I need help with BankerFox.A problems

View previous topic View next topic Go down

I need help with BankerFox.A problems

Post by mhammer on Wed Oct 14, 2009 9:39 am

I ran Hijack This and this is the report: What do i need to do next?


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:33:15 AM, on 10/14/2009
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16890)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Symantec Shared\coShared\CIM\1.5\AcctMgr.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
c:\PROGRA~1\mcafee\msc\mcuimgr.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Man of the House\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3DXJ2XBX\play[1].exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\mcafee\msc\mcshell.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - c:\PROGRA~1\mcafee\msk\mcapbho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] "C:\Program Files\Common Files\Symantec Shared\coShared\CIM\1.5\AcctMgr.exe" /startup
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [You must be registered and logged in to see this link.]
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: pinger - Unknown owner - C:\TOSHIBA\IVP\ISM\pinger.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 10624 bytes

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Wed Oct 14, 2009 2:46 pm

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Wed Oct 14, 2009 4:27 pm

Malwarebytes' Anti-Malware 1.41
Database version: 2962
Windows 6.0.6000

10/14/2009 4:26:22 PM
mbam-log-2009-10-14 (16-26-22).txt

Scan type: Quick Scan
Objects scanned: 86861
Time elapsed: 8 minute(s), 10 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\AvScan (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Wed Oct 14, 2009 4:53 pm


  • Please download DDS by sUBs to your Desktop (Important!!) from one of these locations:
    [You must be registered and logged in to see this link.]
    [You must be registered and logged in to see this link.]
  • Double click DDS.scr to run.
  • When complete, two logs will open. Save both of the report to your Desktop.
  • Copy and paste DDS.txt back here, I don't need to see attach.txt just yet.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Thu Oct 15, 2009 6:16 am

Here are the results of the DDS:

DDS (Ver_09-10-13.01) - NTFSx86
Run by Man of the House at 6:09:34.25 on Thu 10/15/2009
Internet Explorer: 7.0.6000.16916
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.2038.991 [GMT -4:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
SP: McAfee VirusScan *enabled* (Updated) {C78B3C70-4777-4742-BB91-9D615CC575E6}
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
FW: McAfee Personal Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k nȯne
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Windows\system32\taskeng.exe
C:\TOSHIBA\IVP\ISM\pinger.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Windows\system32\taskeng.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Symantec Shared\coShared\CIM\1.5\AcctMgr.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\mcafee\msc\mcuimgr.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Man of the House\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OPBPDHVZ\dds[1].scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = [You must be registered and logged in to see this link.]
mDefault_Page_URL = [You must be registered and logged in to see this link.]
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {1e8a6170-7264-4d0f-beae-d42a53123c75} - c:\program files\common files\symantec shared\coshared\browser\1.5\NppBho.dll
BHO: McAfee Phishing Filter: {377c180e-6f0e-4d4c-980f-f45bd3d40cf4} - c:\progra~1\mcafee\msk\mcapbho.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\progra~1\mcafee\viruss~1\scriptsn.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.3.4501.1418\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
TB: Show Norton Toolbar: {90222687-f593-4738-b738-fbee9c7b26df} - c:\program files\common files\symantec shared\coshared\browser\1.5\UIBHO.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\TOSCDSPD.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
mRun: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPStart] c:\program files\synaptics\syntp\SynTPStart.exe
mRun: [NDSTray.exe] NDSTray.exe
mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
mRun: [mcagent_exe] c:\program files\mcafee.com\agent\mcagent.exe /runkey
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [AcctMgr] "c:\program files\common files\symantec shared\coshared\cim\1.5\AcctMgr.exe" /startup
mRun: [Symantec PIF AlertEng] "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe" /a /m "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\AlertEng.dll"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\1.0.150\SSScheduler.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [You must be registered and logged in to see this link.]
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - [You must be registered and logged in to see this link.]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [You must be registered and logged in to see this link.]
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [You must be registered and logged in to see this link.]
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL

============= SERVICES / DRIVERS ===============

R2 CWMonitor;Symantec Crimeware Protection Driver;c:\program files\common files\symantec shared\coshared\cw\1.5\CO_Mon.sys [2007-1-12 38752]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-10-14 102448]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2007-11-6 7168]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8187B.sys [2009-9-15 252416]

=============== Created Last 30 ================

2009-10-14 16:16 --d----- c:\users\manoft~1\appdata\roaming\Malwarebytes
2009-10-14 16:16 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-14 16:16 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-10-14 16:16 --d----- c:\programdata\Malwarebytes
2009-10-14 16:16 --d----- c:\progra~2\Malwarebytes
2009-10-14 16:16 --d----- c:\program files\Malwarebytes' Anti-Malware
2009-10-14 09:21 --d----- c:\program files\Trend Micro
2009-10-14 08:07 186,256 a------- c:\windows\system32\SymNPPWA.dll
2009-10-14 07:07 1,383,424 a------- c:\windows\system32\mshtml.tlb
2009-10-14 07:07 48,128 a------- c:\windows\system32\mshtmler.dll
2009-10-14 06:59 3,502,152 a------- c:\windows\system32\ntkrnlpa.exe
2009-10-14 06:59 3,467,864 a------- c:\windows\system32\ntoskrnl.exe
2009-10-14 06:58 428,032 a------- c:\windows\system32\EncDec.dll
2009-10-14 06:58 217,088 a------- c:\windows\system32\psisrndr.ax
2009-10-14 06:58 292,352 a------- c:\windows\system32\psisdecd.dll
2009-10-14 06:58 1,244,672 a------- c:\windows\system32\mcmde.dll
2009-10-14 06:58 80,896 a------- c:\windows\system32\MSNP.ax
2009-10-14 06:58 57,856 a------- c:\windows\system32\MSDvbNP.ax
2009-10-14 06:58 177,152 a------- c:\windows\system32\mpg2splt.ax
2009-10-14 06:58 68,608 a------- c:\windows\system32\Mpeg2Data.ax
2009-10-14 06:55 60,928 a------- c:\windows\system32\msasn1.dll
2009-10-14 06:55 130,048 a------- c:\windows\system32\drivers\srv2.sys
2009-10-14 06:55 604,672 a------- c:\windows\system32\WMSPDMOD.DLL
2009-10-06 06:26 2,421,760 a------- c:\windows\system32\wucltux.dll
2009-10-06 06:26 87,552 a------- c:\windows\system32\wudriver.dll
2009-10-06 06:26 171,608 a------- c:\windows\system32\wuwebv.dll
2009-10-06 06:26 33,792 a------- c:\windows\system32\wuapp.exe
2009-09-22 07:29 268,800 a------- c:\windows\system32\es.dll
2009-09-18 08:28 11,722,752 a------- c:\windows\system32\NlsLexicons0001.dll
2009-09-18 08:21 1,585,664 a------- c:\windows\system32\setupapi.dll
2009-09-18 08:16 549,888 a------- c:\windows\system32\rpcss.dll
2009-09-18 08:16 654,336 a------- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-18 08:16 24,576 a------- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-18 08:16 247,296 a------- c:\windows\system32\wbem\WmiPrvSE.exe
2009-09-18 08:16 130,560 a------- c:\windows\system32\wbem\WmiDcPrv.dll
2009-09-18 08:16 614,912 a------- c:\windows\system32\wbem\fastprox.dll
2009-09-18 08:16 501,760 a------- c:\windows\system32\wbem\WmiPrvSD.dll
2009-09-18 08:16 158,720 a------- c:\windows\system32\sdohlp.dll
2009-09-18 08:16 53,248 a------- c:\windows\system32\iasads.dll
2009-09-18 08:16 37,888 a------- c:\windows\system32\iasdatastore.dll
2009-09-18 08:16 97,280 a------- c:\windows\system32\iasrecst.dll
2009-09-18 08:12 223,232 a------- c:\windows\system32\WMASF.DLL
2009-09-18 08:12 9,728 a------- c:\windows\system32\LAPRXY.DLL
2009-09-18 08:12 2,048 a------- c:\windows\system32\asferror.dll
2009-09-18 08:11 25,600 a------- c:\windows\system32\amxread.dll
2009-09-18 08:11 14,848 a------- c:\windows\system32\apilogen.dll
2009-09-18 08:10 425,472 a------- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-18 08:10 712,192 a------- c:\windows\system32\WindowsCodecs.dll
2009-09-18 08:10 347,136 a------- c:\windows\system32\WindowsCodecsExt.dll
2009-09-18 08:06 441,856 a------- c:\windows\system32\win32spl.dll
2009-09-18 08:06 37,376 a------- c:\windows\system32\printcom.dll
2009-09-18 08:06 113,664 a------- c:\windows\system32\drivers\rmcast.sys
2009-09-18 08:06 14,848 a------- c:\windows\system32\wshrm.dll
2009-09-18 08:05 8,147,968 a------- c:\windows\system32\wmploc.DLL
2009-09-18 08:05 7,680 a------- c:\windows\system32\spwmp.dll
2009-09-18 08:05 4,096 a------- c:\windows\system32\msdxm.ocx
2009-09-18 08:05 4,096 a------- c:\windows\system32\dxmasf.dll
2009-09-18 08:05 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-09-18 08:05 43,520 a------- c:\windows\system32\msdxm.tlb
2009-09-18 08:05 18,432 a------- c:\windows\system32\amcompat.tlb
2009-09-18 08:04 11,776 a------- c:\windows\system32\sbunattend.exe
2009-09-18 08:02 290,304 a------- c:\windows\system32\drivers\srv.sys
2009-09-18 07:54 622,080 a------- c:\windows\system32\icardagt.exe
2009-09-18 07:54 97,800 a------- c:\windows\system32\infocardapi.dll
2009-09-18 07:54 11,264 a------- c:\windows\system32\icardres.dll
2009-09-18 07:54 37,384 a------- c:\windows\system32\infocardcpl.cpl
2009-09-18 07:54 105,016 a------- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-18 07:54 781,344 a------- c:\windows\system32\PresentationNative_v0300.dll
2009-09-18 07:54 326,160 a------- c:\windows\system32\PresentationHost.exe
2009-09-18 07:54 43,544 a------- c:\windows\system32\PresentationHostProxy.dll
2009-09-17 09:58 2,048 a------- c:\windows\system32\tzres.dll
2009-09-17 09:56 361,984 a------- c:\windows\system32\IPSECSVC.DLL
2009-09-17 09:56 272,896 a------- c:\windows\system32\polstore.dll
2009-09-17 09:56 61,440 a------- c:\windows\system32\winipsec.dll
2009-09-17 09:56 28,672 a------- c:\windows\system32\FwRemoteSvr.dll
2009-09-17 09:55 241,152 a------- c:\windows\system32\PortableDeviceApi.dll
2009-09-17 09:55 160,768 a------- c:\windows\system32\PortableDeviceTypes.dll
2009-09-17 09:55 95,232 a------- c:\windows\system32\PortableDeviceClassExtension.dll
2009-09-17 09:50 704,000 a------- c:\windows\system32\PhotoScreensaver.scr
2009-09-17 09:50 356,352 a------- c:\windows\system32\wbem\wbemcomn.dll
2009-09-17 09:50 24,064 a------- c:\windows\system32\wtsapi32.dll
2009-09-17 09:50 20,920 a------- c:\windows\system32\drivers\compbatt.sys
2009-09-17 09:50 258,232 a------- c:\windows\system32\drivers\acpi.sys
2009-09-17 09:50 28,344 a------- c:\windows\system32\drivers\battc.sys
2009-09-17 09:50 14,208 a------- c:\windows\system32\drivers\CmBatt.sys
2009-09-17 09:50 714,240 a------- c:\windows\system32\timedate.cpl
2009-09-17 09:50 542,720 a------- c:\windows\system32\sysmain.dll
2009-09-17 09:49 194,560 a------- c:\windows\system32\WebClnt.dll
2009-09-17 09:49 110,080 a------- c:\windows\system32\drivers\mrxdav.sys
2009-09-17 09:48 123,904 a------- c:\windows\system32\L2SecHC.dll
2009-09-17 09:48 1,654,487 a------- c:\windows\system32\wlan.tmf
2009-09-17 09:48 289,280 a------- c:\windows\system32\wlanmsm.dll
2009-09-17 09:48 67,584 a------- c:\windows\system32\wlanhlp.dll
2009-09-17 09:48 47,104 a------- c:\windows\system32\wlanapi.dll
2009-09-17 09:48 12,880 a------- c:\windows\system32\wbem\wlan.mof
2009-09-17 09:48 502,784 a------- c:\windows\system32\wlansvc.dll
2009-09-17 09:48 299,520 a------- c:\windows\system32\wlansec.dll
2009-09-17 09:47 2,028,032 a------- c:\windows\system32\win32k.sys
2009-09-17 09:46 289,792 a------- c:\windows\system32\atmfd.dll
2009-09-17 09:46 156,160 a------- c:\windows\system32\t2embed.dll
2009-09-17 09:46 72,704 a------- c:\windows\system32\fontsub.dll
2009-09-17 09:46 34,304 a------- c:\windows\system32\atmlib.dll
2009-09-17 09:46 24,064 a------- c:\windows\system32\lpk.dll
2009-09-17 09:46 10,240 a------- c:\windows\system32\dciman32.dll
2009-09-17 09:44 2,855,424 a------- c:\windows\system32\mf.dll
2009-09-17 09:44 98,816 a------- c:\windows\system32\mfps.dll
2009-09-17 09:44 52,736 a------- c:\windows\system32\rrinstaller.exe
2009-09-17 09:44 24,576 a------- c:\windows\system32\mfpmp.exe
2009-09-17 09:44 2,048 a------- c:\windows\system32\mferror.dll
2009-09-17 09:43 376,832 a------- c:\windows\system32\winhttp.dll
2009-09-17 09:41 71,680 a------- c:\windows\system32\atl.dll
2009-09-17 09:40 297,472 a------- c:\windows\system32\gdi32.dll
2009-09-17 09:37 1,060,920 a------- c:\windows\system32\drivers\ntfs.sys
2009-09-17 09:37 41,984 a------- c:\windows\system32\drivers\monitor.sys
2009-09-17 09:34 211,456 a------- c:\windows\system32\drivers\mrxsmb10.sys
2009-09-17 09:32 500,736 a------- c:\windows\system32\msdtcprx.dll
2009-09-17 09:32 30,208 a------- c:\windows\system32\xolehlp.dll
2009-09-17 09:30 156,160 a------- c:\windows\system32\wkssvc.dll
2009-09-17 09:29 1,871,872 a------- c:\windows\system32\mstscax.dll
2009-09-17 09:29 116,736 a------- c:\windows\system32\aaclient.dll
2009-09-17 09:29 36,352 a------- c:\windows\system32\tsgqec.dll
2009-09-17 09:28 303,616 a------- c:\windows\system32\wmpeffects.dll
2009-09-17 09:26 1,194,496 a------- c:\windows\system32\msxml3.dll
2009-09-17 09:26 2,048 a------- c:\windows\system32\msxml3r.dll
2009-09-17 09:24 356,864 a------- c:\windows\system32\MediaMetadataHandler.dll
2009-09-17 09:19 --d----- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-09-17 09:19 696,832 a------- c:\windows\system32\localspl.dll
2009-09-17 09:17 65,024 a------- c:\windows\system32\avicap32.dll
2009-09-17 09:17 123,904 a------- c:\windows\system32\msvfw32.dll
2009-09-17 09:17 88,576 a------- c:\windows\system32\avifil32.dll
2009-09-17 09:17 82,944 a------- c:\windows\system32\mciavi32.dll
2009-09-17 09:17 31,232 a------- c:\windows\system32\msvidc32.dll
2009-09-17 09:17 12,800 a------- c:\windows\system32\msrle32.dll
2009-09-17 09:14 21,560 a------- c:\windows\system32\drivers\atapi.sys
2009-09-17 09:14 109,624 a------- c:\windows\system32\drivers\ataport.sys
2009-09-17 09:14 45,112 a------- c:\windows\system32\drivers\pciidex.sys
2009-09-17 09:14 25,656 a------- c:\windows\system32\drivers\msahci.sys
2009-09-17 09:14 17,464 a------- c:\windows\system32\drivers\intelide.sys
2009-09-17 09:14 211,000 a------- c:\windows\system32\drivers\volsnap.sys
2009-09-17 09:14 154,624 a------- c:\windows\system32\drivers\nwifi.sys
2009-09-17 09:13 2,923,520 a------- c:\windows\explorer.exe
2009-09-17 09:09 24,064 a------- c:\windows\system32\netcfg.exe
2009-09-17 08:53 83,968 a------- c:\windows\system32\dnsrslvr.dll
2009-09-17 08:53 24,576 a------- c:\windows\system32\dnscacheugc.exe
2009-09-17 08:32 31,391,744 a------- c:\windows\ocsetup_install_NetFx3.etl
2009-09-17 08:32 458,752 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf
2009-09-17 08:32 196,608 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx
2009-09-17 08:27 96,760 a------- c:\windows\system32\dfshim.dll
2009-09-17 08:27 41,984 a------- c:\windows\system32\netfxperf.dll
2009-09-17 08:27 282,112 a------- c:\windows\system32\mscoree.dll
2009-09-17 08:27 158,720 a------- c:\windows\system32\mscorier.dll
2009-09-17 08:27 83,968 a------- c:\windows\system32\mscories.dll
2009-09-17 08:00 28,672 a------- c:\windows\system32\Apphlpdm.dll
2009-09-17 08:00 4,247,552 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-17 08:00 1,686,528 a------- c:\windows\system32\gameux.dll
2009-09-17 07:58 94,720 a------- c:\windows\system32\logagent.exe
2009-09-17 07:58 996,352 a------- c:\windows\system32\WMNetMgr.dll
2009-09-17 07:57 101,888 a------- c:\windows\system32\drivers\mrxsmb.sys
2009-09-17 07:57 58,368 a------- c:\windows\system32\drivers\mrxsmb20.sys
2009-09-17 07:57 84,992 a------- c:\windows\system32\drivers\srvnet.sys
2009-09-17 07:57 737,792 a------- c:\windows\system32\inetcomm.dll
2009-09-17 07:57 84,480 a------- c:\windows\system32\INETRES.dll
2009-09-17 07:56 1,645,568 a------- c:\windows\system32\connect.dll
2009-09-17 07:55 788,992 a------- c:\windows\system32\rpcrt4.dll
2009-09-17 07:55 1,327,104 a------- c:\windows\system32\quartz.dll
2009-09-17 07:52 1,341,440 a------- c:\windows\system32\msxml6.dll
2009-09-17 07:52 2,048 a------- c:\windows\system32\msxml6r.dll
2009-09-16 00:52 494,592 a------- c:\windows\system32\kerberos.dll
2009-09-16 00:51 272,384 a------- c:\windows\system32\schannel.dll
2009-09-16 00:51 175,104 a------- c:\windows\system32\wdigest.dll
2009-09-16 00:51 1,233,920 a------- c:\windows\system32\lsasrv.dll
2009-09-16 00:51 408,136 a------- c:\windows\system32\drivers\ksecdd.sys
2009-09-16 00:51 72,704 a------- c:\windows\system32\secur32.dll
2009-09-16 00:51 7,680 a------- c:\windows\system32\lsass.exe
2009-09-16 00:25 --d----- c:\programdata\McAfee Security Scan
2009-09-16 00:25 --d----- c:\progra~2\McAfee Security Scan
2009-09-16 00:25 --d----- c:\program files\McAfee Security Scan
2009-09-15 23:42 --d----- c:\users\manoft~1\appdata\roaming\Symantec
2009-09-15 23:39 --d----- c:\users\Man of the House
2009-09-15 15:27 --d----- c:\program files\common files\Toshiba Shared
2009-09-15 15:26 285,184 a------- c:\windows\system32\drivers\tos_sps32.sys
2009-09-15 15:25 172,032 a------- c:\windows\system32\igfxres.dll
2009-09-15 15:25 16,056 a------- c:\windows\system32\results.xml
2009-09-15 15:18 252,416 a------- c:\windows\system32\drivers\rtl8187B.sys
2009-09-15 15:18 252,416 a------- c:\windows\system\rtl8187B.sys
2009-09-15 15:18 --d----- c:\program files\REALTEK RTL8187B Wireless LAN Driver
2009-09-15 15:13 920,088 a------- c:\windows\system32\igxpun.exe
2009-09-15 15:13 319,456 a------- c:\windows\system32\difxapi.dll
2009-09-15 15:13 --d----- c:\windows\system32\Lang
2009-09-15 15:08 --d----- c:\programdata\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
2009-09-15 15:08 --d----- c:\progra~2\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
2009-09-15 15:08 --d----- c:\program files\Activation Assistant for the 2007 Microsoft Office suites
2009-09-15 15:05 32,592 a------- c:\windows\system32\msonpmon.dll
2009-09-15 15:03 --d----- c:\windows\PCHEALTH
2009-09-15 15:02 --d----- c:\programdata\Microsoft Help
2009-09-15 14:55 --dsh--- C:\$RECYCLE.BIN
2009-09-15 14:46 4 ---shr-- c:\windows\system32\drivers\taishop.sys

==================== Find3M ====================

2009-10-14 08:05 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS
2009-10-14 08:05 10,635 a------- c:\windows\system32\drivers\SYMEVENT.CAT
2009-10-14 08:05 806 a------- c:\windows\system32\drivers\SYMEVENT.INF
2009-09-18 13:11 665,600 a------- c:\windows\inf\drvindex.dat
2009-09-18 13:11 86,016 a------- c:\windows\inf\infstrng.dat
2009-09-18 13:11 86,016 a------- c:\windows\inf\infstor.dat
2009-09-18 13:11 51,200 a------- c:\windows\inf\infpub.dat
2009-09-18 08:28 4,164,096 a------- c:\windows\system32\NlsLexicons0002.dll
2009-09-18 08:20 371,712 a------- c:\windows\system32\srcore.dll
2009-09-18 08:11 40,960 a------- c:\windows\apppatch\apihex86.dll
2009-09-17 10:13 174 a--sh--- c:\program files\desktop.ini
2009-09-17 08:00 2,560 a------- c:\windows\apppatch\AcRes.dll
2009-09-17 08:00 2,143,744 a------- c:\windows\apppatch\AcGenral.dll
2009-09-17 08:00 537,600 a------- c:\windows\apppatch\AcLayers.dll
2009-09-17 08:00 449,024 a------- c:\windows\apppatch\AcSpecfc.dll
2009-09-17 08:00 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2009-09-10 13:38 216,576 a------- c:\windows\system32\msv1_0.dll
2009-08-27 10:02 832,512 a------- c:\windows\system32\wininet.dll
2009-08-27 09:57 56,320 a------- c:\windows\system32\iesetup.dll
2009-08-27 09:57 78,336 a------- c:\windows\system32\ieencode.dll
2009-08-27 09:57 52,736 a------- c:\windows\apppatch\iebrshim.dll
2009-08-27 09:56 72,704 a------- c:\windows\system32\admparse.dll
2009-08-27 07:24 26,624 a------- c:\windows\system32\ieUnatt.exe
2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 6:11:29.17 ===============

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Thu Oct 15, 2009 12:56 pm

Hello.

  • Click Start >> Control Panel.
  • Under the Programs click Uninstall a Program
  • Highlight Java(TM) 6 Update 2
  • Click on the Uninstall/Change button at the top.

How is the machine running now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Thu Oct 15, 2009 1:20 pm

I have two separate buttons, one is change, and the other is uninstall. Which one do I need to press?

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Thu Oct 15, 2009 3:49 pm

Press the uninstall button. Smile


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Thu Oct 15, 2009 4:18 pm

The computer seems to be running a little faster now! That is a good thing. What was that program that you had me uninstall?

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Thu Oct 15, 2009 5:08 pm

Just an old version of Java. Smile


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Thu Oct 15, 2009 5:25 pm

Well so far the computer seem to be doing better! Thanks again. Will it hurt anything to have the trial version of Norton installed on my computer? If so how do I uninstall it?

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Thu Oct 15, 2009 6:13 pm

Hello.
You already have Mcafee install from what I see in your logs, and installing Norton will only lead to trouble.

a) Norton is a big product, and so is Mcafee.
b) BOTH of them will fight for system resources and your machine will slow down hell of a lot.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by mhammer on Thu Oct 15, 2009 6:22 pm

Well, I have the Norton bar at the top of my screen that says "Fraud monitoring is on." If it will hurt me, how can I get it off my system?

mhammer
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-10-14
OS OS : Vista
Points Points : 26119
# Likes # Likes : 0

View user profile

Back to top Go down

Re: I need help with BankerFox.A problems

Post by Belahzur on Thu Oct 15, 2009 7:42 pm

Hello.
It's okay with that, cause it's not the main antivirus engine that is installed.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34917
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245080
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum