alohaguy53 Posted April 13, 2011 Author ID:415709 Share Posted April 13, 2011 Okay, I will use add/remove programs...will that work? Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415710 Share Posted April 13, 2011 Okay, I will use add/remove programs...will that work?Yes, give that a try Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415715 Share Posted April 13, 2011 ok, I had to exit IE on my computer to do the uninstall. so am back on my wife's computer. uninstall in in progress. Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415726 Share Posted April 13, 2011 Combofix has been running for 3-4 minutes and there is just one blinking dash in the middle of the screen is it working? Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415730 Share Posted April 13, 2011 In a few minutes if you don't see progressing dots, it's not running.Delete the combofix you have on the desktop now.Then lets try this way:You might want to print these instructions out.Download ComboFix from one of these locations:Link 1Link 2 If using this link, Right Click and select Save As.* IMPORTANT !!! Save ComboFix.exe to your Desktop Save it to your Desktop Now physically disconnect from the internet and STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) Click on your START button and choose Run. Then copy/paste the entire content of the following quotebox (Including the "" marks and the Symbols) into the run box.Go to -> Run -> copy/paste in the following single line command & click OK"%userprofile%\desktop\combofix.exe" /killall Click OK and this will start ComboFix in a special way. When finished, it will produce a log. Please save that log to a Notepad File to post in your next reply along with a fresh HJT log.Note:Do not mouse-click combofix's window while it is running. That may cause it to stall.* After you have saved the logs, restart your system to re-enable all the programs that were disabled during the running of ComboFix.* Reconnect to the internet* Post the following logs/Reports: ComboFix.txt Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415736 Share Posted April 13, 2011 ok, i downloaded combofix to the desktop. But now I am lost. If I have to turn off all my spyware, that means Spybot and Malwarebytes...I am on the malwarebytes control panel and can't see how to do that. Haven't tried spybot yet. also, where does the "quotebox" come from or show up? Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415737 Share Posted April 13, 2011 Sorry I don't understand...I have tried best I can to follow all your instructions...although I am not a super savvy computer user. Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415738 Share Posted April 13, 2011 MalwareBytes is located down by the time. Just Right Click on tthe M Icon and disable or close.Don't worry about spybot Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415740 Share Posted April 13, 2011 Okay, malwarebytes in turned off. I clicked on Run and the run box came up...but what I don't understand is where do I find the quote box to get the file name to copy and paste? Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415741 Share Posted April 13, 2011 Click the Start Button -> click Run -> copy/paste in the following single line command & click OK"%userprofile%\desktop\combofix.exe" /killall Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415742 Share Posted April 13, 2011 copy/paste in the following single line in the open window & click OK"%userprofile%\desktop\combofix.exe" /killall Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415743 Share Posted April 13, 2011 I manually typed in the file name from your post and clicekd run, but it says windows can't find the file. Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415744 Share Posted April 13, 2011 did you add the space: "%userprofile%\desktop\combofix.exe" (space) /killall Is combofix on your desktop? Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415745 Share Posted April 13, 2011 si i tried going to the properties tab on the combofix program and copied the Cmd line to the run box. Then clicked run and got that same error message I got before. Clicked ignore a few times and the black box opened up and has the same flashing dash in the middle of it. GOD THIS IS FRUSTRATING! Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415747 Share Posted April 13, 2011 I did not, so I went back and added the space, clicked on ok and got a message that windows can't find the file! Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415749 Share Posted April 13, 2011 It doesn't see it on the desktop then.Can you check and make sure it's there Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415751 Share Posted April 13, 2011 got the address right finally, clicked ok and the open file box came up...clicekd run and got the same error message...about an illegal instruction. I can click ignore again, but I will get the same black box with the flashing dash in the middle. Are you sure this program actually works? Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415752 Share Posted April 13, 2011 I use it every day. Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415753 Share Posted April 13, 2011 it says it is...there is an icon that if I click it and go to programs shows it as combofix.exe. Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415756 Share Posted April 13, 2011 Do you have a Thumb / Flash drive?Download to the flash drive and try running it from there. Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415758 Share Posted April 13, 2011 okay, i downloaded it to my external hard drive and am running it. There is a blue box this time with text in it! Says it is attempting to create a new system restore point! Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415759 Share Posted April 13, 2011 That means it's starting to work Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415770 Share Posted April 13, 2011 ComboFix 11-04-13.01 - Administrator2 04/13/2011 15:51:41.1.2 - x86Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2039.1422 [GMT -7:00]Running from: E:\ComboFix.exe..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\program files\SelectRebatesc:\program files\SelectRebates\FFToolbar\chrome.manifestc:\program files\SelectRebates\FFToolbar\chrome\sahtoolbar.jarc:\program files\SelectRebates\FFToolbar\defaults\preferences\sahtoolbar.jsc:\program files\SelectRebates\FFToolbar\install.rdfc:\program files\SelectRebates\SahImages\alert.pngc:\program files\SelectRebates\SahImages\check.pngc:\program files\SelectRebates\SahImages\close.pngc:\program files\SelectRebates\SelectAlerts.datc:\program files\SelectRebates\SelectRebates.exec:\program files\SelectRebates\SelectRebates.inic:\program files\SelectRebates\SelectRebatesA.datc:\program files\SelectRebates\SelectRebatesApi.exec:\program files\SelectRebates\SelectRebatesB.datc:\program files\SelectRebates\SelectRebatesBT.datc:\program files\SelectRebates\SelectRebatesDownload.exec:\program files\SelectRebates\SelectRebatesH.datc:\program files\SelectRebates\SelectRebatesUninstall.exec:\program files\SelectRebates\SRebates.dllc:\program files\SelectRebates\SRFF3.dllc:\program files\SelectRebates\Toolbar\AddtoList.bmpc:\program files\SelectRebates\Toolbar\basis.xmlc:\program files\SelectRebates\Toolbar\Basis.xml.dymc:\program files\SelectRebates\Toolbar\Blank.bmpc:\program files\SelectRebates\Toolbar\CashBack.bmpc:\program files\SelectRebates\Toolbar\Coupons.bmpc:\program files\SelectRebates\Toolbar\GroceryCoupon.bmpc:\program files\SelectRebates\Toolbar\i_magnifying.bmpc:\program files\SelectRebates\Toolbar\icons.bmpc:\program files\SelectRebates\Toolbar\logo.bmpc:\program files\SelectRebates\Toolbar\logo_24.bmpc:\program files\SelectRebates\Toolbar\logo_HotSpots.bmpc:\program files\SelectRebates\Toolbar\ReviewSite.bmpc:\program files\SelectRebates\Toolbar\RightControls.dymc:\program files\SelectRebates\Toolbar\sahtb-alert.bmpc:\program files\SelectRebates\Toolbar\sahtb-go.bmpc:\program files\SelectRebates\Toolbar\sahtb-grocerycoupons.bmpc:\program files\SelectRebates\Toolbar\sahtb-icons.bmpc:\program files\SelectRebates\Toolbar\sahtb-restaurant.bmpc:\program files\SelectRebates\Toolbar\sahtb-wishlist.bmpc:\program files\SelectRebates\Toolbar\Scissors.bmpc:\program files\SelectRebates\Toolbar\ShopAtHomeToolbar.dllc:\windows\system32\bszip.dllE:\autorun.inf..((((((((((((((((((((((((( Files Created from 2011-03-13 to 2011-04-13 )))))))))))))))))))))))))))))))..2011-04-13 20:45 . 2011-04-13 20:45 -------- d-----w- c:\program files\ESET2011-04-13 18:29 . 2011-04-13 18:29 -------- d--h--w- c:\windows\PIF2011-04-11 23:08 . 2011-04-11 23:08 -------- d-----w- c:\windows\system32\wbem\Repository2011-03-26 05:56 . 2011-03-26 05:56 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple Computer2011-03-26 05:56 . 2011-03-26 05:56 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Apple Computer2011-03-26 05:20 . 2010-12-21 01:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2011-03-26 05:20 . 2011-04-12 19:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2011-03-26 05:20 . 2010-12-21 01:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys2011-03-26 05:18 . 2011-03-26 04:48 7734208 ----a-w- C:\mbam-setup-1.50.1.1100.exe2011-03-26 05:17 . 2011-03-26 05:15 1006778 ----a-w- C:\rkill.com2011-03-26 04:20 . 2011-04-13 21:53 -------- d-----w- c:\documents and settings\Administrator2011-03-16 14:13 . 2011-03-16 14:13 -------- d-----w- c:\program files\KingsIsle Entertainment..(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2011-02-09 13:53 . 2004-08-04 12:00 270848 ----a-w- c:\windows\system32\sbe.dll2011-02-09 13:53 . 2004-08-04 12:00 186880 ----a-w- c:\windows\system32\encdec.dll2011-02-02 07:58 . 2010-06-12 15:12 2067456 ----a-w- c:\windows\system32\mstscax.dll2011-01-27 11:57 . 2010-06-12 15:12 677888 ----a-w- c:\windows\system32\mstsc.exe2011-01-21 14:44 . 2004-08-04 12:00 439296 ----a-w- c:\windows\system32\shimgvw.dll2011-01-16 22:14 . 2011-01-16 22:14 349393 ----a-w- c:\program files\7-Zip.exe2010-12-06 21:17 . 2010-12-06 21:17 4502416 ----a-w- c:\program files\avg_free_stb_all_2011_1170_upgrade.exe2010-11-27 04:58 . 2010-11-27 04:58 4886870 ----a-w- c:\program files\HandBrake-0.9.4-Win_GUI.exe2010-10-29 05:12 . 2010-10-29 05:19 1068544 ----a-w- c:\program files\couponprinter.exe2010-10-19 06:09 . 2010-10-19 06:10 17873152 ----a-w- c:\program files\PDFCreator-1_0_2_setup.exe2010-06-29 20:29 . 2010-06-29 20:28 563040 ----a-w- c:\program files\googleupdatesetup.exe2010-06-19 04:17 . 2010-06-19 04:17 6153352 ----a-w- c:\program files\mbam-setup-1.46.exe2010-06-19 03:38 . 2010-06-19 03:38 3387040 ----a-w- c:\program files\ccsetup232.exe2010-06-17 23:44 . 2010-06-17 23:08 97364760 ----a-w- c:\program files\Ad-AwareInstaller.exe2010-06-17 19:09 . 2010-06-17 19:09 16409960 ----a-w- c:\program files\spybotsd162.exe..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-12-20 141848]"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-20 166424]"Persistence"="c:\windows\system32\igfxpers.exe" [2007-12-20 137752]"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-01-06 872448]"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]"AccelerometerSysTrayApplet"="c:\windows\system32\AccelerometerSt.exe" [2007-01-24 124928]"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 153640]"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 400936]"UpdateManager"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 110592]"dla"="c:\windows\system32\dla\tfswctrl.exe" [2005-04-27 122941]"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2007-01-09 145184]"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2003-12-23 17920]"IFXSPMGT"="c:\windows\system32\ifxspmgt.exe" [2007-07-24 677144]"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-11-04 413696]"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]"WatchDog"="c:\program files\InterVideo\DVD Check\DVDCheck.exe" [2004-12-09 184320]"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-15 644696]"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-04 1603152]"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]"WrtMon.exe"="c:\windows\system32\spool\drivers\w32x86\3\WrtMon.exe" [2006-09-20 20480]"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]"LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2005-07-20 221184]"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-12-21 443728].[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]"AvgUninstallURL"="start http:" [X].c:\documents and settings\Kevin\Start Menu\Programs\Startup\DING!.lnk - c:\program files\Southwest Airlines\Ding\Ding.exe [2006-6-22 462848].c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-6-14 113664]DVD Check.lnk - c:\program files\InterVideo\DVD Check\DVDCheck.exe [2010-6-13 184320]Forget Me Not.lnk - c:\program files\Broderbund\AG CreataCard\agremind.exe [2010-6-19 331776]QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2005-12-8 811008].[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ackpbsc]2009-06-03 23:14 113152 ----a-w- c:\program files\ActivIdentity\ActivClient\ackpbsc.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\acunlock]2009-06-03 23:13 299520 ----a-w- c:\program files\ActivIdentity\ActivClient\acunlock.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]2007-06-08 16:04 49152 ----a-r- c:\windows\system32\DeviceNP.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard]2007-03-14 13:03 74752 ----a-r- c:\program files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]"AppInit_DLLs"=c:\windows\system32\APSHook.dll.[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"DisableNotifications"= 1 (0x1).[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe"="c:\\Program Files\\Bonjour\\mDNSResponder.exe"="c:\\Program Files\\iTunes\\iTunes.exe"="c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="c:\\Program Files\\Intuit\\QuickBooks 2006\\QBDBMgrN.exe"="c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"="c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"="c:\\Program Files\\Skype\\Phone\\Skype.exe"=.R0 SafeBoot;SafeBoot;c:\windows\system32\drivers\SafeBoot.sys [8/14/2007 5:59 PM 101167]R0 SbAlg;SbAlg;c:\windows\system32\drivers\SbAlg.sys [10/9/2006 1:31 PM 44720]R0 SbFsLock;SbFsLock;c:\windows\system32\drivers\SbFsLock.sys [6/14/2007 4:22 PM 13184]R1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\system32\drivers\psd.sys [7/24/2007 8:21 AM 38816]R1 RsvLock;RsvLock;c:\windows\system32\drivers\rsvlock.sys [8/14/2007 5:59 PM 5840]R2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [6/3/2009 4:16 PM 207400]R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [8/4/2004 5:00 AM 14336]R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [8/4/2004 5:00 AM 14336]R2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [9/6/2007 1:26 PM 221184]R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [3/25/2011 10:20 PM 363344]R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [7/24/2007 8:21 AM 41216]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [3/25/2011 10:20 PM 20952]S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [6/14/2010 8:12 PM 136176]S3 DAMDrv;DAMDrv;c:\windows\system32\drivers\DAMDrv.sys [6/13/2010 9:20 AM 30008]S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [6/8/2007 9:06 AM 172131]S3 HP24X;HP PC Card Smart Card Reader;c:\windows\system32\drivers\HP24X.sys [6/12/2010 1:12 PM 33024]S4 Httervitiip;Httervitiip;c:\windows\system32\drivers\ati1ttxx.sys [6/12/2010 2:55 PM 21343].[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]Cognizance REG_MULTI_SZ ASBroker ASChannel.Contents of the 'Scheduled Tasks' folder.2011-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-15 03:12].2011-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-15 03:12]..------- Supplementary Scan -------.uStart Page = hxxp://www.yahoo.com/uInternet Connection Wizard,ShellNext = "c:\program files\Outlook Express\msimn.exe"IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab.- - - - ORPHANS REMOVED - - - -.Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)HKLM-Run-SelectRebates - c:\program files\SelectRebates\SelectRebates.exe...**************************************************************************.catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2011-04-13 16:00Windows 5.1.2600 Service Pack 3 NTFS.scanning hidden processes ... .scanning hidden autostart entries ... .scanning hidden files ... .scan completed successfullyhidden files: 0.**************************************************************************.--------------------- DLLs Loaded Under Running Processes ---------------------.- - - - - - - > 'winlogon.exe'(904)c:\program files\ActivIdentity\ActivClient\ackpbsc.dllc:\program files\ActivIdentity\ActivClient\aclog.dllc:\program files\ActivIdentity\ActivClient\accrypto.dllc:\program files\ActivIdentity\ActivClient\ACLIBEAY.dllc:\program files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dllc:\program files\Hewlett-Packard\IAM\bin\ItMsg.dllc:\program files\Hewlett-Packard\IAM\Bin\TrayIcon.dllc:\program files\Hewlett-Packard\IAM\bin\HPBrand.dllc:\program files\Hewlett-Packard\IAM\Bin\ASChnl.dllc:\program files\Hewlett-Packard\IAM\Bin\ItDAC.dllc:\program files\Hewlett-Packard\IAM\Bin\ItReports.DLLc:\windows\SbHpNp.DLLc:\program files\ActivIdentity\ActivClient\acunlock.dllc:\program files\ActivIdentity\ActivClient\aipingui.dllc:\program files\ActivIdentity\ActivClient\acevtsub.dllc:\program files\ActivIdentity\ActivClient\asphat32.dllc:\program files\ActivIdentity\ActivClient\acerrmes.dllc:\program files\ActivIdentity\ActivClient\aiwinext.dllc:\program files\ActivIdentity\ActivClient\aspcom.dllc:\program files\ActivIdentity\ActivClient\aicext.dllc:\program files\ActivIdentity\ActivClient\Resources\acerrmrc.dllc:\program files\ActivIdentity\ActivClient\Resources\asphatrc.dllc:\program files\ActivIdentity\ActivClient\Resources\aipinguirc.dllc:\program files\ActivIdentity\ActivClient\resources\acCobAPIrc.dllc:\program files\ActivIdentity\ActivClient\resources\acCobAPIlrc.dllc:\program files\ActivIdentity\ActivClient\Resources\acunlockrc.dllc:\windows\system32\DeviceNP.dllc:\program files\Hewlett-Packard\IAM\Bin\BioAuth.dllc:\program files\Hewlett-Packard\IAM\Bin\ittal.dllc:\program files\Hewlett-Packard\IAM\Bin\STEngine.dll.- - - - - - - > 'explorer.exe'(3176)c:\windows\system32\WININET.dllc:\windows\system32\APSHook.dllc:\program files\ScanSoft\OmniPageSE4\OpHookSE4.dllc:\windows\system32\ieframe.dll.------------------------ Other Running Processes ------------------------.c:\windows\System32\SCardSvr.exec:\program files\Hewlett-Packard\IAM\bin\asghost.exec:\windows\system32\igfxsrvc.exec:\windows\system32\spool\drivers\w32x86\3\WrtProc.exec:\program files\LSI SoftModem\agrsmsvc.exec:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exec:\program files\Bonjour\mDNSResponder.exec:\windows\system32\IFXTCS.exec:\program files\Java\jre6\bin\jqs.exec:\windows\system32\IfxPsdSv.exec:\windows\system32\wdfmgr.exec:\program files\Canon\CAL\CALMAIN.exec:\program files\Hewlett-Packard\Shared\hpqwmiex.exec:\windows\system32\wscntfy.exec:\program files\iPod\bin\iPodService.exec:\program files\Hewlett-Packard\Embedded Security Software\PSDrt.exec:\program files\Hewlett-Packard\Shared\HpqToaster.exe.**************************************************************************.Completion time: 2011-04-13 16:05:52 - machine was rebootedComboFix-quarantined-files.txt 2011-04-13 23:05.Pre-Run: 82,232,070,144 bytes freePost-Run: 86,679,982,080 bytes free.WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe[boot loader]timeout=2default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS[operating systems]c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdconsUnsupportedDebug="do not select this" /debugmulti(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect.- - End Of File - - F537D04E7849D158A785354CF1630CBF Link to post Share on other sites More sharing options...
LDTate Posted April 13, 2011 ID:415772 Share Posted April 13, 2011 It will take me awhile to go through this.Try your account and see if it works now Link to post Share on other sites More sharing options...
alohaguy53 Posted April 13, 2011 Author ID:415775 Share Posted April 13, 2011 I am downloading AVG again so my computer is secure. As soon as it is done, I will check my account. BTW, thanks for all your help these last two days! Link to post Share on other sites More sharing options...
Recommended Posts