1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Resolved Windows Security & Microsoft Security don't agree with each other

Discussion in 'Windows XP' started by Barry, 2013/08/15.

  1. 2013/08/15
    Barry

    Barry Geek Member Thread Starter

    Joined:
    2002/12/16
    Messages:
    1,209
    Likes Received:
    10
    I just went through the malware section on this site, and my malware is gone. Unfortunately, there is a bit of a glitch after that process. Windows Security Center now keeps telling me Virus Protection is not found, yet Microsoft Security Essentials tells me my Real-time protection is On. I've followed the steps on this page, with no results: http://answers.microsoft.com/en-us/...ials-and/c3bef63f-6fa5-4477-8591-40b3af103aca
    I've run a scan, removed the repository and reduced the number of programs at startup. I can post a list of what runs at startup, if that might help. Let me know what suggestions you may have.
     
    Barry,
    #1
  2. 2013/08/15
    Barry

    Barry Geek Member Thread Starter

    Joined:
    2002/12/16
    Messages:
    1,209
    Likes Received:
    10
    Here is what runs at startup:

    Yes HKCU:Run ctfmon.exe Microsoft Corporation D:\WINDOWS\system32\ctfmon.exe
    No HKCU:Run ctfmon.exe Microsoft Corporation D:\WINDOWS\system32\ctfmon.exe
    Yes HKCU:Run IDMan Tonec Inc. E:\Program Files\Internet Download Manager\IDMan.exe /onboot
    No HKCU:Run ISUSPM Acresso Corporation D:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe -scheduler
    No HKCU:Run NBJ Ahead Software AG "D:\Program Files\Ahead\Nero BackItUp\NBJ.exe "
    Yes HKCU:Run SandboxieControl Sandboxie Holdings, LLC "E:\Program Files\Sandboxie\SbieCtrl.exe "
    Yes HKCU:Run WMPNSCFG Microsoft Corporation D:\Program Files\Windows Media Player\WMPNSCFG.exe
    Yes HKLM:Run 36X Raid Configurer Gigabyte Technology Corp. D:\WINDOWS\System32\xRaidSetup.exe boot
    No HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "E:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe "
    Yes HKLM:Run Acronis Scheduler2 Service Acronis "D:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe "
    Yes HKLM:Run adm_tray.exe Acronis E:\Program Files\Acronis\DriveMonitor\adm_tray.exe
    No HKLM:Run Adobe ARM Adobe Systems Incorporated "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
    No HKLM:Run Alcmtr Realtek Semiconductor Corp. ALCMTR.EXE
    Yes HKLM:Run APSDaemon Apple Inc. "D:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe "
    No HKLM:Run BCU "D:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe "
    Yes HKLM:Run BrStsMon00 Brother Industries, Ltd. D:\Program Files\Browny02\Brother\BrStMonW.exe /AUTORUN
    Yes HKLM:Run ControlCenter4 Brother Industries, Ltd. D:\Program Files\ControlCenter4\BrCcBoot.exe /autorun
    No HKLM:Run DivXMediaServer DivX, LLC E:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
    No HKLM:Run DivXUpdate DivX, LLC "D:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
    No HKLM:Run Eraser The Eraser Project "E:\PROGRA~1\Eraser\Eraser.exe" --atRestart
    Yes HKLM:Run hplampc Hewlett-Packard D:\WINDOWS\system32\hplampc.exe
    No HKLM:Run IndexSearch Nuance Communications, Inc. "D:\Program Files\Nuance\PaperPort\IndexSearch.exe "
    Yes HKLM:Run JMB36X IDE Setup D:\WINDOWS\RaidTool\xInsIDE.exe
    Yes HKLM:Run MSC Microsoft Corporation "D:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
    Yes HKLM:Run NUSB3MON NEC Electronics Corporation "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe "
    Yes HKLM:Run NvCplDaemon Microsoft Corporation RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
    Yes HKLM:Run NvMediaCenter Microsoft Corporation RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    Yes HKLM:Run nwiz NVIDIA Corporation D:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
    No HKLM:Run PaperPort PTD Nuance Communications, Inc. "D:\Program Files\Nuance\PaperPort\pptd40nt.exe "
    No HKLM:Run PDF5 Registry Controller Nuance Communications, Inc. D:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe
    No HKLM:Run PDFHook Nuance Communications, Inc. D:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe
    No HKLM:Run PPort12reminder Nuance Communications, Inc. "D:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe" -r "D:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini "
    No HKLM:Run QuickTime Task Apple Inc. "E:\Program Files\QuickTime\qttask.exe" -atboottime
    No Startup Common MailWasherPro.lnk Firetrust D:\PROGRA~1\FIRETR~1\MAILWA~1\MAILWA~1.EXE
    No Startup Common Secunia PSI Tray.lnk Secunia D:\PROGRA~1\Secunia\PSI\psi_tray.exe
    No Startup User Dropbox.lnk Dropbox, Inc. D:\DOCUME~1\Owner\APPLIC~1\Dropbox\bin\Dropbox.exe
    Yes Startup User Shortcut to speedfan.lnk Almico Software (www.almico.com) E:\Program Files\SpeedFan\speedfan.exe

    Yes Extension Diagnose Connection Problems... Microsoft Corporation %windir%\Network Diagnostic\xpnetdiag.exe
    Yes Extension Messenger Microsoft Corporation D:\Program Files\Messenger\msmsgs.exe
    Yes Extension Research Microsoft Corporation E:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
    Yes Helper Adobe PDF Conversion Toolbar Helper Adobe Systems Incorporated E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
    Yes Helper Adobe PDF Reader Link Helper Adobe Systems Incorporated D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    Yes Helper DivX Plus Web Player HTML5 <video> DivX, LLC E:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    Yes Helper IDM integration (IDMIEHlprObj Class) Internet Download Manager, Tonec Inc. E:\Program Files\Internet Download Manager\IDMIECC.dll
    Yes Helper PlusIEEventHelper Class Zeon Corporation D:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll
    Yes Toolbar Adobe PDF Adobe Systems Incorporated E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

    Yes Extension Adblock Plus 2.3.2 Wladimir Palant default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
    Yes Extension DivX Plus Web Player HTML5 <video> 2.1.2.182 © 2000-2013, DivX LLC. DivX and associated logos are trademarks of Rovi. All rights reserved. default-1368980305000 Firefox 23.0 E:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
    Yes Extension Element Hiding Helper for Adblock Plus 1.2.3 Wladimir Palant default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\elemhidehelper@adblockplus.org.xpi
    Yes Extension IDM CC 7.3.57 Internet Download Manager, Tonec Inc. default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\IDM\idmmzcc5
    Yes Extension IE Tab 2 (FF 3.6+) 4.12.22.2 Hong Jen Yee (PCMan) default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
    No Extension Microsoft .NET Framework Assistant 0.0.0 Microsoft default-1368980305000 Firefox 23.0 D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
    No Extension Microsoft .NET Framework Assistant 1.3.1 Microsoft default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
    Yes Extension Qualys BrowserCheck 1.7.15.1 Qualys, Inc. default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D}
    Yes Extension TinEye Reverse Image Search 1.1 Martine Vong default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\tineye@ideeinc.com.xpi
    Yes Extension WOT 20130402 WOT Services Oy default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
    Yes Plugin Adobe Acrobat 11.0.3.37 Adobe Systems Inc. default-1368980305000 Firefox 23.0 D:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
    No Plugin Coupons Inc., Coupon Printer Manager 4.0.2.0 Coupons, Inc. default-1368980305000 Firefox 23.0 D:\Program Files\Mozilla Firefox\browser\plugins\npMozCouponPrinter.dll
    Yes Plugin DivX Plus Web Player 2.4.0.368 DivX, LLC default-1368980305000 Firefox 23.0 E:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
    Yes Plugin DivX VOD Helper Plug-in 1.1.0.6 DivX, LLC. default-1368980305000 Firefox 23.0 E:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
    Yes Plugin DivX Web Player 1.5.0.52 DivX,Inc. default-1368980305000 Firefox 23.0 E:\Program Files\DivX\DivX Web Player\npdivx32.dll
    No Plugin Foxit Reader Plugin for Mozilla 2.2.3.402 Foxit Corporation default-1368980305000 Firefox 23.0 E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
    Yes Plugin Google Update 1.3.21.153 Google Inc. default-1368980305000 Firefox 23.0 D:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
    Yes Plugin IE Tab Plug-in 2.2.0.1 ietab.mozdev.org default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2.dll
    Yes Plugin Java Deployment Toolkit 7.0.250.16 10.25.2.16 Oracle Corporation default-1368980305000 Firefox 23.0 D:\WINDOWS\system32\npDeployJava1.dll
    Yes Plugin Java(TM) Platform SE 7 U25 10.25.2.16 Oracle Corporation default-1368980305000 Firefox 23.0 D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
    Yes Plugin Microsoft® DRM 9.0.0.4503 Microsoft Corporation default-1368980305000 Firefox 23.0 D:\Program Files\Windows Media Player\npdrmv2.dll
    Yes Plugin Microsoft® DRM 9.0.0.4503 Microsoft Corporation default-1368980305000 Firefox 23.0 D:\Program Files\Windows Media Player\npwmsdrm.dll
    Yes Plugin Microsoft® Windows Media Services 4.1.0.3917 Microsoft Corporation default-1368980305000 Firefox 23.0 D:\WINDOWS\system32\npwmsdrm.dll
    Yes Plugin Qualys BrowserCheck Plugin 1.7.15.1 Qualys, Inc. default-1368980305000 Firefox 23.0 D:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\aznaz484.default-1368980305000\extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D}\plugins\npqbc.dll
    Yes Plugin QuickTime Plug-in 7.7.4 7.7.4.0 Apple Inc. default-1368980305000 Firefox 23.0 E:\Program Files\QuickTime\Plugins\npqtplugin5.dll
    No Plugin Shockwave Flash 11.8.800.94 Adobe Systems Incorporated default-1368980305000 Firefox 23.0 D:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll
    No Plugin Shockwave Flash 9.0.45.0 Adobe Systems Incorporated default-1368980305000 Firefox 23.0 D:\WINDOWS\system32\NPSWF32.dll
    Yes Plugin Shockwave for Director 12.0.3.133 Adobe Systems, Inc. default-1368980305000 Firefox 23.0 D:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll
    Yes Plugin VLC Web Plugin 2.0.6.0 VideoLAN default-1368980305000 Firefox 23.0 E:\Program Files\VideoLAN\VLC\npvlc.dll
    Yes Plugin Windows Media Player Plug-in Dynamic Link Library 3.0.2.629 Microsoft Corporation (written by Digital Renaissance Inc.) default-1368980305000 Firefox 23.0 D:\Program Files\Windows Media Player\npdsplay.dll
    Yes Plugin Windows Presentation Foundation 3.5.30729.1 Microsoft Corporation default-1368980305000 Firefox 23.0 D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

    Yes App Gmail 7 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
    Yes App Google Drive 6.3 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
    Yes App Google Search 0.0.0.20 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
    Yes App YouTube 4.2.6 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
    Yes Extension Adblock Plus 1.5.3 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.3_0
    Yes Extension Google Docs 0.5 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
    Yes Extension IDM Integration Module 6.17.7 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0
    Yes Extension NotScripts 0.9.6 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn\0.9.6_0
    Yes Extension WOT 1.4.13 First user D:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.4.13_0

    No Task Adobe Flash Player Updater Adobe Systems Incorporated D:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    No Task GoogleUpdateTaskMachineCore Google Inc. D:\Program Files\Google\Update\GoogleUpdate.exe /c
    No Task GoogleUpdateTaskMachineUA Google Inc. D:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
    Yes Task Microsoft Antimalware Scheduled Scan Microsoft Corporation D:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges
    Yes Task MpIdleTask Microsoft Corporation D:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask

    No Directory 7-Zip Igor Pavlov D:\Program Files\7-Zip\7-zip.dll
    No Directory Add to VLC media player's Playlist VideoLAN "E:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1 "
    No Directory Adobe.Acrobat.ContextMenu Adobe Systems Inc. E:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll
    No Directory DropboxExt Dropbox, Inc. D:\Documents and Settings\Owner\Application Data\Dropbox\bin\DropboxExt.19.dll
    No Directory Eraser The Eraser Project "E:\PROGRA~1\Eraser\ERASER~3.DLL "
    No Directory MBAMShlExt Malwarebytes Corporation E:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
    No Directory Play with VLC media player VideoLAN "E:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1 "
    Yes Directory Run Sandboxed Sandboxie Holdings, LLC "E:\Program Files\Sandboxie\Start.exe" /box:__ask__ Explorer.exe "%1 "
    No Directory StuffIt11ContextMenuHandler Smith Micro Software, Inc. E:\Program Files\Smith Micro\StuffIt11\SxShellExt.dll
    No Drive Eraser The Eraser Project "E:\PROGRA~1\Eraser\ERASER~3.DLL "
    No Drive PartitionMagic 8.0 PowerQuest Corporation E:\Program Files\PowerQuest\PartitionMagic 8.0\PMAGIC.EXE
    No File 7-Zip Igor Pavlov D:\Program Files\7-Zip\7-zip.dll
    No File Adobe.Acrobat.ContextMenu Adobe Systems Inc. E:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll
    No File DropboxExt Dropbox, Inc. D:\Documents and Settings\Owner\Application Data\Dropbox\bin\DropboxExt.19.dll
    No File Eraser The Eraser Project "E:\PROGRA~1\Eraser\ERASER~3.DLL "
    No File Foxit_ConvertToPDF_Reader Foxit Corporation E:\Program Files\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x86.dll
    No File MBAMShlExt Malwarebytes Corporation E:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
    No File StuffIt11ContextMenuHandler Smith Micro Software, Inc. E:\Program Files\Smith Micro\StuffIt11\SxShellExt.dll
     
    Barry,
    #2


  3. to hide this advert.

  4. 2013/08/16
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,896
    Likes Received:
    389
    I use MSE on 2 virtual XP's running in Win 7 & 8 and I have seen that problem before. I am of the opinion that there is a bug in MSE, but so long as it is ON even though Security Centre does not acknowledge it then I lose no sleep over it :)

    One solution which has worked in the past is to uninstall MSE and install a new copy.

    To remain protected download the MSE installation file to your hard drive, physically disconnect from the internet (turn off or disconnect the router), uninstall MSE, reboot, install MSE.

    Connect back up to the internet and update the definitions.
     
    PeteC,
    #3
  5. 2013/08/16
    Steve R Jones

    Steve R Jones SuperGeek Staff

    Joined:
    2001/12/30
    Messages:
    12,315
    Likes Received:
    252
    Food for thought...You can tell Windows Security Center to stop notifying you;)
     
    Steve R Jones,
    #4
  6. 2013/08/16
    Barry

    Barry Geek Member Thread Starter

    Joined:
    2002/12/16
    Messages:
    1,209
    Likes Received:
    10
    Steve, no matter how many times I told WSC to stop tattling, it was fruitless. I guess I'll have to work on being more convincing.

    Pete, reinstalling MSE fixed the problem. Thanks... issue resolved.
     
    Barry,
    #5
  7. 2013/08/17
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,896
    Likes Received:
    389
    You're welcome :)
     
    PeteC,
    #6

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...