TechSpot

I have a google redirect virus I need to get ride of

By mcyd137
Sep 22, 2011
  1. Please help me remove this virus! It keeps redirecting me to different advertising sites whenever I try to use google or chrome. Below are the log's I retrieved by using the techspot directions. I hope you can help me soon!!

    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_26
    Run by Jessica at 11:51:14 on 2011-09-22
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12271.9839 [GMT -7:00]
    .
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\windows\system32\wininit.exe
    C:\windows\system32\lsm.exe
    C:\windows\system32\svchost.exe -k DcomLaunch
    C:\windows\system32\nvvsvc.exe
    C:\windows\system32\svchost.exe -k RPCSS
    C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\windows\system32\svchost.exe -k netsvcs
    C:\windows\system32\svchost.exe -k LocalService
    C:\windows\system32\svchost.exe -k NetworkService
    C:\windows\system32\WLANExt.exe
    C:\windows\system32\conhost.exe
    C:\windows\system32\nvvsvc.exe
    C:\windows\system32\taskeng.exe
    C:\windows\SYSTEM32\WISPTIS.EXE
    C:\windows\System32\spoolsv.exe
    C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\windows\system32\rundll32.exe
    C:\windows\SysWOW64\rundll32.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe
    C:\windows\system32\lxczcoms.exe
    C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
    C:\windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\windows\system32\SearchIndexer.exe
    C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\windows\system32\taskhost.exe
    C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
    C:\windows\SYSTEM32\WISPTIS.EXE
    C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    C:\windows\system32\Dwm.exe
    C:\windows\Explorer.EXE
    C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
    C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Windows\SysWOW64\UMonit.exe
    C:\Program Files\Microsoft IntelliType Pro\itype.exe
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
    C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe
    C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
    C:\Program Files\Lenovo\Power Dial\LitModeSwitch.exe
    C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe
    C:\Users\Jessica\AppData\Local\Google\Update\1.3.21.69\GoogleCrashHandler.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\windows\System32\svchost.exe -k LocalServicePeerNet
    C:\windows\system32\DllHost.exe
    C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
    C:\windows\system32\svchost.exe -k SDRSVC
    C:\windows\system32\notepad.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\windows\system32\SearchProtocolHost.exe
    C:\windows\system32\SearchFilterHost.exe
    C:\windows\system32\DllHost.exe
    C:\windows\system32\DllHost.exe
    C:\windows\SysWOW64\cmd.exe
    C:\windows\system32\conhost.exe
    C:\windows\SysWOW64\cscript.exe
    C:\windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://stp.startnow.com/?src=startpage&provider=bing&provider_name=bing&provider_code=Z087&partner_id=681&product_id=691&affiliate_id=&channel=112782639&toolbar_id=200&toolbar_version=2.1.0&install_country=US&install_date=20110713&user_guid=5A83569ED93B4EBDB165F3073679916D&machine_id=d6aae53bce520f6dd926112fad5344af&browser=IE&os=win&os_version=6.1-x64-SP1
    uSearch Page = hxxp://www.google.com
    uSearch Bar = hxxp://www.google.com/ie
    uDefault_Search_URL = hxxp://www.google.com/ie
    mStart Page = hxxp://lenovo.msn.com
    uInternet Settings,ProxyOverride = *.local
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    uURLSearchHooks: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} -
    uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    mURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    mWinlogon: Userinit=userinit.exe,
    BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Browser Defender BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - PC Tools Browser Guard BHO
    BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
    BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} -
    TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
    TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
    TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
    uRun: [Google Update] "C:\Users\Jessica\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    uRun: [InstallIQUpdater] "C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe" /silent /autorun
    mRun: [ModeSwitch] "C:\Program Files\Lenovo\Power Dial\LitModeSwitch.exe" /AutoRun
    mRun: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe"
    mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
    mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NETGEA~1.LNK - C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Add to Google Photos Screensa&ver - C:\windows\system32\GPhotos.scr/200
