Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...HELP!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...HELP!

Unread postby Daylamay » March 14th, 2011, 7:49 pm

[b][/b]
I had installed free AVG 2011 anti virus on my HP TouchSmart Computer specs as follows:
Windows Vista Home Premium -Service Pack 2
Model IQ504, 4G, 64-bit OS
Intel Core2 Duo CPU T5750 @ 2.0 GHz


As soon as I installed the AVG I had immediate problems. Couldn't double click on many things to open, my wireless access (my only internet access right now) would not work most of the time, my mouse would move over items without me touching it, and my taskbar processor items doubled with the *32 items which I now read is ok??? :? I also starting getting AVG alerts that these two particular dtownvmvsika.exe and teatimer166.tmp files were trying to get access so I permanently denied them both. When I started going through my registry, doing scans for viruses, I actually found the viruses with these same names that I had put a permanent denial on. I don't know how AVG let them go through anyway but 2 removed auto and 1 I had to remove manually out of the initial 8 but the remainder of them said the viruses deleted some files and others files were made and no access could be granted. I finally got some access to the internet and downloaded Spybot (which did not work right at the time), botnet, Trend Micro BrowerGuard 3.0 Beta, and Hi JackThis. I found 2 worms and backdoor trojans and they were deleted. After some research I came across one that told me to look in my registry for MountPoints2 and see if there was anything in that file. There was and I deleted the entire entry and closed and rebooted. It was later I noticed and it keeps having to be deleted but I can't figure out how this is coming back. I think that it is from a USB connection which is my IPOD Touch and every time I charge it the MountPoints2 comes back. I'm not entirely sure. At that time I found there is an "auto.bin" file and a Samsung file in my Windows Temp folder and thought that might be the problem but I read that it is a flash firmware file and not a virus, but I don't remember putting that there. I finally did a system restore to get rid of everything and then installed Norton 360. I have gotten a few backdoor trojans and worms that were removed. One confusing warning was a "HIGH" level threat that was just blocked that came from a signature that is a known threat that matched the signature from my own computer. (it made it look like my own computer was attacking itself) which makes me think there's a remote computer accessing my network. I still have problems with my wireless access and also noticed yesterday that when I ran my cursor over the network/wireless connection in the bottom right taskbar that it shows it's connected to two access points at the same time and is doing that right now. :?: I have never seen that before.

As of now, there are a LOT of blocked intrusions which I have never experienced before on any of my computers and I really believe there is a keylogger on my system I can't find. I also went back to reinstall Spybot and Norton now says that there are 2 known threats on that download and blocked the page. I have seen posts of people saying now that AVG had the same issues. I am wondering if this is the start of the problems.

I'm posting the results from the 2 DDS scans you say to run and I'm hoping this helps. If needed, I also have results of the scan I did with HiJackThis if you would like me to send that to you next. Thanks and I hope this was not too long.

(Attach)
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 6/11/2008 9:36:44 AM
System Uptime: 3/13/2011 11:05:09 PM (19 hours ago)
.
Motherboard: PEGATRON CORPORATION. | | EVE
Processor: Intel(R) Core(TM)2 Duo CPU T5750 @ 2.00GHz | CPU 1 | 2000/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 286 GiB total, 182.711 GiB free.
D: is FIXED (NTFS) - 12 GiB total, 1.563 GiB free.
E: is CDROM ()
F: is Removable
G: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
µTorrent
Acrobat.com
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1
AmericanCreditRepair
Any Video Converter 2.7.8
Apple Application Support
Apple Software Update
Browser Guard v3.0
Buttons & OSDs control application gen2
Caesar IV
Canon iP100 series User Registration
Canon Setup Utility 2.4
Canon Utilities Easy-PhotoPrint EX
Canon Utilities Solution Menu
Combined Community Codec Pack 2010-10-10
Compatibility Pack for the 2007 Office system
CyberLink DVD Suite Deluxe
CyberLink PowerDirector
CyberLink YouCam
DAEMON Tools Lite
DAEMON Tools Toolbar
DirectX for Managed Code Update (Summer 2004)
DivX Setup
GEAR driver installer for x86 and x64
GearDrvs
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Hardware Diagnostic Tools
HiJackThis
Host OpenAL (ADI)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Active Support Library
HP Customer Experience Enhancements
HP Customer Feedback
HP KEYBOARD
HP MediaSmart DVD
HP Picasso Media Center Add-In
HP Total Care Advisor
HP Touch Screen Enhance Service
HP TouchSmart
HP TouchSmart Calendar
HP TouchSmart Music/Photo/Video
HP TouchSmart Notes
HP Update
HPAsset component for HP Active Support Library
HPTCSSetup
Java(TM) 6 Update 15
Java(TM) SE Runtime Environment 6 Update 1
LabelPrint
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Small Business Edition 2003
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
muvee autoProducer 6.1
My HP Games
MySQL Connector/ODBC 3.51
Norton 360
Power2Go
Python 2.5
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealUpgrade 1.1
Safari
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
SoundMAX
sp41098
sp43205
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VC80CRTRedist - 8.0.50727.4053
VLC media player 1.1.5
WinPcap 4.1.1
WinRAR archiver
World of Warcraft
Xvid 1.2.1 final uninstall
.
==== End Of File ===========================


(DDS) File
.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by DaW at 18:24:11.61 on Mon 03/14/2011
Internet Explorer: 8.0.6001.19019
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.4086.1551 [GMT -4:00]
.
AV: Norton 360 *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\AEADISRV.EXE
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
C:\Program Files (x86)\Hewlett-Packard\HP Touch Screen Enhance Service\HPTSEnSrv.EXE
C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\ccSvcHst.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxpers.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\uTorrent2\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe
C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
C:\Program Files (x86)\Hewlett Packard\Buttons & OSDs control application gen2\FastUserSwitching.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\Hewlett-Packard\HP KEYBOARD\HPKEYBOARD.EXE
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP KEYBOARD\Keystatus.exe
C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
C:\Program Files (x86)\Hewlett Packard\Buttons & OSDs control application gen2\HWManager.exe
C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\Hewlett Packard\Buttons & OSDs control application gen2\OSDForm.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Hewlett-Packard\HP Touch Screen Enhance Service\HPTSEnProxy.exe
C:\Windows\splwow64.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.exe
C:\Program Files (x86)\Trend Micro\Browser Guard\tmiegsrv.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\System32\mobsync.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Users\DaW\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\DaW\Downloads\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE= ... re&pf=cndt
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE= ... re&pf=cndt
mWinlogon: Userinit=userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\IPS\IPSBHO.DLL
BHO: {9F3209E2-334B-41E9-B09C-703F398742E7} - No File
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: TMIEGBHO Class: {f1ad4a42-ba52-47bc-89df-3f68f24c017f} - C:\Program Files (x86)\Trend Micro\Browser Guard\TMAMS.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\coIEPlg.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
TB: TMBGBAR TOOLBAR: {c8137a8d-415d-450c-a1b1-d0c519d45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\tmieg.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
uRun: [HPSmartCenterBoot] _"c:\Program Files (x86)\Hewlett-Packard\TouchSmart\SmartCenter 2.0\SmartCenter.exe"
uRun: [Google Update] "C:\Users\DaW\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent2\uTorrent.exe"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
mRun: [hpsysdrv] c:\hp\support\hpsysdrv.exe
mRun: [OsdMaestro] c:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe
mRun: [SoundMAX] "C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe" /tray
mRun: [Buttons & OSDs control application gen2] C:\Program Files (x86)\Hewlett Packard\Buttons & OSDs control application gen2\FastUserSwitching.exe
mRun: [UCam_Menu] "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
mRun: [<NO NAME>]
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [HP KEYBOARD] "C:\Program Files (x86)\Hewlett-Packard\HP KEYBOARD\HPKEYBOARD.EXE"
mRun: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
mRun: [Google Quick Search Box] "C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
mRun: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [Trend Micro Browser Guard] "C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.EXE"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} -
BHO-X64: {9F3209E2-334B-41E9-B09C-703F398742E7} - No File
BHO-X64: IEGBH0 - No File
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll
BHO-X64: TMIEGBHO Class: {F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\TMAMS64.dll
BHO-X64: TMIEGBHO - No File
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
TB-X64: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll
TB-X64: TMBGBAR TOOLBAR: {C8137A8D-415D-450C-A1B1-D0C519D45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\tmieg64.dll
TB-X64: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun-x64: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun-x64: [CanonSolutionMenu] "C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" /logon
mRun-x64: [IgfxTray] C:\Windows\system32\igfxtray.exe
mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe
IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\Windows\System32\drivers\N360x64\0500000.07D\SymDS64.sys [2011-3-1 450608]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\N360x64\0500000.07D\SymEFA64.sys [2011-3-1 802864]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20110309.001\BHDrvx64.sys [2011-3-10 1124472]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-3-11 254528]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20110311.001\IDSviA64.sys [2011-3-12 476792]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\N360x64\0500000.07D\Ironx64.sys [2011-3-1 171128]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver;C:\Windows\System32\drivers\N360x64\0500000.07D\symtdiv.sys [2011-3-1 432760]
R2 {55662437-DA8C-40c0-AADA-2C816A897A49};{55662437-DA8C-40c0-AADA-2C816A897A49};C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [2008-7-16 27632]
R2 CalendarSynchService;CalendarSynchService;C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [2008-12-12 21296]
R2 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 27648]
R2 HP Touch Screen Enhance;HP Touch Screen Enhance;C:\Program Files (x86)\Hewlett-Packard\HP Touch Screen Enhance Service\HPTSEnSrv.EXE [2009-1-20 101888]
R2 N360;Norton 360;C:\Program Files (x86)\Norton 360\Engine\5.0.0.125\ccSvcHst.exe [2011-3-1 130000]
R3 ACPIService;Buttons and OSDs ACPI driver gen2;C:\Windows\System32\drivers\OSDACPI.SYS [2008-6-6 15928]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2008-6-6 33584]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-3-1 132656]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;C:\Windows\System32\drivers\netr28x.sys [2008-5-5 448000]
R3 NPF;NetGroup Packet Filter Driver;C:\Windows\System32\drivers\npf.sys [2009-10-20 47632]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2009-8-28 49152]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-2-16 135664]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-8-9 89920]
.
=============== File Associations ===============
.
JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
.
=============== Created Last 30 ================
.
2011-03-13 02:42:05 -------- d-----w- C:\Program Files (x86)\VideoLAN
2011-03-12 18:19:45 -------- d-----w- C:\Users\DaW\AppData\Local\DDMSettings
2011-03-12 18:18:29 -------- d-----w- C:\Program Files (x86)\Common Files\PX Storage Engine
2011-03-12 18:18:26 -------- d-----w- C:\Program Files\DivX
2011-03-12 18:17:41 -------- d-----w- C:\Program Files (x86)\Common Files\DivX Shared
2011-03-12 18:14:54 -------- d-----w- C:\Program Files (x86)\DivX
2011-03-12 08:04:21 -------- d-----w- C:\18eb8d4997241a83de
2011-03-12 04:25:48 -------- d-----w- C:\PROGRA~3\Trymedia
2011-03-12 04:24:48 -------- d-----w- C:\Users\DaW\AppData\Local\CrashDumps
2011-03-12 04:16:39 98304 ----a-w- C:\Windows\SysWow64\CmdLineExt.dll
2011-03-12 03:48:04 -------- d-----w- C:\Program Files (x86)\Sierra
2011-03-12 03:37:57 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2011-03-12 03:37:36 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Toolbar
2011-03-12 03:37:31 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2011-03-12 03:36:53 -------- d-----w- C:\PROGRA~3\DAEMON Tools Lite
2011-03-10 10:00:58 -------- d-----w- C:\ae443f27b1fb903b8fbd1d47ea0257
2011-03-10 08:03:36 -------- d-----w- C:\Program Files (x86)\Common Files\xing shared
2011-03-09 10:58:54 2425344 ----a-w- C:\Windows\System32\mstscax.dll
2011-03-09 10:58:51 2067968 ----a-w- C:\Windows\SysWow64\mstscax.dll
2011-03-09 10:58:50 731136 ----a-w- C:\Windows\System32\mstsc.exe
2011-03-09 10:58:50 677888 ----a-w- C:\Windows\SysWow64\mstsc.exe
2011-03-09 10:58:47 559616 ----a-w- C:\Windows\System32\EncDec.dll
2011-03-09 10:58:47 429056 ----a-w- C:\Windows\SysWow64\EncDec.dll
2011-03-09 10:58:47 416768 ----a-w- C:\Windows\System32\sbe.dll
2011-03-09 10:58:46 322560 ----a-w- C:\Windows\SysWow64\sbe.dll
2011-03-09 10:58:46 226816 ----a-w- C:\Windows\System32\mpg2splt.ax
2011-03-09 10:58:46 177664 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2011-03-09 10:58:45 210944 ----a-w- C:\Windows\System32\sbeio.dll
2011-03-09 10:58:45 153088 ----a-w- C:\Windows\SysWow64\sbeio.dll
2011-03-06 21:02:55 -------- d-----w- C:\Program Files (x86)\uTorrent2
2011-03-06 06:11:19 -------- d-----w- C:\7d656462af414bf5b854fa529f0b
2011-03-06 05:26:43 -------- d-----w- C:\Users\DaW\AppData\Local\Browser Guard
2011-03-06 05:11:14 -------- d-----w- C:\Program Files (x86)\WinPcap
2011-03-06 04:28:50 -------- d-----w- C:\Program Files (x86)\Everything U Need to Know
2011-03-06 03:22:13 388096 ----a-r- C:\Users\DaW\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-03-06 03:22:13 -------- d-----w- C:\Program Files (x86)\Trend Micro
2011-03-06 03:17:29 -------- d-----w- C:\Program Files\CCleaner
2011-03-05 20:53:10 -------- d-----w- C:\Windows\pss
2011-03-05 20:39:55 815104 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2011-03-05 20:39:55 77824 ----a-w- C:\Windows\SysWow64\xvid.ax
2011-03-05 20:39:55 180224 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2011-03-05 20:39:55 -------- d-----w- C:\Program Files (x86)\Xvid
2011-03-02 17:48:29 -------- d-----w- C:\Users\DaW\AppData\Roaming\Tific
2011-03-02 17:24:57 -------- d-----w- C:\Users\DaW\AppData\Local\NPE
2011-03-01 18:32:55 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2011-03-01 18:32:48 -------- d-----w- C:\Program Files\Symantec
2011-03-01 18:32:04 802864 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\SymEFA64.sys
2011-03-01 18:32:04 735864 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\srtsp64.sys
2011-03-01 18:32:04 450608 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\SymDS64.sys
2011-03-01 18:32:04 432760 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\symtdiv.sys
2011-03-01 18:32:04 40568 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\srtspx64.sys
2011-03-01 18:32:04 382072 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\symnets.sys
2011-03-01 18:32:04 171128 ----a-r- C:\Windows\System32\drivers\N360x64\0500000.07D\Ironx64.sys
2011-03-01 18:31:06 -------- d-----w- C:\Windows\System32\drivers\N360x64\0500000.07D
2011-03-01 18:30:53 -------- d-----w- C:\Program Files (x86)\Norton 360
2011-03-01 16:36:34 -------- d-----w- C:\Program Files (x86)\Combined Community Codec Pack
2011-03-01 07:32:54 7947600 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{4A1C0793-2097-4758-A687-2B120635D71F}\mpengine.dll
2011-02-28 04:51:18 -------- d-----w- C:\Users\DaW\AppData\Roaming\Uniblue
2011-02-28 04:50:50 -------- d-----w- C:\Users\DaW\AppData\Local\PackageAware
2011-02-26 06:38:44 -------- d-----w- C:\Users\DaW\AppData\Roaming\DAEMON Tools Lite
2011-02-23 07:44:28 -------- d-----w- C:\Program Files (x86)\GPL MPEG Decoder
2011-02-23 07:11:05 -------- d-----w- C:\PROGRA~3\DivX
2011-02-23 01:04:21 -------- d-----w- C:\Program Files (x86)\ConduitEngine
2011-02-23 01:04:12 -------- d-----w- C:\Program Files (x86)\uTorrentBar
2011-02-23 01:04:02 -------- d-----w- C:\extensions
2011-02-21 21:10:45 -------- d--h--w- C:\PROGRA~3\Common Files
2011-02-21 20:49:32 -------- d-----w- C:\PROGRA~3\MFAData
2011-02-20 18:19:41 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2011-02-20 18:19:41 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2011-02-20 18:19:41 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2011-02-20 18:19:41 444752 ----a-w- C:\Windows\System32\mscoree.dll
2011-02-20 18:19:41 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2011-02-20 18:19:41 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2011-02-20 18:19:41 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2011-02-20 18:19:41 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2011-02-20 18:19:41 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2011-02-20 18:19:41 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2011-02-20 18:15:54 32768 ----a-w- C:\Windows\System32\nshhttp.dll
2011-02-20 18:15:54 24064 ----a-w- C:\Windows\SysWow64\nshhttp.dll
2011-02-20 18:15:52 620032 ----a-w- C:\Windows\System32\drivers\http.sys
2011-02-20 18:15:52 33792 ----a-w- C:\Windows\System32\httpapi.dll
2011-02-20 18:15:51 30720 ----a-w- C:\Windows\SysWow64\httpapi.dll
2011-02-19 23:23:15 1426816 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-02-19 23:22:59 273920 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-02-19 23:20:52 87552 ----a-w- C:\Windows\System32\consent.exe
2011-02-19 23:19:54 162816 ----a-w- C:\Windows\System32\ieUnatt.exe
2011-02-19 23:19:54 133632 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2011-02-19 23:19:54 132096 ----a-w- C:\Windows\System32\iesysprep.dll
2011-02-19 23:19:54 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2011-02-19 23:00:40 96256 ----a-w- C:\Windows\System32\fontsub.dll
2011-02-19 23:00:40 72704 ----a-w- C:\Windows\SysWow64\fontsub.dll
2011-02-19 23:00:40 48128 ----a-w- C:\Windows\System32\atmlib.dll
2011-02-19 23:00:40 367104 ----a-w- C:\Windows\System32\atmfd.dll
2011-02-19 23:00:40 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-02-19 23:00:40 292352 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-02-19 22:58:51 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-02-19 22:56:59 98304 ----a-w- C:\Windows\SysWow64\cabview.dll
2011-02-19 22:56:59 104960 ----a-w- C:\Windows\System32\cabview.dll
2011-02-19 22:56:50 218624 ----a-w- C:\Windows\System32\wintrust.dll
2011-02-19 22:56:50 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
.
==================== Find3M ====================
.
2011-03-01 18:32:48 174640 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2011-01-20 16:46:10 900480 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2011-01-20 16:17:15 366592 ----a-w- C:\Windows\System32\winspool.drv
2011-01-20 16:17:03 625152 ----a-w- C:\Windows\System32\dxgi.dll
2011-01-20 16:16:53 287232 ----a-w- C:\Windows\System32\d3d10core.dll
2011-01-20 16:16:52 327680 ----a-w- C:\Windows\System32\d3d10_1core.dll
2011-01-20 16:16:52 196096 ----a-w- C:\Windows\System32\d3d10_1.dll
2011-01-20 16:16:52 1268224 ----a-w- C:\Windows\System32\d3d10.dll
2011-01-20 16:16:47 748544 ----a-w- C:\Windows\System32\stobject.dll
2011-01-20 16:16:40 47104 ----a-w- C:\Windows\System32\cdd.dll
2011-01-20 16:16:10 3548672 ----a-w- C:\Windows\System32\mf.dll
2011-01-20 16:16:08 35840 ----a-w- C:\Windows\System32\printfilterpipelineprxy.dll
2011-01-20 16:14:49 278528 ----a-w- C:\Windows\System32\mfplat.dll
2011-01-20 16:14:49 195072 ----a-w- C:\Windows\System32\mfps.dll
2011-01-20 16:08:16 478720 ----a-w- C:\Windows\SysWow64\dxgi.dll
2011-01-20 16:08:06 219648 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2011-01-20 16:08:06 189952 ----a-w- C:\Windows\SysWow64\d3d10core.dll
2011-01-20 16:08:06 160768 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2011-01-20 16:08:06 1029120 ----a-w- C:\Windows\SysWow64\d3d10.dll
2011-01-20 16:07:42 258048 ----a-w- C:\Windows\SysWow64\winspool.drv
2011-01-20 16:07:16 586240 ----a-w- C:\Windows\SysWow64\stobject.dll
2011-01-20 16:06:38 2873344 ----a-w- C:\Windows\SysWow64\mf.dll
2011-01-20 16:04:54 98816 ----a-w- C:\Windows\SysWow64\mfps.dll
2011-01-20 16:04:54 209920 ----a-w- C:\Windows\SysWow64\mfplat.dll
2011-01-20 15:01:50 3068416 ----a-w- C:\Windows\System32\xpsservices.dll
2011-01-20 15:01:09 1653760 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-01-20 14:59:59 1032192 ----a-w- C:\Windows\System32\printfilterpipelinesvc.exe
2011-01-20 14:58:38 1461760 ----a-w- C:\Windows\System32\OpcServices.dll
2011-01-20 14:57:44 479744 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-01-20 14:57:28 231936 ----a-w- C:\Windows\System32\XpsRasterService.dll
2011-01-20 14:42:00 1257984 ----a-w- C:\Windows\System32\MFH264Dec.dll
2011-01-20 14:41:29 428544 ----a-w- C:\Windows\System32\MFHEAACdec.dll
2011-01-20 14:40:17 345088 ----a-w- C:\Windows\System32\mfreadwrite.dll
2011-01-20 14:40:14 34304 ----a-w- C:\Windows\System32\mfpmp.exe
2011-01-20 14:40:11 377344 ----a-w- C:\Windows\System32\mfmp4src.dll
2011-01-20 14:37:06 2002944 ----a-w- C:\Windows\System32\d3d10warp.dll
2011-01-20 14:35:30 566272 ----a-w- C:\Windows\System32\d3d10level9.dll
2011-01-20 14:28:38 1554432 ----a-w- C:\Windows\SysWow64\xpsservices.dll
2011-01-20 14:27:50 876032 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-01-20 14:25:25 847360 ----a-w- C:\Windows\SysWow64\OpcServices.dll
2011-01-20 14:24:32 288768 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-01-20 14:24:26 135680 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll
2011-01-20 14:15:10 979456 ----a-w- C:\Windows\SysWow64\MFH264Dec.dll
2011-01-20 14:14:39 357376 ----a-w- C:\Windows\SysWow64\MFHEAACdec.dll
2011-01-20 14:14:03 302592 ----a-w- C:\Windows\SysWow64\mfmp4src.dll
2011-01-20 14:14:03 261632 ----a-w- C:\Windows\SysWow64\mfreadwrite.dll
2011-01-20 14:12:46 1172480 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2011-01-20 14:11:34 486400 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2011-01-20 14:06:15 834048 ----a-w- C:\Windows\System32\d2d1.dll
2011-01-20 14:02:46 1555968 ----a-w- C:\Windows\System32\DWrite.dll
2011-01-20 14:02:44 1147904 ----a-w- C:\Windows\System32\FntCache.dll
2011-01-20 13:47:51 683008 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-01-20 13:44:05 1068544 ----a-w- C:\Windows\SysWow64\DWrite.dll
2010-12-31 14:16:41 2757632 ----a-w- C:\Windows\System32\win32k.sys
2010-12-28 16:08:18 466944 ----a-w- C:\Windows\System32\odbc32.dll
2010-12-28 15:55:03 413696 ----a-w- C:\Windows\SysWow64\odbc32.dll
2010-12-18 06:55:17 1147904 ----a-w- C:\Windows\System32\wininet.dll
2010-12-18 06:50:55 56832 ----a-w- C:\Windows\System32\licmgr10.dll
2010-12-18 06:50:36 1538560 ----a-w- C:\Windows\System32\inetcpl.cpl
2010-12-18 06:50:16 77312 ----a-w- C:\Windows\System32\iesetup.dll
2010-12-18 06:27:04 916480 ----a-w- C:\Windows\SysWow64\wininet.dll
2010-12-18 06:22:41 43520 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2010-12-18 06:22:27 1469440 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2010-12-18 06:22:11 71680 ----a-w- C:\Windows\SysWow64\iesetup.dll
2010-12-18 05:57:45 479232 ----a-w- C:\Windows\System32\html.iec
2010-12-18 05:25:26 385024 ----a-w- C:\Windows\SysWow64\html.iec
2010-12-18 05:15:40 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2010-12-18 04:47:11 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 18:25:00.34 ===============


Thanks for taking a look and I hope you find something. Please advise.

Dawn
Daylamay
Active Member
 
Posts: 3
Joined: March 14th, 2011, 6:44 pm
Advertisement
Register to Remove

Re: SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...H

Unread postby askey127 » March 15th, 2011, 3:08 pm

Hi daylamay,
Best not to install an additional Antivirus when you already have one. This actually can make your protection worse.
-----------------------------------------------
Please Note Our Policy on the Use of P2P (Person to Person / Peer to Peer) file sharing programs
It is posted here: http://malwareremoval.com/forum/viewtopic.php?p=491394#p491394
As a condition of receiving our help, I have included the P2P program utorrent in the removal instructions below, so we are not wasting our time.
If you have used this, you can be fairly confident this is a principal reason your computer is infected

It's really important, if you value your PC at all, to stay away from P2P file sharing programs, like utorrent, Bittorrent, Azureus, Frostwire, Vuze, Shareaza, Bitlord.
(Limewire has been shut down by the courts).
Criminals have "planted" thousands upon thousands of infections in the "free" shared files. Some of the recent infections can turn your machine into a doorstop.
------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Uninstall a program under the Programs heading.
Right click each Entry, as follows, one by one, if it exists, choose Uninstall/Change, and give permission to Continue:
µTorrent
Adobe Reader 9.1
Java(TM) 6 Update 15
Java(TM) SE Runtime Environment 6 Update 1

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
---------------------------------------------
Run a Scan with OTL
  1. Please download OTL.exe by OldTimer and save it to your desktop.
  2. Right click on OTL.exe and select Run As Administrator to run it. If Windows UAC prompts you, please allow it.
    Since you have a 64-bit version of Windows, check the box at the top, labeled Include 64 bit scans
  3. Check the boxes labeled :
    • Scan All Users
    • LOP check
    • Purity check
  4. Click on the Run Scan button at the top left hand corner.
  5. OTL will start running. When done, 2 Notepad files will open; OTL.txt and Extras.txt.
    They will be saved on your desktop.
Please post the contents of these files.
You may use separate replies if you wish.
If any of the files are too large to post, you can split the oversize one(s) into multiple replies

askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13906
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...H

Unread postby Daylamay » March 18th, 2011, 11:50 am

Hi Askey127

I started to remove the items you requested....just a couple of questions. I won't be able to read documents if I remove Adobe Reader 9.1 so is there a reason why this is not a good program? Would I have problems running any of my media programs if I remove Java(TM) 6 Update 15 and Java(TM) SE Runtime Environment 6 Update 1?

Thanks for your help and information.
Daylamay
Active Member
 
Posts: 3
Joined: March 14th, 2011, 6:44 pm

Re: SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...H

Unread postby askey127 » March 18th, 2011, 1:53 pm

You will have lots of problems after you remove those as I asked.
I am just waiting for your verification before I instruct how to install the newest replacements.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13906
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: SOMEONE HAS ACCESS TO MY COMPUTER, FINANCIAL AND ALL...H

Unread postby askey127 » March 21st, 2011, 6:17 pm

Due to Lack of Response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13906
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 27 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware