Jump to content

svchostexe taking up processing speed


Recommended Posts

Hello jageeaguilar! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

Multiple instances of Svchost.exe can run at the same time. Each Svchost.exe session can contain a grouping of services. Therefore, separate services can run, depending on how and where Svchost.exe is started. This grouping of services permits better control and easier debugging, but it also causes some difficulty for end users wishing to see the memory usage or vendor legitimacy of individual services and processes. Let's see if this will help:

Anti-Virus programs take up an enormous amount of your computer's resources when they are actively scanning your computer. Having three anti-virus programs running at the same time can cause your computer to run very slow, become unstable and even, in rare cases, crash. My suggestion is to uninstall AVG 2011 and AVG 2012, but to keep avast! Free Antivirus. Finally, restart your computer.

Let me know how are things then.

Link to post
Share on other sites

Thank you,

I have tried to uninstall AVG, both versions. I am really concerned because twice in the last couple weeks I have had accounts (email and Blizzard) compromised that I normally do not have trouble with suspicious log ins. Computer performance is also down significantly. I only had avast and the newer versions of the anti virus after performance dipped.

Link to post
Share on other sites

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 9.0.8112.16455

Run by Josh Aguilar at 11:11:25 on 2012-12-10

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.4090.1850 [GMT -8:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

C:\Windows\system32\Dwm.exe

C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

C:\Windows\WindowsMobile\wmdcBase.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Windows\ehome\ehtray.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\GATEWAY\Gateway Recovery Management\Service\ETService.exe

C:\Users\Josh Aguilar\Local Settings\Apps\F.lux\flux.exe

C:\Users\Josh Aguilar\AppData\Local\Programs\Google\MusicManager\MusicManager.exe

C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe

C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\DRIVERS\xaudio64.exe

C:\Windows\system32\RUNDLL32.EXE

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Windows\System32\mobsync.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Users\Josh Aguilar\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\System32\osk.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://safesearchr.lavasoft.com/?source=3336ca5f&tbp=homepage&toolbarid=adawaretb&v=2_2&u=3D525B33D5D58B6F70535C507AFCDBA6

uDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=1108&m=p-7805u&c=BB

mStart Page = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=1108&m=p-7805u&c=BB

mDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=1108&m=p-7805u&c=BB

uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: NitroPDFBHO Class: {CF070CB8-F02F-4af4-A7B7-8D45CAD4BB54} - C:\Program Files (x86)\Nitro PDF\PDF Download\NitroPDF.dll

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe

uRun: [Google Update] "C:\Users\Josh Aguilar\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

uRun: [F.lux] "C:\Users\Josh Aguilar\Local Settings\Apps\F.lux\flux.exe" /noshow

uRun: [MusicManager] "C:\Users\Josh Aguilar\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"

uRun: [WorkForce 435(Network)] C:\Windows\System32\spool\DRIVERS\x64\3\E_IATIHRA.EXE /FU "C:\Users\JOSHAG~1\AppData\Local\Temp\E_S8689.tmp" /EF "HKCU"

mRun: [eRecoveryService] <no file>

StartupFolder: C:\Users\JOSHAG~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{43A86402-F5FB-487B-AB19-A46F94CFC834} : DHCPNameServer = 209.18.47.61 209.18.47.62

TCP: Interfaces\{FA4801C0-30F9-4BC8-8C1C-1D5CBF945AFA} : DHCPNameServer = 192.168.1.1

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

x64-mStart Page = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=1108&m=p-7805u&c=BB

x64-mDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=1108&m=p-7805u&c=BB

x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe -hide

x64-Run: [iAAnotif] "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"

x64-Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

x64-Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdcBase.exe

x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming

x64-mPolicies-Explorer: NoActiveDesktop = dword:1

x64-mPolicies-Explorer: NoActiveDesktopChanges = dword:1

x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

x64-mPolicies-System: EnableUIADesktopToggle = dword:0

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

.

============= SERVICES / DRIVERS ===============

.

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-11-4 984144]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-11-4 370288]

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-11-4 25232]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-11-4 71600]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-4 44808]

R2 EpsonCustomerParticipation;EpsonCustomerParticipation;C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [2011-6-9 555392]

R2 ETService;Empowering Technology Service;C:\Program Files\GATEWAY\Gateway Recovery Management\Service\ETService.exe [2008-11-20 24576]

R2 FontCache;Windows Font Cache Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 27648]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-11-17 399432]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-11-17 676936]

R2 yksvc;Marvell Yukon Service;RUNDLL32.EXE ykx64coinst,serviceStartProc --> RUNDLL32.EXE ykx64coinst,serviceStartProc [?]

R3 CAXHWAZL;CAXHWAZL;C:\Windows\System32\drivers\CAXHWAZL.sys [2008-10-9 294400]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-11-17 25928]

R3 NETwNv64;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETwNv64.sys [2010-10-31 7959552]

R3 O2MDRDR;O2MDRDR;C:\Windows\System32\drivers\o2mdx64.sys [2008-5-12 62424]

R3 O2SDRDR;O2SDRDR;C:\Windows\System32\drivers\o2sdx64.sys [2008-6-11 51800]

R3 VSTWinDriver6;VSTWinDriver6;C:\Windows\System32\drivers\VSTwindrvr6.sys [2008-7-3 252928]

R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk60x64.sys [2008-7-24 392192]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]

S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\System32\drivers\LEqdUsb.sys [2011-9-1 76056]

S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\System32\drivers\LHidEqd.sys [2011-9-1 15128]

S3 NETw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw5v64.sys [2008-11-17 4751360]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?]

S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver;C:\Windows\System32\drivers\PCASp50a64.sys [2009-8-24 41280]

S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-4-25 52736]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]

S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-8-3 89920]

.

=============== File Associations ===============

.

FileExt: .js: JSFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

.

=============== Created Last 30 ================

.

.

==================== Find3M ====================

.

2012-11-16 11:05:39 66395536 ----a-w- C:\Windows\System32\mrt.exe

2012-10-30 23:51:56 59728 ----a-w- C:\Windows\System32\drivers\aswTdi.sys

2012-10-30 23:51:55 984144 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2012-10-30 23:51:55 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2012-10-30 23:51:55 44272 ----a-w- C:\Windows\System32\drivers\aswRdr.sys

2012-10-30 23:51:55 370288 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2012-10-30 23:51:53 25232 ----a-w- C:\Windows\System32\drivers\aswFsBlk.sys

2012-10-30 23:51:07 41224 ----a-w- C:\Windows\avastSS.scr

2012-10-30 23:50:59 227648 ----a-w- C:\Windows\SysWow64\aswBoot.exe

2012-10-30 23:50:30 285328 ----a-w- C:\Windows\System32\aswBoot.exe

2012-10-12 14:53:34 2769920 ----a-w- C:\Windows\System32\win32k.sys

2012-10-08 23:44:21 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-10-08 23:44:21 696760 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-10-04 03:03:05 17811968 ----a-w- C:\Windows\System32\mshtml.dll

2012-10-04 02:24:36 10925568 ----a-w- C:\Windows\System32\ieframe.dll

2012-10-04 02:18:45 2312704 ----a-w- C:\Windows\System32\jscript9.dll

2012-10-04 02:12:16 1346048 ----a-w- C:\Windows\System32\urlmon.dll

2012-10-04 02:11:22 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-10-04 02:10:43 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-10-04 02:10:19 237056 ----a-w- C:\Windows\System32\url.dll

2012-10-04 02:08:50 85504 ----a-w- C:\Windows\System32\jsproxy.dll

2012-10-04 02:07:11 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-10-04 02:07:01 816640 ----a-w- C:\Windows\System32\jscript.dll

2012-10-04 02:06:55 599040 ----a-w- C:\Windows\System32\vbscript.dll

2012-10-04 02:05:40 729088 ----a-w- C:\Windows\System32\msfeeds.dll

2012-10-04 02:04:55 2144768 ----a-w- C:\Windows\System32\iertutil.dll

2012-10-04 02:03:48 96768 ----a-w- C:\Windows\System32\mshtmled.dll

2012-10-04 02:03:26 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-10-04 01:59:12 248320 ----a-w- C:\Windows\System32\ieui.dll

2012-10-03 23:00:04 12320768 ----a-w- C:\Windows\SysWow64\mshtml.dll

2012-10-03 22:35:48 9738240 ----a-w- C:\Windows\SysWow64\ieframe.dll

2012-10-03 22:30:48 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-10-03 22:22:51 1103872 ----a-w- C:\Windows\SysWow64\urlmon.dll

2012-10-03 22:21:58 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-10-03 22:21:57 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-10-03 22:20:53 231936 ----a-w- C:\Windows\SysWow64\url.dll

2012-10-03 22:19:28 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll

2012-10-03 22:18:27 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-10-03 22:18:10 717824 ----a-w- C:\Windows\SysWow64\jscript.dll

2012-10-03 22:18:01 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll

2012-10-03 22:16:41 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll

2012-10-03 22:16:03 1793024 ----a-w- C:\Windows\SysWow64\iertutil.dll

2012-10-03 22:15:16 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll

2012-10-03 22:14:47 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2012-10-03 22:11:09 176640 ----a-w- C:\Windows\SysWow64\ieui.dll

2012-09-30 03:54:26 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-09-25 16:31:19 91648 ----a-w- C:\Windows\System32\synceng.dll

2012-09-25 16:19:41 75776 ----a-w- C:\Windows\SysWow64\synceng.dll

2012-09-23 01:10:34 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys

2012-09-13 13:45:46 2048 ----a-w- C:\Windows\System32\tzres.dll

2012-09-13 13:28:08 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

.

============= FINISH: 11:12:45.40 ===============

attach.txt

Link to post
Share on other sites

Looks much better than before.

Please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan

  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\ESET\Eset Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic

Link to post
Share on other sites

  • 3 weeks later...

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.