Please help...spyware, virus, or what???

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft® Windows Vista™ Home Basic, Service Pack 2, 32 bit
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+, x64 Family 15 Model 75 Stepping 2
Processor Count: 2
RAM: 957 Mb
Graphics Card: NVIDIA GeForce 6150SE nForce 430, 64 Mb
Hard Drives: C: Total - 142297 MB, Free - 87212 MB; D: Total - 10239 MB, Free - 6477 MB;
Motherboard: Dell Inc., 0RY206
Antivirus: Microsoft Security Essentials, Updated and Enabled


Hello...

For 3 months now my computer has been 'ill' I have ran several anti-viruses (not at same time) and always get different results on whats wrong, I have used different tools from microsoft like the standalone and rebooted on the cd it said I had a Trojan claragent A in java on D drive. a couple days before I used stand alone I used system care and it detected a trojan claragent A on C drive. Almost all my certificates on computer have warning sign next to 'key' and components I have deleted several that were from 'untrusted' several of the certificates have power over my computer when it is turned off even, my computer takes between 2-4min to log off and if I dont want to switch between users and just want to shut down it takes 2-5min just to shut down and usualy all the icons will disapear on desk top and it will go to a black screen for a few seconds then back to my back ground then about a min later it shuts down, there's very high CPU usuage it mainly stays on 'D', altho right now it is very quite which is unusual. I have logs from different programs I've ran dateing back to august if that would help any?! This is confusing and I am out of ideas Ive literal spent weeks now trying to 'fix' all the errors then heard how its almost impossible to fix youre computer after it has been compromised so went out and bought a fix it utilities cd but it says not to use on a computer that is suspected to have spyware or viruses....please help....
I could not use the GME it did the initial scan but when I unchecked the IAT/EAT and the ADS box the first time it started scanning fine then about 1min into scan computer went to blue screen and I wrote down what I could before it shut down......TECH....bunch of numbers but started with 0's...then said pwtcqpod.sys address-99FE53CB base at-99FE1000 date stamp 4e21F298 then when I logged back on 2nd attempt 'program closed' (closed at shadow copy 1) 3rd attempt i didnt uncheck ADS and checked 'show all' and it was scanning for about 2min then shut down and restarted computer. but here are results from high jack this and DDS...Thanks for your time!


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:52:21 PM, on 11/18/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTNavAssist.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: FCTBPos00Pos - {FC78E410-0EFA-4BEC-B283-D1DB1922F420} - C:\Program Files\CoolChaser Layout Auto Insert\Toolbar.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O3 - Toolbar: FaceFun - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Windows\Downloaded Program Files\tbcore3.dll (file missing)
O3 - Toolbar: CoolChaser Layout Auto Insert - {B0208007-27C1-4BCD-93EF-EFF5DB61FC22} - C:\Program Files\CoolChaser Layout Auto Insert\Toolbar.dll
O3 - Toolbar: StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MyWebSearch Plugin] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL,UPF
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\RAC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [PopularScreensaversWallpaper] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\F3SCRCTR.DLL,LES
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0CE0F418-1010-442D-871C-3454827DD539} - http://www.facefun.com/FaceFun_webinstall/FaceFun.cab
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.fubar.com/imgs/ImageUploader5.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1ca02481a02d127) (gupdate1ca02481a02d127) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Updater Service for StartNow Toolbar - Unknown owner - C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 12593 bytes


