pcarbone Posted November 20, 2011 ID:496508 Share Posted November 20, 2011 dds.txtattach.txtI'm sorry. When I ran the DDS file, it only gave me 1 notepad response. I didn't get the attach.txt file..DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702Run by HP_Administrator at 13:03:59 on 2011-11-20Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.471 [GMT -5:00].AV: Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}FW: Firewall *Enabled* .============== Running Processes ===============.C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\3203397148:3809022017.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\ehome\ehtray.exeC:\WINDOWS\system32\hkcmd.exeC:\Program Files\Verizon\McciTrayApp.exeC:\Program Files\Verizon\VSP\VerizonServicepoint.exeC:\Program Files\iTunes\iTunesHelper.exeC:\PROGRA~1\MAPS4P~2\bar\1.bin\0cbrmon.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\McAfee.com\Agent\mcagent.exeC:\Program Files\Messenger\msmsgs.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeC:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exeC:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exeC:\Program Files\Updates from HP\309731\Program\Updates from HP.exeC:\HP\KBD\KBD.EXEC:\WINDOWS\SOUNDMAN.EXEsvchost.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\WINDOWS\system32\svchost.exe -k hpdevmgmtC:\Program Files\Java\jre6\bin\jqs.exec:\Program Files\Common Files\LightScribe\LSSrvc.exeC:\Program Files\Common Files\Motive\McciCMService.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\Program Files\Verizon\VSP\ServicepointService.exeC:\WINDOWS\system32\svchost.exe -k imgsvcC:\WINDOWS\ALCMTR.EXEC:\WINDOWS\ALCWZRD.EXEC:\WINDOWS\AGRSMMSG.exec:\windows\system\hpsysdrv.exeC:\Program Files\iPod\bin\iPodService.exeC:\WINDOWS\system32\dllhost.exeC:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exeC:\WINDOWS\System32\svchost.exe -k HTTPFilterC:\WINDOWS\eHome\ehmsas.exeC:\WINDOWS\system32\wuauclt.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\system32\NOTEPAD.EXE.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.google.com/uSearch Page = hxxp://www.google.comuSearch Bar = hxxp://www.google.com/ieuSearchMigratedDefaultUrl = hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZCxdm801YYUS&fl=0&ptb=EEYhd9lE6hjx1wurrjuUYw&url=http://www.ask.com/web&q={searchTerms}&l=zc&o=sbuInternet Connection Wizard,ShellNext = iexploreuInternet Settings,ProxyOverride = *.localuSearchAssistant = hxxp://www.google.com/ieuSearchURL,(Default) = hxxp://search.alot.com/web?q=&pr=auto&client_id=92C1523001CB9EEA000EB12B&src_id=20001&camp_id=2034&tb_version=2.5.15000.521mSearchAssistant = hxxp://www.google.com/ieuURLSearchHooks: N/A: {f24df03f-d7f1-40b8-a63a-9d2be4908f39} - c:\program files\maps4pc_0c\bar\1.bin\0cSrcAs.dllBHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No FileBHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dllBHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dllBHO: ALOT Toolbar Helper: {14ceeaff-96dd-4101-ae37-d5ecdc23c3f6} - c:\program files\alot\bin\alot.dllBHO: {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - No FileBHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20111112181012.dllBHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dllBHO: Toolbar BHO: {ac3eb537-a86d-4a88-802a-79918db4abe7} - c:\progra~1\maps4p~2\bar\1.bin\0cbar.dllBHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dllBHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dllBHO: Search Assistant BHO: {d76689d9-6555-42ee-a94f-ba89fb29ceb1} - c:\program files\maps4pc_0c\bar\1.bin\0cSrcAs.dllBHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dllBHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllBHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dllTB: HP view: {b2847e28-5d7d-4deb-8b67-05d28bcf79f5} - c:\program files\hp\digital imaging\bin\HPDTLK02.dllTB: {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - No FileTB: ALOT Toolbar: {5aa2ba46-9913-4dc7-9620-69ab0fa17ae7} - c:\program