1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

System Error popup

Discussion in 'Malware and Virus Removal Archive' started by liewxta, 2008/06/30.

  1. 2008/06/30
    liewxta

    liewxta Inactive Thread Starter

    Joined:
    2008/06/30
    Messages:
    2
    Likes Received:
    0
    Hey, I am having the problem of the popup with the message "Attention, username! Some dangerous trojan horses......" However, I cant seem to resolve this problem. Someone pls help me.
    here is the Deckard report:

    -- HijackThis Clone ------------------------------------------------------------


    Emulating logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 2008-06-30 17:17:15
    Platform: Windows XP Service Pack 2 (5.01.2600)
    MSIE: Internet Explorer (7.00.6000.16674)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\system32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\CCSETMGR.EXE
    C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Common Files\Symantec Shared\CCEVTMGR.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE
    C:\WINDOWS\sm56hlpr.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\McAfee.com\Agent\mcagent.exe
    C:\Program Files\SiteAdvisor\6261\SiteAdv.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\WINDOWS\ehome\ehrecvr.exe
    C:\WINDOWS\ehome\ehSched.exe
    D:\Program Files\iFlashBook\Updater\iBookUpdater.exe
    C:\Program Files\McAfee\MSC\mcmscsvc.exe
    C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
    C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
    C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
    C:\WINDOWS\system32\sistray.exe
    C:\Program Files\McAfee\MPF\MpfSrv.exe
    C:\Program Files\SystemGuards.com\SystemGuards\sgScheduleService.exe
    C:\Program Files\SiteAdvisor\6261\SAService.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\Program Files\McAfee\VirusScan\mcsysmon.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\McAfee\VirusScan\Mcshield.exe
    C:\Program Files\McAfee\MSC\mcshell.exe
    C:\Program Files\McAfee\VirusScan\mcods.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\McAfee\VirusScan\mcvsshld.exe
    C:\Documents and Settings\Amanda Liew\Desktop\dss.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = iexplore
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - (no file)
    O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\GoogleToolbar1.dll
    O2 - BHO: Catcher Class - {ADECBED6-0366-4377-A739-E69DFBA04663} - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
    O2 - BHO: Spybot-S&D IE Protection - {B1892F58-1116-4DEC-92AA-577872EC3D3D} - C:\WINDOWS\system32\xmlview.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe "
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe "
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
    O4 - HKLM\..\Run: [System Guards] C:\Program Files\SystemGuards.com\SystemGuards\SysGuards.exe
    O4 - HKLM\..\Run: [SiteAdvisor] "C:\Program Files\SiteAdvisor\6261\SiteAdv.exe "
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe "
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [uTorrent Download Optimizer] C:\Program Files\uTorrent Download Optimizer\uTorrent Download Optimizer.exe
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe "
    O4 - HKCU\..\Run: [WinMx Download Optimizer] "C:\Program Files\uTorrent Download Optimizer\uTorrent Download Optimizer.exe" -tray
    O4 - HKCU\..\Run: [antispy] C:\Program Files\IEAntiVirus\ANTIVIR.exe
    O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user')
    O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
    O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    O4 - Global Startup: Ralink Wireless Utility.lnk = ?
    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
    O8 - Extra context menu item: &Download with SupersonicDownloadAccelerator! - C:\Program Files\Supersonic Download Accelerator\supersonicdownloadaccelerator.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll/206 (file missing)
    O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Alina\Start Menu\Programs\IMVU\Run IMVU.lnk
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O15 - Trusted Zone: http://dreamlessmusic.blogspot.com (HKCU)
    O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} () - http://codecs.microsoft.com/codecs/i386/fhg.CAB
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/downl...-495c-b89f-c1c34c691085/LegitCheckControl.cab
    O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
    O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
    O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab Class) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
    O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
    O18 - Protocol: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Protocol: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
    O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll
    O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
    O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
    O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCEVTMGR.EXE
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPWDSVC.EXE
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCSETMGR.EXE
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: iBookUpdater - Unknown owner - D:\Program Files\iFlashBook\Updater\iBookUpdater.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\Mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MpfSrv.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: sgSchedulerService - Unknown owner - C:\Program Files\SystemGuards.com\SystemGuards\sgScheduleService.exe
    O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6261\SAService.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe


    --
    End of file - 16846 bytes

    -- Files created between 2008-05-30 and 2008-06-30 -----------------------------

    2008-06-30 15:53:12 0 d-------- C:\Program Files\IEAntiVirus
    2008-06-30 15:16:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Launcher
    2008-06-30 15:04:49 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\MozillaControl
    2008-06-30 15:02:39 0 d-------- C:\Program Files\Mozilla ActiveX Control v1.7.12
    2008-06-30 15:02:02 0 d-------- C:\Program Files\Graboid
    2008-06-30 14:53:11 26624 --a------ C:\WINDOWS\system32\xmlview.dll
    2008-06-30 14:52:20 26624 --a------ C:\WINDOWS\system32\xmlwin.dll
    2008-06-30 14:52:01 26624 --a------ C:\WINDOWS\system32\domview.dll
    2008-06-30 13:49:09 20480 --a------ C:\WINDOWS\system32\6b589a2.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-30 13:49:09 20480 --a------ C:\WINDOWS\system32\1d1bd021.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-30 13:28:37 20480 --a------ C:\WINDOWS\system32\bc14080.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-30 13:28:37 20480 --a------ C:\WINDOWS\system32\6f0866d.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-30 12:21:49 20480 --a------ C:\WINDOWS\system32\c66a740.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-30 12:21:49 20480 --a------ C:\WINDOWS\system32\2640bb5.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-27 20:20:15 20480 --a------ C:\WINDOWS\system32\3553636c.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-27 20:20:15 20480 --a------ C:\WINDOWS\system32\201a6df8.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-27 20:08:58 0 d-------- C:\PSFONTS
    2008-06-27 20:08:15 0 d-------- C:\Program Files\Finale NotePad 2008
    2008-06-27 20:04:57 0 d-------- C:\Program Files\Cakewalk Express
    2008-06-25 14:05:08 0 d-------- C:\WINDOWS\Application Data
    2008-06-22 21:26:28 0 d-------- C:\Program Files\Common Files\INCA Shared
    2008-06-22 21:26:22 4682 --a------ C:\WINDOWS\system32\npptNT2.sys <Not Verified; INCA Internet Co., Ltd.; nProtect NPSC Kernel Mode Driver for NT>
    2008-06-22 21:10:58 0 d-------- C:\Program Files\WIZET
    2008-06-22 11:38:26 20480 --a------ C:\WINDOWS\system32\36c3dd1d.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-22 11:38:26 20480 --a------ C:\WINDOWS\system32\1728cef9.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-19 10:12:15 20480 --a------ C:\WINDOWS\system32\3bbaca.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-19 10:12:15 20480 --a------ C:\WINDOWS\system32\18c74622.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-17 14:09:34 20480 --a------ C:\WINDOWS\system32\cb8a4.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-17 14:09:34 20480 --a------ C:\WINDOWS\system32\42b2b5f.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-15 18:07:22 0 d-------- C:\Program Files\Auto Shutdown
    2008-06-15 17:29:12 0 d-------- C:\Documents and Settings\Alina\j2mewtk
    2008-06-15 14:55:20 20480 --a------ C:\WINDOWS\system32\665ca60.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-15 14:55:20 20480 --a------ C:\WINDOWS\system32\380d1eae.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-13 17:52:00 20480 --a------ C:\WINDOWS\system32\148eaba0.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-13 17:51:58 20480 --a------ C:\WINDOWS\system32\2eef3ee2.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-13 09:33:08 20480 --a------ C:\WINDOWS\system32\1d279fa3.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-13 09:33:08 20480 --a------ C:\WINDOWS\system32\117135d5.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 13:35:08 20480 --a------ C:\WINDOWS\system32\2a5b2fb7.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 13:35:07 20480 --a------ C:\WINDOWS\system32\e474efe.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 11:38:14 20480 --a------ C:\WINDOWS\system32\2bbe29d6.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 11:38:13 20480 --a------ C:\WINDOWS\system32\139f66bc.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 09:59:44 20480 --a------ C:\WINDOWS\system32\1c6542b4.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 09:59:43 20480 --a------ C:\WINDOWS\system32\5ac12c3.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-12 09:52:11 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\vlc
    2008-06-12 09:50:20 0 d-------- C:\Program Files\VideoLAN
    2008-06-11 09:54:54 20480 --a------ C:\WINDOWS\system32\11b4e58a.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-11 09:54:53 20480 --a------ C:\WINDOWS\system32\7f7e2f6.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-10 19:37:08 20480 --a------ C:\WINDOWS\system32\d129a4e.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-10 19:37:08 20480 --a------ C:\WINDOWS\system32\691440.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-10 19:02:53 20480 --a------ C:\WINDOWS\system32\39ec0e65.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-10 19:02:53 20480 --a------ C:\WINDOWS\system32\1e2392a0.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-09 17:26:34 0 d-------- C:\Documents and Settings\Alina\Application Data\OpenOffice.org2
    2008-06-08 20:43:25 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\OpenOffice.org2
    2008-06-08 20:39:18 0 d-------- C:\Program Files\OpenOffice.org 2.4
    2008-06-08 18:15:48 20480 --a------ C:\WINDOWS\system32\269773d8.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-08 18:15:48 20480 --a------ C:\WINDOWS\system32\1e7072a4.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-06 15:50:16 0 d-------- C:\Program Files\iPod
    2008-06-06 15:49:39 0 d-------- C:\Program Files\iTunes
    2008-06-06 15:41:17 0 d-------- C:\Program Files\QuickTime
    2008-06-04 00:54:30 0 d-------- C:\Documents and Settings\David Liew\Application Data\DivX
    2008-06-04 00:51:31 0 d-------- C:\Documents and Settings\David Liew\Application Data\Moyea
    2008-06-02 17:23:48 20480 --a------ C:\WINDOWS\system32\ef35ff5.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-06-02 17:23:48 20480 --a------ C:\WINDOWS\system32\6c46f40.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
    2008-05-31 07:22:48 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
    2008-05-31 07:22:48 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
    2008-05-31 07:22:48 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
    2008-05-31 07:22:46 815104 --a------ C:\WINDOWS\system32\divx_xx0a.dll <Not Verified; DivX, Inc.; DivX®>
    2008-05-31 07:22:46 683520 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
    2008-05-30 19:37:09 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\Samsung


    -- Find3M Report ---------------------------------------------------------------

    2008-06-30 17:13:30 0 d-------- C:\Program Files\SpeedBit Video Accelerator
    2008-06-30 16:39:59 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\uTorrent
    2008-06-30 15:58:38 0 d-------- C:\Program Files\IrfanView
    2008-06-29 18:09:32 0 d--h----- C:\Program Files\InstallShield Installation Information
    2008-06-26 21:35:44 0 d-------- C:\Program Files\Mozilla Firefox 3 Beta 4
    2008-06-26 16:16:20 0 d-------- C:\Program Files\DivX
    2008-06-26 16:10:50 0 d-------- C:\Program Files\uTorrent
    2008-06-22 21:26:28 0 d-------- C:\Program Files\Common Files
    2008-06-13 17:29:37 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\Nokia
    2008-06-08 20:38:54 0 d-------- C:\Program Files\Java
    2008-06-06 21:07:16 0 d-------- C:\Program Files\Apple Software Update
    2008-06-06 15:34:04 114688 --a------ C:\WINDOWS\system32\msvos.dll
    2008-06-06 15:30:58 7317 --a------ C:\Documents and Settings\Amanda Liew\Application Data\NMM-MetaData.db
    2008-06-02 18:33:48 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\PC Suite
    2008-05-29 17:02:09 0 d-------- C:\Program Files\Swf2Avi
    2008-05-28 22:10:27 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\Adobe
    2008-05-28 22:02:29 0 d-------- C:\Program Files\Adobe Media Player
    2008-05-28 22:02:16 0 d-------- C:\Program Files\Common Files\Adobe AIR
    2008-05-25 19:38:37 0 d-------- C:\Program Files\SiteAdvisor
    2008-05-23 06:22:18 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
    2008-05-23 06:19:46 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
    2008-05-23 06:19:46 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
    2008-05-23 06:18:54 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
    2008-05-22 19:05:06 0 d-------- C:\Program Files\ABC Amber LIT Converter
    2008-05-18 19:53:42 0 d-------- C:\Program Files\MSXML 6.0
    2008-05-18 19:52:43 0 d-------- C:\Program Files\Windows Live
    2008-05-18 16:47:24 0 d-------- C:\Documents and Settings\Amanda Liew\Application Data\Windows Live Writer
    2008-05-18 16:07:53 0 d-------- C:\Program Files\Nokia
    2008-05-18 16:07:53 0 d-------- C:\Program Files\Common Files\Nokia
    2008-05-17 22:20:11 0 d-------- C:\Program Files\YouTube Downloader
    2008-05-17 21:32:17 0 d-------- C:\Program Files\MSBuild
    2008-05-17 21:26:17 0 d-------- C:\Program Files\Reference Assemblies
    2008-05-17 20:44:36 0 d-------- C:\Program Files\Common Files\PCSuite
    2008-05-17 20:38:20 0 d-------- C:\Program Files\PC Connectivity Solution
    2008-05-17 17:39:54 0 d-------- C:\Program Files\Windows Live Toolbar
    2008-05-17 17:39:21 0 d-------- C:\Program Files\Windows Live Favorites
    2008-05-17 17:36:29 0 d-------- C:\Program Files\Microsoft SQL Server Compact Edition
    2008-05-17 17:02:16 0 d-------- C:\Program Files\IMVU
    2008-05-14 17:36:07 0 d-------- C:\Program Files\winbond
    2008-05-08 23:17:22 0 d-------- C:\Program Files\Softick
    2008-05-08 22:01:33 0 d-------- C:\Program Files\Samsung
    2008-04-30 19:34:49 0 d-------- C:\Program Files\Microsoft Reader
    2008-04-04 22:43:57 2762 --a------ C:\Documents and Settings\Amanda Liew\Application Data\wklnhst.dat


    -- Registry Dump ---------------------------------------------------------------

    *Note* empty entries & legit default entries are not shown


    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B1892F58-1116-4DEC-92AA-577872EC3D3D}]
    06/30/2008 02:53 PM 26624 --a------ C:\WINDOWS\system32\xmlview.dll
     
    liewxta,
    #1
  2. 2008/06/30
    liewxta

    liewxta Inactive Thread Starter

    Joined:
    2008/06/30
    Messages:
    2
    Likes Received:
    0
    continue

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched "= "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 07:25 PM]
    "ccApp "= "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [01/10/2007 09:32 AM]
    "IMJPMIG8.1 "= "C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [08/11/2004 04:00 AM]
    "MSPY2002 "= "C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [08/11/2004 04:00 AM]
    "PHIME2002ASync "= "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [08/11/2004 04:00 AM]
    "PHIME2002A "= "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [08/11/2004 04:00 AM]
    "SMSERIAL "= "sm56hlpr.exe" [06/07/2005 01:40 AM C:\WINDOWS\sm56hlpr.exe]
    "SoundMan "= "SOUNDMAN.EXE" [08/17/2005 05:39 AM C:\WINDOWS\SOUNDMAN.EXE]
    "mcagent_exe "= "C:\Program Files\McAfee.com\Agent\mcagent.exe" [08/04/2007 02:33 PM]
    "System Guards "= "C:\Program Files\SystemGuards.com\SystemGuards\SysGuards.exe" [11/09/2007 08:07 AM]
    "SiteAdvisor "= "C:\Program Files\SiteAdvisor\6261\SiteAdv.exe" [07/25/2006 04:28 AM]
    "QuickTime Task "= "C:\Program Files\QuickTime\QTTask.exe" [03/28/2008 11:37 PM]
    "iTunesHelper "= "C:\Program Files\iTunes\iTunesHelper.exe" [03/30/2008 10:36 AM]
    "KernelFaultCheck "= "C:\WINDOWS\system32\dumprep 0 -k" []