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by RAC at 0:40:16 on 2011-11-19
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.958.196 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
AV: AVG Internet Security 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Internet Security 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: AVG Firewall *Enabled* {621CC794-9486-F902-D092-0484E8EA828B}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\rundll32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\svchost.exe -k Akamai
C:\Program Files\AVG\AVG2012\avgfws.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\System32\mobsync.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page =
uWindow Title = Windows Internet Explorer provided by Yahoo!
uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie8
uURLSearchHooks: YTNavAssist.YTNavAssistPlugin Class: {81017ea9-9aa8-4a6a-9734-7af40e7d593f} - c:\program files\yahoo!\companion\installs\cpn3\YTNavAssist.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn3\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: StartNow Toolbar Helper: {6e13d095-45c3-4271-9475-f3b48227dd9f} - c:\program files\startnow toolbar\Toolbar32.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\8.0.0.40\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\dell\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Freecause Toolbar BHO: {fc78e410-0efa-4bec-b283-d1db1922f420} - c:\program files\coolchaser layout auto insert\Toolbar.dll
BHO: Yontoo Layers: {fd72061e-9fde-484d-a58a-0bab4151cad8} - c:\program files\yontoo layers runtime\YontooIEClient.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn3\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn3\yt.dll
TB: FaceFun: {1bb22d38-a411-4b13-a746-c2a4f4ec7344} - c:\windows\downloaded program files\tbcore3.dll
TB: CoolChaser Layout Auto Insert: {b0208007-27c1-4bcd-93ef-eff5db61fc22} - c:\program files\coolchaser layout auto insert\Toolbar.dll
TB: StartNow Toolbar: {5911488e-9d1e-40ec-8cbb-06b231cc153f} - c:\program files\startnow toolbar\Toolbar32.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\8.0.0.40\AVG Secure Search_toolbar.dll
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [Google Update] "c:\users\rac\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [Akamai NetSession Interface] c:\users\rac\appdata\local\akamai\netsession_win.exe
uRun: [PopularScreensaversWallpaper] rundll32 c:\progra~1\mywebs~1\bar\1.bin\F3SCRCTR.DLL,LES
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [ECenter] c:\dell\e-center\EULALauncher.exe
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [MyWebSearch Plugin] rundll32 c:\progra~1\mywebs~1\bar\1.bin\M3PLUGIN.DLL,UPF
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 1 (0x1)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Search
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {0CE0F418-1010-442D-871C-3454827DD539} - hxxp://www.facefun.com/FaceFun_webinstall/FaceFun.cab
DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} - hxxp://www.bebo.com/files/BeboUploader.5.1.4.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - hxxp://www.fubar.com/imgs/ImageUploader5.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} - hxxp://chat.yahoo.com/cab/yuplapp.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} - hxxp://support.dell.com/systemprofiler/DellSystemLite.CAB
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - hxxp://imikimi.com/download/imikimi_plugin_0.5.1.cab
TCP: DhcpNameServer = 68.87.72.134 68.87.77.134
TCP: Interfaces\{774B0C32-B71E-4E45-804A-CB254906F4F3} : DhcpNameServer = 68.87.72.134 68.87.77.134
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\8.0.1\ViProtocol.dll
AppInit_DLLs: c:\progra~1\google\google~2\GOEC62~1.DLL
mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592]
R1 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwd6x.sys [2011-5-23 47968]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 40016]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
R1 MpKsl980db67d;MpKsl980db67d;c:\programdata\microsoft\microsoft antimalware\definition updates\{c8470b75-dfec-47ce-99ef-fcef739dc44f}\MpKsl980db67d.sys [2011-11-18 28752]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2009-2-21 21504]
R2 avgfws;AVG Firewall;c:\program files\avg\avg2012\avgfws.exe [2011-10-24 2398512]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2009-2-21 21504]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134736]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2011-4-27 65024]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate1ca02481a02d127;Google Update Service (gupdate1ca02481a02d127);c:\program files\google\update\GoogleUpdate.exe [2009-7-11 133104]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-7-11 133104]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2011-4-18 43392]
S3 USB_RNDIS_VISTA;Westell WireSpeed Dual Connect Modem;c:\windows\system32\drivers\usb8023.sys [2011-8-24 15872]
.
=============== File Associations ===============
.
scrfile="%1" /S "%3"
.
=============== Created Last 30 ================
.
2011-11-19 04:09:37 388096 ----a-r- c:\users\rac\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-11-19 04:09:10 -------- d-----w- c:\program files\Trend Micro
2011-11-19 00:30:22 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c8470b75-dfec-47ce-99ef-fcef739dc44f}\MpKsl980db67d.sys
2011-11-19 00:30:18 56200 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c8470b75-dfec-47ce-99ef-fcef739dc44f}\offreg.dll
2011-11-18 11:08:10 6668624 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c8470b75-dfec-47ce-99ef-fcef739dc44f}\mpengine.dll
2011-11-18 05:26:05 -------- d-----w- c:\users\rac\appdata\roaming\AVG
2011-11-16 03:36:26 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-13 04:32:19 -------- d-----w- c:\program files\MYWEBS~1
2011-11-12 06:45:42 -------- d--h--w- C:\$AVG
2011-11-12 05:16:25 -------- d-----w- c:\users\rac\appdata\roaming\AVG2012
2011-11-12 05:13:18 -------- d-----w- c:\program files\common files\AVG Secure Search
2011-11-12 05:13:14 -------- d-----w- c:\program files\AVG Secure Search
2011-11-12 05:01:49 -------- d-----w- c:\windows\system32\drivers\AVG
2011-11-12 05:01:49 -------- d-----w- c:\programdata\AVG2012
2011-11-12 04:55:27 -------- d-----w- c:\program files\AVG
2011-11-12 04:28:12 -------- d--h--w- c:\programdata\Common Files
2011-11-12 04:24:37 -------- d-----w- c:\programdata\MFAData
2011-11-10 23:36:14 -------- d-----w- c:\users\rac\appdata\roaming\FreeFileViewer
2011-11-10 23:28:37 -------- d-----w- c:\program files\FreeFileViewer
2011-11-10 23:09:47 -------- d-----w- c:\program files\ADLSoft UnCompressor
2011-11-10 23:09:36 -------- d-----w- c:\program files\StartNow Toolbar
2011-11-10 11:18:11 6668624 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2011-11-10 05:45:53 -------- d-----w- c:\windows\Standalone System Sweeper
2011-11-10 00:49:29 -------- d-----w- c:\users\rac\appdata\local\Akamai
2011-11-09 18:57:52 -------- d-----w- c:\users\rac\appdata\roaming\FinalTorrent
2011-11-09 18:54:16 -------- d-----w- c:\program files\File Type Assistant
2011-11-09 18:53:25 -------- d-sh--w- c:\windows\system32\AI_RecycleBin
2011-11-09 18:53:16 -------- d-----w- c:\programdata\W3i
2011-11-09 18:53:16 -------- d-----w- c:\program files\Yontoo Layers Runtime
2011-11-09 18:53:16 -------- d-----w- c:\program files\W3i
2011-11-09 18:53:09 -------- d-----w- c:\program files\FinalTorrent
2011-11-09 18:53:06 -------- d-----w- c:\programdata\Tarma Installer
2011-11-09 06:43:28 703824 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2011-11-09 06:43:27 703824 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{e7f293e4-3dd5-459b-a493-a9dd7a5649ec}\gapaengine.dll
2011-11-09 06:30:47 -------- d-----w- c:\program files\Microsoft Security Client
2011-11-09 06:30:02 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2011-11-09 06:12:42 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{4edc1bbb-45d9-4d45-9950-854250cba691}\offreg.dll
2011-11-09 01:01:55 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-08 21:15:13 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2011-11-08 21:15:11 913280 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-11-08 21:15:11 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2011-11-08 21:15:08 707584 ----a-w- c:\program files\common files\system\wab32.dll
2011-11-08 20:04:44 -------- d-----w- C:\AeriaGames
2011-11-08 11:29:22 6668624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{4edc1bbb-45d9-4d45-9950-854250cba691}\mpengine.dll
2011-11-08 00:30:54 -------- d-----w- c:\program files\common files\Akamai
2011-10-29 04:56:50 -------- d-----w- c:\users\rac\appdata\roaming\IObit
2011-10-29 04:56:30 -------- d-----w- c:\program files\IObit
2011-10-29 04:20:09 -------- d-----w- c:\users\rac\appdata\roaming\FixCleaner
2011-10-29 04:18:37 -------- d-----w- c:\program files\FixCleaner
2011-10-29 04:14:47 -------- d-----w- c:\program files\Downloaded Installers
2011-10-28 05:12:49 -------- d-----w- c:\users\rac\appdata\roaming\DriverCure
2011-10-28 05:12:48 -------- d-----w- c:\users\rac\appdata\roaming\SpeedyPC Software
2011-10-28 05:12:15 -------- d-----w- c:\programdata\SpeedyPC Software
2011-10-27 03:52:31 -------- d-----w- c:\users\rac\appdata\local\Microsoft_Corporation
2011-10-26 00:56:36 6144 ----a-w- c:\program files\internet explorer\iecompat.dll
.
==================== Find3M ====================
.
2011-10-07 11:23:48 230608 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2011-10-04 19:43:00 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2011-10-04 11:21:16 16720 ----a-w- c:\windows\system32\drivers\AVGIDSShim.sys
2011-09-13 11:30:10 32592 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2011-09-06 13:30:12 2043392 ----a-w- c:\windows\system32\win32k.sys
2011-08-25 16:15:04 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2011-08-25 16:14:01 563712 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-25 16:14:01 238080 ----a-w- c:\windows\system32\oleacc.dll
2011-08-25 13:31:01 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2011-08-23 18:15:23 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2011-08-23 18:15:01 82432 ----a-w- c:\windows\system32\axaltocm.dll
.
============= FINISH: 0:44:38.18 ===============


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Basic
Boot Device: \Device\HarddiskVolume3
Install Date: 12/4/2007 2:46:26 PM
System Uptime: 11/18/2011 7:29:50 PM (5 hours ago)
.
Motherboard: Dell Inc. | | 0RY206
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ | Socket AM2 | 1800/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 139 GiB total, 86.58 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 6.326 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
AAC Decoder
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.1)
Adobe Shockwave Player 11.6
Advanced Registry Optimizer
Akamai NetSession Interface
Akamai NetSession Interface Service
AutoUpdate
Avalon
AVG 2012
AVG PC Tuneup 2011
Browser Address Error Redirector
Canon iP2600 series
Canon iP2600 series User Registration
Canon My Printer
Canon Utilities Easy-PhotoPrint EX
Canon Utilities Solution Menu
Conexant D850 PCI V.92 Modem
CoolChaser Layout Auto Insert
Dell Getting Started Guide
Dell Support Center
Digital Line Detect
DivX Codec
DivX Converter
DivX Player
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
File Type Assistant
FinalTorrent 2011
Free File Viewer 2011
GameHouse
Google Chrome
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
H.264 Decoder
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Imikimi Plugin
InstallIQ Updater
Internet Service Offers Launcher
Java Auto Updater
Java(TM) 6 Update 29
Java(TM) SE Runtime Environment 6
Kitten Sanctuary
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Antimalware
Microsoft Security Client
Microsoft Security Essentials
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
MKV Splitter
Modem Diagnostic Tool
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Music, Photos & Videos Launcher
muvee autoProducer 6.1
My Photo Adventure
My Photo Adventure 2
NetWaiting
NVIDIA Drivers
NVIDIANetworkDiagnostic
Octoshape add-in for Adobe Flash Player
Pando Media Booster
PIXMA Extended Survey Program
PowerDVD
Product Documentation Launcher
Realtek High Definition Audio Driver
Roxio Creator Audio
Roxio Creator BDAV Plugin
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler
Roxio MyDVD DE
Roxio Update Manager
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Shaiya(US)
Sonic Activation Module
Spelling Dictionaries Support For Adobe Reader 9
StartNow Toolbar
swMSM
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
User's Guides
VC80CRTRedist - 8.0.50727.762
Walmart Photo Manager
Web Games Player Plugin
WidgetServ 1.0
Windows Mobile Device Center
Windows Mobile Device Center Driver Update
Yahoo! Music Jukebox
Yahoo! Software Update
Yahoo! Toolbar
Yontoo Layers Runtime 1.10.01
.
==== Event Viewer Messages From Past Week ========
.
11/18/2011 7:33:24 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/18/2011 7:31:52 PM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
11/18/2011 7:27:46 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgwd service.
11/18/2011 5:20:35 PM, Error: Service Control Manager [7034] - The Advanced SystemCare Service service terminated unexpectedly. It has done this 1 time(s).
11/17/2011 8:56:13 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Akamai service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:22 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/17/2011 7:18:21 PM, Error: Microsoft-Windows-Bits-Client [16401] - BITS could not add file(s) to {299D33AF-AE31-4E11-8668-B495A09006BC} job. The file count for {299D33AF-AE31-4E11-8668-B495A09006BC} job (201) has exceeded the per-job file limit (200) specified through Group Policy. To correct the problem, increase the Computer’s per-job file limit Group Policy settings and restart the BITS service.
11/16/2011 1:33:05 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
11/16/2011 1:30:55 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Eventlog service.
11/16/2011 1:25:41 PM, Error: Service Control Manager [7022] - The KtmRm for Distributed Transaction Coordinator service hung on starting.
11/15/2011 7:32:21 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} to the user LOVINLIFE\Skitter SID (S-1-5-21-1477723455-2662569041-1126517271-1001) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
11/15/2011 6:05:03 AM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/14/2011 9:40:54 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 9:40:53 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
11/14/2011 9:40:50 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
