Need help removing Spyware -- DMVlite

I am a new member. Whatever got ahold of my computer installed a number of programs. I removed most of the programs, but DMVlite would not be removed. Everytime I run Adaware it finds more critical objects, etc.

I found this site via google search. Others have posted regarding DMVlite so I followed the same advice.

I have run Spybot and Adaware. My log file from Hijackthis is below.

Even without a browser open, the spyware is still popping ad windows. Your help is much appreaciated. I recently had re-installed windows (it went blue screen when I downloaded service pack 2) so my computer was pretty clean.

Please help!

Logfile of HijackThis v1.99.0
Scan saved at 4:39:34 PM, on 1/8/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\WINDOWS\System32\wsxsvc\wsxsvc.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\WINDOWS\System32\vmss\vmss.exe
c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
C:\WINDOWS\System32\nvsvc32.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\WINDOWS\System32\ahuaz32.exe
C:\WINDOWS\System32\amsdmin.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = www.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com
R3 - Default URLSearchHook is missing
O2 - BHO: BTGrabObj Class - {00000000-F09C-02B4-6EC2-AD0300000000} - C:\WINDOWS\BTGrab.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SDWin32 Class - {A3EE42A4-5F09-4E54-81CE-6584D0CA716E} - C:\WINDOWS\System32\pwdfs.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: SDWin32 Class - {CAD601FF-3534-4DD9-85A3-905D47930258} - C:\WINDOWS\System32\dljhe.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe "
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [winupdtl] C:\WINDOWS\System32\winupdtl.exe
O4 - HKLM\..\Run: [cnicbjlwgxdm] C:\WINDOWS\System32\plhpjr.exe
O4 - HKLM\..\Run: [version] C:\WINDOWS\System32\adl_dh.exe
O4 - HKLM\..\Run: [Dvx] C:\WINDOWS\System32\wsxsvc\wsxsvc.exe
O4 - HKLM\..\Run: [vmss] C:\WINDOWS\System32\vmss\vmss.exe
O4 - HKLM\..\Run: [7ssS3tl] amsdmin.exe
O4 - HKLM\..\RunOnce: [AAW] "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe" "+b1 "
O4 - HKCU\..\Run: [MB32RjJse] ahuaz32.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - http://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
O16 - DPF: {C02226EB-A5D7-4B1F-BD7E-635E46C2288D} (Toontown Installer ActiveX Control) - http://download.toontown.com/sv1.0.14.48/ttinst.cab
O23 - Service: McAfee.com McShield - Unknown - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: NVIDIA Driver Helper Service - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

 

Hello

Run hijackthis Hit "config" then "misc tools" > "open proccess manager'
select each of these in turn and KILL Process
C:\WINDOWS\System32\wsxsvc\wsxsvc.exe
C:\WINDOWS\System32\vmss\vmss.exe
C:\WINDOWS\System32\ahuaz32.exe
C:\WINDOWS\System32\amsdmin.exe
C:\WINDOWS\System32\vmss\ << end any running from that folder
C:\WINDOWS\System32\wsxsvc\ <<same as above
Hit refresh and see if they came back, wheather or not they have move on to the next steps.
Hit >back< then Scan and Place a check next to these, close all browers and programs that show in the taskbar including explorer folder's and hit fix checked

R3 - Default URLSearchHook is missing
O2 - BHO: BTGrabObj Class - {00000000-F09C-02B4-6EC2-AD0300000000} - C:\WINDOWS\BTGrab.dll
O2 - BHO: SDWin32 Class - {A3EE42A4-5F09-4E54-81CE-6584D0CA716E} - C:\WINDOWS\System32\pwdfs.dll
O2 - BHO: SDWin32 Class - {CAD601FF-3534-4DD9-85A3-905D47930258} - C:\WINDOWS\System32\dljhe.dll
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [winupdtl] C:\WINDOWS\System32\winupdtl.exe
O4 - HKLM\..\Run: [cnicbjlwgxdm] C:\WINDOWS\System32\plhpjr.exe
O4 - HKLM\..\Run: [version] C:\WINDOWS\System32\adl_dh.exe
O4 - HKLM\..\Run: [Dvx] C:\WINDOWS\System32\wsxsvc\wsxsvc.exe
O4 - HKLM\..\Run: [vmss] C:\WINDOWS\System32\vmss\vmss.exe
O4 - HKLM\..\Run: [7ssS3tl] amsdmin.exe
O4 - HKCU\..\Run: [MB32RjJse] ahuaz32.exe
O16 - DPF: {C02226EB-A5D7-4B1F-BD7E-635E46C2288D} (Toontown Installer ActiveX Control) - =http://download.toontown.com/sv1.0.14.48/ttinst.cab
=============
Restart the PC
Set windows to show hidden file's, folder and extensions
>click here for instructions<.
find and delete (ONLY THESE EXACT) files and folder's (If present)
C:\WINDOWS\System32\wsxsvc
C:\WINDOWS\System32\vmss
C:\WINDOWS\System32\ahuaz32.exe
C:\WINDOWS\System32\amsdmin.exe
C:\WINDOWS\System32\winupdtl.exe
C:\WINDOWS\System32\plhpjr.exe
C:\WINDOWS\System32\adl_dh.exe

Empty the windows trashbin
Important
Delete the contents of all your temp folders, as in. Open C:\ then >
C:\documents and settings\(all your pc users)\local settings\temp
Note: Some systems have temporary internet files, Application Data and History in that temp, if so leave them and delete all other folders and files inside that temp..
Delete the contents of the C:\windows\temp folder

Clear Internet Explorers's cache
1. In Control Panel, open Internet Options.
2. Click the General tab, and then under Temporary Internet files, click Delete Files.
3. In the Delete Files dialog box, click to select the Delete all offline content check box.
4. wait for the hourglass to disapear
5. Click OK.

Clear sun Java's cache
> control panel > java-plugin > cache tab > hit clear!

Dont depend on any one antivirus program go get preferably two free onlines

Trend Micro-Free online Scan: http://housecall.trendmicro.com/
check all box's except [ ]auto clean !!, scan and if it cannot clean tell it to delete found files !!

BitDefender AntiVirus Free Scan, check all box's except [ ]auto clean !!,
then have it delete the file if it cannot clean/repair/cure it,
turn off any PopupBlockers before accessing the site:
http://www.bitdefender.com/scan/licence.php

If there are any problems Copy there report's back here please.

Post a new Log please

 

Need help removing a Trojan

Please help.

I had drive by download that put a Trojan on my system. I thought McAfee caught it, but I started immediately getting pop ups. I ran Adaware and SpyBot then ran Hijackthis.

Lonny helped me read the log. I followed instructions for killing processes and removing files. I also ran freeware virus checker from Trend and BitDefender. Trend killed 6 Trojans. Bit defender found more. Only option was auto-clean with Bitdefender.

I still have problems. Here are the log results from Bitdefender. Most of the problems appear to be at the bottom of this log file.

C:\Documents and Settings\All Users\Application Data\McAfee.com\Agent\News\valert.ui=>CmnIds.vbs:
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Skins\Ad-Aware SE default.ask=>arrow2.bmp: password protected
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AlexaRelated.zip=>sbRecovery.ini: password protected
Edited out excesive log, the above are what your security software has already removed, no need to have posted it. It ok.



C:\Documents and Settings\Juan Herrera\Local Settings\Temp\THI58CC.tmp\wupdt.exe: infected with Trojan.Downloader.OneClickNetSearch.H
C:\Documents and Settings\Juan Herrera\Local Settings\Temp\THI58CC.tmp\wupdt.exe: deleted
C:\Documents and Settings\Juan Herrera\Local Settings\Temp\THI6C77.tmp\wupdt.exe: infected with Trojan.Downloader.OneClickNetSearch.H
C:\Documents and Settings\Juan Herrera\Local Settings\Temp\THI6C77.tmp\wupdt.exe: deleted
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>CmnIds.vbs: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/arrow_right.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/btn_signup_52x20.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/more_info.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/sidetable_bottom.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/sidetable_bottom_red.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/sidetable_top.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/sidetable_top_red.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/transpix.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>images/watermark_mys_150x130.gif: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>oemcfg.vbs: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>OEMIds.vbs: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>valert.htm: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>valert_old.htm: password protected
C:\Documents and Settings\Madison Herrera\Local Settings\Temporary Internet Files\Content.IE5\MR2B238T\valert[1].ui=>hs~valert.htm: password protected
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Skins\Ad-Aware SE default.ask=>arrow1.bmp: password protected

C:\WINDOWS\bundles\adl_mteststub.exe: suspect Trojan.Proxy.Ranky.Gen
C:\WINDOWS\bundles\adl_mteststub.exe: disinfection failed
C:\WINDOWS\bundles\HelperInstaller.exe: infected with Trojan.Dropper.Delf.Z
C:\WINDOWS\bundles\HelperInstaller.exe: deleted
C:\WINDOWS\bundles\saie1101.exe=>(Upx): infected with Trojan.Dropper.Small.MR
C:\WINDOWS\bundles\saie1101.exe=>(Upx): disinfection failed
C:\WINDOWS\bundles\shopinst.exe: infected with Trojan.Downloader.Small.WJ
C:\WINDOWS\bundles\shopinst.exe: deleted
C:\WINDOWS\bundles\thin-8-1-x-x.exe=>(ASPack 2.12): infected with Trojan.Downloader.Agent.AF
C:\WINDOWS\bundles\thin-8-1-x-x.exe=>(ASPack 2.12): disinfection failed
C:\WINDOWS\bundles\videoinst.exe: infected with Trojan.Downloader.Small.WJ
C:\WINDOWS\bundles\videoinst.exe: deleted
C:\WINDOWS\bundles\WebRebates_Auto_InstallSilent.exe=>(NSIS o)=>zlib_nsis0001: infected with Application.ProcKill.Jk
C:\WINDOWS\bundles\WebRebates_Auto_InstallSilent.exe=>(NSIS o)=>zlib_nsis0001: disinfection failed
C:\WINDOWS\schk32.exe: infected with Backdoor.Agent.BG
C:\WINDOWS\schk32.exe: disinfection failed
C:\WINDOWS\wupdsnff.exe: infected with Trojan.Dropper.Agent.CH
C:\WINDOWS\wupdsnff.exe: deleted

 

Hi Juan Herrera

Keep your posts here by using the post reply button
Manualy delete these
C:\WINDOWS\bundles < delete
C:\WINDOWS\schk32.exe < delete

Download System Security Suite.
http://www.igorshpak.net/
Extract it from the zip file and run setup.exe
after the install you can delete setup.exe and the downloaded zip file
Start the program Check all the boxes under the 'Items to Clear' tab and click
'Clear Selected Items'. You will be prompted to reboot, do so.

Make a new hijackthis log and post it to this thread please.

 

Lonny,

Here is my new log file. Sorry for starting new thread.

Logfile of HijackThis v1.99.0
Scan saved at 9:03:40 PM, on 1/9/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\Program Files\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = www.msn.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe "
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [EPSON Stylus CX5200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX5200" /O6 "USB001" /M "Stylus CX5200 "
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
O23 - Service: EpsonBidirectionalService - Unknown - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O23 - Service: McAfee.com McShield - Unknown - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: NVIDIA Driver Helper Service - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

 

More info to previous post...

I appear to be running better. No recent unwanted pop ups. However, I still have DMVlite in the add/remove programs directory. I did not try click on it or try to remove it because the last time I tried to remove it launched a browser.

 

Thats good news

You can delete rouge (iffy) items in addremove with SpyBots tools.
Open it on the toolbar go mode and change to advanced mode > tools > uninstall info > selete and choose delete near the top that dmvlite crappie.

Let use know if there are any problems

 

Thanks!

Lonny,

Thank you for your help. I think I am fixed. I learned a lot in the process and will pass along what I have learned.

Juan Herrera