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
    TCP: Interfaces\{39EB9D7C-55D9-47BF-BD0A-B5CA479390BC} : DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{8215A6E2-D00C-4E26-B667-0ED0939D15B9} : DhcpNameServer = 10.0.0.1
    TCP: Interfaces\{B3AAD7EE-400D-4CC0-BF26-E9BB8139C931} : DhcpNameServer = 209.18.47.61 209.18.47.62
    TCP: Interfaces\{DB083E1A-D453-49C6-A7D7-A8CC106C67D3} : DhcpNameServer = 209.18.47.61 209.18.47.62
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    BHO-X64: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
    BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO-X64: AcroIEHelperStub - No File
    BHO-X64: {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - PC Tools Browser Guard BHO
    BHO-X64: Browser Defender BHO - No File
    BHO-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
    BHO-X64: Conduit Engine - No File
    BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
    BHO-X64: Symantec NCO BHO - No File
    BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
    BHO-X64: Symantec Intrusion Prevention - No File
    BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO-X64: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    BHO-X64: Vuze Remote - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB-X64: PC Tools Browser Guard: {472734EA-242A-422B-ADF8-83D1E48CC825} -
    TB-X64: Contribute Toolbar: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
    TB-X64: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll
    TB-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
    TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
    mRun-x64: [ModeSwitch] "C:\Program Files\Lenovo\Power Dial\LitModeSwitch.exe" /AutoRun
    mRun-x64: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe"
    mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
    mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\u8satxts.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&SearchSource=3&q={searchTerms}
    FF - prefs.js: browser.search.selectedEngine - Google
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
    FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_1_3\components\coFFPlgn.dll
    FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\components\IPSFFPl.dll
    FF - component: C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\u8satxts.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}\platform\WINNT\components\ColorZilla.dll
    FF - component: C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\u8satxts.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\components\ipc_fireftp.dll
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
    FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Users\Jessica\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll
    FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: general.useragent.extra.brc -
    FF - user.js: network.protocol-handler.warn-external.dnupdate - false
    ============= SERVICES / DRIVERS ===============
    .
    R0 PCTCore;PCTools KDS;C:\windows\system32\drivers\PCTCore64.sys --> C:\windows\system32\drivers\PCTCore64.sys [?]
    R0 pctDS;PC Tools Data Store;C:\windows\system32\drivers\pctDS64.sys --> C:\windows\system32\drivers\pctDS64.sys [?]
    R0 pctEFA;PC Tools Extended File Attributes;C:\windows\system32\drivers\pctEFA64.sys --> C:\windows\system32\drivers\pctEFA64.sys [?]
    R0 PxHlpa64;PxHlpa64;C:\windows\system32\Drivers\PxHlpa64.sys --> C:\windows\system32\Drivers\PxHlpa64.sys [?]
    R0 SCMNdisP;General NDIS Protocol Driver;C:\windows\system32\DRIVERS\scmndisp.sys --> C:\windows\system32\DRIVERS\scmndisp.sys [?]
    R0 SymDS;Symantec Data Store;C:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS --> C:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [?]
    R0 SymEFA;Symantec Extended File Attributes;C:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS --> C:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [?]
    R0 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver;C:\Windows\System32\drivers\ddcdrv.sys [2011-1-6 15712]
    R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-9-9 1152632]
    R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110921.030\IDSviA64.sys [2011-9-21 488568]
    R1 PCTSD;PC Tools Spyware Doctor Driver;C:\windows\system32\Drivers\PCTSD64.sys --> C:\windows\system32\Drivers\PCTSD64.sys [?]
    R1 SymIRON;Symantec Iron Driver;C:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS --> C:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [?]
    R1 SymNetS;Symantec Network Security WFP Driver;C:\windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS --> C:\windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS [?]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\system32\DRIVERS\vwififlt.sys --> C:\windows\system32\DRIVERS\vwififlt.sys [?]