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe "= "C:\WINDOWS\system32\ctfmon.exe" [08/11/2004 04:00 AM]
    "MsnMsgr "= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [10/19/2007 03:34 AM]
    "updateMgr "= "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" []
    "swg "= "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [01/08/2008 08:07 AM]
    "Aim6 "=" " []
    "uTorrent Download Optimizer "= "C:\Program Files\uTorrent Download Optimizer\uTorrent Download Optimizer.exe" [12/08/2007 05:15 AM]
    "uTorrent "= "C:\Program Files\uTorrent\uTorrent.exe" [01/31/2008 09:12 AM]
    "WinMx Download Optimizer "= "C:\Program Files\uTorrent Download Optimizer\uTorrent Download Optimizer.exe" [12/08/2007 05:15 AM]
    "antispy "= "C:\Program Files\IEAntiVirus\ANTIVIR.exe" []

    [HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
    "Nokia.PCSync "= "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog

    C:\Documents and Settings\Amanda Liew\Start Menu\Programs\Startup\
    OpenOffice.org 2.4.lnk - C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe [1/21/2008 3:41:28 PM]

    C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
    Acer WLAN 11g USB Dongle.lnk - C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe [11/17/2005 12:25:14 PM]
    Ralink Wireless Utility.lnk - C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe [12/30/2007 4:21:13 PM]
    Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe [3/9/2006 6:03:56 PM]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "InstallVisualStyle "=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme "=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
    "AllowLegacyWebView "=1 (0x1)
    "AllowUnhashedWebView "=1 (0x1)

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
    @=" "

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
    @=" "

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Acer Empowering Technology.lnk]
    path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acer Empowering Technology.lnk
    backup=C:\WINDOWS\pss\Acer Empowering Technology.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^hp psc 2000 Series.lnk]
    path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\hp psc 2000 Series.lnk
    backup=C:\WINDOWS\pss\hp psc 2000 Series.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^officejet 6100.lnk]
    path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\officejet 6100.lnk
    backup=C:\WINDOWS\pss\officejet 6100.lnkCommon Startup


    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Empowering Technology Monitor]
    C:\WINDOWS\system32\SysMonitor.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe "

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
    C:\WINDOWS\system32\ctfmon.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DownloadAccelerator]
    "C:\Program Files\DAP\DAP.EXE" /STARTUP

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
    C:\WINDOWS\ehome\ehtray.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eRecoveryService]
    C:\Acer\Empowering Technology\eRecovery\eRAgent.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    "C:\Program Files\iTunes\iTunesHelper.exe "

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApp]
    Alaunch

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]
    C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    "C:\Program Files\QuickTime\QTTask.exe" -atboottime

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Share-to-Web Namespace Daemon]
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiSPower]
    Rundll32.exe SiSPower.dll,ModeAgent

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedBitVideoAccelerator]
    "C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe "

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    "C:\Program Files\Winamp\winampa.exe "




    -- End of Deckard's System Scanner: finished at 2008-06-30 17:18:42 ------------
     
    liewxta,
    #2


  3. to hide this advert.

  4. 2008/06/30
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Welcome to WindowsBBS liewxta :)

    Please download Malwarebytes' Anti-Malware (MBAM) from here or here and save the file to your desktop.

    Double click mbam-setup.exe to install the application.
    • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select 'Perform Quick Scan', then click Scan.
    • The scan may take some time to finish,so please be patient.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Make sure that everything is checked, and click Remove Selected.
    • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note below)
    • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    • Post the entire report in your next reply along with a fresh dss log.

    Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
     
    noahdfear,
    #3

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...