Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Spigot, Inc search engine pop up

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Spigot, Inc search engine pop up

Unread postby mrluckey » June 8th, 2011, 6:34 am

.
DDS (Ver_2011-06-03.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Jerome at 5:26:40 on 2011-06-08
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8125.4837 [GMT -5:00]
.
AV: Norton Security Suite *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Security Suite *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Security Suite *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\ccSvcHst.exe
C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe
C:\PROGRA~2\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\ccSvcHst.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe
C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
C:\Program Files (x86)\SFT\GuardedID\GIDD.exe
C:\Program Files (x86)\Squeezebox\SqueezeTray.exe
C:\Users\Mr Luckey\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\SFT\GuardedID\x64\GIDD.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\DllHost.exe
C:\Windows\splwow64.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Mr Luckey\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteTray.exe
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\ccSvcHst.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Users\Jerome\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Users\Jerome\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\Squeezebox\SqueezeTray.exe
C:\Program Files (x86)\SFT\GuardedID\GIDD.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files (x86)\SFT\GuardedID\x64\GIDD.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\PROGRA~2\SQUEEZ~1\server\SQUEEZ~3.EXE
C:\Windows\helppane.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - C:\Program Files (x86)\IObit Toolbar\IE\4.4\iobitToolbarIE.dll
mWinlogon: Userinit=userinit.exe
BHO: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - C:\Program Files (x86)\IObit Toolbar\IE\4.4\iobitToolbarIE.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\IPS\IPSBHO.DLL
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Constant Guard Protection Suite (COM): {b84cdbe7-1b46-494b-a188-01d4c52deb61} - C:\Program Files (x86)\Constant Guard Protection Suite\NativeBHO.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\coIEPlg.dll
TB: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - C:\Program Files (x86)\IObit Toolbar\IE\4.4\iobitToolbarIE.dll
uRun: [Google Update] "C:\Users\Jerome\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [9B4D280CD10B1876F2A9683182D2723BBF38CB91._service_run] "C:\Users\Jerome\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
uRun: [Advanced SystemCare 4] C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe
mRun: [GIDDesktop] C:\Program Files (x86)\SFT\GuardedID\gidd.exe /s
mRun: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
mRun: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe"
mRun: [DLSService] "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe"
StartupFolder: C:\Users\Jerome\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files (x86)\Logitech\Ereg\eReg.exe
StartupFolder: C:\Users\Jerome\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\APCUPS~1.LNK - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CONSTA~1.LNK - C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SQUEEZ~1.LNK - C:\Program Files (x86)\Squeezebox\SqueezeTray.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Trusted Zone: intuit.com\ttlc
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 68.87.77.134 68.87.72.134
TCP: Interfaces\{698F90A5-770A-43C7-94BC-C54F3C910296} : DhcpNameServer = 68.87.77.134 68.87.72.134
TCP: Interfaces\{ACA5D94D-34C6-43A1-A67E-D2B9DCDD7413} : DhcpNameServer = 10.1.10.1
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
mASetup: {9191979D-821C-4EA8-B021-2DA1D859A7C5}-3Reg - C:\Program Files (x86)\SFT\GuardedID\gidi.exe /v
BHO-X64: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\4.4\iobitToolbarIE.dll
BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\coIEPlg.dll
BHO-X64: Symantec NCO BHO - No File
BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\IPS\IPSBHO.DLL
BHO-X64: Symantec Intrusion Prevention - No File
BHO-X64: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Constant Guard Protection Suite (COM): {B84CDBE7-1B46-494B-A188-01D4C52DEB61} - C:\Program Files (x86)\Constant Guard Protection Suite\NativeBHO.dll
BHO-X64: Constant Guard Protection Suite (COM) - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\coIEPlg.dll
TB-X64: IObit Toolbar: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\4.4\iobitToolbarIE.dll
mRun-x64: [GIDDesktop] C:\Program Files (x86)\SFT\GuardedID\gidd.exe /s
mRun-x64: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
mRun-x64: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe"
mRun-x64: [DLSService] "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe"
IE-X64: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]
R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS --> C:\Windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS --> C:\Windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20110519.002\BHDrvx64.sys [2011-5-19 1143416]
R1 GIDv2;GIDv2;C:\Windows\system32\drivers\GIDv2.sys --> C:\Windows\system32\drivers\GIDv2.sys [?]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20110603.003\IDSviA64.sys [2011-6-4 476792]
R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS --> C:\Windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\system32\Drivers\N360x64\0501000.01D\SYMNETS.SYS --> C:\Windows\system32\Drivers\N360x64\0501000.01D\SYMNETS.SYS [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-3 353168]
R2 Application Updater;Application Updater;C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2011-5-6 393112]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 DymoPnpService;DYMO PnP Service;C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [2011-1-28 32336]
R2 IDVaultSvc;CGPS Service;C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe [2011-6-2 60488]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-3 821080]
R2 N360;Norton Security Suite;C:\Program Files (x86)\Norton Security Suite\Engine\5.1.0.29\ccsvchst.exe [2011-6-2 130008]
R2 NitroReaderDriverReadSpool;NitroPDFReaderDriverCreatorReadSpool;C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe [2011-4-5 341296]
R2 SqueezeMySQL;SqueezeMySQL;C:\PROGRA~2\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=C:\PROGRA~3\SQUEEZ~1\Cache\my.cnf SqueezeMySQL --> C:\PROGRA~2\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=C:\PROGRA~3\SQUEEZ~1\Cache\my.cnf SqueezeMySQL [?]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-4-1 428640]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;C:\Windows\system32\DRIVERS\e1y62x64.sys --> C:\Windows\system32\DRIVERS\e1y62x64.sys [?]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-6-2 136824]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]
R3 LVUVC64;Logitech Webcam C260(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys --> C:\Windows\system32\DRIVERS\lvuvc64.sys [?]
R3 netr7364;USB Wireless 802.11 b/g Adaptor Driver for Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 xcbdaNtscV;ViXS Tuner Card (NTSC) - V;C:\Windows\system32\DRIVERS\xcbdaVx64.sys --> C:\Windows\system32\DRIVERS\xcbdaVx64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2010-11-11 306416]
.
=============== Created Last 30 ================
.
2011-06-08 02:12:53 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-BR
2011-06-08 02:12:50 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-PT
2011-06-08 02:12:47 -------- d-----w- C:\Windows\System32\drivers\UMDF\nl-NL
2011-06-08 02:12:45 -------- d-----w- C:\Windows\System32\drivers\UMDF\it-IT
2011-06-08 02:12:42 -------- d-----w- C:\Windows\System32\drivers\UMDF\de-DE
2011-06-08 02:12:40 -------- d-----w- C:\Windows\System32\drivers\UMDF\fr-FR
2011-06-08 02:12:38 -------- d-----w- C:\Windows\System32\drivers\UMDF\es-ES
2011-06-08 01:31:25 -------- d-----w- C:\Program Files (x86)\APC
2011-06-08 01:21:01 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2011-06-08 01:21:01 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2011-06-08 01:21:01 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2011-06-08 01:21:01 176128 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2011-06-07 22:30:41 -------- d-----w- C:\Program Files (x86)\Canon
2011-06-07 13:40:39 -------- d-----w- C:\Program Files (x86)\DYMO
2011-06-07 13:40:36 -------- d-----w- C:\ProgramData\DYMO
2011-06-06 16:46:05 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2011-06-06 16:45:58 -------- d-----w- C:\Program Files\NVIDIA Corporation
2011-06-06 16:38:08 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2011-06-06 16:38:08 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2011-06-06 12:01:11 -------- d-----w- C:\Program Files\Microsoft IntelliPoint
2011-06-05 17:38:56 -------- d-----w- C:\ProgramData\Squeezebox