files\alot\bin\alot.dllTB: Maps4PC: {32bfba07-b1fc-4764-bc21-4af8c6188ca5} - c:\program files\maps4pc_0c\bar\1.bin\0cbar.dllTB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dllTB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dlluRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /backgrounduRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exemRun: [ehTray] c:\windows\ehome\ehtray.exemRun: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exemRun: [HotKeysCmds] c:\windows\system32\hkcmd.exemRun: [HPBootOp] "c:\program files\hewlett-packard\hp boot optimizer\HPBootOp.exe" /runmRun: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exemRun: [HPHmon06] c:\windows\system32\hphmon06.exemRun: [Verizon_McciTrayApp] "c:\program files\verizon\McciTrayApp.exe"mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exemRun: [VerizonServicepoint.exe] "c:\program files\verizon\vsp\VerizonServicepoint.exe" /AUTORUNmRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottimemRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"mRun: [pnuprdp] c:\windows\system32\rundll32 c:\windows\system32\pnuprdp.dll,RegisterVirtualChannelmRun: [pnupica] c:\windows\system32\rundll32 c:\windows\system32\pnupica6.dll,RegisterVirtualChannelmRun: [Maps4PC_0c Browser Plugin Loader] c:\progra~1\maps4p~2\bar\1.bin\0cbrmon.exemRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkeydRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exeStartupFolder: c:\docume~1\hp_adm~1\startm~1\programs\startup\palmon~1.lnk - c:\program files\palmone\register.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\lumixs~1.lnk - c:\program files\panasonic\lumixsimpleviewer\PhLeAutoRun.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXEStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ritzpi~1.lnk - c:\windows\installer\{56fb9ba2-bb0f-41e8-b55f-cc93a1a404a6}\Icon020A87392.icoStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\update~1.lnk - c:\program files\updates from hp\309731\program\Updates from HP.exeIE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htmIE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exeIE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exeIE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dllLSP: mswsock.dllTrusted Zone: internetTrusted Zone: mcafee.comDPF: {01113300-3E00-11D2-8470-0060089874ED} - hxxps://activatemyfios.verizon.net/sdcCommon/download/FIOS/tgctlcm.cabDPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cabDPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - hxxp://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/CursorManiaFWBInitialSetup1.0.0.15-3.cabDPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cabDPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1128790008084DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cabDPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cabDPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cabDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cabTCP: DhcpNameServer = 172.16.0.1TCP: Interfaces\{8920C4A8-865A-4E93-B2FE-FE41C9D0712D} : DhcpNameServer = 172.16.0.1Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dllHandler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLHandler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dllHandler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dllNotify: igfxcui - igfxsrvc.dllNotify: TPSvc - TPSvc.dll.================= FIREFOX ===================.FF - ProfilePath - c:\documents and settings\hp_administrator\application data\mozilla\firefox\profiles\wl7gzvls.default\FF - prefs.js: network.proxy.type - 0FF - plugin: c:\progra~1\mcafee\msc\npMcSnFFPl.dllFF - plugin: c:\program files\common files\motive\npMotive.dllFF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dllFF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dllFF - plugin: c:\program files\maps4pc_0c\bar\1.bin\NP0cStub.dllFF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dllFF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dllFF - plugin: c:\program files\verizon\vsp\nprpspa.dll.============= SERVICES / DRIVERS ===============.R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-11-9 464176]R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2011-11-9 89792]R1 SASDIFSV;SASDIFSV;c:\docume~1\hp_adm~1\locals~1\temp\sas_selfextract\SASDIFSV.SYS [2011-7-22 12880]R1 SASKUTIL;SASKUTIL;c:\docume~1\hp_adm~1\locals~1\temp\sas_selfextract\SASKUTIL.SYS [2011-7-12 67664]R2 ServicepointService;ServicepointService;c:\program files\verizon\vsp\ServicepointService.exe [2010-10-17 689392]R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2011-11-9 180816]R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-11-9 338176]R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2011-11-9 83856]S0 szkg5;szkg5;c:\windows\system32\drivers\szkg.sys --> c:\windows\system32\drivers\szkg.sys [?]S0 szkgfs;szkgfs;c:\windows\system32\drivers\szkgfs.sys --> c:\windows\system32\drivers\szkgfs.sys [?]S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-10 135664]S2 Maps4PC_0cService;Maps4PCService;c:\progra~1\maps4p~2\bar\1.bin\0cbarsvc.exe [2011-9-10 42504]S2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-11-9 166288]S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-11-9 150856]S2 PNUpdate;Provision Networks Update Service;c:\windows\system32\pnupdate.exe -run --> c:\windows\system32\PNUpdate.exe -RUN [?]S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-11-9 57600]S3 GetSusp;GetSusp;c:\windows\GetSusp.sys [2011-11-9 14664]S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-2-10 135664]S3 hamachi_oem;PlayLinc Adapter;c:\windows\system32\drivers\gan_adapter.sys [2006-10-19 10664]S3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe [2011-11-9 203080]S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2011-11-9 59456]S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2011-11-9 83856]S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-11-9 87656]SUnknown IHA_MessageCenter;IHA_MessageCenter; [x]SUnknown McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; [x]SUnknown McMPFSvc;McMPFSvc; [x]SUnknown McNaiAnn;McNaiAnn; [x]SUnknown McOobeSv;McOobeSv; [x]SUnknown McProxy;McProxy; [x]SUnknown mfefire;mfefire; [x].=============== Created Last 30 ================.2011-11-18 00:51:27 -------- d-----w- c:\program files\common files\iS32011-11-13 01:40:53 -------- d-----w- c:\program files\ESET2011-11-13 01:31:22 -------- d-----w- c:\documents and settings\all users\application data\F-Secure2011-11-13 00:51:25 -------- d-----w- c:\program files\Daved2011-11-13 00:20:15 -------- d-----w- C:\daved2011-11-12 23:27:09 -------- d-----w- c:\documents and settings\hp_administrator\application data\SUPERAntiSpyware.com2011-11-12 23:27:09 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com2011-11-10 02:37:53 9608 ----a-w- c:\windows\system32\drivers\mfeclnk.sys2011-11-10 02:37:39 150856 ----a-w- c:\windows\system32\mfevtps.exe2011-11-10 02:37:37 89792 ----a-w- c:\windows\system32\drivers\mfetdi2k.sys2011-11-10 02:37:37 87656 ----a-w- c:\windows\system32\drivers\mferkdet.sys2011-11-10 02:37:37 83856 ----a-w- c:\windows\system32\drivers\mfendisk.sys2011-11-10 02:37:37 59456 ----a-w- c:\windows\system32\drivers\mfebopk.sys2011-11-10 02:37:37 57600 ----a-w- c:\windows\system32\drivers\cfwids.sys2011-11-10 02:37:37 464176 ----a-w- c:\windows\system32\drivers\mfehidk.sys2011-11-10 02:37:37 338176 ----a-w- c:\windows\system32\drivers\mfefirek.sys2011-11-10 02:37:37 180816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys2011-11-10 02:37:37 121256 ----a-w- c:\windows\system32\drivers\mfeapfk.sys2011-11-10 02:37:30 -------- d-----w- c:\program files\McAfee.com2011-11-10 02:18:45 260 ----a-w- c:\windows\system32\cmdVBS.vbs2011-11-10 02:18:45 256 ----a-w- c:\windows\system32\MSIevent.bat2011-11-10 02:16:25 -------- d-----w- C:\mfe2011-11-10 01:43:30 -------- d-----w- C:\!KillBox2011-11-10 01:29:07 14664 ----a-w- c:\windows\GetSusp.sys2011-11-10 01:17:12 -------- d-----w- c:\program files\Citrix2011-11-10 01:07:28 -------- d-----w- c:\documents and settings\hp_administrator\application data\McAfee2011-11-10 00:24:05 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2011-11-09 23:56:26 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2011-11-09 23:56:21 -------- d-----w- c:\documents and settings\hp_administrator\application data\Malwarebytes2011-11-09 23:56:09 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes2011-11-09 15:00:56 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\Citrix2011-11-09 15:00:53 103784 ----a-w- c:\documents and settings\hp_administrator\GoToAssistDownloadHelper.exe2011-11-05 14:10:14 -------- d-sh--w- c:\documents and settings\hp_administrator\IECompatCache2011-10-23 20:38:05 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.22011-10-23 15:31:39 -------- d-sh--w- c:\documents and settings\hp_administrator\local settings\application data\1cf6efbe2011-10-23 14:58:43 274288 ----a-w- c:\windows\system32\mucltui.dll2011-10-23 14:58:43 215920 ----a-w- c:\windows\system32\muweb.dll2011-10-23 14:58:43 16736 ----a-w- c:\windows\system32\mucltui.dll.mui2011-10-23 01:40:12 -------- d-----w- c:\documents and settings\hp_administrator\application data\ElevatedDiagnostics2011-10-23 01:26:00 -------- d-sh--w- c:\documents and settings\hp_administrator\PrivacIE2011-10-23 01:19:28 -------- d-sh--w- c:\documents and settings\hp_administrator\IETldCache2011-10-23 01:03:49 -------- d-----w- c:\windows\ie8updates2011-10-23 00:58:44 -------- dc-h--w- c:\windows\ie82011-10-23 00:52:17 7680 ------w- c:\windows\system32\dllcache\iecompat.dll2011-10-23 00:52:13 12800 ------w- c:\windows\system32\dllcache\xpshims.dll2011-10-23 00:52:11 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll2011-10-23 00:52:10 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll.==================== Find3M ====================.2011-10-23 16:36:52 69632 ----a-w- c:\windows\system32\HPZipm12.exe2011-10-23 16:36:52 36864 ----a-w- c:\windows\system32\PNUpdate.exe2011-10-12 21:43:23 73728 -c--a-w- c:\windows\ALCFDRTM.VER2011-10-10 14:22:41 692736 ----a-w- c:\windows\system32\inetcomm.dll2011-10-07 01:21:08 1062984 ----a-w- c:\documents and settings\hp_administrator\gotomypc_540.exe2011-10-03 09:06:03 472808 ----a-w- c:\windows\system32\deployJava1.dll2011-10-03 06:37:52 73728 ----a-w- c:\windows\system32\javacpl.cpl2011-09-28 07:06:50 599040 ----a-w- c:\windows\system32\crypt32.dll2011-09-26 15:41:20 611328 ----a-w- c:\windows\system32\uiautomationcore.dll2011-09-26 15:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll2011-09-26 15:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll2011-09-06 13:20:51 1858944 ----a-w- c:\windows\system32\win32k.sys2011-08-22 23:48:55 916480 ----a-w- c:\windows\system32\wininet.dll2011-08-22 23:48:54 43520 ------w- c:\windows\system32\licmgr10.dll2011-08-22 23:48:54 1469440 ------w- c:\windows\system32\inetcpl.cpl.============= FINISH: 13:04:23.39 =============== Link to post Share on other sites More sharing options...
Staff screen317 Posted November 24, 2011 Staff ID:497786 Share Posted November 24, 2011 Hi and welcome to Malwarebytes. Please update MBAM, run a Quick Scan, and post its log. Next, please visit this webpage for instructions for running ComboFix: http://www.bleepingcomputer.com/combofix/how-to-use-combofix When the tool is finished, it will produce a report for you.Please post the contents of C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system. Link to post Share on other sites More sharing options...
Staff screen317 Posted December 6, 2011 Staff ID:501911 Share Posted December 6, 2011 Are you still with us? This topic will be closed in a few days if we do not hear back from you. Link to post Share on other sites More sharing options...
Staff screen317 Posted December 19, 2011 Staff ID:506502 Share Posted December 19, 2011 Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts