Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

advance system care said i have a problem


  • Please log in to reply
3 replies to this topic

#1 rich3023

rich3023

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 26 September 2009 - 01:21 PM

DDS (Ver_09-09-24.01) - NTFSx86
Run by rich work at 12:52:33.18 on Sat 09/26/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3062.2433 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AskBarDis\bar\bin\AskService.exe
C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdccoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\SPAMfighter\sfus.exe
svchost.exe
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Toshiba\Tvs\TvsTray.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\rich work\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.windowsxlive.net
uSearch Page = hxxp://www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = "c:\program files\outlook express\msimn.exe"
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
mWinlogon: UIHost=c:\windows\system32\logonuiX.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
uRun: [SmartRAM] "c:\program files\iobit\advanced systemcare 3\Sup_SmartRAM.exe" /m
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Tvs] c:\program files\toshiba\tvs\TvsTray.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [SPAMfighter Agent] "c:\program files\spamfighter\SFAgent.exe" update delay 60
IE: E&xport to Microsoft Excel
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683}
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: {097F10A7-487F-4457-AB1F-827C59479A72} - No File

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\richwo~1\applic~1\mozilla\firefox\profiles\ot4cgr9i.default\
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\documents and settings\rich work\application data\mozilla\firefox\profiles\ot4cgr9i.default\extensions\npdyyno@dyyno.com\plugins\npDyyno.dll
FF - plugin: c:\progra~1\mozill~1\plugins\np_gp.dll
FF - plugin: c:\program files\google\google updater\2.4.1698.5652\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
FF - plugin: c:\program files\opera\program\plugins\npdivx32.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----


FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.chrome.favicons - fales
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-9-18 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-9-18 27784]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-9-18 108552]
R2 ASKService;ASKService;c:\program files\askbardis\bar\bin\AskService.exe [2009-5-13 464264]
R2 ASKUpgrade;ASKUpgrade;c:\program files\askbardis\bar\bin\ASKUpgrade.exe [2009-5-13 234888]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-9-18 908056]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-9-18 297752]
R2 lxdc_device;lxdc_device;c:\windows\system32\lxdccoms.exe -service --> c:\windows\system32\lxdccoms.exe -service [?]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 SPAMfighter Update Service;SPAMfighter Update Service;c:\program files\spamfighter\sfus.exe [2009-8-27 189064]
R2 tdudf;TOSHIBA UDF File System Driver;c:\windows\system32\drivers\tdudf.sys [2006-6-28 98816]
S2 gupdate1ca2dafbba38324;Google Update Service (gupdate1ca2dafbba38324);c:\program files\google\update\GoogleUpdate.exe [2009-9-4 133104]
S2 lxdcCATSCustConnectService;lxdcCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdcserv.exe [2008-10-31 99248]
S3 cpuz128;cpuz128;\??\c:\docume~1\richwo~1\locals~1\temp\cpuz_x32.sys --> c:\docume~1\richwo~1\locals~1\temp\cpuz_x32.sys [?]
S3 SVRPEDRV;SVRPEDRV; [x]

=============== Created Last 30 ================

2009-09-21 00:43 <DIR> --d----- c:\program files\common files\Application
2009-09-21 00:43 <DIR> --d----- c:\program files\SPAMfighter
2009-09-21 00:41 <DIR> --d----- c:\docume~1\richwo~1\applic~1\SPAMfighter
2009-09-21 00:35 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Fighters
2009-09-21 00:35 <DIR> --d----- c:\program files\Fighters
2009-09-18 23:07 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-09-18 19:41 108,552 a------- c:\windows\system32\drivers\avgtdix.sys
2009-09-18 19:41 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-09-18 19:41 335,240 a------- c:\windows\system32\drivers\avgldx86.sys
2009-09-18 19:41 <DIR> --d----- c:\windows\system32\drivers\Avg
2009-09-18 19:41 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AVG Security Toolbar
2009-09-18 19:41 <DIR> --d----- c:\program files\AVG
2009-09-18 19:41 <DIR> --d----- c:\docume~1\alluse~1\applic~1\avg8
2009-09-18 19:30 <DIR> --d----- c:\docume~1\richwo~1\applic~1\AVG8
2009-09-18 11:54 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2009-09-18 11:53 21,504 a------- c:\windows\system32\drivers\hidserv.dll
2009-09-18 11:53 14,736 a------- c:\windows\system32\drivers\nuidfltr.sys
2009-09-18 11:52 31,048 a------- c:\windows\system32\drivers\point32.sys
2009-09-18 11:52 <DIR> --d----- c:\program files\Microsoft IntelliPoint
2009-09-11 11:45 <DIR> --d----- c:\program files\MMOUI Minion
2009-09-10 14:34 <DIR> --d----- c:\docume~1\alluse~1\applic~1\McAfee Security Scan
2009-09-10 12:29 <DIR> --d----- c:\program files\Hard Drive Inspector
2009-09-09 01:40 153,088 -c------ c:\windows\system32\dllcache\triedit.dll
2009-09-05 08:16 128,512 -c------ c:\windows\system32\dllcache\dhtmled.ocx
2009-09-05 08:15 1,315,328 -c------ c:\windows\system32\dllcache\msoe.dll
2009-09-05 07:52 2,560 a------- c:\windows\_MSRSTRT.EXE
2009-09-02 13:11 20 a------- c:\windows\popcinfot.dat
2009-09-02 13:11 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PopCap Games
2009-09-02 01:03 458,432 a------- c:\windows\system32\HDDSvc.exe
2009-09-01 10:22 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Stardock

==================== Find3M ====================

2009-08-31 02:05 53,248 a------- c:\windows\system32\SMSUnins.dll
2009-08-31 02:04 413,696 a------- c:\windows\system32\lxdcinpa.dll
2009-08-31 02:03 77,824 a------- c:\windows\system32\cliconfg.dll
2009-08-31 02:03 49,152 a------- c:\windows\system32\ChCfg.exe
2009-08-31 02:03 20,480 a------- c:\windows\system32\cliconfg.exe
2009-08-31 02:03 3,518,464 a------- c:\windows\system32\cdintf300.dll
2009-08-31 02:03 32,768 a------- c:\windows\system32\ATHPRXY.DLL
2009-08-31 02:03 1,843,200 a------- c:\windows\system32\acXMLParser.dll
2009-08-31 02:03 86,016 a------- c:\windows\SoundMan.exe
2009-08-31 02:03 2,879,488 a------- c:\windows\SkyTel.exe
2009-08-31 02:03 249,856 a------- c:\windows\Setup1.exe
2009-08-31 01:58 364,544 a------- c:\windows\RtlUpd.exe
2009-08-31 01:58 487,424 a------- c:\windows\RtlExUpd.dll
2009-08-31 01:56 2,158,592 a------- c:\windows\MicCal.exe
2009-08-31 01:46 356,352 a------- c:\windows\EMCRI.dll
2009-08-31 01:45 45,056 a------- c:\windows\cfdemo.scr
2009-08-31 01:44 69,632 a------- c:\windows\Alcmtr.exe
2009-08-25 13:47 6,852,096 a------- c:\windows\system32\logonuiX.exe
2009-08-22 08:39 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2009-08-21 16:41 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2009-08-21 16:41 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-08-05 04:01 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-07-17 14:01 58,880 a------- c:\windows\system32\atl.dll
2009-07-13 23:43 286,208 a------- c:\windows\system32\wmpdxm.dll
2009-06-29 11:12 827,392 a------- c:\windows\system32\wininet.dll
2009-06-29 11:12 78,336 a------- c:\windows\system32\ieencode.dll
2009-06-29 11:12 17,408 a------- c:\windows\system32\corpol.dll
2008-10-30 18:22 37,344 a------- c:\docume~1\richwo~1\applic~1\GDIPFONTCACHEV1.DAT

============= FINISH: 12:53:10.62 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 dahli

dahli

  • Members
  • 278 posts
  • OFFLINE
  •  
  • Local time:05:18 AM

Posted 13 October 2009 - 06:22 AM

Hello rich3023 and welcome to BleepingComputer.

What problem was reported by Advanced System Care?
Steven

#3 rich3023

rich3023
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 13 October 2009 - 06:30 AM

asc said i had security leaks

#4 dahli

dahli

  • Members
  • 278 posts
  • OFFLINE
  •  
  • Local time:05:18 AM

Posted 13 October 2009 - 08:32 AM

ok - that can mean a variety of things - it does not mean you are infected at all.

Go here and scan your system for software that needs to be updated. Update the software it shows as being out-of-date.

Click Start>Run then type cleanmgr - allow Disk Cleanup to remove all temporary files and folders.

Run a new scan with ASC.
Steven




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users