2011-06-05 17:38:56 -------- d-----w- C:\Program Files (x86)\Squeezebox
2011-06-04 00:33:23 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
2011-06-04 00:27:54 -------- d-----w- C:\Program Files (x86)\Audacity
2011-06-04 00:25:44 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2011-06-04 00:25:43 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-06-04 00:25:43 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-06-04 00:25:43 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2011-06-04 00:25:43 1076736 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-06-03 22:11:41 634880 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\iKernel.dll
2011-06-03 22:11:41 57344 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\ctor.dll
2011-06-03 22:11:41 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\DotNetInstaller.exe
2011-06-03 22:11:41 237568 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\iscript.dll
2011-06-03 22:11:41 151552 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\iuser.dll
2011-06-03 22:11:37 270468 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\Setup.dll
2011-06-03 22:11:37 159876 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0700\Intel32\IGdi.dll
2011-06-03 21:04:16 32136 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe
2011-06-03 21:04:16 18232 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys
2011-06-03 21:04:08 -------- d-----w- C:\ProgramData\IObit
2011-06-03 21:03:24 -------- d-----w- C:\Program Files (x86)\IObit Toolbar
2011-06-03 21:03:24 -------- d-----w- C:\Program Files (x86)\Common Files\Spigot
2011-06-03 21:03:24 -------- d-----w- C:\Program Files (x86)\Application Updater
2011-06-03 21:03:01 -------- d-----w- C:\Users\Jerome\AppData\Roaming\IObit
2011-06-03 21:03:00 -------- d-----w- C:\Program Files (x86)\IObit
2011-06-03 20:02:30 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2011-06-03 20:02:18 4283672 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2011-06-03 20:02:09 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2011-06-03 20:02:05 539968 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-06-03 03:02:46 -------- d-----w- C:\updates
2011-06-03 02:53:08 -------- d-----w- C:\Users\Jerome\AppData\Roaming\OpenOffice.org
2011-06-03 02:49:57 -------- d-----w- C:\Program Files (x86)\OpenOffice.org 3
2011-06-03 02:49:10 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-06-03 02:40:16 28976 ----a-w- C:\Windows\System32\nitrolocalmon.dll
2011-06-03 02:40:16 17200 ----a-w- C:\Windows\System32\nitrolocalui.dll
2011-06-03 02:39:55 -------- d-----w- C:\Program Files\Common Files\Nitro PDF
2011-06-03 02:39:55 -------- d-----w- C:\Program Files (x86)\Nitro PDF
2011-06-03 02:39:55 -------- d-----w- C:\Program Files (x86)\Common Files\Nitro PDF
2011-06-03 02:39:16 -------- d-----w- C:\Users\Jerome\AppData\Roaming\Downloaded Installations
2011-06-03 02:36:22 -------- d-----w- C:\Users\Jerome\AppData\Roaming\com.pandora.desktop.FB9956FD96E03239939108614098AD95535EE674.1
2011-06-03 02:36:16 -------- d-----w- C:\Program Files (x86)\Pandora
2011-06-03 02:35:39 -------- d-----w- C:\Users\Jerome\AppData\Local\Adobe
2011-06-03 02:29:35 57344 ----a-w- C:\Windows\SysWow64\DYMOCFG.DLL
2011-06-03 02:29:32 418304 ----a-w- C:\Windows\SysWow64\DYMOSmartPaste.dll
2011-06-03 02:29:32 -------- d-----w- C:\Program Files (x86)\DYMO Label
2011-06-03 02:28:56 155648 ----a-w- C:\Windows\SysWow64\DYMOINST.DLL
2011-06-03 02:18:41 -------- d-----w- C:\Program Files (x86)\TurboTax
2011-06-03 01:20:45 -------- d-----w- C:\Users\Jerome\AppData\Local\IsolatedStorage
2011-06-03 01:17:42 -------- d-----w- C:\Users\Jerome\AppData\Local\Ancestry.com
2011-06-03 01:15:30 -------- d-----w- C:\IExp1.tmp
2011-06-03 01:15:28 -------- d-----w- C:\Windows\RegisteredPackages
2011-06-03 01:15:28 -------- d-----w- C:\IExp0.tmp
2011-06-03 01:15:27 -------- d--h--w- C:\Windows\msdownld.tmp
2011-06-03 01:15:25 -------- d-----w- C:\Program Files (x86)\Windows Media Components
2011-06-03 01:15:15 -------- d-----w- C:\Program Files (x86)\Microsoft WSE
2011-06-03 01:12:08 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2011-06-03 01:07:06 -------- d-----w- C:\Program Files (x86)\Family Tree Maker 2010
2011-06-03 01:07:06 -------- d-----w- C:\Program Files (x86)\BCL Technologies
2011-06-03 01:05:35 -------- d-----w- C:\Users\Jerome\AppData\Local\CrashDumps
2011-06-03 01:00:28 -------- d-----w- C:\ProgramData\Skype Extras
2011-06-03 00:59:27 -------- d-----r- C:\Program Files (x86)\Skype
2011-06-03 00:09:12 912504 ----a-w- C:\Windows\System32\drivers\N360x64\0501000.01D\symefa64.sys
2011-06-03 00:09:12 744568 ----a-w- C:\Windows\System32\drivers\N360x64\0501000.01D\srtsp64.sys
2011-06-03 00:09:12 450680 ----a-w- C:\Windows\System32\drivers\N360x64\0501000.01D\symds64.sys
2011-06-03 00:09:12 40568 ----a-w- C:\Windows\System32\drivers\N360x64\0501000.01D\srtspx64.sys
2011-06-03 00:09:12 382584 ----a-w- C:\Windows\System32\drivers\N360x64\0501000.01D\symnets.sys
2011-06-03 00:09:12 171128 ----a-r- C:\Windows\System32\drivers\N360x64\0501000.01D\ironx64.sys
2011-06-03 00:09:08 -------- d-----w- C:\Windows\System32\drivers\N360x64\0501000.01D
2011-06-03 00:06:08 -------- d-----w- C:\Program Files (x86)\Common Files\AnswerWorks 5.0
2011-06-03 00:06:06 733184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll
2011-06-03 00:06:06 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll
2011-06-03 00:06:06 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\DotNetInstaller.exe
2011-06-03 00:06:06 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll
2011-06-03 00:06:06 172032 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll
2011-06-03 00:06:05 303236 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll
2011-06-03 00:06:05 180356 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll
2011-06-03 00:06:03 4199784 ----a-w- C:\Windows\SysWow64\cdintf400.dll
2011-06-03 00:05:01 -------- d-----w- C:\Program Files (x86)\Common Files\Intuit
2011-06-03 00:05:00 -------- d-----w- C:\Users\Jerome\AppData\Roaming\Intuit
2011-06-03 00:05:00 -------- d-----w- C:\Program Files (x86)\Quicken
2011-06-03 00:04:30 -------- d-----w- C:\ProgramData\Intuit
2011-06-02 22:53:44 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2011-06-02 22:53:42 174200 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2011-06-02 22:53:42 -------- d-----w- C:\Program Files\Symantec
2011-06-02 22:53:42 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2011-06-02 22:53:32 125872 ----a-w- C:\Windows\System32\GEARAspi64.dll
2011-06-02 22:53:32 106928 ----a-w- C:\Windows\SysWow64\GEARAspi.dll
2011-06-02 22:53:28 -------- d-----w- C:\Windows\System32\drivers\N360x64
2011-06-02 22:53:28 -------- d-----w- C:\Program Files (x86)\Norton Security Suite
2011-06-02 22:53:20 -------- d-----w- C:\ProgramData\NortonInstaller
2011-06-02 22:53:20 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2011-06-02 22:46:37 -------- d-----w- C:\ProgramData\Norton
2011-06-02 22:39:21 53248 ----a-r- C:\Users\Jerome\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-06-02 22:39:02 -------- d-----w- C:\Program Files (x86)\Common Files\LWS
2011-06-02 22:31:02 -------- d-----w- C:\Users\Jerome\AppData\Local\ID Vault
2011-06-02 22:31:02 -------- d-----w- C:\ProgramData\IsolatedStorage
2011-06-02 22:30:33 -------- d-----w- C:\Users\Jerome\AppData\Roaming\ID Vault
2011-06-02 22:30:16 29288 ------w- C:\Windows\System32\drivers\gidv2.sys
2011-06-02 22:30:15 65816 ------w- C:\Windows\System32\GIDLogonCP64.dll
2011-06-02 22:30:15 461592 ------w- C:\Windows\System32\GIDHOOK64.DLL
2011-06-02 22:30:15 444704 ------w- C:\Windows\System32\GIDHookLogon64.dll
2011-06-02 22:30:15 205072 ------w- C:\Windows\System32\GIDBIN1.DLL
2011-06-02 22:30:15 109064 ------w- C:\Windows\System32\EasyHook64.dll
2011-06-02 22:30:15 100624 ------w- C:\Windows\System32\GIDBIN3.DLL
2011-06-02 22:30:07 -------- d-----w- C:\ProgramData\GID
2011-06-02 22:30:06 -------- d-----w- C:\Program Files (x86)\SFT
2011-06-02 22:30:00 -------- d-----w- C:\Program Files (x86)\Constant Guard Protection Suite
2011-06-02 22:29:49 -------- d-----w- C:\ProgramData\White Sky, Inc
2011-06-02 22:24:11 -------- d-----w- C:\Users\Jerome\AppData\Local\Evernote
2011-06-02 22:24:04 -------- d-----w- C:\Program Files (x86)\Evernote
2011-06-02 21:53:19 -------- d-----w- C:\Users\Jerome\AppData\Local\Google
2011-06-02 21:52:14 -------- d-----w- C:\Users\Jerome\AppData\Local\Apps
2011-06-02 21:52:13 -------- d-----w- C:\Users\Jerome\AppData\Local\Deployment
2011-06-02 21:38:21 -------- d-----w- C:\Program Files (x86)\Belarc
2011-06-02 20:02:21 99840 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\HPZPPLHN.DLL
2011-06-02 20:01:48 -------- d-----w- C:\Program Files\Microsoft IntelliType Pro
2011-06-02 20:01:42 -------- d-----w- C:\Windows\PCHEALTH
2011-06-02 20:00:30 84992 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNBPP4.DLL
2011-06-02 19:59:35 -------- d-----w- C:\Windows\SysWow64\Wat
2011-06-02 19:59:34 -------- d-----w- C:\Windows\System32\Wat
2011-06-02 19:58:21 142336 ----a-w- C:\Windows\System32\poqexec.exe
2011-06-02 19:58:21 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2011-06-01 20:51:34 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-06-01 20:04:30 -------- d-----w- C:\Windows\SysWow64\x64
2011-06-01 20:04:30 -------- d-----w- C:\Windows\SysWow64\Lang
2011-06-01 20:04:08 306688 ----a-w- C:\Windows\IsUninst.exe
2011-06-01 20:03:36 345800 ----a-r- C:\Windows\System32\PROUnstl.exe
2011-06-01 20:03:06 36472 ----a-w- C:\Windows\System32\NicCo36.dll
2011-06-01 20:03:06 289496 ----a-w- C:\Windows\System32\drivers\e1y62x64.sys
2011-06-01 20:03:06 121440 ----a-w- C:\Windows\System32\e1000msg.dll
2011-06-01 20:03:04 78016 ----a-w- C:\Windows\System32\NicInstY.dll
2011-06-01 19:58:56 95744 ----a-w- C:\Windows\System32\RTEEL64A.dll
2011-06-01 19:56:39 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2011-06-01 19:56:36 -------- d-----w- C:\Intel
2011-06-01 19:55:23 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2011-06-01 19:55:07 -------- d-----w- C:\TempEI4
2011-06-01 19:49:36 -------- d-sh--w- C:\Windows\Installer
2011-06-01 19:36:38 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-06-01 19:36:35 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E47BD477-B35E-4E9B-B991-4AAEF808079A}\mpengine.dll
2011-06-01 19:36:01 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2011-06-01 19:36:01 31232 ----a-w- C:\Windows\System32\prevhost.exe
2011-06-01 19:36:00 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-06-01 19:36:00 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-06-01 19:36:00 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-06-01 19:34:08 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2011-06-01 19:34:08 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-06-01 19:34:08 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2011-06-01 19:34:08 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2011-06-01 10:22:27 -------- d-----w- C:\Windows\Panther
.
==================== Find3M ====================
.
2011-06-04 00:31:06 10488 ------w- C:\Windows\System32\drivers\cdralw2k.sys
2011-06-04 00:31:06 10488 ------w- C:\Windows\System32\drivers\cdr4_xp.sys
2011-06-04 00:31:05 52856 ------w- C:\Windows\System32\drivers\PxHlpa64.sys
2011-06-04 00:31:05 129784 ------w- C:\Windows\SysWow64\pxafs.dll
2011-06-04 00:31:05 118520 ------w- C:\Windows\SysWow64\pxinsi64.exe
2011-06-04 00:31:05 116472 ------w- C:\Windows\SysWow64\pxcpyi64.exe
2011-05-25 00:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2011-04-13 22:40:10 4284416 ----a-w- C:\Windows\SysWow64\GPhotos.scr
2011-04-13 20:04:38 45432 ----a-w- C:\Windows\System32\drivers\point64.sys
2011-04-13 20:04:38 1721576 ----a-w- C:\Windows\System32\wdfcoinstaller01009.dll
2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-04-09 04:00:34 465920 ----a-w- C:\Windows\System32\itpcoin815.dll
2011-04-09 04:00:28 464896 ----a-w- C:\Windows\System32\ipcoin815.dll
2011-04-01 10:10:46 539232 ----a-w- C:\Windows\SysWow64\LVUI2RC.dll
2011-04-01 10:10:24 543328 ----a-w- C:\Windows\SysWow64\LVUI2.dll
2011-04-01 10:08:36 301664 ----a-w- C:\Windows\SysWow64\lvcodec2.dll
2011-04-01 10:07:54 4184672 ----a-w- C:\Windows\System32\drivers\lvuvc64.sys
2011-04-01 10:07:30 559712 ----a-w- C:\Windows\System32\LVUIRC64.dll
2011-04-01 10:07:08 767584 ----a-w- C:\Windows\System32\LVUI64.dll
2011-04-01 10:07:02 10877272 ----a-w- C:\Windows\SysWow64\LogiDPP.dll
2011-04-01 10:07:02 10877272 ----a-w- C:\Windows\System32\LogiDPP.dll
2011-04-01 10:07:02 102744 ----a-w- C:\Windows\SysWow64\LogiDPPApp.exe
2011-04-01 10:07:02 102744 ----a-w- C:\Windows\System32\LogiDPPApp.exe
2011-04-01 10:06:56 331608 ----a-w- C:\Windows\SysWow64\DevManagerCore.dll
2011-04-01 10:06:56 331608 ----a-w- C:\Windows\System32\DevManagerCore.dll
2011-04-01 10:06:22 341856 ----a-w- C:\Windows\System32\drivers\lvrs64.sys
2011-04-01 10:05:38 261728 ----a-w- C:\Windows\System32\lvco13251014.dll
2011-04-01 10:05:16 172128 ----a-w- C:\Windows\System32\lvcod64.dll
2011-04-01 09:56:20 39318 ----a-w- C:\Windows\System32\Repository.reg
2011-03-23 05:02:22 15192 ----a-w- C:\Windows\System32\drivers\iKeyLFT264.dll
2011-03-12 12:08:49 1465344 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-03-12 11:23:45 870912 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-03-11 06:34:51 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 06:34:50 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 05:33:59 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:33:59 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
.
============= FINISH: 5:27:10.10 ===============
mrluckey
Active Member
 
Posts: 1
Joined: June 8th, 2011, 6:20 am
Advertisement
Register to Remove

Re: Spigot, Inc search engine pop up

Unread postby askey127 » June 12th, 2011, 6:55 am

Hi mrluckey,
Sorry for the delay. If you still need help and are not receiving it elsewhere, please proceed.
Please do not scan, remove, or install anything unless I ask, until we are through cleaning.
------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Uninstall a program under the Programs heading.
Right click each Entry, as follows, one by one, if it exists, choose Uninstall/Change, and give permission to Continue:

IObit Toolbar
Advanced SystemCare 4

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
---------------------------------------------
Run a Scan with OTL
  1. Please download OTL.exe by OldTimer and save it to your desktop.
  2. You can also download OTL from HERE
  3. Right click on OTL.exe and select Run As Administrator to run it. If Windows UAC prompts you, please allow it.
    Check the box at the top, labeled Include 64 bit scans
  4. Check the boxes labeled :
    • Scan All Users
    • LOP check
    • Purity check
  5. Copy the text from the code box below and paste it into the Custom Scans/Fixes box (under the aqua colored line)
    Code: Select all
    c:|Spigot;true;true;true; /FP
    c:|IOBit;true;true;true; /FP
    
  6. Click on the Run Scan button at the top left hand corner.
  7. OTL will start running. When done, 2 Notepad files will open; OTL.txt and Extras.txt.
    They will be saved on your desktop.
Please post the contents of these files.
You may use separate replies if you wish.
If any of the files are too large to post, you can split the oversize one(s) into multiple replies
The file Extras.txt is important to us, but will only show the very first time OTL is run.
askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Spigot, Inc search engine pop up

Unread postby askey127 » June 15th, 2011, 5:44 am

Due to Lack of Response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 13903
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 41 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware