computing
  • 0

Solved W7 IE11 (all browsers) only work in safe mode (See HJT log)

  • 0

Win7 IE11 only works in safe mode. I will post my log from HijackThis below. Any help would be greatly appreciated!!!!!!

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 1:08:04 PM, on 10/21/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18057)

FIREFOX: 41.0.2 (x86 en-US)
Boot mode: Normal

Running processes:
C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe
C:Program Files (x86)PFUScanSnapDriverPfuSsMon.exe
C:Program Files (x86)HPHP Software UpdatehpwuSchd2.exe
C:WindowsSSDriverfi5110SsWiaChecker.exe
C:Program Files (x86)AVGFrameworkCommonavguix.exe
C:Program Files (x86)AVGAvavgui.exe
C:Program Files (x86)PFUScanSnapSSFolderSSFolderTray.exe
C:WindowsSysWOW64ctfmon.exe
C:Program FilesAVAST SoftwareAvastAvastUI.exe
C:Program Files (x86)IObitIObit UninstallerUninstallMonitor.exe
J:HijackThis.exe
C:Program Files (x86)Tweaking.comWindows Repair (All in One)WR_Tray_Icon.exe

R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?Lin…
R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/p/?L…
R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin…
R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?Lin…
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/p/?L…
R0 – HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 – HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WindowsSysWOW64blank.htm
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
F2 – REG:system.ini: UserInit=userinit.exe,
O3 – Toolbar: Trend Micro Security Toolbar – {CCAC5586-44D7-4c43-B64A-F042461A97D2} – C:Program FilesTrend MicroTitaniumUIFrameworkToolbarIE.dll
O4 – HKLM..Run: [HP Software Update] C:Program Files (x86)HPHP Software UpdateHPWuSchd2.exe
O4 – HKLM..Run: [ScanSnap WIA Service Checker] C:WindowsSSDriverfi5110SsWiaChecker.exe
O4 – HKLM..Run: [AvgUi] “C:Program Files (x86)AVGFrameworkCommonavguix.exe” /fmw.trayonly
O4 – HKLM..Run: [AVG_UI] “C:Program Files (x86)AVGAvavgui.exe” /TRAYONLY
O4 – HKLM..Run: [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
O4 – HKCU..Run: [CCleaner Monitoring] “C:Program FilesCCleanerCCleaner64.exe” /MONITOR
O4 – HKCU..Run: [Advanced SystemCare 8] “C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe” /Auto
O4 – HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 – HKUSS-1-5-19..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘LOCAL SERVICE’)
O4 – HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 – HKUSS-1-5-20..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘NETWORK SERVICE’)
O4 – HKUSS-1-5-18..RunOnce: [SPReview] “C:WindowsSystem32SPReviewSPReview.exe” /sp:1 /errorfwlink:”http://go.microsoft.com/fwlink/?LinkID=122915″ /build:7601 (User ‘SYSTEM’)
O4 – HKUS.DEFAULT..RunOnce: [SPReview] “C:WindowsSystem32SPReviewSPReview.exe” /sp:1 /errorfwlink:”http://go.microsoft.com/fwlink/?LinkID=122915″ /build:7601 (User ‘Default user’)
O4 – Global Startup: ScanSnap Manager.lnk = ?
O9 – Extra button: computing:Program Files (x86)Windows LiveWriterWindowsLiveWriterShortcuts.dll,-1004 – {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} – C:Program Files (x86)Windows LiveWriterWriterBrowserExtension.dll
O9 – Extra ‘Tools’ menuitem: computing:Program Files (x86)Windows LiveWriterWindowsLiveWriterShortcuts.dll,-1003 – {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} – C:Program Files (x86)Windows LiveWriterWriterBrowserExtension.dll
O10 – Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
O10 – Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
O11 – Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 – DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) – http://fpdownload2.macromedia.com/g…
O16 – DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) – https://akamaicdn.webex.com/client/…
O18 – Protocol: tmbp – {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} – C:Program FilesTrend MicroAMSPmodule200029.1.10309.1.1030TmBpIe32.dll
O18 – Protocol: tmop – {69FD7CE3-4604-4FE6-967C-49B9735CEE70} – C:Program FilesTrend MicroAMSPmodule200133.5.12392.0.1039TmopIEPlg32.dll
O18 – Protocol: tmtb – {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} – C:Program FilesTrend MicroTitaniumUIFrameworkToolbarIE.dll
O18 – Protocol: tmtbim – {0B37915C-8B98-4B9E-80D4-464D2C830D10} – C:Program FilesTrend MicroTitaniumUIFrameworkProToolbarIMRatingActiveX.dll
O18 – Protocol: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – C:Program Files (x86)Windows LivePhoto GalleryAlbumDownloadProtocolHandler.dll
O23 – Service: Adobe Acrobat Update Service (AdobeARMservice) – Adobe Systems Incorporated – C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
O23 – Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) – Adobe Systems Incorporated – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
O23 – Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) – IObit – C:Program Files (x86)IObitAdvanced SystemCare 8ASCService.exe
O23 – Service: @%SystemRoot%system32Alg.exe,-112 (ALG) – Unknown owner – C:WindowsSystem32alg.exe (file missing)
O23 – Service: Trend Micro Solution Platform (Amsp) – Trend Micro Inc. – C:Program FilesTrend MicroAMSPcoreServiceShell.exe
O23 – Service: Avast Antivirus (avast! Antivirus) – AVAST Software – C:Program FilesAVAST SoftwareAvastAvastSvc.exe
O23 – Service: AvgAMPS – AVG Technologies CZ, s.r.o. – C:Program Files (x86)AVGAvavgamps.exe
O23 – Service: AVGIDSAgent – AVG Technologies CZ, s.r.o. – C:Program Files (x86)AVGAvavgidsagent.exe
O23 – Service: AVG Service (avgsvc) – AVG Technologies CZ, s.r.o. – C:Program Files (x86)AVGFrameworkCommonavgsvca.exe
O23 – Service: AVG WatchDog (avgwd) – AVG Technologies CZ, s.r.o. – C:Program Files (x86)AVGAvavgwdsvcx.exe
O23 – Service: @%SystemRoot%system32efssvc.dll,-100 (EFS) – Unknown owner – C:WindowsSystem32lsass.exe (file missing)
O23 – Service: @%systemroot%system32fxsresm.dll,-118 (Fax) – Unknown owner – C:Windowssystem32fxssvc.exe (file missing)
O23 – Service: Google Update Service (gupdate) (gupdate) – Google Inc. – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
O23 – Service: Google Update Service (gupdatem) (gupdatem) – Google Inc. – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
O23 – Service: HP LaserJet Service – HP – C:Program Files (x86)HPHPLaserJetServiceHPLaserJetService.exe
O23 – Service: @%SystemRoot%system32ieetwcollectorres.dll,-1000 (IEEtwCollectorService) – Unknown owner – C:Windowssystem32IEEtwCollector.exe (file missing)
O23 – Service: @keyiso.dll,-100 (KeyIso) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
O23 – Service: LiveUpdate (LiveUpdateSvc) – IObit – C:Program Files (x86)IObitLiveUpdateLiveUpdate.exe
O23 – Service: Mozilla Maintenance Service (MozillaMaintenance) – Mozilla Foundation – C:Program Files (x86)Mozilla Maintenance Servicemaintenanceservice.exe
O23 – Service: computingomres.dll,-2797 (MSDTC) – Unknown owner – C:WindowsSystem32msdtc.exe (file missing)
O23 – Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
O23 – Service: NVIDIA Display Driver Service (nvsvc) – Unknown owner – C:Windowssystem32nvvsvc.exe (file missing)
O23 – Service: NVIDIA Update Service Daemon (nvUpdatusService) – NVIDIA Corporation – C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
O23 – Service: Platinum Host Service – Trend Micro Inc. – C:Program FilesTrend MicroTitaniumpluginPtPtSvcHost.exe
O23 – Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
O23 – Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) – Unknown owner – C:Windowssystem32locator.exe (file missing)
O23 – Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
O23 – Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) – Unknown owner – C:WindowsSystem32snmptrap.exe (file missing)
O23 – Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) – Unknown owner – C:WindowsSystem32spoolsv.exe (file missing)
O23 – Service: @%SystemRoot%system32sppsvc.exe,-101 (sppsvc) – Unknown owner – C:Windowssystem32sppsvc.exe (file missing)
O23 – Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) – Unknown owner – C:Windowssystem32UI0Detect.exe (file missing)
O23 – Service: @%SystemRoot%system32vaultsvc.dll,-1003 (VaultSvc) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
O23 – Service: @%SystemRoot%system32vds.exe,-100 (vds) – Unknown owner – C:WindowsSystem32vds.exe (file missing)
O23 – Service: @%systemroot%system32vssvc.exe,-102 (VSS) – Unknown owner – C:Windowssystem32vssvc.exe (file missing)
O23 – Service: @%SystemRoot%system32WatWatUX.exe,-601 (WatAdminSvc) – Unknown owner – C:Windowssystem32WatWatAdminSvc.exe (file missing)
O23 – Service: @%systemroot%system32wbengine.exe,-104 (wbengine) – Unknown owner – C:Windowssystem32wbengine.exe (file missing)
O23 – Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) – Unknown owner – C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 – Service: @%PROGRAMFILES%Windows Media Playerwmpnetwk.exe,-101 (WMPNetworkSvc) – Unknown owner – C:Program Files (x86)Windows Media Playerwmpnetwk.exe (file missing)


End of file – 10254 bytes

” Which one do you feel is better?”
Nothing is perfect, the badies are always ahead of the goodies.
It is up to the USER. If a USER doesn’t heed or understand the warning & clicks, it is too late.

Go to any malware forum & no matter what AV is installed, they got infected.

Go with the boss.

Your AV’s are fighting each other, you can only have one installed at a time.

Uninstall Avast & AVG using their uninstaller.

Avast Clear (formerly AVAST Software Uninstall Utility)
http://avast-removal-tool.com/
http://www.avast.com/uninstall-utility
http://www.bleepingcomputer.com/dow…
http://www.softpedia.com/get/Tweak/…

AVG Download Center
http://www.avg.com/au-en/utilities

Share

1 Answer

  1. ” Which one do you feel is better?”
    Nothing is perfect, the badies are always ahead of the goodies.
    It is up to the USER. If a USER doesn’t heed or understand the warning & clicks, it is too late.

    Go to any malware forum & no matter what AV is installed, they got infected.

    Go with the boss.

    Your AV’s are fighting each other, you can only have one installed at a time.

    Uninstall Avast & AVG using their uninstaller.

    Avast Clear (formerly AVAST Software Uninstall Utility)
    http://avast-removal-tool.com/
    http://www.avast.com/uninstall-utility
    http://www.bleepingcomputer.com/dow…
    http://www.softpedia.com/get/Tweak/…

    AVG Download Center
    http://www.avg.com/au-en/utilities

    • 0
Leave an answer

Leave an answer

Browse