H E L P!!! After downloading AVG (free - latest version) I tried to open it to run it. All it did was extract it and then NOTHING. HELP! I know my computer have virus of sorts. Also my computer has been blinking really fast that has light blue screen come on fast and it disappears! HELP HELP HELP! Thank you in advance for any help, (pretty please)
delicatebelle 0 Newbie Poster
jholland1964 650 Posting Expert Team Colleague Featured Poster
You need to follow all the steps given in our Read Me sticky and then post back here with all the requested logs and somebody will be happy to help you.
http://www.daniweb.com/forums/thread134865.html
delicatebelle 0 Newbie Poster
Sorry Jholland1964, I do not know how to attach file to this log for the wonderful people who are helping me....HELP? (very sorry)
jholland1964 650 Posting Expert Team Colleague Featured Poster
We would prefer that the logs be copy/pasted rather than attached. To do a copy/paste in notepad, where you read the log, go up to Edit, and click Select All. All of the text will then be highlighted. Go back up to Edit and this time click Copy. Then open a new reply here, put your cursor into the reply area and
Right click with your mouse and choose Paste. The text will be automatically copied into your reply.
delicatebelle 0 Newbie Poster
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-03-17.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 1/18/2010 4:41:34 PM
System Uptime: 6/6/2010 10:19:11 PM (0 hours ago)
Motherboard: Hewlett-Packard | | 309D
Processor: Intel(R) Pentium(R) M processor 1.86GHz | U1 | 1862/533mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 93 GiB total, 63.751 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP83: 3/9/2010 10:06:50 AM - System Checkpoint
RP84: 3/10/2010 10:00:26 AM - Software Distribution Service 3.0
RP85: 3/11/2010 1:11:33 AM - Software Distribution Service 3.0
RP86: 3/12/2010 9:10:12 AM - System Checkpoint
RP87: 3/13/2010 11:25:50 PM - System Checkpoint
RP88: 3/14/2010 11:54:45 PM - System Checkpoint
RP89: 3/15/2010 9:34:34 AM - Avg8 Update
RP90: 3/16/2010 1:34:50 PM - System Checkpoint
RP91: 3/17/2010 3:00:18 PM - System Checkpoint
RP92: 3/17/2010 3:32:10 PM - Installed TurboTax 2009 wrapper
RP93: 3/17/2010 3:32:31 PM - Installed TurboTax 2009 WinPerReleaseEngine
RP94: 3/17/2010 3:35:09 PM - Installed TurboTax 2009 WinPerFedFormset
RP95: 3/17/2010 3:37:21 PM - Installed TurboTax 2009 WinPerTaxSupport
RP96: 3/17/2010 3:38:10 PM - Installed iSEEK AnswerWorks English Runtime
RP97: 3/18/2010 5:23:00 PM - System Checkpoint
RP98: 3/20/2010 5:03:17 AM - System Checkpoint
RP99: 3/21/2010 10:37:10 AM - System Checkpoint
RP100: 3/22/2010 10:41:53 AM - System Checkpoint
RP101: 3/22/2010 11:01:27 AM - Installed Java(TM) 6 Update 16
RP102: 3/23/2010 12:05:55 PM - System Checkpoint
RP103: 3/23/2010 3:32:11 PM - Installed Java(TM) 6 Update 17
RP104: 3/24/2010 10:16:58 PM - System Checkpoint
RP105: 3/25/2010 10:31:11 PM - System Checkpoint
RP106: 3/27/2010 9:04:39 AM - System Checkpoint
RP107: 3/28/2010 11:24:57 AM - System Checkpoint
RP108: 3/28/2010 7:35:19 PM - Installed TurboTax 2009 wcaiper
RP109: 3/30/2010 8:38:40 PM - System Checkpoint
RP110: 3/31/2010 7:19:41 AM - Software Distribution Service 3.0
RP111: 4/1/2010 8:52:35 AM - System Checkpoint
RP112: 4/2/2010 10:31:27 PM - Installed Java(TM) 6 Update 19
RP113: 4/2/2010 10:32:49 PM - Installed Java Runtime Environment
RP114: 4/2/2010 11:05:40 PM - Installed Windows Media Player 11
RP115: 4/2/2010 11:08:17 PM - Installed Windows XP MSCompPackV1.
RP116: 4/3/2010 11:28:58 PM - System Checkpoint
RP117: 4/5/2010 9:15:40 AM - System Checkpoint
RP118: 4/8/2010 12:06:46 AM - System Checkpoint
RP119: 4/10/2010 3:00:19 AM - System Checkpoint
RP120: 4/11/2010 5:35:12 PM - System Checkpoint
RP121: 4/13/2010 12:15:48 AM - System Checkpoint
RP122: 4/14/2010 2:10:41 AM - System Checkpoint
RP123: 4/14/2010 5:27:08 AM - Software Distribution Service 3.0
RP124: 4/14/2010 6:48:30 AM - Software Distribution Service 3.0
RP125: 4/14/2010 12:13:17 PM - Software Distribution Service 3.0
RP126: 4/15/2010 2:24:46 PM - Installed EuroTalk Talk Now!
RP127: 4/17/2010 4:02:27 AM - System Checkpoint
RP128: 4/18/2010 9:55:34 AM - System Checkpoint
RP129: 4/20/2010 2:47:20 PM - System Checkpoint
RP130: 4/23/2010 3:30:29 AM - System Checkpoint
RP131: 4/25/2010 10:18:01 AM - System Checkpoint
RP132: 4/28/2010 4:08:36 PM - System Checkpoint
RP133: 4/30/2010 6:47:34 PM - System Checkpoint
RP134: 5/2/2010 7:44:54 AM - System Checkpoint
RP135: 5/4/2010 1:35:29 AM - System Checkpoint
RP136: 5/5/2010 3:59:25 AM - System Checkpoint
RP137: 5/5/2010 9:20:34 PM - Avg Update
RP138: 5/6/2010 11:12:02 PM - Avg Update
RP139: 5/7/2010 8:21:37 AM - Avg Update
RP140: 5/8/2010 9:11:27 AM - Avg Update
RP141: 5/9/2010 1:35:50 AM - Avg Update
RP142: 5/9/2010 1:38:04 AM - Installed HiJackThis
RP143: 5/9/2010 1:41:13 AM - Avg Update
RP144: 5/10/2010 6:29:19 AM - Software Distribution Service 3.0
RP145: 5/11/2010 8:19:27 AM - System Checkpoint
RP146: 5/12/2010 3:32:53 AM - Software Distribution Service 3.0
RP147: 5/14/2010 1:00:39 AM - System Checkpoint
RP148: 5/15/2010 1:47:20 AM - System Checkpoint
RP149: 5/16/2010 1:56:05 AM - System Checkpoint
RP150: 5/17/2010 3:38:21 AM - System Checkpoint
RP151: 5/18/2010 11:01:31 PM - System Checkpoint
RP152: 5/20/2010 1:25:53 AM - System Checkpoint
RP153: 5/21/2010 3:53:04 AM - System Checkpoint
RP154: 5/22/2010 8:08:02 AM - System Checkpoint
RP155: 5/23/2010 8:53:50 AM - System Checkpoint
RP156: 5/25/2010 3:12:23 AM - System Checkpoint
RP157: 5/26/2010 12:53:27 AM - Software Distribution Service 3.0
RP158: 5/27/2010 1:43:24 AM - System Checkpoint
RP159: 5/28/2010 2:23:17 AM - System Checkpoint
RP160: 5/29/2010 3:42:25 PM - System Checkpoint
RP161: 5/30/2010 11:49:35 PM - System Checkpoint
RP162: 6/1/2010 2:28:21 AM - System Checkpoint
RP163: 6/1/2010 7:41:53 PM - Installed Windows Internet Explorer 8.
RP164: 6/1/2010 7:43:16 PM - Software Distribution Service 3.0
RP165: 6/1/2010 8:05:47 PM - Software Distribution Service 3.0
RP166: 6/1/2010 8:51:55 PM - Software Distribution Service 3.0
RP167: 6/2/2010 9:01:54 AM - Avg Update
RP168: 6/3/2010 10:18:52 PM - Software Distribution Service 3.0
RP169: 6/4/2010 6:13:43 AM - Software Distribution Service 3.0
RP170: 6/4/2010 10:12:16 PM - Removed AVG Free 9.0
RP171: 6/4/2010 10:14:19 PM - Installed AVG Free 9.0
RP172: 6/6/2010 2:20:02 AM - System Checkpoint
==== Installed Programs ======================
Adobe Acrobat - Reader 6.0.2 Update
Adobe Acrobat 6.0.1 Professional
Adobe Acrobat and Reader 6.0.3 Update
Adobe Acrobat and Reader 6.0.4 Update
Adobe Acrobat and Reader 6.0.5 Update
Adobe Acrobat and Reader 6.0.6 Update
Adobe Acrobat Reader 3.01
Adobe AIR
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.3.1
Adobe Shockwave Player 11.5
Adobe Type Manager 4.0
Agere Systems AC'97 Modem
ALPS Touch Pad Driver
ANIO Service
ANIWZCS2 Service
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bonjour
BufferChm
CCleaner
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
CueTour
D-Link Wireless N DWA-130
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
eSupportQFolder
EuroTalk Talk Now!
Facebook Plug-In
FullDPAppQFolder
HiJackThis
Home Theater
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Document Viewer 7.0
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP PrecisionScan LT Software
HP Product Assistant
HP Scanjet 4800 series 7.0
HP Solution Center 7.0
HP Update
hpg4850
hpg4850QFolder
HPProductAssistant
InstantShareDevices
Intel(R) Graphics Media Accelerator Driver for Mobile
InterVideo Home Theater
iSEEK AnswerWorks English Runtime
iTunes
Java Auto Updater
Java(TM) 6 Update 19
LightScribe 1.4.62.1
McAfee VirusScan Enterprise
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Project 2007 Service Pack 2 (SP2)
Microsoft Office Project MUI (English) 2007
Microsoft Office Project Professional 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Move Media Player
Mozilla Firefox (3.6.3)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 7 Ultra Edition
neroxml
OCR Software by I.R.I.S 7.0
OGA Notifier 2.0.0048.0
PanoStandAlone
PhotoGallery
QuickTime
RandMap
REALTEK Gigabit and Fast Ethernet NIC Driver
Scan
ScannerCopy
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB978380)
Security Update for Microsoft Office Excel 2007 (KB978382)
Security Update for Microsoft Office Outlook 2007 (KB972363)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office Publisher 2007 (KB980470)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB969604)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980232)
Segoe UI
SkinsHP1
Skype Toolbars
Skype™ 4.2
SlideShow
SolutionCenter
Sonic Copy Module
Sonic Data Module
Sonic Express Labeler
Sonic MyDVD Plus
Sonic Update Manager
Sonic_PrimoSDK
SoundMAX
Texas Instruments PCIxx21/x515 drivers.
TIxx21
TurboTax 2009
TurboTax 2009 wcaiper
TurboTax 2009 WinPerFedFormset
TurboTax 2009 WinPerReleaseEngine
TurboTax 2009 WinPerTaxSupport
TurboTax 2009 wrapper
Update for 2007 Microsoft Office System (KB967642)
Update for 2007 Microsoft Office System (KB981715)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office InfoPath 2007 (KB976416)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Outlook 2007 Junk Email Filter (kb981726)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows Internet Explorer 8 (KB982632)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
WebReg
Windows Driver Package - Hewlett-Packard Image (12/27/2006 8.0.0.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! BrowserPlus 2.8.1
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
==== Event Viewer Messages From Past Week ========
6/4/2010 8:59:14 AM, error: Service Control Manager [7034] - The Network Associates McShield service terminated unexpectedly. It has done this 1 time(s).
6/4/2010 6:45:20 PM, error: Dhcp [1002] - The IP address lease 192.168.1.107 for the Network Card with network address 00150013C340 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
==== End Of File ===========================
DDS (Ver_10-03-17.01) - NTFSx86
Run by Joana at 22:27:33.92 on Sun 06/06/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_19
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2038.1501 [GMT -7:00]
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe
C:\Program Files\InterVideo\Common\Bin\WinRemote.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Documents and Settings\Joana\Desktop\Things computer on VIRUS\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://news.bbc.co.uk/
uInternet Settings,ProxyOverride = <local>
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
mRun: [SoundMAXPnP] c:\program files\analog devices\soundmax\SMax4PNP.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\Smax4.exe /tray
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [ANIWZCS2Service] c:\program files\ani\aniwzcs2 service\WZCSLDR2.exe
mRun: [D-Link D-Link Wireless N DWA-130] c:\program files\d-link\d-link wireless n dwa-130\AirNCFG.exe
mRun: [ShStatEXE] "c:\program files\network associates\virusscan\SHSTAT.EXE" /STANDALONE
mRun: [McAfeeUpdaterUI] "c:\program files\network associates\common framework\UpdaterUI.exe" /StartedFromRunKey
mRun: [Network Associates Error Reporting Service] "c:\program files\common files\network associates\talkback\TBMon.exe"
mRun: [WINREMOTE] "c:\program files\intervideo\common\bin\WinRemote.exe"
mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: intuit.com\ttlc
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263865193608
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263871789546
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
Hosts: 127.0.0.1 www.spywareinfo.com
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\joana\applic~1\mozilla\firefox\profiles\tqf2jbtu.default\
FF - prefs.js: browser.startup.homepage - hxxp://news.bbc.co.uk/
FF - component: c:\documents and settings\joana\application data\mozilla\firefox\profiles\tqf2jbtu.default\extensions\{3ee8d0be-f450-4ef2-97b9-ac2222d14db3}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\joana\application data\mozilla\firefox\profiles\tqf2jbtu.default\extensions\{3ee8d0be-f450-4ef2-97b9-ac2222d14db3}\components\RadioWMPCore.dll
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\documents and settings\joana\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\documents and settings\joana\application data\move networks\plugins\npqmp071505000011.dll
FF - plugin: c:\documents and settings\joana\local settings\application data\yahoo!\browserplus\2.8.1\plugins\npybrowserplus_2.8.1.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - truec:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
============= SERVICES / DRIVERS ===============
R1 ATMhelpr;ATMhelpr;c:\windows\system32\drivers\ATMHELPR.SYS [2010-3-5 4064]
R1 NaiAvTdi1;NaiAvTdi1;c:\windows\system32\drivers\mvstdi5x.sys [2010-1-20 58016]
R2 McAfeeFramework;McAfee Framework Service;c:\program files\network associates\common framework\FrameworkService.exe [2010-1-20 102463]
R2 McShield;Network Associates McShield;c:\program files\network associates\virusscan\Mcshield.exe [2004-8-18 221191]
R2 McTaskManager;Network Associates Task Manager;c:\program files\network associates\virusscan\VsTskMgr.exe [2004-8-18 28672]
R3 NaiAvFilter1;NaiAvFilter1;c:\windows\system32\drivers\naiavf5x.sys [2010-1-20 108256]
R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2010-1-20 560896]
=============== Created Last 30 ================
2010-06-07 05:13:50 0 d-----w- C:\hp
2010-06-05 05:26:16 0 d-----w- c:\docume~1\joana\applic~1\AVG8
2010-06-02 02:40:09 0 dc-h--w- c:\windows\ie8
2010-05-30 04:12:25 40960 ---ha-w- c:\windows\system32\mqsvover.dll
2010-05-27 20:09:45 43 ----a-w- c:\windows\hpfccopy.INI
2010-05-09 17:01:02 0 d-----w- c:\program files\Spybot - Search & Destroy
2010-05-09 17:01:02 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2010-05-09 08:38:06 0 d-----w- c:\program files\Trend Micro
2010-05-09 08:09:58 0 d-----w- c:\docume~1\joana\applic~1\Malwarebytes
2010-05-09 07:15:36 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-09 07:15:36 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2010-05-09 05:56:40 0 d-----w- c:\docume~1\alluse~1\applic~1\PC Tools
2010-05-08 22:41:06 0 d-----w- c:\program files\iPod
2010-05-08 22:40:50 0 d-----w- c:\program files\iTunes
2010-05-08 22:34:33 0 d-----w- c:\program files\Bonjour
==================== Find3M ====================
2010-04-14 03:02:13 81 ----a-w- C:\CTX.DAT
2010-04-08 20:20:02 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-04-08 20:20:02 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-04-06 14:58:37 37027 ----a-w- c:\windows\atmoUn.exe
2010-03-29 00:41:33 4876 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-10 06:15:52 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 11:28:20 411368 ----a-w- c:\windows\system32\deploytk.dll
============= FINISH: 22:28:32.28 ===============
jholland1964 650 Posting Expert Team Colleague Featured Poster
There is NO AVG installed on your machine but it does show McAfee installed and running. If you want to install another anti-virus program you have to UNINSTALL McAfee first.
I would advise that AVG not be the one you choose. It isn't very highly ranked.
I would choose instead Avira Free. But you cannot have TWO anti-virus programs on the computer at once and if you have all this time and your computer IS infected, this would be why. Uninstall that McAfee.
You DO need to complete ALL the steps in the Read Me sticky and post the logs, not just the DDS scanner.
You also need to do this is a more rapid manner. If the computer IS infected then working every two or three days to clean it up won't work.
Also please note this from our Read Me Sticky:
Please endeavor to reply to your thread promptly and to follow all cleaning steps in a timely manner. The reason for this request is twofold:
• Our volunteers can only address a limited number of threads at a time. If you wait too long to reply, they may move on to helping others and no longer have the free time to devote to your issues.
• Malware tends to reconstitute itself if not addressed quickly and completely.
Edited by jholland1964 because: n/a
delicatebelle 0 Newbie Poster
Thank you to everyone's help in this troublesome trouble of mine. Am embroiled in having to relocated to Canada henceforth the delay in getting my response in an orderly manner as requested. Thank you all for all your kind patience. I have installed Avira as recommended and deleted those not recommended. Thank you.
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.