Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible infection(s)


  • This topic is locked This topic is locked
5 replies to this topic

#1 jay clef

jay clef

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 08 June 2009 - 08:10 PM

Hello,

I believe that my computer is infected. I run Avast, AVG Anti-Virus, Malwarebytes' Anti-Malware, and haven't been able to detect anything as of late.
My computer runs very slow from time to time, with at times, unfamiliar processes running, drastically hogging up my CPU usage.
In addition, as of late, my internet has been a problem. My wi-fi setup would be fine, and it would display that it is connected, but it would not open up a webpage in firefox. Sometime, restarting firefox/refreshing the page helps. More often than not, my internet has been buggy.

I am new to this site, and I'm assuming that I post a HiJack This system scan?

An early thanks to whomever happens to read and offer help :thumbup2:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:55:22 PM, on 6/8/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-

LC\symlcsvc.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\Apple\Mobile Device

Support\bin\AppleMobileDeviceService.exe
C:\Program

Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless

Assistant.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\svchost.exe

R0 - HKCU\Software\Microsoft\Internet

Explorer\Main,Start Page =

http://ie.redirect.hp.com/svs/rdr?

TYPE=3&tp=iehome&locale=EN_US&c=64&bd=pavilion&pf=lapto

p
R1 - HKCU\Software\Microsoft\Internet Connection

Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?

TYPE=3&tp=iehome&locale=EN_US&c=64&bd=pavilion&pf=lapto

p
R1 -

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet

Settings,ProxyServer = :
R1 -

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet

Settings,ProxyOverride = *.local
O1 - Hosts: ::1 localhost
O1 - Hosts: 94.232.248.66 browser-

security.microsoft.com
O1 - Hosts: 94.232.248.66 antivguardian.com
O1 - Hosts: 94.232.248.66 www.antivguardian.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-

C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program

Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter -

{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program

Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-

D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06

\bin\ssv.dll
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common

Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program

Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program

Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program

Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program

Files\Common

Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-

Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program

Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4

\ashDisp.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32

\igfxtray.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program

Files\Common Files\Apple\Mobile Device

Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program

Files\hpq\HP Wireless Assistant\HP Wireless

Assistant.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8

\avgtray.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%

\system32\dumprep 0 -u
O4 - HKLM\..\Run: [High Definition Audio Property Page

Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program

Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware]

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

/install /silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32

\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program

Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O8 - Extra context menu item: E&xport to Microsoft

Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11

\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-

AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06

\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console -

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program

Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE

-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11

\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-

BB9E-00C04F795683} - C:\Program

Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger -

{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program

Files\Messenger\msmsgs.exe
O14 - IERESET.INF:

START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?

TYPE=3&tp=iehome&locale=EN_US&c=64&bd=pavilion&pf=lapto

p
O15 - Trusted Zone: http://aimexpress.aim.com
O15 - Trusted Zone: www.aim.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1

-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter -

C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AddFiltr - Hewlett-Packard Development

Company, L.P. - C:\Program Files\Hewlett-Packard\HP

Quick Launch Buttons\AddFiltr.exe
O23 - Service: Apple Mobile Device - Apple Inc. -

C:\Program Files\Common Files\Apple\Mobile Device

Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv)

- ALWIL Software - C:\Program Files\Alwil

Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic LiveUpdate Scheduler -

Symantec Corporation - C:\Program

Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software -

C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software -

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software -

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG

Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8

\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. -

C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development

Company, L.P. - C:\Program Files\Hewlett-

Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) -

Macrovision Corporation - C:\Program Files\Common

Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program

Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling

Service (LightScribeService) - Hewlett-Packard Company

- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation -

C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
O23 - Service: Norton Protection Center Service

(NSCService) - Symantec Corporation - c:\Program

Files\Common Files\Symantec Shared\Security

Console\NSCSRVCE.EXE
O23 - Service: Pml Driver HPZ12 - HP -

C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Network Drivers Service

(SNDSrvc) - Symantec Corporation - c:\Program

Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation

- C:\Program Files\Common Files\Symantec Shared\CCPD-

LC\symlcsvc.exe

--
End of file - 8034 bytes

Edited by jay clef, 08 June 2009 - 08:21 PM.


