Jump to content

Recommended Posts

dds.txt

attach.txt

I'm sorry. When I ran the DDS file, it only gave me 1 notepad response. I didn't get the attach.txt file.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702

Run by HP_Administrator at 13:03:59 on 2011-11-20

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.471 [GMT -5:00]

.

AV: Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}

FW: Firewall *Enabled*

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\3203397148:3809022017.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\ehome\ehtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\Program Files\Verizon\McciTrayApp.exe

C:\Program Files\Verizon\VSP\VerizonServicepoint.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\MAPS4P~2\bar\1.bin\0cbrmon.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\McAfee.com\Agent\mcagent.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe

C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe

C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe

C:\HP\KBD\KBD.EXE

C:\WINDOWS\SOUNDMAN.EXE

svchost.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\WINDOWS\system32\svchost.exe -k hpdevmgmt

C:\Program Files\Java\jre6\bin\jqs.exe

c:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Common Files\Motive\McciCMService.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\Verizon\VSP\ServicepointService.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\ALCMTR.EXE

C:\WINDOWS\ALCWZRD.EXE

C:\WINDOWS\AGRSMMSG.exe

c:\windows\system\hpsysdrv.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\system32\dllhost.exe

C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\WINDOWS\eHome\ehmsas.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\NOTEPAD.EXE

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/

uSearch Page = hxxp://www.google.com

uSearch Bar = hxxp://www.google.com/ie

uSearchMigratedDefaultUrl = hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZCxdm801YYUS&fl=0&ptb=EEYhd9lE6hjx1wurrjuUYw&url=http://www.ask.com/web&q={searchTerms}&l=zc&o=sb

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://search.alot.com/web?q=&pr=auto&client_id=92C1523001CB9EEA000EB12B&src_id=20001&camp_id=2034&tb_version=2.5.15000.521

mSearchAssistant = hxxp://www.google.com/ie

uURLSearchHooks: N/A: {f24df03f-d7f1-40b8-a63a-9d2be4908f39} - c:\program files\maps4pc_0c\bar\1.bin\0cSrcAs.dll

BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File

BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll

BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll

BHO: ALOT Toolbar Helper: {14ceeaff-96dd-4101-ae37-d5ecdc23c3f6} - c:\program files\alot\bin\alot.dll

BHO: {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - No File

BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20111112181012.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Toolbar BHO: {ac3eb537-a86d-4a88-802a-79918db4abe7} - c:\progra~1\maps4p~2\bar\1.bin\0cbar.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll

BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll

BHO: Search Assistant BHO: {d76689d9-6555-42ee-a94f-ba89fb29ceb1} - c:\program files\maps4pc_0c\bar\1.bin\0cSrcAs.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll

TB: HP view: {b2847e28-5d7d-4deb-8b67-05d28bcf79f5} - c:\program files\hp\digital imaging\bin\HPDTLK02.dll

TB: {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - No File

TB: ALOT Toolbar: {5aa2ba46-9913-4dc7-9620-69ab0fa17ae7} - c:\program files\alot\bin\alot.dll

TB: Maps4PC: {32bfba07-b1fc-4764-bc21-4af8c6188ca5} - c:\program files\maps4pc_0c\bar\1.bin\0cbar.dll

TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

mRun: [ehTray] c:\windows\ehome\ehtray.exe

mRun: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [HPBootOp] "c:\program files\hewlett-packard\hp boot optimizer\HPBootOp.exe" /run

mRun: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe

mRun: [HPHmon06] c:\windows\system32\hphmon06.exe

mRun: [Verizon_McciTrayApp] "c:\program files\verizon\McciTrayApp.exe"

mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe

mRun: [VerizonServicepoint.exe] "c:\program files\verizon\vsp\VerizonServicepoint.exe" /AUTORUN

mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime

mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"

mRun: [pnuprdp] c:\windows\system32\rundll32 c:\windows\system32\pnuprdp.dll,RegisterVirtualChannel

mRun: [pnupica] c:\windows\system32\rundll32 c:\windows\system32\pnupica6.dll,RegisterVirtualChannel

mRun: [Maps4PC_0c Browser Plugin Loader] c:\progra~1\maps4p~2\bar\1.bin\0cbrmon.exe

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey

dRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe

StartupFolder: c:\docume~1\hp_adm~1\startm~1\programs\startup\palmon~1.lnk - c:\program files\palmone\register.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\lumixs~1.lnk - c:\program files\panasonic\lumixsimpleviewer\PhLeAutoRun.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ritzpi~1.lnk - c:\windows\installer\{56fb9ba2-bb0f-41e8-b55f-cc93a1a404a6}\Icon020A87392.ico

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\update~1.lnk - c:\program files\updates from hp\309731\program\Updates from HP.exe

IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll

LSP: mswsock.dll

Trusted Zone: internet

Trusted Zone: mcafee.com

DPF: {01113300-3E00-11D2-8470-0060089874ED} - hxxps://activatemyfios.verizon.net/sdcCommon/download/FIOS/tgctlcm.cab

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - hxxp://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/CursorManiaFWBInitialSetup1.0.0.15-3.cab

DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cab

DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1128790008084

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab

DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

TCP: DhcpNameServer = 172.16.0.1

TCP: Interfaces\{8920C4A8-865A-4E93-B2FE-FE41C9D0712D} : DhcpNameServer = 172.16.0.1

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dll

Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll

Notify: igfxcui - igfxsrvc.dll

Notify: TPSvc - TPSvc.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\hp_administrator\application data\mozilla\firefox\profiles\wl7gzvls.default\

FF - prefs.js: network.proxy.type - 0

FF - plugin: c:\progra~1\mcafee\msc\npMcSnFFPl.dll

FF - plugin: c:\program files\common files\motive\npMotive.dll

FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\maps4pc_0c\bar\1.bin\NP0cStub.dll

FF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dll

FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll

FF - plugin: c:\program files\verizon\vsp\nprpspa.dll

.

============= SERVICES / DRIVERS ===============

.

R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-11-9 464176]

R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2011-11-9 89792]

R1 SASDIFSV;SASDIFSV;c:\docume~1\hp_adm~1\locals~1\temp\sas_selfextract\SASDIFSV.SYS [2011-7-22 12880]

R1 SASKUTIL;SASKUTIL;c:\docume~1\hp_adm~1\locals~1\temp\sas_selfextract\SASKUTIL.SYS [2011-7-12 67664]

R2 ServicepointService;ServicepointService;c:\program files\verizon\vsp\ServicepointService.exe [2010-10-17 689392]

R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2011-11-9 180816]

R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-11-9 338176]

R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2011-11-9 83856]

S0 szkg5;szkg5;c:\windows\system32\drivers\szkg.sys --> c:\windows\system32\drivers\szkg.sys [?]

S0 szkgfs;szkgfs;c:\windows\system32\drivers\szkgfs.sys --> c:\windows\system32\drivers\szkgfs.sys [?]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-10 135664]

S2 Maps4PC_0cService;Maps4PCService;c:\progra~1\maps4p~2\bar\1.bin\0cbarsvc.exe [2011-9-10 42504]

S2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-11-9 166288]

S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-11-9 150856]

S2 PNUpdate;Provision Networks Update Service;c:\windows\system32\pnupdate.exe -run --> c:\windows\system32\PNUpdate.exe -RUN [?]

S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-11-9 57600]

S3 GetSusp;GetSusp;c:\windows\GetSusp.sys [2011-11-9 14664]

S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-2-10 135664]

S3 hamachi_oem;PlayLinc Adapter;c:\windows\system32\drivers\gan_adapter.sys [2006-10-19 10664]

S3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe [2011-11-9 203080]

S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2011-11-9 59456]

S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2011-11-9 83856]

S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-11-9 87656]

SUnknown IHA_MessageCenter;IHA_MessageCenter; [x]

SUnknown McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; [x]

SUnknown McMPFSvc;McMPFSvc; [x]

SUnknown McNaiAnn;McNaiAnn; [x]

SUnknown McOobeSv;McOobeSv; [x]

SUnknown McProxy;McProxy; [x]

SUnknown mfefire;mfefire; [x]

.

=============== Created Last 30 ================

.

2011-11-18 00:51:27 -------- d-----w- c:\program files\common files\iS3

2011-11-13 01:40:53 -------- d-----w- c:\program files\ESET

2011-11-13 01:31:22 -------- d-----w- c:\documents and settings\all users\application data\F-Secure

2011-11-13 00:51:25 -------- d-----w- c:\program files\Daved

2011-11-13 00:20:15 -------- d-----w- C:\daved

2011-11-12 23:27:09 -------- d-----w- c:\documents and settings\hp_administrator\application data\SUPERAntiSpyware.com

2011-11-12 23:27:09 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com

2011-11-10 02:37:53 9608 ----a-w- c:\windows\system32\drivers\mfeclnk.sys

2011-11-10 02:37:39 150856 ----a-w- c:\windows\system32\mfevtps.exe

2011-11-10 02:37:37 89792 ----a-w- c:\windows\system32\drivers\mfetdi2k.sys

2011-11-10 02:37:37 87656 ----a-w- c:\windows\system32\drivers\mferkdet.sys

2011-11-10 02:37:37 83856 ----a-w- c:\windows\system32\drivers\mfendisk.sys

2011-11-10 02:37:37 59456 ----a-w- c:\windows\system32\drivers\mfebopk.sys

2011-11-10 02:37:37 57600 ----a-w- c:\windows\system32\drivers\cfwids.sys

2011-11-10 02:37:37 464176 ----a-w- c:\windows\system32\drivers\mfehidk.sys

2011-11-10 02:37:37 338176 ----a-w- c:\windows\system32\drivers\mfefirek.sys

2011-11-10 02:37:37 180816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys

2011-11-10 02:37:37 121256 ----a-w- c:\windows\system32\drivers\mfeapfk.sys

2011-11-10 02:37:30 -------- d-----w- c:\program files\McAfee.com

2011-11-10 02:18:45 260 ----a-w- c:\windows\system32\cmdVBS.vbs

2011-11-10 02:18:45 256 ----a-w- c:\windows\system32\MSIevent.bat

2011-11-10 02:16:25 -------- d-----w- C:\mfe

2011-11-10 01:43:30 -------- d-----w- C:\!KillBox

2011-11-10 01:29:07 14664 ----a-w- c:\windows\GetSusp.sys

2011-11-10 01:17:12 -------- d-----w- c:\program files\Citrix

2011-11-10 01:07:28 -------- d-----w- c:\documents and settings\hp_administrator\application data\McAfee

2011-11-10 00:24:05 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-11-09 23:56:26 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2011-11-09 23:56:21 -------- d-----w- c:\documents and settings\hp_administrator\application data\Malwarebytes

2011-11-09 23:56:09 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes

2011-11-09 15:00:56 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\Citrix

2011-11-09 15:00:53 103784 ----a-w- c:\documents and settings\hp_administrator\GoToAssistDownloadHelper.exe

2011-11-05 14:10:14 -------- d-sh--w- c:\documents and settings\hp_administrator\IECompatCache

2011-10-23 20:38:05 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2

2011-10-23 15:31:39 -------- d-sh--w- c:\documents and settings\hp_administrator\local settings\application data\1cf6efbe

2011-10-23 14:58:43 274288 ----a-w- c:\windows\system32\mucltui.dll

2011-10-23 14:58:43 215920 ----a-w- c:\windows\system32\muweb.dll

2011-10-23 14:58:43 16736 ----a-w- c:\windows\system32\mucltui.dll.mui

2011-10-23 01:40:12 -------- d-----w- c:\documents and settings\hp_administrator\application data\ElevatedDiagnostics

2011-10-23 01:26:00 -------- d-sh--w- c:\documents and settings\hp_administrator\PrivacIE

2011-10-23 01:19:28 -------- d-sh--w- c:\documents and settings\hp_administrator\IETldCache

2011-10-23 01:03:49 -------- d-----w- c:\windows\ie8updates

2011-10-23 00:58:44 -------- dc-h--w- c:\windows\ie8

2011-10-23 00:52:17 7680 ------w- c:\windows\system32\dllcache\iecompat.dll

2011-10-23 00:52:13 12800 ------w- c:\windows\system32\dllcache\xpshims.dll

2011-10-23 00:52:11 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll

2011-10-23 00:52:10 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll

.

==================== Find3M ====================

.

2011-10-23 16:36:52 69632 ----a-w- c:\windows\system32\HPZipm12.exe

2011-10-23 16:36:52 36864 ----a-w- c:\windows\system32\PNUpdate.exe

2011-10-12 21:43:23 73728 -c--a-w- c:\windows\ALCFDRTM.VER

2011-10-10 14:22:41 692736 ----a-w- c:\windows\system32\inetcomm.dll

2011-10-07 01:21:08 1062984 ----a-w- c:\documents and settings\hp_administrator\gotomypc_540.exe

2011-10-03 09:06:03 472808 ----a-w- c:\windows\system32\deployJava1.dll

2011-10-03 06:37:52 73728 ----a-w- c:\windows\system32\javacpl.cpl

2011-09-28 07:06:50 599040 ----a-w- c:\windows\system32\crypt32.dll

2011-09-26 15:41:20 611328 ----a-w- c:\windows\system32\uiautomationcore.dll

2011-09-26 15:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll

2011-09-26 15:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll

2011-09-06 13:20:51 1858944 ----a-w- c:\windows\system32\win32k.sys

2011-08-22 23:48:55 916480 ----a-w- c:\windows\system32\wininet.dll

2011-08-22 23:48:54 43520 ------w- c:\windows\system32\licmgr10.dll

2011-08-22 23:48:54 1469440 ------w- c:\windows\system32\inetcpl.cpl

.

============= FINISH: 13:04:23.39 ===============

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, please visit this webpage for instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the contents of C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

Link to post
Share on other sites

  • 2 weeks later...
  • 2 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.