EOF - GMER 2.0 ----
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1086282