BC AdBot (Login to Remove)

 


#2 DocSatan

DocSatan

    Bleepin' Wanna-Be


  • Members
  • 2,156 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston, Ma.
  • Local time:05:04 PM

Posted 14 June 2009 - 09:27 AM

Hello jay clef and Welcome to BleepingComputer.

I'm DocSatan and I will be helping you with your "Malware" related computer problems.

1. Please turn off word wrap in Notepad
  • Open Notepad
  • Click on Format
  • Click on Word Wrap
  • Click on Format again. There should be NO check mark next to Word Wrap
  • Exit Notepad
2. Please Post a DDS Log.
Some time has passed since your initial Log and it's possible that the old Log no longer accurately reflects your computers current state. This will also let me know that you are still interested in receiving assistance with your computer issues. If you do not post a DDS Log, then I will assume that you are no longer in need of assistance and this thread will be closed.
  • Download DDS by sUBs from the following link. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
    • NOTE: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.
    • Information on A/V control HERE
3. Do Not Make Any Changes to the "Infected" Computer.
Once you have posted a NEW DDS Log, Do Not make any changes to the computer. I will be researching the DDS Log that you post and any changes made to the system might interfere with the FIX that I prepare for you. Examples of "Changes":
  • Deleting Files/Folders
  • Installing/Uninstalling Programs
  • Running Anti-Virus, Anti-Malware, Anti-Spyware, etc., Programs
Doc.

#3 jay clef

jay clef
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 19 June 2009 - 10:21 AM

Ok here you go:


DDS (Ver_09-05-14.01) - NTFSx86
Run by justin at 8:16:58.98 on Fri 06/19/2009
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1014.311 [GMT -7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: avast! antivirus 4.8.1335 [VPS 090618-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
FW: Norton Internet Security 2006 *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

============== Running Processes ===============

C:WINDOWSsystem32svchost -k DcomLaunch
svchost.exe
C:WINDOWSSystem32svchost.exe -k netsvcs
C:WINDOWSsystem32svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:Program FilesCommon FilesSymantec SharedCCPD-LCsymlcsvc.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSsystem32spoolsv.exe
svchost.exe
C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe
C:Program FilesSymantecLiveUpdateALUSchedulerSvc.exe
C:PROGRA~1AVGAVG8avgwdsvc.exe
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSeHomeehRecvr.exe
C:WINDOWSeHomeehSched.exe
C:WINDOWSSystem32svchost.exe -k HTTPFilter
C:Program FilesCommon FilesLightScribeLSSrvc.exe
svchost.exe
C:Program FilesHewlett-PackardSharedhpqwmiex.exe
C:PROGRA~1AVGAVG8avgrsx.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:WINDOWSsystem32dllhost.exe
C:WINDOWSExplorer.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesHPQuickPlayQPService.exe
C:Program FilesHpHP Software UpdateHPWuSchd2.exe
C:Program FilesHPhpcoretechhpcmpmgr.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:Program FileshpqHP Wireless AssistantHP Wireless Assistant.exe
C:PROGRA~1AVGAVG8avgtray.exe
C:Program FilesiTunesiTunesHelper.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesIObitAdvanced SystemCare 3AWC.exe
C:Program FilesiPodbiniPodService.exe
C:WINDOWSsystem32notepad.exe
C:PROGRA~1AVGAVG8avgnsx.exe
C:Program FilesiTunesiTunes.exe
C:Program FilesMagic WorkstationMagicWorkstation.exe
C:Program FilesMagic Workstationmwsplay.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Documents and SettingsjustinDesktopdds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=pavilion&pf=laptop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=pavilion&pf=laptop
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filesadobeacrobat 7.0activexAcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:program filesavgavg8avgssie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:program filesjavajre1.5.0_06binssv.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe
uRun: [Advanced SystemCare 3] "c:program filesiobitadvanced systemcare 3AWC.exe" /startup
mRun: [ccApp] "c:program filescommon filessymantec sharedccApp.exe"
mRun: [SynTPEnh] c:program filessynapticssyntpSynTPEnh.exe
mRun: [QPService] "c:program fileshpquickplayQPService.exe"
mRun: [HP Software Update] c:program fileshphp software updateHPWuSchd2.exe
mRun: [ISUSPM Startup] "c:program filescommon filesinstallshieldupdateserviceisuspm.exe" -startup
mRun: [Cpqset] c:program fileshewlett-packarddefault settingscpqset.exe
mRun: [HP Component Manager] "c:program fileshphpcoretechhpcmpmgr.exe"
mRun: [avast!] c:progra~1alwils~1avast4ashDisp.exe
mRun: [igfxtray] c:windowssystem32igfxtray.exe
mRun: [AppleSyncNotifier] c:program filescommon filesapplemobile device supportbinAppleSyncNotifier.exe
mRun: [hpWirelessAssistant] c:program fileshpqhp wireless assistantHP Wireless Assistant.exe
mRun: [AVG8_TRAY] c:progra~1avgavg8avgtray.exe
mRun: [UserFaultCheck] %systemroot%system32dumprep 0 -u
mRun: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
mRun: [iTunesHelper] "c:program filesitunesiTunesHelper.exe"
uPolicies-system: EnableProfileQuota = 1 (0x1)
IE: E&xport to Microsoft Excel - c:progra~1micros~4office11EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:program filesjavajre1.5.0_06binssv.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:progra~1micros~4office11REFIEBAR.DLL
Trusted Zone: aim.comaimexpress
Trusted Zone: aim.comwww
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/3/9/8/398422c0-8d3e-40e1-a617-af65a72a0465/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:program fileshphpcoretechcomphpuiprot.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:program filesavgavg8avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:windowssystem32WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:docume~1justinapplic~1mozillafirefoxprofileshvsrddnl.default
FF - component: c:program filesavgavg8firefoxcomponentsavgssff.dll
FF - plugin: c:documents and settingsjustinapplication datamozillapluginsnpgoogletalk.dll
FF - plugin: c:documents and settingsjustinlocal settingsapplication datagoogleupdate1.2.145.5npGoogleOneClick8.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJava11.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJava12.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJava13.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJava14.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJava32.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPJPI150_06.dll
FF - plugin: c:program filesjavajre1.5.0_06binNPOJI610.dll
FF - plugin: c:program filesmozilla firefoxpluginsnp-mswmp.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpLegitCheckPlugin.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpnul32.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin2.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin3.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin4.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin5.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin6.dll
FF - plugin: c:program filesmozilla firefoxpluginsnpqtplugin7.dll