11/14/2011 9:40:20 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
11/14/2011 9:40:20 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
11/14/2011 9:40:20 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
11/14/2011 9:40:14 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
11/14/2011 9:37:39 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Avgfwfd Avgldx86 Avgmfx86 Avgtdix DfsC MpFilter NetBIOS netbt nsiproxy PSched RasAcd rdbss Smb spldr Tcpip tdx Wanarpv6
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The TCP/IP Registry Compatibility service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
11/14/2011 9:37:39 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
11/14/2011 7:59:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B68-F52A-11D8-B9A5-505054503030}
11/14/2011 6:27:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
11/14/2011 5:55:48 AM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/14/2011 11:41:44 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/14/2011 11:35:42 PM, Error: Service Control Manager [7034] - The Updater Service for StartNow Toolbar service terminated unexpectedly. It has done this 1 time(s).
11/14/2011 11:34:37 PM, Error: Service Control Manager [7022] - The Windows Mobile-based device connectivity service hung on starting.
11/14/2011 1:42:14 PM, Error: RasMan [20033] - Remote Access Connection Manager failed to start because it could not register with the local security authority. Try restarting the Remote Access Connection Manager service. If the problem persists, contact the system administrator. Incorrect function.
11/14/2011 1:42:14 PM, Error: Microsoft-Windows-Bits-Client [16392] - The BITS service failed to start. Error 2147943515.
11/14/2011 1:42:12 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Network Inspection System Error Code: 0x80070522 Error description: A required privilege is not held by the client. Reason: The system is missing updates that are required for running Network Inspection System. Install the required updates and restart the computer.
11/14/2011 1:39:54 PM, Error: Service Control Manager [7023] - The Remote Access Connection Manager service terminated with the following error: Incorrect function.
11/14/2011 1:39:53 PM, Error: Service Control Manager [7038] - The SSDPSRV service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
11/14/2011 1:39:53 PM, Error: Service Control Manager [7000] - The SSDP Discovery service failed to start due to the following error: The service did not start due to a logon failure.
11/14/2011 1:39:37 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgfws service.
11/13/2011 3:19:11 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wecsvc service.
11/13/2011 3:19:11 AM, Error: Service Control Manager [7000] - The Windows Event Collector service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/13/2011 3:17:35 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NlaSvc service.
11/13/2011 3:17:05 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CryptSvc service.
11/13/2011 3:07:49 AM, Error: Service Control Manager [7043] - The AVGIDSAgent service did not shut down properly after receiving a preshutdown control.
11/13/2011 11:16:31 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSearch service.
11/13/2011 10:13:46 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/13/2011 10:09:02 PM, Error: Service Control Manager [7022] - The Windows Font Cache Service service hung on starting.
11/12/2011 6:52:37 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: On Access Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver skipped scanning items and is in pass through mode. This may be due to low resource conditions.
11/12/2011 6:52:37 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver skipped scanning items and is in pass through mode. This may be due to low resource conditions.
11/12/2011 6:29:43 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.
11/12/2011 6:27:28 PM, Error: Microsoft-Windows-ResourcePublication [1002] - Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance.
11/12/2011 4:24:23 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Works 8 (KB977304).
11/12/2011 12:30:39 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.
11/12/2011 12:30:39 AM, Error: Service Control Manager [7000] - The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
Do the following in the order that they're listed.

----------------------------------------------------------------

Download and save these programs and tools:

AVG Remover(32bit) 2012

Malwarebytes Anti-Malware Free 1.51.2.1300

SUPERAntiSpyware Free Edition 5.0.0.1136

Just download and save them and DON'T do anything with them yet.

----------------------------------------------------------------

Go to Control Panel - Programs And Features.

Uninstall these programs, add-ons, and toolbars:

Advanced Registry Optimizer

AVG 2012

AVG PC Tuneup 2011

CoolChaser Layout

FinalTorrent 2011

Google Toolbar

InstallIQ Updater

Java(TM) SE Runtime Environment 6

StartNow Toolbar

Yahoo! Software Update

Yahoo! Toolbar

Yontoo Layers


If you're prompted to restart the computer to complete the uninstall of any of them, do so.

If you're prompted to remove files and quarantined items, do so.

----------------------------------------------------------------

Run the AVG removal tool so it can detect and remove all the leftover file and registry "debris" from AVG.

Restart your computer if prompted to.

----------------------------------------------------------------

Install Malwarebytes Anti-Malware and SUPERAntiSpyware.

Make sure to update their definition files during the install process.

Restart your computer if prompted to.

DON'T run any scans with them yet.

----------------------------------------------------------------

After ALL of the above has been done and the computer restarted, start HiJackThis.

Click "Do a system scan and save a log file".

Save the new log that appears, then submit it here.

----------------------------------------------------------------
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
Thanks for your quick reply!

Ok I uninstalled all but Yontoo layers runtime it will not let me uninstal it keeps saying 'set up initialization error'

While running HiJack this I got this message 'for some reason your system has denied write access to Hosts file. If any Hijacked domains are in this file highJack this may not be able to fix this. If that happens you need to edit the file yourself. To do this click start Run and type notepad c: windows system32 drivers etc hosts and press enter. Find the lines HighJack this reports and delete them save the files as 'hosts' (with qoutes)and reboot......For vista: simply exit highjack this right click on the highjack this icon choose run as administor....It wont let me run as administor tho and when I try to get into windows system32 it wont let me all files are locked security scans Ive used cant even open them, not sure if that matters...
And also not sure if it matters but the superspyware download downloaded superspyware (1) 12.6mb the first time I tried downloading it said incomplete so I deleted the partial download.....heres the highjack this log.....it also froze for a few seconds while in progress.............

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:44:58 PM, on 11/19/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\mobsync.exe
C:\Users\RAC\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: (no name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll
O3 - Toolbar: FaceFun - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Windows\Downloaded Program Files\tbcore3.dll (file missing)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MyWebSearch Plugin] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL,UPF
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\RAC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [PopularScreensaversWallpaper] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\F3SCRCTR.DLL,LES
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0CE0F418-1010-442D-871C-3454827DD539} - http://www.facefun.com/FaceFun_webinstall/FaceFun.cab
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.fubar.com/imgs/ImageUploader5.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1ca02481a02d127) (gupdate1ca02481a02d127) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 9714 bytes
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
A few other things I've noticed....When Im scanning folders w anti-virus or other apps my computer freezes about half way through scanning 'C:' and I loose internet connection for a couple minutes. And since doing all the above I went back into compture and was looking thru programs and found 1 I do not have access to my administrator password does not work says 'access denied' it is located in C: program data desk top. And when I first did the uninstalls my computer was very quiet now within the past 30min it is very loud again high cpu.
Also yesterday before I thought to seek help I tried deleting things weird folders....'UNWISE' 'LAME' and the first folder I found back in september was named 'DEVIECED' (which was deleted in October) I didnt think anything of it till I started reading about spyware maleware and viruses and suspected something was wrong with my computer because how it was running. I uninstalled earth link because it downloaded to my computer 11-18-2011 and Norton downloaded 11-18-2011 I did NOT download these myself! While uninstalling and deleting earth link AVG said some files contained infected files...not sure if this is important just thought I would share incase it is.
Also what is Amkamai? it has stored log files on my computer today after uninstalling start up items that I was told to uninstall these folders contain information that was sent to different ip addresses a few were websites and a few were un known and had a false ip address then the real one...
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
Go to Control Panel - User Accounts.

Turn off and disable the User Account Control(UAC) feature, then apply the change.

Restart the computer.

HiJackThis should work okay from now on without displaying a warning message.

------------------------------------------------------------

I strongly advise you NOT to haphazardly delete files and folders that you think you don't need.

Doing this will cause even more problems and generate warning messages.

------------------------------------------------------------
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
Follow these instructions carefully and completely.

Do NOT use your computer while each scan is in progress.

---------------------------------------------------------

Start Malwarebytes Anti-Malware.

Click "Updates(tab) - Check for Updates".

When the definition files have updated, click "OK".

Click "Scanner(tab) - Perform quick scan - Scan".

If infections or problems are found during the scan, the number of them will be highlighted in red.

When the scan is finished, click "Show Results".

Make sure that EVERYTHING is selected, then click "Remove Selected".

If you're prompted to restart to finish the removal process, click "Yes".

Start Malwarebytes Anti-Malware again.

Click "Logs"(tab).

Highlight the scan log entry, then click "Open".

When the scan log appears in Notepad, copy-and-paste it here.

---------------------------------------------------------

Start SUPERAntiSpyware.

Click "Check for Updates".

When the definition files have updated, click "Close".

Select the "Quick Scan" option, then click "Scan your Computer".

If infections or problems are found during the scan, a list will appear and the number of them will be highlighted in red.

When the scan is finished and the scan summary window appears, click "Continue".

Make sure that EVERYTHING in the list is selected, then click "Remove Threats".

Click "OK - Finish".

If you're prompted to restart to finish the removal process, do so.

Start SUPERAntiSpyware again.

Click "View Scan Logs".

Highlight the scan log entry, then click "View Selected Log".

When the scan log appears in Notepad, copy-and-paste it here.

---------------------------------------------------------
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 8202
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421
11/20/2011 6:24:32 PM
mbam-log-2011-11-20 (18-24-32).txt
Scan type: Quick scan
Objects scanned: 240062
Time elapsed: 13 minute(s), 36 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MyWebSearch Plugin (Adware.MyWebSearch) -> Value: MyWebSearch Plugin -> Quarantined and deleted successfully.
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
c:\program files\MYWEBS~1\BAR\1.BIN\M3PLUGIN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 11/20/2011 at 07:31 PM
Application Version : 5.0.1136
Core Rules Database Version : 7965
Trace Rules Database Version: 5777
Scan type : Quick Scan
Total Scan Time : 00:53:39
Operating System Information
Windows Vista Home Basic 32-bit, Service Pack 2 (Build 6.00.6002)
UAC Off - Administrator
Memory items scanned : 593
Memory threats detected : 0
Registry items scanned : 30104
Registry threats detected : 21
File items scanned : 126444
File threats detected : 56
Adware.HBHelper
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32#ThreadingModel
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\ProgID
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\TypeLib
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\VersionIndependentProgID
HKU\S-1-5-21-1477723455-2662569041-1126517271-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\URLSearchHook.ToolbarURLSearchHook.1
HKCR\URLSearchHook.ToolbarURLSearchHook
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0\win32
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\FLAGS
Adware.MyWebSearch/FunWebProducts
HKU\S-1-5-21-1477723455-2662569041-1126517271-1000\SOFTWARE\FunWebProducts
Browser Hijacker.Deskbar
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid32
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib#Version
Adware.Tracking Cookie
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /ad.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /ad.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][3].txt [ /ad.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][4].txt [ /ad.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /adinterax ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /adinterax ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /ads.pointroll ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /content.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /content.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][3].txt [ /content.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][4].txt [ /content.yieldmanager ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /doubleclick ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /pointroll ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /richmedia.yahoo ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][3].txt [ /richmedia.yahoo ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /serving-sys ]
C:\Users\RAC\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /yieldmanager ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\JMWJVWTC.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\K0L4R5BB.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\Z8W6BW2T.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\0G3A4NPQ.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\V13GEE9I.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\ESNFDHIR.txt [ Cookie:[email protected]/accounts/recovery/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\OKNCEMOS.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\1YM8TC2Y.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\4C1YFGYP.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\51VU3IU0.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\IQZJ14BK.txt [ Cookie:[email protected]/pagead/conversion/1069928730/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\CRVGBHBO.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\4FJWDKSZ.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\TH3HU2VT.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\VMZTKMCE.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\C111LKJF.txt [ Cookie:[email protected]/accounts/recovery ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\LPKACLV3.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\GR1FY9H7.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\C3TLFT9S.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\UF7SPG0N.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\EV7FHWU5.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\RD1U05YY.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\KGPQG7DE.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\C5FMV8YG.txt [ Cookie:[email protected]/hc/57472748 ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\0QWXHRUR.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\3ANNA9YB.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\RZ20R2EB.txt [ Cookie:[email protected]/accounts/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\XTJGC05B.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\KYO2RQ38.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\DEKFNRHT.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\4U8WRCD9.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\NQBV2P5B.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\WKG0NCUB.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\F6CG2OMI.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\E3B91BXY.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\TZR8FXG3.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\RU7BAHCM.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\QZ732R3T.txt [ Cookie:[email protected]/ ]
C:\USERS\SKITTER\AppData\Roaming\Microsoft\Windows\Cookies\Low\U3F13HJX.txt [ Cookie:[email protected]/ ]
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
After running malware and super anti spy ware this poped up on my screen......error loading:C:\progra~1\mywebs~1\bar\1.bin\F3SCRCTR.DLL these specifict modules could not be found. Its been popping up on my screen for a month now but there was also another that was poping up but the other one didnt pop up this time just this one.
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
Start HiJackThis, then click "Do a system scan and save a log file", then save the new log that appears, then submit it here.

--------------------------------------------------------
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:43:41 AM, on 11/21/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Users\RAC\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: (no name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll
O3 - Toolbar: FaceFun - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Windows\Downloaded Program Files\tbcore3.dll (file missing)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\RAC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [PopularScreensaversWallpaper] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\F3SCRCTR.DLL,LES
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0CE0F418-1010-442D-871C-3454827DD539} - http://www.facefun.com/FaceFun_webinstall/FaceFun.cab
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.fubar.com/imgs/ImageUploader5.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1ca02481a02d127) (gupdate1ca02481a02d127) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 9347 bytes
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
Start HiJackThis, then click "Do a system scan only".

When the scan is finished in about 30 seconds or less, put a checkmark in these log entries:

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll

R3 - URLSearchHook: (no name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (file missing)

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll

O3 - Toolbar: FaceFun - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Windows\Downloaded Program Files\tbcore3.dll (file missing)

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"

O4 - HKCU\..\Run: [PopularScreensaversWallpaper] rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\F3SCRCTR.DLL,LES

O16 - DPF: {0CE0F418-1010-442D-871C-3454827DD539} - http://www.facefun.com/FaceFun_webinstall/FaceFun.cab


ONLY after you confirm that you selected the correct log entries, click "Fix Checked - Yes".

Close HiJackThis, then restart the computer.

Start HiJackThis again, then click "Do a system scan and save a log file".

Save the new log that appears, then submit it here.

--------------------------------------------------------
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
I want to let you know thanks for helping me with this I should have asked for help in the first place. Ok Im going to do the above now. And also I was able to run the gmer scan now since turning off the UAC. And saved a log if you want it I can post it
 

flavallee

Frank
Trusted Advisor
Joined
May 12, 2002
Messages
83,135
I want to let you know thanks for helping me with this I should have asked for help in the first place. Ok Im going to do the above now. And also I was able to run the gmer scan now since turning off the UAC. And saved a log if you want it I can post it
You're welcome. :)

I'll be waiting to see the new HiJackThis scan log.

I'm not trained and authorized to assist with the DDS and GMER logs, but you can still submit them so a gold/blue member can view them.

--------------------------------------------------------
 

yadawalky

Thread Starter
Joined
Nov 19, 2011
Messages
12
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:58:17 PM, on 11/21/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Users\RAC\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\RAC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\RAC\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_29.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.fubar.com/imgs/ImageUploader5.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1ca02481a02d127) (gupdate1ca02481a02d127) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 8138 bytes
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top