Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet Explorer cannot access websites.


  • This topic is locked This topic is locked
3 replies to this topic

#1 John in Oman

John in Oman

  • Members
  • 371 posts
  • OFFLINE
  •  
  • Local time:07:03 PM

Posted 09 January 2012 - 07:30 PM

Here are the reports from the DDS scan. Thank you so very much for your assistance, much apprciated. Regards. John

DS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.6000.16982
Run by John at 0:02:24 on 2012-01-10
.
============== Running Processes ===============
.
C:\Users\John\AppData\Local\Temp\nsi824C.tmp\ProcessList.txt
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://betfair.com/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=81&bd=Presario&pf=laptop
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=81&bd=Presario&pf=laptop
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No File
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
BHO: AOL Toolbar Launcher: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol\aol toolbar 5.0\aoltb.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol\aol toolbar 5.0\aoltb.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [HPAdvisor] c:\program files\hewlett-packard\hp advisor\HPAdvisor.exe autoRun
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [QPService] "c:\program files\hp\quickplay\QPService.exe"
mRun: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [UCam_Menu] "c:\program files\cyberlink\youcam\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\youcam" update "software\cyberlink\youcam\1.0"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_02\bin\jusched.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [<NO NAME>]
IE: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-gb\local\search.html
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
IE: {3369AF0D-62E9-4bda-8103-B4C75499B578} - {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\program files\aol\aol toolbar 5.0\aoltb.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
TCP: DhcpNameServer = 124.106.4.2 124.106.6.2
TCP: Interfaces\{437A5BB6-5749-4DD3-BE93-B060F9C897C1} : DhcpNameServer = 124.106.4.2 124.106.6.2
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\john\appdata\roaming\mozilla\firefox\profiles\976go2ad.default\
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
.
============= SERVICES / DRIVERS ===============
.
R? gupdate;Google Update Service (gupdate)
R? gupdatem;Google Update Service (gupdatem)
S? aswFsBlk;aswFsBlk
S? aswMonFlt;aswMonFlt
S? aswSnx;aswSnx
S? aswSP;aswSP
S? avast! Antivirus;avast! Antivirus
.
=============== Created Last 30 ================
.
2012-01-09 23:01:06 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{5e4d14a4-b345-482d-91d7-babc7f3dcada}\offreg.dll
2012-01-09 04:53:19 696832 ----a-w- c:\windows\system32\localspl.dll
2012-01-09 04:52:27 21560 ----a-w- c:\windows\system32\drivers\atapi.sys
2012-01-09 04:52:26 45112 ----a-w- c:\windows\system32\drivers\pciidex.sys
2012-01-09 04:52:26 211000 ----a-w- c:\windows\system32\drivers\volsnap.sys
2012-01-09 04:52:26 17464 ----a-w- c:\windows\system32\drivers\intelide.sys
2012-01-09 04:52:26 154624 ----a-w- c:\windows\system32\drivers\nwifi.sys
2012-01-09 04:52:26 109624 ----a-w- c:\windows\system32\drivers\ataport.sys
2012-01-09 04:52:08 2923520 ----a-w- c:\windows\explorer.exe
2012-01-09 04:51:46 494592 ----a-w- c:\windows\system32\kerberos.dll
2012-01-09 04:51:46 272384 ----a-w- c:\windows\system32\schannel.dll
2012-01-09 04:51:22 24064 ----a-w- c:\windows\system32\netcfg.exe
2012-01-09 04:47:54 1585664 ----a-w- c:\windows\system32\setupapi.dll
2012-01-09 04:46:37 549888 ----a-w- c:\windows\system32\rpcss.dll
2012-01-09 04:46:36 654336 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2012-01-09 04:46:36 24576 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2012-01-09 04:46:35 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll
2012-01-09 04:46:35 501760 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll
2012-01-09 04:46:35 247296 ----a-w- c:\windows\system32\wbem\WmiPrvSE.exe
2012-01-09 04:46:35 130560 ----a-w- c:\windows\system32\wbem\WmiDcPrv.dll
2012-01-09 04:46:34 97280 ----a-w- c:\windows\system32\iasrecst.dll
2012-01-09 04:46:34 53248 ----a-w- c:\windows\system32\iasads.dll
2012-01-09 04:46:34 37888 ----a-w- c:\windows\system32\iasdatastore.dll
2012-01-09 04:46:34 158720 ----a-w- c:\windows\system32\sdohlp.dll
2012-01-09 04:46:10 62464 ----a-w- c:\windows\system32\l3codeca.acm
2012-01-09 04:46:10 220672 ----a-w- c:\windows\system32\l3codecp.acm
2012-01-09 04:45:33 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2012-01-09 04:45:33 179712 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-01-09 04:45:33 15360 ----a-w- c:\windows\system32\drivers\TUNMP.SYS
2012-01-09 04:45:32 815104 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-01-09 04:45:32 22016 ----a-w- c:\windows\system32\netiougc.exe
2012-01-09 04:45:32 167424 ----a-w- c:\windows\system32\tcpipcfg.dll
2012-01-09 04:45:13 454656 ----a-w- c:\program files\common files\system\msadc\msadce.dll
2012-01-09 04:44:59 9728 ----a-w- c:\windows\system32\LAPRXY.DLL
2012-01-09 04:44:59 223232 ----a-w- c:\windows\system32\WMASF.DLL
2012-01-09 04:44:59 2048 ----a-w- c:\windows\system32\asferror.dll
2012-01-09 04:44:46 25600 ----a-w- c:\windows\system32\amxread.dll
2012-01-09 04:44:46 14848 ----a-w- c:\windows\system32\apilogen.dll
2012-01-09 04:44:29 712192 ----a-w- c:\windows\system32\WindowsCodecs.dll
2012-01-09 04:44:29 425472 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2012-01-09 04:44:28 347136 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2012-01-09 04:43:49 441856 ----a-w- c:\windows\system32\win32spl.dll
2012-01-09 04:43:49 37376 ----a-w- c:\windows\system32\printcom.dll
2012-01-09 04:43:36 2031104 ----a-w- c:\windows\system32\win32k.sys
2012-01-09 04:43:07 43520 ----a-w- c:\windows\system32\msdxm.tlb
2012-01-09 04:43:07 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2012-01-09 04:43:07 18432 ----a-w- c:\windows\system32\amcompat.tlb
2012-01-09 04:42:38 435712 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2012-01-09 04:42:38 312320 ----a-w- c:\windows\system32\msdrm.dll
2012-01-09 04:42:38 154624 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2012-01-09 04:42:38 154112 ----a-w- c:\windows\system32\secproc_ssp.dll
2012-01-09 04:42:37 523776 ----a-w- c:\windows\system32\RMActivate_isv.exe
2012-01-09 04:42:37 515584 ----a-w- c:\windows\system32\RMActivate.exe
2012-01-09 04:42:37 473088 ----a-w- c:\windows\system32\secproc_isv.dll
2012-01-09 04:42:37 472576 ----a-w- c:\windows\system32\secproc.dll
2012-01-09 04:42:37 431104 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2012-01-09 04:42:23 66048 ----a-w- c:\program files\windows sidebar\sbdrop.dll
2012-01-09 04:42:22 1232896 ----a-w- c:\program files\windows sidebar\sidebar.exe
2012-01-09 04:42:22 11776 ----a-w- c:\windows\system32\sbunattend.exe
2012-01-09 04:41:58 83968 ----a-w- c:\windows\system32\dnsrslvr.dll
2012-01-09 04:41:58 24576 ----a-w- c:\windows\system32\dnscacheugc.exe
2012-01-09 04:38:51 622080 ----a-w- c:\windows\system32\icardagt.exe
2012-01-09 04:38:51 11264 ----a-w- c:\windows\system32\icardres.dll
2012-01-09 04:38:50 97800 ----a-w- c:\windows\system32\infocardapi.dll
2012-01-09 04:38:50 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
2012-01-09 04:38:46 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2012-01-09 04:38:42 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2012-01-09 04:38:42 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2012-01-09 04:38:42 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2012-01-09 04:30:48 -------- d-----w- c:\users\john\appdata\roaming\HpUpdate
2012-01-09 04:30:41 -------- d-----w- c:\windows\Hewlett-Packard
2012-01-08 23:48:32 -------- d-----w- c:\users\john\appdata\roaming\Malwarebytes
2012-01-08 23:48:24 -------- d-----w- c:\programdata\Malwarebytes
2012-01-08 23:48:23 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-01-08 23:48:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-01-08 23:17:24 -------- d-----w- c:\program files\CCleaner
2012-01-08 07:56:48 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2012-01-08 07:55:21 -------- d-----w- c:\users\john\appdata\local\Microsoft Help
2012-01-08 07:45:45 -------- d-----w- c:\users\john\appdata\roaming\Auslogics
2012-01-08 07:45:39 -------- d-----w- c:\program files\Auslogics
2012-01-08 07:04:52 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-01-08 07:04:51 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-01-08 07:04:00 41184 ----a-w- c:\windows\avastSS.scr
2012-01-08 07:03:12 -------- d-----w- c:\programdata\AVAST Software
2012-01-08 07:03:12 -------- d-----w- c:\program files\AVAST Software
2012-01-08 06:46:53 -------- d-----w- c:\users\john\appdata\local\Google
2012-01-08 06:46:26 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-08 06:41:57 -------- d-----w- c:\users\john\appdata\local\AOL
2012-01-08 06:05:23 72704 ----a-w- c:\windows\system32\fontsub.dll
2012-01-08 06:05:23 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-01-08 06:05:23 289792 ----a-w- c:\windows\system32\atmfd.dll
2012-01-08 06:05:23 24064 ----a-w- c:\windows\system32\lpk.dll
2012-01-08 06:05:23 156672 ----a-w- c:\windows\system32\t2embed.dll
2012-01-08 06:05:23 10240 ----a-w- c:\windows\system32\dciman32.dll
2012-01-08 06:01:42 61440 ----a-w- c:\windows\system32\winipsec.dll
2012-01-08 06:01:42 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll
2012-01-08 06:01:41 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2012-01-08 06:01:41 272896 ----a-w- c:\windows\system32\polstore.dll
2012-01-08 06:00:55 84992 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-01-08 06:00:55 306688 ----a-w- c:\windows\system32\drivers\srv.sys
2012-01-08 06:00:09 95232 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2012-01-08 06:00:09 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2012-01-08 06:00:08 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2012-01-08 05:59:11 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2012-01-08 05:59:11 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2012-01-08 05:59:11 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2012-01-08 05:59:11 19968 ----a-w- c:\windows\system32\ARP.EXE
2012-01-08 05:59:11 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2012-01-08 05:59:11 15360 ----a-w- c:\windows\system32\netevent.dll
2012-01-08 05:59:11 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2012-01-08 05:59:11 103936 ----a-w- c:\windows\system32\netiohlp.dll
2012-01-08 05:59:11 10240 ----a-w- c:\windows\system32\finger.exe
2012-01-08 05:59:09 213592 ----a-w- c:\windows\system32\drivers\netio.sys
2012-01-08 05:58:01 704000 ----a-w- c:\windows\system32\PhotoScreensaver.scr
2012-01-08 05:58:01 356352 ----a-w- c:\windows\system32\wbem\wbemcomn.dll
2012-01-08 05:57:59 24064 ----a-w- c:\windows\system32\wtsapi32.dll
2012-01-08 05:57:58 258232 ----a-w- c:\windows\system32\drivers\acpi.sys
2012-01-08 05:57:58 20920 ----a-w- c:\windows\system32\drivers\compbatt.sys
2012-01-08 05:57:58 14208 ----a-w- c:\windows\system32\drivers\CmBatt.sys
2012-01-08 05:57:58 11264 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2012-01-08 05:57:57 28344 ----a-w- c:\windows\system32\drivers\battc.sys
2012-01-08 05:57:56 542720 ----a-w- c:\windows\system32\sysmain.dll
2012-01-08 05:57:08 194560 ----a-w- c:\windows\system32\WebClnt.dll
2012-01-08 05:57:08 110080 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2012-01-08 05:56:27 123904 ----a-w- c:\windows\system32\L2SecHC.dll
2012-01-08 05:56:25 47104 ----a-w- c:\windows\system32\wlanapi.dll
2012-01-08 05:56:24 67584 ----a-w- c:\windows\system32\wlanhlp.dll
2012-01-08 05:56:24 502784 ----a-w- c:\windows\system32\wlansvc.dll
2012-01-08 05:56:24 299520 ----a-w- c:\windows\system32\wlansec.dll
2012-01-08 05:56:24 289280 ----a-w- c:\windows\system32\wlanmsm.dll
2012-01-08 05:55:33 2048 ----a-w- c:\windows\system32\msxml3r.dll
2012-01-08 05:55:33 1260032 ----a-w- c:\windows\system32\msxml3.dll
2012-01-08 05:55:32 2048 ----a-w- c:\windows\system32\msxml6r.dll
2012-01-08 05:55:32 1406464 ----a-w- c:\windows\system32\msxml6.dll
2012-01-08 05:54:39 7680 ----a-w- c:\windows\system32\lsass.exe
2012-01-08 05:54:39 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-08 05:54:39 408136 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-08 05:54:39 216576 ----a-w- c:\windows\system32\msv1_0.dll
2012-01-08 05:54:39 175104 ----a-w- c:\windows\system32\wdigest.dll
2012-01-08 05:54:39 1233920 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-08 05:53:51 58368 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-01-08 05:53:51 211968 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-01-08 05:53:51 102400 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-01-08 05:53:07 98816 ----a-w- c:\windows\system32\mfps.dll
2012-01-08 05:53:07 52736 ----a-w- c:\windows\system32\rrinstaller.exe
2012-01-08 05:53:07 2855424 ----a-w- c:\windows\system32\mf.dll
2012-01-08 05:53:07 24576 ----a-w- c:\windows\system32\mfpmp.exe
2012-01-08 05:53:07 2048 ----a-w- c:\windows\system32\mferror.dll
2012-01-08 05:52:15 3502480 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-01-08 05:52:15 3468168 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-01-08 05:51:29 376832 ----a-w- c:\windows\system32\winhttp.dll
2012-01-08 05:50:48 434176 ----a-w- c:\windows\system32\vbscript.dll
2012-01-08 05:50:06 71680 ----a-w- c:\windows\system32\atl.dll
2012-01-08 05:49:25 297472 ----a-w- c:\windows\system32\gdi32.dll
2012-01-08 05:48:45 1060920 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-01-08 05:48:44 41984 ----a-w- c:\windows\system32\drivers\monitor.sys
2012-01-08 05:47:06 500736 ----a-w- c:\windows\system32\msdtcprx.dll
2012-01-08 05:47:06 30208 ----a-w- c:\windows\system32\xolehlp.dll
2012-01-08 05:46:25 156160 ----a-w- c:\windows\system32\wkssvc.dll
2012-01-08 05:45:44 116736 ----a-w- c:\windows\system32\aaclient.dll
2012-01-08 05:45:43 36352 ----a-w- c:\windows\system32\tsgqec.dll
2012-01-08 05:45:43 1871872 ----a-w- c:\windows\system32\mstscax.dll
2012-01-08 05:44:58 303616 ----a-w- c:\windows\system32\wmpeffects.dll
2012-01-08 05:43:35 713728 ----a-w- c:\windows\system32\timedate.cpl
2012-01-08 05:42:49 356864 ----a-w- c:\windows\system32\MediaMetadataHandler.dll
2012-01-08 05:41:31 150016 ----a-w- c:\program files\movie maker\MOVIEMK.exe
2012-01-08 05:41:30 23040 ----a-w- c:\program files\movie maker\WMM2EXT.dll
2012-01-08 05:41:30 195072 ----a-w- c:\program files\movie maker\WMM2AE.dll
2012-01-08 05:41:30 10922496 ----a-w- c:\program files\movie maker\MOVIEMK.dll
2012-01-08 05:39:53 1244672 ----a-w- c:\windows\system32\mcmde.dll
2012-01-08 05:39:52 80896 ----a-w- c:\windows\system32\MSNP.ax
2012-01-08 05:39:52 68608 ----a-w- c:\windows\system32\Mpeg2Data.ax
2012-01-08 05:39:52 57856 ----a-w- c:\windows\system32\MSDvbNP.ax
2012-01-08 05:39:52 428032 ----a-w- c:\windows\system32\EncDec.dll
2012-01-08 05:39:52 292352 ----a-w- c:\windows\system32\psisdecd.dll
2012-01-08 05:39:52 217088 ----a-w- c:\windows\system32\psisrndr.ax
2012-01-08 05:39:52 177152 ----a-w- c:\windows\system32\mpg2splt.ax
2012-01-08 05:37:30 2048 ----a-w- c:\windows\system32\tzres.dll
2012-01-08 05:29:19 14848 ----a-w- c:\windows\system32\wshrm.dll
2012-01-08 05:29:19 113664 ----a-w- c:\windows\system32\drivers\rmcast.sys
2012-01-08 05:18:26 96760 ----a-w- c:\windows\system32\dfshim.dll
2012-01-08 05:18:26 41984 ----a-w- c:\windows\system32\netfxperf.dll
2012-01-08 05:18:24 282112 ----a-w- c:\windows\system32\mscoree.dll
2012-01-08 05:18:23 83968 ----a-w- c:\windows\system32\mscories.dll
2012-01-08 05:18:23 158720 ----a-w- c:\windows\system32\mscorier.dll
2012-01-08 05:11:57 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2012-01-08 05:11:53 4247552 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2012-01-08 05:11:53 1686528 ----a-w- c:\windows\system32\gameux.dll
2012-01-08 05:11:19 94720 ----a-w- c:\windows\system32\logagent.exe
2012-01-08 05:11:18 996352 ----a-w- c:\windows\system32\WMNetMgr.dll
2012-01-08 05:10:25 84480 ----a-w- c:\windows\system32\INETRES.dll
2012-01-08 05:10:25 737792 ----a-w- c:\windows\system32\inetcomm.dll
2012-01-08 05:10:06 60928 ----a-w- c:\windows\system32\msasn1.dll
2012-01-08 05:09:51 1645568 ----a-w- c:\windows\system32\connect.dll
2012-01-08 05:09:36 788992 ----a-w- c:\windows\system32\rpcrt4.dll
2012-01-08 05:09:00 396800 ----a-w- c:\windows\system32\drivers\http.sys
2012-01-08 05:09:00 31232 ----a-w- c:\windows\system32\httpapi.dll
2012-01-08 05:09:00 24064 ----a-w- c:\windows\system32\nshhttp.dll
2012-01-08 05:07:32 2565432 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2012-01-08 05:06:37 6823496 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{5e4d14a4-b345-482d-91d7-babc7f3dcada}\mpengine.dll
2012-01-08 05:06:36 222080 ------w- c:\windows\system32\MpSigStub.exe
2012-01-08 05:06:13 130048 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-01-08 05:05:43 -------- d-----w- c:\program files\MSXML 4.0
2012-01-08 05:05:28 274432 ----a-w- c:\windows\system32\raschap.dll
2012-01-08 05:05:28 232960 ----a-w- c:\windows\system32\rastls.dll
2012-01-08 05:05:10 321536 ----a-w- c:\windows\system32\WSDApi.dll
2012-01-08 05:04:52 99840 ----a-w- c:\windows\system32\poqexec.exe
2012-01-08 05:03:26 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2012-01-08 05:03:26 22528 ----a-w- c:\windows\system32\msyuv.dll
2012-01-08 05:03:26 11776 ----a-w- c:\windows\system32\tsbyuv.dll
2012-01-08 05:03:25 1327616 ----a-w- c:\windows\system32\quartz.dll
2012-01-08 05:03:24 88576 ----a-w- c:\windows\system32\avifil32.dll
2012-01-08 05:03:24 82944 ----a-w- c:\windows\system32\mciavi32.dll
2012-01-08 05:03:24 65024 ----a-w- c:\windows\system32\avicap32.dll
2012-01-08 05:03:24 31232 ----a-w- c:\windows\system32\msvidc32.dll
2012-01-08 05:03:24 13312 ----a-w- c:\windows\system32\msrle32.dll
2012-01-08 05:03:24 123904 ----a-w- c:\windows\system32\msvfw32.dll
2012-01-08 05:02:43 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2012-01-08 05:02:15 8147968 ----a-w- c:\windows\system32\wmploc.DLL
2012-01-08 05:02:13 7680 ----a-w- c:\windows\system32\spwmp.dll
2012-01-08 05:02:13 168960 ----a-w- c:\program files\windows media player\wmplayer.exe
2012-01-08 05:02:12 4096 ----a-w- c:\windows\system32\msdxm.ocx
2012-01-08 05:02:12 4096 ----a-w- c:\windows\system32\dxmasf.dll
2012-01-08 05:02:12 107520 ----a-w- c:\program files\windows media player\wmpshare.exe
2012-01-08 05:02:12 107520 ----a-w- c:\program files\windows media player\wmpconfig.exe
2012-01-08 05:02:08 1418240 ----a-w- c:\program files\windows media player\setup_wm.exe
2012-01-08 05:02:07 311296 ----a-w- c:\windows\system32\unregmp2.exe
2012-01-08 03:55:15 171520 ----a-w- c:\windows\system32\wintrust.dll
2012-01-08 03:55:09 -------- d-----w- c:\users\john\appdata\roaming\Symantec
2012-01-08 03:55:02 97792 ----a-w- c:\windows\system32\cabview.dll
2012-01-08 03:54:48 -------- d-----w- c:\users\john\appdata\local\QuickPlay
2012-01-08 03:50:14 -------- d-----w- c:\users\john\appdata\local\VirtualStore
2012-01-08 03:47:13 -------- d-----w- c:\users\john\appdata\local\Downloaded Installations
2012-01-08 03:40:11 62744 ----a-w- c:\windows\system32\xinput1_2.dll
2012-01-08 03:40:11 236824 ----a-w- c:\windows\system32\xactengine2_3.dll
2012-01-08 03:39:54 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2012-01-08 03:31:37 2421760 ----a-w- c:\windows\system32\wucltux.dll
2012-01-08 03:31:27 87552 ----a-w- c:\windows\system32\wudriver.dll
2012-01-08 03:31:21 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-01-08 03:31:21 171608 ----a-w- c:\windows\system32\wuwebv.dll
2012-01-08 03:30:32 -------- d-sh--we C:\Documents and Settings
.
==================== Find3M ====================
.
2012-01-09 04:47:34 5632 ----a-w- c:\windows\system32\drivers\en-us\sermouse.sys.mui
2012-01-09 04:44:46 40960 ----a-w- c:\windows\apppatch\apihex86.dll
2012-01-08 06:03:54 72704 ----a-w- c:\windows\system32\admparse.dll
2012-01-08 06:03:52 832512 ----a-w- c:\windows\system32\wininet.dll
2012-01-08 06:03:52 52736 ----a-w- c:\windows\apppatch\iebrshim.dll
2012-01-08 06:03:44 389120 ----a-w- c:\windows\system32\html.iec
2012-01-08 06:03:43 78336 ----a-w- c:\windows\system32\ieencode.dll
2012-01-08 06:03:43 48128 ----a-w- c:\windows\system32\mshtmler.dll
2012-01-08 06:03:41 1383424 ----a-w- c:\windows\system32\mshtml.tlb
2012-01-08 06:03:37 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2012-01-08 06:03:35 26624 ----a-w- c:\windows\system32\ieUnatt.exe
2012-01-08 06:03:33 56320 ----a-w- c:\windows\system32\iesetup.dll
2012-01-08 05:11:57 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2012-01-08 05:11:56 2143744 ----a-w- c:\windows\apppatch\AcGenral.dll
2012-01-08 05:11:55 537600 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-01-08 05:11:55 449024 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2012-01-08 05:11:55 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll

Edited by John in Oman, 09 January 2012 - 07:31 PM.


BC AdBot (Login to Remove)

 


#2 John in Oman

John in Oman
  • Topic Starter

  • Members
  • 371 posts
  • OFFLINE
  •  
  • Local time:07:03 PM

Posted 09 January 2012 - 07:46 PM

I would like to add to the above post please.

This has been an ongoing problem for 2/3 weeks. With the kind help of boopme we have tried to solve the problem with little success. My server sent a technician who suggested it might be problem with Microsoft. I had a reformat done, as you will see, a couple of days ago to no avail. Changing the browser does not make any difference.

The problem can suddenly go away leaving the computer working like new, only to reappear at any time. It can stop me moving from one section of a website to another and can affect logging into sites as well.

I hope the information provided is sufficient to ba able to resolve this extremely tiresome and inconvenient promlem.

Thanking you once again.

John

#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:08:03 PM

Posted 15 January 2012 - 10:34 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Delete the folder in bold.

C:\Users\John\AppData\Local\Temp\nsi824C.tmp\

If the file is used by an other program and you are unable to delete in normal mode, boot to Safe mode and delete it.

==

Run the DDS tool again and make sure you copy and post the complete content. Do not modify it.

#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:08:03 PM

Posted 21 January 2012 - 10:02 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users