---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.chrome.favicons - fales
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.proxy.http -
user_pref(network.proxy.http_port,);
FF - user.js: network.proxy.no_proxies_on -
FF - user.js: network.proxy.type - 0
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("media.enforce_same_site_origin", false);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("media.cache_size", 51200);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("media.ogg.enabled", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("media.wave.enabled", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("media.autoplay.enabled", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("browser.urlbar.autocomplete.enabled", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("dom.storage.default_quota", 5120);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("network.http.prompt-temp-redirect", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("gestures.enable_single_finger_input", true);
c:program filesmozilla firefox 3.5 beta 4greprefsall.js - pref("network.tcp.sendbuffer", 131072);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("extensions.blocklist.level", 2);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("browser.urlbar.restrict.typed", "~");
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("browser.urlbar.default.behavior", 0);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("browser.ssl_override_behavior", 2);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("browser.privatebrowsing.autostart", false);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:program filesmozilla firefox 3.5 beta 4defaultspreffirefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");

============= SERVICES / DRIVERS ===============

R1 aswSP;avast! Self Protection;c:windowssystem32driversaswSP.sys [2008-7-30 114768]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:windowssystem32driversavgldx86.sys [2009-5-11 325896]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:windowssystem32driversavgmfx86.sys [2009-5-11 27784]
R1 AvgTdiX;AVG Free8 Network Redirector;c:windowssystem32driversavgtdix.sys [2009-5-11 108552]
R2 aswFsBlk;aswFsBlk;c:windowssystem32driversaswFsBlk.sys [2008-7-30 20560]
R2 avast! Antivirus;avast! Antivirus;c:program filesalwil softwareavast4ashServ.exe [2006-12-11 155160]
R2 avg8wd;AVG Free8 WatchDog;c:progra~1avgavg8avgwdsvc.exe [2009-5-11 298776]
R2 McrdSvc;Media Center Extender Service;c:windowsehomemcrdsvc.exe [2005-8-5 99328]
R2 Symantec Core LC;Symantec Core LC;c:program filescommon filessymantec sharedccpd-lcsymlcsvc.exe [2006-9-11 1174152]
R3 avast! Mail Scanner;avast! Mail Scanner;c:program filesalwil softwareavast4ashMaiSv.exe [2006-12-11 254040]
R3 avast! Web Scanner;avast! Web Scanner;c:program filesalwil softwareavast4ashWebSv.exe [2006-12-11 352920]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:program filescommon filessymantec sharedeengineEraserUtilRebootDrv.sys [2007-1-24 102712]
S3 5U870CAP_VID_1262&PID_25FD;HP Pavilion Webcam ;c:windowssystem32drivers5U870CAP.sys [2006-6-6 61952]
S3 iComp;HP Analog TV Tuner;c:windowssystem32driversp2usbwdm.sys [2006-3-17 1544704]
S4 ccEvtMgr;Symantec Event Manager;c:program filescommon filessymantec sharedCCEVTMGR.EXE [2005-9-17 192104]
S4 ccProxy;Symantec Network Proxy;c:program filescommon filessymantec sharedCCPROXY.EXE [2005-9-17 202344]
S4 ccSetMgr;Symantec Settings Manager;c:program filescommon filessymantec sharedCCSETMGR.EXE [2005-9-17 169576]

=============== Created Last 30 ================

2009-06-18 16:23 <DIR> --d----- c:program filesMozilla Firefox 3.5 Beta 4
2009-06-08 17:14 150,239 a------- c:windowssystem32dllcachehsf_amos.sys
2009-06-08 17:13 19,456 a------- c:windowssystem32dllcachehr1w.dll
2009-06-08 17:13 5,760 a------- c:windowssystem32dllcachehpt4qic.sys
2009-06-08 17:13 13,312 a------- c:windowssystem32dllcachehpsjmcro.dll
2009-06-08 17:13 324,608 a------- c:windowssystem32dllcachehpojwia.dll
2009-06-08 17:12 32,768 a------- c:windowssystem32dllcachehpgtmcro.dll
2009-06-08 17:12 68,608 a------- c:windowssystem32dllcachehpgt53tk.dll
2009-06-08 17:12 165,888 a------- c:windowssystem32dllcachehpgt53.dll
2009-06-08 17:12 31,232 a------- c:windowssystem32dllcachehpgt42tk.dll
2009-06-08 17:11 93,696 a------- c:windowssystem32dllcachehpgt42.dll
2009-06-08 17:11 126,976 a------- c:windowssystem32dllcachehpgt34tk.dll
2009-06-08 17:11 101,376 a------- c:windowssystem32dllcachehpgt34.dll
2009-06-08 17:11 48,128 a------- c:windowssystem32dllcachehpgt33tk.dll
2009-06-08 17:10 89,088 a------- c:windowssystem32dllcachehpgt33.dll
2009-06-08 17:10 123,392 a------- c:windowssystem32dllcachehpgt21tk.dll
2009-06-08 17:10 83,968 a------- c:windowssystem32dllcachehpgt21.dll
2009-06-08 17:10 119,296 a------- c:windowssystem32dllcachehpdigwia.dll
2009-06-08 17:10 39,936 a------- c:windowssystem32dllcachehostmib.dll
2009-06-08 17:09 2,688 a------- c:windowssystem32dllcachehidswvd.sys
2009-06-08 17:09 8,576 a------- c:windowssystem32dllcachehidgame.sys
2009-06-08 17:09 25,600 a------- c:windowssystem32dllcachehidbth.sys
2009-06-08 17:09 19,200 a------- c:windowssystem32dllcachehidbatt.sys
2009-06-08 17:08 907,456 a------- c:windowssystem32dllcachehcf_msft.sys
2009-06-08 17:08 36,864 a------- c:windowssystem32dllcachehanjadic.dll
2009-06-08 17:08 108,827 a------- c:windowssystem32dllcachehanja.lex
2009-06-08 17:08 32,256 a------- c:windowssystem32dllcachegzip.dll
2009-06-08 17:08 28,288 a------- c:windowssystem32dllcachegrserial.sys
2009-06-08 17:08 82,304 a------- c:windowssystem32dllcachegrclass.sys
2009-06-08 17:07 17,408 a------- c:windowssystem32dllcachegpr400.sys
2009-06-08 17:07 59,136 a------- c:windowssystem32dllcachegckernel.sys
2009-06-08 17:07 10,624 a------- c:windowssystem32dllcachegameenum.sys
2009-06-08 17:07 46,464 a------- c:windowssystem32dllcachegagp30kx.sys
2009-06-08 17:07 322,432 a------- c:windowssystem32dllcacheg400m.sys
2009-06-08 17:06 1,733,120 a------- c:windowssystem32dllcacheg400d.dll
2009-06-08 17:06 320,384 a------- c:windowssystem32dllcacheg200m.sys
2009-06-08 17:06 470,144 a------- c:windowssystem32dllcacheg200d.dll
2009-06-08 17:06 454,912 a------- c:windowssystem32dllcachefxusbase.sys
2009-06-08 17:06 400,384 a------- c:windowssystem32dllcachefxsxp32.dll
2009-06-08 17:06 192,512 a------- c:windowssystem32dllcachefxswzrd.dll
2009-06-08 17:06 154,112 a------- c:windowssystem32dllcachefxsui.dll
2009-06-08 17:06 397,312 a------- c:windowssystem32dllcachefxstiff.dll
2009-06-08 17:06 246,272 a------- c:windowssystem32dllcachefxst30.dll
2009-06-08 17:06 267,776 a------- c:windowssystem32dllcachefxssvc.exe
2009-06-08 17:04 455,296 a------- c:windowssystem32dllcachefusbbase.sys
2009-06-08 17:04 455,680 a------- c:windowssystem32dllcachefus2base.sys
2009-06-08 17:04 125,952 a------- c:windowssystem32dllcacheftpsv251.dll
2009-06-08 17:04 6,144 a------- c:windowssystem32dllcacheftpmib.dll
2009-06-08 17:04 7,680 a------- c:windowssystem32dllcacheftpctrs2.dll
2009-06-08 17:04 442,240 a------- c:windowssystem32dllcachefpnpbase.sys
2009-06-08 17:03 94,208 a------- c:windowssystem32dllcachefpencode.dll
2009-06-08 17:03 441,728 a------- c:windowssystem32dllcachefpcmbase.sys
2009-06-08 17:03 444,416 a------- c:windowssystem32dllcachefpcibase.sys
2009-06-08 17:03 20,541 a------- c:windowssystem32dllcachefpadmdll.dll
2009-06-08 17:03 24,632 a------- c:windowssystem32dllcachefpadmcgi.exe
2009-06-08 17:03 34,173 a------- c:windowssystem32dllcacheforehe.sys
2009-06-08 17:02 71,680 a------- c:windowssystem32dllcachefnfilter.dll
2009-06-08 17:02 14,848 a------- c:windowssystem32dllcacheflattemp.exe
2009-06-08 17:02 27,165 a------- c:windowssystem32dllcachefetnd5.sys
2009-06-08 17:01 22,090 a------- c:windowssystem32dllcachefem556n5.sys
2009-06-08 17:01 43,520 a------- c:windowssystem32dllcacheEXCH_fcachdll.dll
2009-06-08 17:01 24,618 a------- c:windowssystem32dllcachefa410nd5.sys
2009-06-08 17:01 16,074 a------- c:windowssystem32dllcachefa312nd5.sys
2009-06-08 17:01 7,168 a------- c:windowssystem32dllcachef3ahvoas.dll
2009-06-08 17:01 11,850 a------- c:windowssystem32dllcachef3ab18xj.sys
2009-06-08 17:00 12,362 a------- c:windowssystem32dllcachef3ab18xi.sys
2009-06-08 17:00 14,336 a------- c:windowssystem32dllcacheexstrace.dll
2009-06-08 17:00 7,040 a------- c:windowssystem32dllcacheexabyte2.sys
2009-06-08 17:00 16,998 a------- c:windowssystem32dllcacheex10.sys
2009-06-08 17:00 92,160 a------- c:windowssystem32dllcacheevntwin.exe
2009-06-08 17:00 24,064 a------- c:windowssystem32dllcacheevntcmd.exe
2009-06-08 17:00 101,888 a------- c:windowssystem32dllcacheevntagnt.dll
2009-06-08 16:59 25,856 a------- c:windowssystem32dllcacheet4000.sys
2009-06-08 16:59 45,056 a------- c:windowssystem32dllcacheesunid.dll
2009-06-08 16:59 45,568 a------- c:windowssystem32dllcacheesunib.dll
2009-06-08 16:59 45,568 a------- c:windowssystem32dllcacheesuni.dll
2009-06-08 16:59 57,856 a------- c:windowssystem32dllcacheesuimgd.dll
2009-06-08 16:59 34,816 a------- c:windowssystem32dllcacheesuimg.dll
2009-06-08 16:59 31,744 a------- c:windowssystem32dllcacheesucmd.dll
2009-06-08 16:59 43,008 a------- c:windowssystem32dllcacheesucm.dll
2009-06-08 16:59 137,088 a------- c:windowssystem32dllcacheessm2e.sys
2009-06-08 16:58 63,360 a------- c:windowssystem32dllcacheess.sys
2009-06-08 16:58 347,550 a------- c:windowssystem32dllcachees56tpi.sys
2009-06-08 16:58 594,238 a------- c:windowssystem32dllcachees56hpi.sys
2009-06-08 16:58 595,647 a------- c:windowssystem32dllcachees56cvmp.sys
2009-06-08 16:57 174,464 a------- c:windowssystem32dllcachees198x.sys
2009-06-08 16:57 72,192 a------- c:windowssystem32dllcachees1969.sys
2009-06-08 16:57 40,704 a------- c:windowssystem32dllcachees1371mp.sys
2009-06-08 16:57 37,120 a------- c:windowssystem32dllcachees1370mp.sys
2009-06-08 16:57 61,952 a------- c:windowssystem32dllcacheeqnloop.exe
2009-06-08 16:56 51,200 a------- c:windowssystem32dllcacheeqnlogr.exe
2009-06-08 16:56 53,248 a------- c:windowssystem32dllcacheeqndiag.exe
2009-06-08 16:56 629,952 a------- c:windowssystem32dllcacheeqn.sys
2009-06-08 16:56 114,944 a------- c:windowssystem32dllcacheepstw2k.sys
2009-06-08 16:56 18,503 a------- c:windowssystem32dllcacheepro4.sys
2009-06-08 16:56 144,896 a------- c:windowssystem32dllcacheepcfw2k.sys
2009-06-08 16:55 283,904 a------- c:windowssystem32dllcacheemu10k1m.sys
2009-06-08 16:55 19,996 a------- c:windowssystem32dllcacheem556n4.sys
2009-06-08 16:55 25,159 a------- c:windowssystem32dllcacheelnk3.sys
2009-06-08 16:55 7,296 a------- c:windowssystem32dllcacheelmsmc.sys
2009-06-08 16:55 171,520 a------- c:windowssystem32dllcacheel99xn51.sys
2009-06-08 16:54 70,174 a------- c:windowssystem32dllcacheel98xn5.sys
2009-06-08 16:54 455,199 a------- c:windowssystem32dllcacheel985n51.sys
2009-06-08 16:54 153,631 a------- c:windowssystem32dllcacheel90xnd5.sys
2009-06-08 16:54 66,591 a------- c:windowssystem32dllcacheel90xbc5.sys
2009-06-08 16:54 241,206 a------- c:windowssystem32dllcacheel656se5.sys
2009-06-08 16:54 77,386 a------- c:windowssystem32dllcacheel656nd5.sys
2009-06-08 16:54 634,134 a------- c:windowssystem32dllcacheel656ct5.sys
2009-06-08 16:53 69,194 a------- c:windowssystem32dllcacheel656cd5.sys
2009-06-08 16:53 26,141 a------- c:windowssystem32dllcacheel589nd5.sys
2009-06-08 16:53 69,692 a------- c:windowssystem32dllcacheel575nd5.sys
2009-06-08 16:53 24,653 a------- c:windowssystem32dllcacheel574nd4.sys
2009-06-08 16:53 55,999 a------- c:windowssystem32dllcacheel556nd5.sys
2009-06-08 16:53 44,103 a------- c:windowssystem32dllcacheel515.sys
2009-06-08 16:53 514,587 a------- c:windowssystem32dllcacheedb500.dll
2009-06-08 16:53 19,594 a------- c:windowssystem32dllcachee100isa4.sys
2009-06-08 16:53 50,719 a------- c:windowssystem32dllcachee1000nt5.sys
2009-06-08 16:52 334,208 a------- c:windowssystem32dllcacheds1wdm.sys
2009-06-08 16:51 28,062 a------- c:windowssystem32dllcachedp83820.sys
2009-06-08 16:51 23,808 a------- c:windowssystem32dllcachedot4usb.sys
2009-06-08 16:51 8,704 a------- c:windowssystem32dllcachedot4scan.sys
2009-06-08 16:51 12,928 a------- c:windowssystem32dllcachedot4prt.sys
2009-06-08 16:51 207,360 a------- c:windowssystem32dllcachedot4.sys
2009-06-08 16:50 29,696 a------- c:windowssystem32dllcachedm9pci5.sys
2009-06-08 16:50 8,320 a------- c:windowssystem32dllcachedlttape.sys
2009-06-08 16:50 26,698 a------- c:windowssystem32dllcachedlh5xnd5.sys
2009-06-08 16:50 952,007 a------- c:windowssystem32dllcachediwan.sys
2009-06-08 16:50 29,768 a------- c:windowssystem32dllcachedivasu.dll
2009-06-08 16:50 37,962 a------- c:windowssystem32dllcachedivaprop.dll
2009-06-08 16:49 6,216 a------- c:windowssystem32dllcachedivaci.dll
2009-06-08 16:49 236,060 a------- c:windowssystem32dllcacheditrace.exe
2009-06-08 16:49 38,985 a------- c:windowssystem32dllcachedisrvsu.dll
2009-06-08 16:49 31,305 a------- c:windowssystem32dllcachedisrvpp.dll
2009-06-08 16:49 6,729 a------- c:windowssystem32dllcachedisrvci.dll
2009-06-08 16:49 91,305 a------- c:windowssystem32dllcachedimaint.sys
2009-06-08 16:48 614,429 a------- c:windowssystem32dllcachedigiview.exe
2009-06-08 16:48 42,432 a------- c:windowssystem32dllcachedigirlpt.sys
2009-06-08 16:48 110,621 a------- c:windowssystem32dllcachedigirlpt.dll
2009-06-08 16:48 21,606 a------- c:windowssystem32dllcachedigiisdn.sys
2009-06-08 16:48 41,046 a------- c:windowssystem32dllcachedigiisdn.dll
2009-06-08 16:48 102,484 a------- c:windowssystem32dllcachedigiinf.dll
2009-06-08 16:48 159,828 a------- c:windowssystem32dllcachedigihlc.dll
2009-06-08 16:48 229,462 a------- c:windowssystem32dllcachedigifwrk.dll
2009-06-08 16:48 90,525 a------- c:windowssystem32dllcachedigifep5.sys
2009-06-08 16:47 103,044 a------- c:windowssystem32dllcachedigidxb.sys
2009-06-08 16:47 131,156 a------- c:windowssystem32dllcachedigidbp.dll
2009-06-08 16:47 37,735 a------- c:windowssystem32dllcachedigiasyn.sys
2009-06-08 16:47 65,622 a------- c:windowssystem32dllcachedigiasyn.dll
2009-06-08 16:47 419,357 a------- c:windowssystem32dllcachedgconfig.dll
2009-06-08 16:47 29,531 a------- c:windowssystem32dllcachedgapci.sys
2009-06-08 16:47 24,649 a------- c:windowssystem32dllcachedfe650d.sys
2009-06-08 16:47 24,648 a------- c:windowssystem32dllcachedfe650.sys
2009-06-08 16:47 24,064 a------- c:windowssystem32dllcachedevldr32.exe
2009-06-08 16:47 256,512 a------- c:windowssystem32dllcachedevcon32.dll
2009-06-08 16:46 20,928 a------- c:windowssystem32dllcachedefpa.sys
2009-06-08 16:46 7,424 a------- c:windowssystem32dllcacheddsmc.sys
2009-06-08 16:46 110,592 a------- c:windowssystem32dllcachedc260usd.dll
2009-06-08 16:46 86,016 a------- c:windowssystem32dllcachedc240usd.dll
2009-06-08 16:46 63,208 a------- c:windowssystem32dllcachedc21x4.sys
2009-06-08 16:46 80,896 a------- c:windowssystem32dllcachedc210usd.dll
2009-06-08 16:46 25,600 a------- c:windowssystem32dllcachedc210_32.dll
2009-06-08 16:46 78,848 a------- c:windowssystem32dllcachedayi.ime
2009-06-08 16:46 42,496 a------- c:windowssystem32dllcachedavcdata.exe
2009-06-08 16:46 117,760 a------- c:windowssystem32dllcached100ib5.sys
2009-06-08 16:44 60,970 a------- c:windowssystem32dllcachecpqtrnd5.sys
2009-06-08 16:43 49,182 a------- c:windowssystem32dllcachecem56n5.sys
2009-06-08 16:42 173,602 a------- c:windowssystem32dllcachec_10008.nls
2009-06-08 16:41 66,557 a------- c:windowssystem32dllcachebcm42u.sys
2009-06-08 16:40 52,224 a------- c:windowssystem32dllcacheatinraxx.sys
2009-06-08 16:39 84,480 a------- c:windowssystem32dllcacheac97via.sys
2009-06-08 16:38 76,800 a------- c:windowssystem32dllcachelogui.ocx
2009-05-21 11:35 45,056 a------- c:windowssystem32hpBat.cpl
2009-05-21 11:35 90,112 -------- c:windowssystem32hpqnt.dll

==================== Find3M ====================

2009-05-26 13:20 40,160 a------- c:windowssystem32driversmbamswissarmy.sys
2009-05-26 13:19 19,096 a------- c:windowssystem32driversmbam.sys
2009-05-11 10:46 11,952 a------- c:windowssystem32avgrsstx.dll
2009-05-11 10:45 108,552 a------- c:windowssystem32driversavgtdix.sys
2009-05-11 10:45 325,896 a------- c:windowssystem32driversavgldx86.sys
2009-03-26 15:23 1,900,544 a------- c:windowssystem32usbaaplrc.dll

============= FINISH: 8:17:49.81 ===============

#4 DocSatan

DocSatan

    Bleepin' Wanna-Be


  • Members
  • 2,156 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston, Ma.
  • Local time:05:04 PM

Posted 24 June 2009 - 02:40 PM

Hey jay clef,

Sorry for the delay here. I'm still researching your log. Will be posting as soon as possible. :thumbup2:

Doc.

#5 DocSatan

DocSatan

    Bleepin' Wanna-Be


  • Members
  • 2,156 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston, Ma.
  • Local time:05:04 PM

Posted 28 June 2009 - 12:24 PM

Hello jay clef

Sorry for the wait. Your DDS Log had a lot of files listed and it took me a long time to research them. :)

1. You Have 2 (possibly 4) AntiVirus Programs Installed and Running
  • It is not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms".
  • It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
    • False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
    • System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
  • You have to uninstall some of these so that you only have ONE Antivirus and ONE 3rd-Party Firewall installed and running on this machine. Usually this decision is based upon which ones you have paid for (keeping the paid-for versions).
  • However, you have some old versions of Norton on this machine (Norton Internet Security 2006 and Norton Internet Worm Protection) , and I'm not sure if you paid for them, or if they are even still supported by Norton. These products also have both an Anti-Virus and Firewall included in their set-up. So if you have both AV and Firewall installed with these, you now have a total of 4 Antivirus programs running. :thumbup2:
  • So you have some decisions to make:
    • If you haven't paid for any of these I would recommend keeping avast! antivirus and uninstalling the others:
    • AVG Anti-Virus Free
    • Norton Internet Security 2006
    • Norton Internet Worm Protection
  • If you have paid for any of these and ARE still able to update the definitions, then keep that one and uninstall all of the others.
2. You Have 2 3rd-Party Firewalls Installed and Running
  • It is not recommend that you have more than one anti virus product installed and running on your computer at a time. The reasons are the same as for 2 or more AntiVirus Programs above.
  • Your options here depend on what choices you made above. If you kept one of those Norton products above, it may also include a Firewall already. If you have chosen to keep avast! and uninstall the others, then please also download and install ONE of the following 3rd-party firewalls:
  • Comodo Firewall (remember to uncheck Install Comodo Antivirus)
  • Zonealarm
  • See Bleepingcomputer's excellent tutorial to help using and understanding a firewall here
[/list]3. Please Post a New HJT Log

4. Please post a new DDS Log

#6 Yourhighness

Yourhighness

    The BSG Malware Fighter


  • Malware Response Team
  • 7,943 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Hamburg
  • Local time:10:04 PM

Posted 12 July 2009 - 01:06 PM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.

"How did I get infected?" - "Safe-hex" - Member of UNITE -
Posted Image





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users