    R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-1-6 13336]
    R2 LenovoCOMSvc;LenovoCOMService;C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe [2011-1-6 49152]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-9-22 366152]
    R2 N360;Norton 360;C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-9-13 130008]
    R2 TabletServiceWacom;TabletServiceWacom;C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe [2011-4-24 5716848]
    R2 WSWNDA3100;WSWNDA3100;C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [2011-8-1 272864]
    R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;C:\windows\system32\DRIVERS\bcmwlhigh664.sys --> C:\windows\system32\DRIVERS\bcmwlhigh664.sys [?]
    R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;C:\windows\system32\DRIVERS\e1c62x64.sys --> C:\windows\system32\DRIVERS\e1c62x64.sys [?]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-9-13 136824]
    R3 LitModeCtrl;LitModeCtrl;C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe [2011-1-6 81920]
    R3 MBAMProtector;MBAMProtector;\??\C:\windows\system32\drivers\mbam.sys --> C:\windows\system32\drivers\mbam.sys [?]
    R3 MEIx64;Intel(R) Management Engine Interface;C:\windows\system32\DRIVERS\HECIx64.sys --> C:\windows\system32\DRIVERS\HECIx64.sys [?]
    R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\windows\system32\drivers\nvhda64v.sys --> C:\windows\system32\drivers\nvhda64v.sys [?]
    R3 USTOR2K;USB Mass Storage Windows Driver;C:\windows\system32\DRIVERS\ustor2k.sys --> C:\windows\system32\DRIVERS\ustor2k.sys [?]
    S2 Browser Defender Update Service;Browser Defender Update Service;"C:\Program Files (x86)\PC Tools Security\BDT\BDTUpdateService.exe" --> C:\Program Files (x86)\PC Tools Security\BDT\BDTUpdateService.exe [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe --> C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [?]
    S2 sdAuxService;PC Tools Auxiliary Service;C:\Program Files (x86)\PC Tools Security\pctsAuxs.exe --> C:\Program Files (x86)\PC Tools Security\pctsAuxs.exe [?]
    S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-4-19 1431888]
    S3 netr28ux;RT2870 USB Wireless LAN Card Driver for Vista;C:\windows\system32\DRIVERS\netr28ux.sys --> C:\windows\system32\DRIVERS\netr28ux.sys [?]
    S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;C:\windows\system32\DRIVERS\Rtnic64.sys --> C:\windows\system32\DRIVERS\Rtnic64.sys [?]
    S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
    S3 TsUsbFlt;TsUsbFlt;C:\windows\system32\drivers\tsusbflt.sys --> C:\windows\system32\drivers\tsusbflt.sys [?]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\system32\Drivers\usbaapl64.sys --> C:\windows\system32\Drivers\usbaapl64.sys [?]
    S3 wacmoumonitor;Wacom Mode Helper;C:\windows\system32\DRIVERS\wacmoumonitor.sys --> C:\windows\system32\DRIVERS\wacmoumonitor.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\system32\Wat\WatAdminSvc.exe --> C:\windows\system32\Wat\WatAdminSvc.exe [?]
    S3 WDC_SAM;WD SCSI Pass Thru driver;C:\windows\system32\DRIVERS\wdcsam64.sys --> C:\windows\system32\DRIVERS\wdcsam64.sys [?]
    S3 wsvd;wsvd;C:\windows\system32\DRIVERS\wsvd.sys --> C:\windows\system32\DRIVERS\wsvd.sys [?]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\windows\system32\DRIVERS\yk62x64.sys --> C:\windows\system32\DRIVERS\yk62x64.sys [?]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
    .
    =============== Created Last 30 ================
    .
