Jump to content
IObit Forum
Top Free Driver Updater Tools Best 25 PC Optimization Software Best 22 Antimalware Best 22 Uninstaller Software IObit Coupons & Discount Offers PC Optimizer Mac Boost Advice IObit Coupons A Good Utility Program From IObit IObit Promo Codes IObit Coupon Codes IObit Coupons and Deals FAQs Driver Booster Pro Review

Please Help! Never done this before!

Rayeanne

By Rayeanne
in IObit Security 360

Recommended Posts

Rayeanne Newbie

Rayeanne

Posted
Posted

I've never posted on this site before or saved a report log. My computer wouldn't even open the other day. I finally got it to open so was checking for spyware and all. I did a hijack scan on iobit. These are the results....I have no idea which ones to remove or not :o(

 

 

 

Logfile of IObit HijackScan v1.0.0.0

Scan saved at 11:10:49, on 2010-4-12

 

Running processes:

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Windows\SysWOW64\svchost.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe

C:\Program Files (x86)\Free Desktop Clock\DesktopClock.exe

C:\Program Files (x86)\Innovative Solutions\System Tray Cleaner\stc.exe

C:\Program Files (x86)\Innovative Solutions\System Tray Cleaner\stc.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

C:\Program Files (x86)\Java\jre6\bin\javaw.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\iTunes\iTunes.exe

C:\Program Files (x86)\iTunes\iTunes.exe

C:\Program Files (x86)\IObit\IObit Security 360\is360.exe

C:\Program Files (x86)\IObit\IObit Security 360\is360tray.exe

C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe

C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe

C:\Program Files (x86)\IObit\IObit Security 360\a_hijackscan.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

 

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)

 

\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files

 

(x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-

 

4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program

 

Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)

 

\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Run\: [DriverMax] "C:\Program Files (x86)

 

\Innovative Solutions\DriverMax\devices.exe" -agent

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Run\: [skinClock] C:\Program Files (x86)\Free

 

Desktop Clock\DesktopClock.exe

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Run\: [sTC] "C:\Program Files (x86)\Innovative

 

Solutions\System Tray Cleaner\stc.exe" -startup

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Run\: [msnmsgr] "C:\Program Files (x86)\Windows

 

Live\Messenger\msnmsgr.exe" /background

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [hpsysdrv] c:\program files (x86)\hewlett-

 

packard\HP odometer\hpsysdrv.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [HP Health Check Scheduler] c:\Program

 

Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [updateP2GoShortCut] "c:\Program Files

 

(x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\Power2Go"

 

UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [updateLBPShortCut] "c:\Program Files

 

(x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\LabelPrint"

 

UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [updatePDIRShortCut] "c:\Program Files

 

(x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)

 

\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [updatePSTShortCut] "c:\Program Files

 

(x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)

 

\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [TSMAgent] "c:\Program Files (x86)\Hewlett

 

-Packard\TouchSmart\Media\TSMAgent.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [CLMLServer for HP TouchSmart] "c:\Program

 

Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [DVDAgent] "c:\Program Files (x86)\Hewlett

 

-Packard\Media\DVD\DVDAgent.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [HP Software Update] c:\Program Files

 

(x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [AppleSyncNotifier] C:\Program Files (x86)

 

\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [hpqSRMon] C:\Program Files (x86)

 

\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [sunJavaUpdateSched] "C:\Program Files

 

(x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [YSearchProtection] "C:\Program Files (x86)

 

\Yahoo!\Search Protection\SearchProtection.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [avgnt] "C:\Program Files (x86)\Avira\AntiVir

 

Desktop\avgnt.exe" /min

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [QuickTime Task] "C:\Program Files (x86)

 

\QuickTime\QTTask.exe" -atboottime

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [iTunesHelper] "C:\Program Files (x86)

 

\iTunes\iTunesHelper.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [Adobe Reader Speed Launcher] "C:\Program

 

Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [TkBellExe] "C:\Program Files (x86)\Common

 

Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [WinampAgent] "C:\Program Files (x86)

 

\Winamp\winampa.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Run\: [iObit Security 360] "C:\Program Files

 

(x86)\IObit\IObit Security 360\IS360tray.exe" /autostart

O8 - Extra context menu item: Add to &Evernote - res://C:\Program Files (x86)\Evernote\Evernote3.5

 

\enbar.dll/2000

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32

 

\GPhotos.scr/200

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12

 

\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google

 

Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html

O8 - Extra context menu item: Open with BitPump - C:\Program Files (x86)\AnalogX\BitPump\ieint.htm

O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\Common

 

Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} -

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4

 

\Office12\REFIEBAR.DLL

O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} -

 

C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-

 

58CAB36FD2A2} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\PROGRA~2

 

\MICROS~4\Office12\REFIEBAR.DLL

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}SwCtl.SwCtl.11 -

 

http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab}YInstHelper.YInstStarter.1 - C:\Program Files

 

(x86)\Yahoo!\Common\Yinsthelper.dll

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968}TheFacebook.FacebookPhotoUploader5.5.1 -

 

http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}Java Plug-in 1.6.0_18 -

 

http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab

O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A}MySpace.Uploader.5.1 -

 

http://lads.myspace.com/upload/MySpaceUploader2.cab

O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}Java Plug-in 1.6.0_18 -

 

http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}Java Plug-in 1.6.0_18 -

 

http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program

 

Files\LSI SoftModem\agr64svc.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)

 

\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir

 

Desktop\avguard.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) - Apple Inc. - C:\Program Files (x86)\Common

 

Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)

 

\Bonjour\mDNSResponder.exe

O23 - Service: DCOM Server Process Launcher (DcomLaunch) - Unknown -

O23 - Service: Diagnostic Policy Service (DPS) - Unknown -

O23 - Service: Windows Media Center Service Launcher (ehstart) - Unknown - %windir%\system32

 

\svchost.exe

O23 - Service: Group Policy Client (gpsvc) - Unknown -

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)

 

\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google

 

Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service (HP Health Check Service) - Hewlett-Packard - c:\Program Files

 

(x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files

 

(x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: Windows CardSpace (idsvc) - Unknown - %systemroot%\Microsoft.NET\Framework64\v3.0

 

\Windows Communication Foundation\infocard.exe

O23 - Service: iPod Service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard

 

Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Net.Tcp Port Sharing Service (NetTcpPortSharing) - Unknown - %systemroot%

 

\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

O23 - Service: Quality Windows Audio Video Experience (QWAVE) - Unknown - %windir%\system32

 

\svchost.exe

O23 - Service: Remote Procedure Call (RPC) (RpcSs) - Unknown -

O23 - Service: Security Accounts Manager (SamSs) - Unknown -

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Unknown - C:\Program Files (x86)

 

\Spybot.dll

O23 - Service: Secondary Logon (seclogon) - Unknown - %windir%\system32\svchost.exe

O23 - Service: Distributed Link Tracking Client (TrkWks) - Unknown -

O23 - Service: Windows Modules Installer (TrustedInstaller) - Unknown -

O23 - Service: Diagnostic Service Host (WdiServiceHost) - Unknown -

O23 - Service: Diagnostic System Host (WdiSystemHost) - Unknown -

O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown - %

 

ProgramFiles%\Windows Media Player\wmpnetwk.exe

O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!

 

\SoftwareUpdate\YahooAUService.exe

O23 - Service: IS360service (IS360service) - IObit - C:\Program Files (x86)\IObit\IObit Security 360

 

\IS360srv.exe

Link to comment
Share on other sites
So_sad Newbie

So_sad

Posted
Posted

Hi Rayeanne ;-)

 

If you don't mind, I'll re-post your log in a more visually friendly format (without "WordWrap"). I'll also ask you whether Avira, IS360 or any other scanner has detected anything suspicious on your computer lately ?

You have Windows 7 64bits, correct ?

 

======================================

 

Logfile of IObit HijackScan v1.0.0.0

Scan saved at 11:10:49, on 2010-4-12

 

Running processes:

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Windows\SysWOW64\svchost.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Spybot

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe

C:\Program Files (x86)\Free Desktop Clock\DesktopClock.exe

C:\Program Files (x86)\Innovative Solutions\System Tray Cleaner\stc.exe

C:\Program Files (x86)\Innovative Solutions\System Tray Cleaner\stc.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

C:\Program Files (x86)\Java\jre6\bin\javaw.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe

C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\iTunes\iTunes.exe

C:\Program Files (x86)\iTunes\iTunes.exe

C:\Program Files (x86)\IObit\IObit Security 360\is360.exe

C:\Program Files (x86)\IObit\IObit Security 360\is360tray.exe

C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe

C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe

C:\Program Files (x86)\IObit\IObit Security 360\a_hijackscan.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exeO2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} -

C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dllO2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -

C:\Program Files(x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} -

C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin \IE\rpbrowserrecordplugin.dllO2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} -

C:\ProgramFiles (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -

C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

 

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [DriverMax] "C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe" -agent

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [skinClock] C:\Program Files (x86)\FreeDesktop Clock\DesktopClock.exe

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [sTC] "C:\Program Files (x86)\InnovativeSolutions\System Tray Cleaner\stc.exe" -startup

O4 - HKCU|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [msnmsgr] "C:\Program Files (x86)\WindowsLive\Messenger\msnmsgr.exe" /background

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [HP Health Check Scheduler] c:\ProgramFiles (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [updateP2GoShortCut] "c:\Program Files(x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu. exe" "c:\Program Files (x86)\CyberLink\Power2Go"UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [updateLBPShortCut] "c:\Program Files(x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMen u.exe" "c:\Program Files (x86)\CyberLink\LabelPrint"UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [updatePDIRShortCut] "c:\Program Files(x86)\CyberLink\PowerDirector\MUITransfer\MUIStart Menu.exe" "c:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [updatePSTShortCut] "c:\Program Files(x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [TSMAgent] "c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [CLMLServer for HP TouchSmart] "c:\ProgramFiles (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [DVDAgent] "c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [HP Software Update] c:\Program Files(x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [sunJavaUpdateSched] "C:\Program Files(x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [YSearchProtection] "C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [avgnt] "C:\Program Files (x86)\Avira\AntiVirDesktop\avgnt.exe" /min

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [Adobe Reader Speed Launcher] "C:\ProgramFiles (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [TkBellExe] "C:\Program Files (x86)\CommonFiles\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"

O4 - HKLM|\Software\Microsoft\Windows\CurrentVersion\Ru n\: [iObit Security 360] "C:\Program Files(x86)\IObit\IObit Security 360\IS360tray.exe" /autostart

O8 - Extra context menu item: Add to &Evernote - res://C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll/2000

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\GoogleToolbar\Component\GoogleToolbarDynamic_mui_en_60D6 097707281E79.dll/cmsidewiki.html

O8 - Extra context menu item: Open with BitPump - C:\Program Files (x86)\AnalogX\BitPump\ieint.htm

O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\CommonFiles\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} -

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} -C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}SwCtl.SwCtl.11 -http://download.macromedia.com/pub/s...irector/sw.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab}YInstHelper.YInstStarter.1 - C:\Program Files(x86)\Yahoo!\Common\Yinsthelper.dll

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968}TheFacebook.FacebookPhotoUploader5.5. 1 -http://upload.facebook.com/controls/...Uploader55.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}Java Plug-in 1.6.0_18 -http://java.sun.com/update/1.6.0/jin...ndows-i586.cab

O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A}MySpace.Uploader.5.1 -http://lads.myspace.com/upload/MySpaceUploader2.cab

O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}Java Plug-in 1.6.0_18 -http://java.sun.com/update/1.6.0/jin...ndows-i586.cab

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}Java Plug-in 1.6.0_18 -http://java.sun.com/update/1.6.0/jin...ndows-i586.cab

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\ProgramFiles\LSI SoftModem\agr64svc.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVirDesktop\avguard.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) - Apple Inc. - C:\Program Files (x86)\CommonFiles\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: DCOM Server Process Launcher (DcomLaunch) - Unknown -

O23 - Service: Diagnostic Policy Service (DPS) - Unknown -

O23 - Service: Windows Media Center Service Launcher (ehstart) - Unknown - %windir%\system32\svchost.exe

O23 - Service: Group Policy Client (gpsvc) - Unknown -

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\GoogleUpdater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service (HP Health Check Service) - Hewlett-Packard - c:\Program Files(x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files(x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: Windows CardSpace (idsvc) - Unknown - %systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

O23 - Service: iPod Service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-PackardCompany - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Net.Tcp Port Sharing Service (NetTcpPortSharing) - Unknown - %systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

O23 - Service: Quality Windows Audio Video Experience (QWAVE) - Unknown - %windir%\system32\svchost.exe

O23 - Service: Remote Procedure Call (RPC) (RpcSs) - Unknown -

O23 - Service: Security Accounts Manager (SamSs) - Unknown -

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Unknown - C:\Program Files (x86)\Spybot.dll

O23 - Service: Secondary Logon (seclogon) - Unknown - %windir%\system32\svchost.exe

O23 - Service: Distributed Link Tracking Client (TrkWks) - Unknown -

O23 - Service: Windows Modules Installer (TrustedInstaller) - Unknown -

O23 - Service: Diagnostic Service Host (WdiServiceHost) - Unknown -

O23 - Service: Diagnostic System Host (WdiSystemHost) - Unknown -

O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown - %ProgramFiles%\Windows Media Player\wmpnetwk.exe

O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

O23 - Service: IS360service (IS360service) - IObit - C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe

 

=======================================

 

Edit : ah, I've just noticed you have the same topic open in the malware removal section as well. Best to continue over there. But do answer my questions in the other thread, if you read them here ; it could be usefull.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...