    2011-09-22 18:02:36 -------- d-----w- C:\Users\Jessica\AppData\Roaming\Malwarebytes
    2011-09-22 18:02:15 -------- d-----w- C:\ProgramData\Malwarebytes
    2011-09-22 18:02:12 25416 ----a-w- C:\windows\System32\drivers\mbam.sys
    2011-09-22 18:02:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2011-09-22 17:31:48 -------- d-----w- C:\Users\Jessica\AppData\Local\NPE
    2011-09-21 18:56:44 -------- d-----w- C:\_OTM
    2011-09-15 08:17:21 -------- d-----w- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
    2011-09-13 20:54:43 -------- d-----w- C:\windows\SysWow64\N360_BACKUP
    2011-09-13 07:25:51 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
    2011-09-13 07:24:17 34152 ----a-w- C:\windows\System32\drivers\GEARAspiWDM.sys
    2011-09-13 07:24:16 174200 ----a-w- C:\windows\System32\drivers\SYMEVENT64x86.SYS
    2011-09-13 07:24:16 -------- d-----w- C:\Program Files\Symantec
    2011-09-13 07:24:16 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
    2011-09-13 07:24:08 912504 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\SymEFA64.sys
    2011-09-13 07:24:08 744568 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\srtsp64.sys
    2011-09-13 07:24:08 450680 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\SymDS64.sys
    2011-09-13 07:24:08 40568 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\srtspx64.sys
    2011-09-13 07:24:08 386168 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\symnets.sys
    2011-09-13 07:24:08 171128 ----a-r- C:\windows\System32\drivers\N360x64\0501000.01D\Ironx64.sys
    2011-09-13 07:23:52 -------- d-----w- C:\windows\System32\drivers\N360x64\0501000.01D
    2011-09-13 07:23:52 -------- d-----w- C:\windows\System32\drivers\N360x64
    2011-09-13 07:23:51 -------- d-----w- C:\Program Files (x86)\Norton 360
    2011-09-13 07:23:41 -------- d-----w- C:\ProgramData\NortonInstaller
    2011-09-13 07:23:41 -------- d-----w- C:\Program Files (x86)\NortonInstaller
    2011-09-13 07:22:21 -------- d-----w- C:\ProgramData\Norton
    2011-09-13 05:49:12 -------- d-----w- C:\Users\Jessica\AppData\Local\AOL
    2011-09-13 05:49:12 -------- d-----w- C:\Users\Jessica\AppData\Local\AIM
    2011-09-13 05:49:08 -------- d-----w- C:\ProgramData\AIM
    2011-09-13 05:49:07 -------- d-----w- C:\Program Files (x86)\AIM
    2011-09-13 05:49:06 -------- d-----w- C:\Program Files (x86)\Common Files\Software Update Utility
    2011-09-13 05:49:06 -------- d-----w- C:\Program Files (x86)\Common Files\AOL
    2011-09-12 18:20:41 112128 --sha-r- C:\windows\SysWow64\pegi-pt8.dll
    2011-09-12 18:12:25 -------- d-----w- C:\Program Files (x86)\Vuze
    2011-09-12 18:12:17 -------- d-----w- C:\Program Files (x86)\Conduit
    2011-09-12 18:12:16 -------- d-----w- C:\Program Files (x86)\ConduitEngine
    2011-09-12 18:12:14 -------- d-----w- C:\Program Files (x86)\Vuze_Remote
    2011-09-12 00:08:54 -------- d-----w- C:\D39E2FB727423FBE943A456F
    2011-09-11 22:43:16 -------- d--h--w- C:\$AVG
    2011-09-11 22:34:56 -------- d-----w- C:\Users\Jessica\AppData\Roaming\AVG
    2011-09-11 22:26:08 -------- d-----w- C:\Users\Jessica\AppData\Roaming\AVG2012
    2011-09-11 21:52:01 -------- d--h--w- C:\ProgramData\Common Files
    2011-09-11 21:51:52 -------- d-----w- C:\ProgramData\AVG2012
    2011-09-11 21:51:47 -------- d-----w- C:\Program Files (x86)\AVG
    2011-09-11 21:42:48 -------- d-----w- C:\ProgramData\MFAData
    2011-09-09 16:08:31 8862544 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{23F16C05-47E9-4033-A7FB-A895AC39F4F5}\mpengine.dll
    2011-09-04 19:20:42 2189264 ----a-w- C:\windows\PCTBDCore.dll
    2011-09-04 19:20:42 2074576 ----a-w- C:\windows\PCTBDCore.dll0944.old
    2011-09-04 19:20:42 1533904 ----a-w- C:\windows\PCTBDRes.dll
    2011-09-04 19:20:39 816016 ----a-w- C:\windows\System32\drivers\pctEFA64.sys
    2011-09-04 19:20:39 452872 ----a-w- C:\windows\System32\drivers\pctDS64.sys
    2011-09-04 19:20:39 336512 ----a-w- C:\windows\System32\drivers\pctgntdi64.sys
    2011-09-04 19:20:39 143384 ----a-w- C:\windows\System32\drivers\pctwfpfilter64.sys
    2011-09-04 19:20:32 228392 ----a-w- C:\windows\System32\drivers\PCTSD64.sys
    2011-09-04 19:20:31 92896 ----a-w- C:\windows\System32\drivers\pctplsg64.sys
    2011-09-01 04:02:09 38320 ----a-w- C:\windows\SysWow64\f3PSSavr.scr
    2011-08-31 23:15:57 360696 ----a-w- C:\windows\System32\drivers\PCTCore64.sys
    2011-08-31 22:47:35 -------- d-----w- C:\windows\pss
    2011-08-23 19:50:54 2048 ----a-w- C:\windows\SysWow64\tzres.dll
    2011-08-23 19:50:54 2048 ----a-w- C:\windows\System32\tzres.dll
    .
    ==================== Find3M ====================
    .
    2011-09-07 17:40:18 404640 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-09-01 18:39:06 149456 ----a-w- C:\windows\SGDetectionTool.dll
    2011-09-01 18:38:54 767952 ----a-w- C:\windows\BDTSupport.dll
    2011-07-22 05:22:26 1638912 ----a-w- C:\windows\System32\mshtml.tlb
    2011-07-22 04:54:18 1638912 ----a-w- C:\windows\SysWow64\mshtml.tlb
    2011-07-16 05:41:50 362496 ----a-w- C:\windows\System32\wow64win.dll
    2011-07-16 05:41:49 243200 ----a-w- C:\windows\System32\wow64.dll
    2011-07-16 05:41:49 13312 ----a-w- C:\windows\System32\wow64cpu.dll
    2011-07-16 05:39:10 16384 ----a-w- C:\windows\System32\ntvdm64.dll
    2011-07-16 05:37:12 421888 ----a-w- C:\windows\System32\KernelBase.dll
    2011-07-16 04:29:19 14336 ----a-w- C:\windows\SysWow64\ntvdm64.dll
    2011-07-16 04:26:00 44032 ----a-w- C:\windows\apppatch\acwow64.dll
    2011-07-16 04:25:37 25600 ----a-w- C:\windows\SysWow64\setup16.exe
    2011-07-16 04:24:23 5120 ----a-w- C:\windows\SysWow64\wow32.dll
    2011-07-16 04:24:22 272384 ----a-w- C:\windows\SysWow64\KernelBase.dll
    2011-07-16 02:21:44 7680 ----a-w- C:\windows\SysWow64\instnm.exe
    2011-07-16 02:21:41 2048 ----a-w- C:\windows\SysWow64\user.exe
    2011-07-16 02:17:19 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2011-07-16 02:17:19 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2011-07-16 02:17:19 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2011-07-16 02:17:19 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2011-07-09 02:46:28 288768 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
    2011-07-01 22:36:54 149456 ----a-w- C:\windows\SGDetectionTool.dll0938.old
    2011-07-01 22:36:54 149456 ----a-w- C:\windows\SGDetectionTool.dll0844.old
    2011-07-01 22:36:54 149456 ----a-w- C:\windows\SGDetectionTool.dll0826.old
    2011-07-01 22:36:54 149456 ----a-w- C:\windows\SGDetectionTool.dll0823.old
    2011-07-01 22:36:54 149456 ----a-w- C:\windows\SGDetectionTool.dll0807.old
    2011-07-01 22:36:44 767952 ----a-w- C:\windows\BDTSupport.dll0938.old
    2011-07-01 22:36:44 767952 ----a-w- C:\windows\BDTSupport.dll0844.old
    2011-07-01 22:36:44 767952 ----a-w- C:\windows\BDTSupport.dll0826.old
    2011-07-01 22:36:44 767952 ----a-w- C:\windows\BDTSupport.dll0823.old
    2011-07-01 22:36:44 767952 ----a-w- C:\windows\BDTSupport.dll0807.old
    .
    ============= FINISH: 11:51:40.23 ===============



    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 4/19/2011 11:54:23 AM
    System Uptime: 9/22/2011 11:07:15 AM (0 hours ago)
    .
    Motherboard: Lenovo | | To be filled by O.E.M.
    Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz | CPU 1 | 3401/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 906 GiB total, 738.307 GiB free.
    D: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
    Description: PC Tools Data Store
    Device ID: ROOT\LEGACY_PCTDS\0000
    Manufacturer:
    Name: PC Tools Data Store
    PNP Device ID: ROOT\LEGACY_PCTDS\0000
    Service: pctDS
    .
    ==== System Restore Points ===================
    .
    RP4: 9/13/2011 1:09:22 AM - Scheduled Checkpoint
    RP5: 9/15/2011 1:16:02 AM - Windows Update
    RP6: 9/15/2011 11:48:28 PM - Removed headus UVLayout v2 Professional
    RP7: 9/15/2011 11:49:35 PM - Installed headus UVLayout v2 Professional
    RP8: 9/21/2011 12:33:50 AM - Windows Update
    .
    ==== Installed Programs ======================
    .
    Adobe After Effects CS5
    Adobe AIR
    Adobe Community Help
    Adobe Creative Suite 5 Master Collection
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Media Player
    Adobe Reader X (10.1.0)
    AIM 7
    Amazon MP3 Downloader 1.0.12
    Amazon MP3 Uploader
    Apple Application Support
    Apple Software Update
    Autodesk Backburner 2011.0.0
    Autodesk SketchBookPro 2011
    Browser Defender 3.0
    Conduit Engine
    D3DX10
    Download Updater (AOL LLC)
    Genesys USB Mass Storage Device
    Google Chrome
    headus UVLayout v2 Professional
    InfraRecorder
    InstallIQ Updater
    Intel(R) Management Engine Components
    Intel(R) Rapid Storage Technology
    Java Auto Updater
    Java(TM) 6 Update 26
    Junk Mail filter update
    Lenovo Driver and Application Installation
    Lenovo Dynamic Brightness System
    Lenovo Eye Distance System
    Lenovo Power2Go
    Lenovo Rescue System
    Lenovo USB2.0 UVC Camera
    LVT
    LXH-JME2207FN Hotkey Driver
    Malwarebytes' Anti-Malware version 1.51.2.1300
    Mesh Runtime
    Microsoft Office 2010
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft_VC80_ATL_x86
    Microsoft_VC80_CRT_x86
    Microsoft_VC80_MFC_x86
    Microsoft_VC80_MFCLOC_x86
    Microsoft_VC90_ATL_x86
    Microsoft_VC90_CRT_x86
    Microsoft_VC90_MFC_x86
    Mozilla Firefox 6.0.2 (x86 en-US)
    MSVCRT
    MSVCRT_amd64
    NETGEAR WNDA3100v2 wireless USB 2.0 adapter
    Norton 360
    Nuke 4.6
    NVIDIA 3D Vision Controller Driver
    NVIDIA PhysX
    PC Tools Registry Tool
    PDF Settings CS5
    Picasa 3
    Power Dial
    PxMergeModule
    QuickTime
    Realtek High Definition Audio Driver
    Registry Mechanic 10.0
    Security Update for CAPICOM (KB931906)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Skype™ 5.3
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Visual Studio 2008 x64 Redistributables
    Vuze
    Vuze Remote Toolbar
    WebTablet IE Plugin
    WebTablet Netscape Plugin
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Installer
    Windows Live Mail
    Windows Live Mesh
    Windows Live Mesh ActiveX Control for Remote Connections
    Windows Live Messenger
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    WinRAR 4.00 (32-bit)
    ZBrush 4
    .
    ==== Event Viewer Messages From Past Week ========
    .
    9/22/2011 11:51:16 AM, Error: Service Control Manager [7016] - The LitModeCtrl service has reported an invalid current state 32.
    9/22/2011 11:07:34 AM, Error: Service Control Manager [7000] - The PC Tools Auxiliary Service service failed to start due to the following error: The system cannot find the file specified.
    9/21/2011 11:56:44 AM, Error: Service Control Manager [7034] - The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s).
    .
    ==== End Of File ===========================
    THANK YOU SO MUCH FOR YOUR HELP!!!
     
  2. Bobbye

    Bobbye Helper on the Fringe Posts: 16,335   +36

    Welcome to TechSpot. I'll help with the redirect.
    ==========================
    My Guidelines: please read and follow:
    • Be patient. Malware cleaning takes time and I am also working with other members while I am helping you.
    • Read my instructions carefully. If you don't understand or have a problem, ask me.
    • Follow the order of the tasks I give you. Order is crucial in cleaning process.
    • File sharing programs should be uninstalled or disabled during the cleaning process..
    • Observe these:
      [o] Don't use any other cleaning programs or scans while I'm helping you, including a Registry Cleaner or make changes in the Registry.
      [o] Please Do not Attach logs or put in code boxes
      [o] Don't download and install new programs- except those I give you.
    • Please let me know if there is any change in the system.
    If I don't get a reply from you in 5 days, the thread will be closed. If your problem persist, you can send a PM to reopen it.
    =====================================
    Please run Malwarebytes. You'll find it at the beginning of the thread.
    =====================================
    You have both AVG and Norton running. Since Combofix won't run with AVG, you will need to uninstall it:
    Download AppRemover and save to the desktop
    1. Double click the setup on the desktop> click Next
    2. Select “Remove Security Application”
    3. Let scan finish to determine security apps
    4. A screen like below will appear:
      [​IMG]
    5. Click on Next after choice has been made
    6. Check the AVG program you want to uninstall
    7. After uninstall shows complete, follow online prompts to Exit the program.
    =============================
    Please note: If you have previously run Combofix and it's still on the system, please uninstall it. Then download the current version and do the scan: Uninstall directions, if needed
    • Click START> then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    ====================================
    Please note: If you have previously run Combofix and it's still on the system, please uninstall it. Then download the current version and do the scan: Uninstall directions, if needed
    • Click START> then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    --------------------------------------
    Download Combofix from HERE or HERE and save to the desktop
    • Double click combofix.exe & follow the prompts.
    • ComboFix will check to see if the Microsoft Windows Recovery Console is installed. It is recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode if needed.
      **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
    • Once installed, you should see a blue screen prompt that says:
      The Recovery Console was successfully installed.
    • .Click on Yes, to continue scanning for malware
    • .If Combofix asks you to update the program, allow
    • .Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    • .Close any open browsers.
    • .Double click combofix.exe[​IMG] & follow the prompts to run.
    • When the scan completes , a report will be generated-it will open a text window. Please paste the C:\ComboFix.txt in next reply..
    Re-enable your Antivirus software.

    Note 1:Do not mouse-click Combofix's window while it is running. That may cause it to stall.
    Note 2: ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.
    Note 3: Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.
    Note 4: CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
    Note 5: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion", restart computer to fix the issue.
    ===========================
    Please don't use any of the Vuze processes. File sharing is a straight road to malware.

    Please paste the logs into your next reply.
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...