Hello, I'm having a number of problems with this computer. Something has happened so that none of the files on the desktop can be double clicked to open, you have to right click and hit run.
Also internet explorer will not work when opened and can't connect to any sites. I tried to use Malwarebytes to scan the computer but it comes up with 'runtime error 372' and can't be installed.
Here is the dds log:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 7.0.6000.21348 BrowserJavaVersion: 10.25.2
Run by eustace at 12:41:08 on 2013-08-26
.
============== Running Processes ================
.
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -
uRun: [DrvMon.exe] c:\windows\system32\DrvMon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{70F5EB82-7FD4-4F94-A1C0-810F9EB7AA3F} : DHCPNameServer = 192.168.0.1
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\eustace\application data\mozilla\firefox\profiles\jzyzcfsx.default\
FF - plugin: c:\documents and settings\eustace\application data\mozilla\firefox\profiles\jzyzcfsx.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\photodex presenter\npPxPlay.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2015-02-07 05:22:26 -------- d-----w- c:\documents and settings\eustace\local settings\application data\Help
2013-08-23 20:57:50 98816 ----a-w- c:\windows\sed.exe
2013-08-23 20:57:50 256000 ----a-w- c:\windows\PEV.exe
2013-08-23 20:57:50 208896 ----a-w- c:\windows\MBR.exe
2013-08-23 20:57:43 -------- d-----w- C:\ComboFix
2013-08-23 04:50:17 -------- d-----w- c:\program files\ESET
2013-08-22 21:57:04 -------- d-----w- C:\AdwCleaner
2013-08-22 21:34:48 -------- d-----w- c:\windows\ERUNT
2013-08-22 19:07:59 -------- d-----w- C:\FRST
2013-08-16 16:45:19 -------- d-----w- c:\windows\system32\MRT
.
==================== Find3M ====================
.
2013-08-20 22:35:19 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-20 22:35:17 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-07-25 18:08:06 841216 ----a-w- c:\windows\system32\wininet.dll
2013-07-25 18:07:32 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2013-07-25 18:06:52 78336 ----a-w- c:\windows\system32\ieencode.dll
2013-07-25 18:06:36 17408 ----a-w- c:\windows\system32\corpol.dll
2013-07-10 10:37:53 406016 ----a-w- c:\windows\system32\usp10.dll
2013-07-04 02:59:11 2193536 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08:30 2070144 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-19 19:19:17 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-06-19 19:19:13 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-06-19 19:19:13 144896 ----a-w- c:\windows\system32\javacpl.cpl
2013-06-19 19:19:12 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-06-04 07:23:02 562688 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 01:40:45 1876736 ----a-w- c:\windows\system32\win32k.sys
1998-03-02 02:48:00 1175552 ----a-w- c:\program files\Snooker147.exe
.
============= FINISH: 12:42:28.01 ===============
Also internet explorer will not work when opened and can't connect to any sites. I tried to use Malwarebytes to scan the computer but it comes up with 'runtime error 372' and can't be installed.
Here is the dds log:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 7.0.6000.21348 BrowserJavaVersion: 10.25.2
Run by eustace at 12:41:08 on 2013-08-26
.
============== Running Processes ================
.
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -
uRun: [DrvMon.exe] c:\windows\system32\DrvMon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{70F5EB82-7FD4-4F94-A1C0-810F9EB7AA3F} : DHCPNameServer = 192.168.0.1
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\eustace\application data\mozilla\firefox\profiles\jzyzcfsx.default\
FF - plugin: c:\documents and settings\eustace\application data\mozilla\firefox\profiles\jzyzcfsx.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\photodex presenter\npPxPlay.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2015-02-07 05:22:26 -------- d-----w- c:\documents and settings\eustace\local settings\application data\Help
2013-08-23 20:57:50 98816 ----a-w- c:\windows\sed.exe
2013-08-23 20:57:50 256000 ----a-w- c:\windows\PEV.exe
2013-08-23 20:57:50 208896 ----a-w- c:\windows\MBR.exe
2013-08-23 20:57:43 -------- d-----w- C:\ComboFix
2013-08-23 04:50:17 -------- d-----w- c:\program files\ESET
2013-08-22 21:57:04 -------- d-----w- C:\AdwCleaner
2013-08-22 21:34:48 -------- d-----w- c:\windows\ERUNT
2013-08-22 19:07:59 -------- d-----w- C:\FRST
2013-08-16 16:45:19 -------- d-----w- c:\windows\system32\MRT
.
==================== Find3M ====================
.
2013-08-20 22:35:19 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-20 22:35:17 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-07-25 18:08:06 841216 ----a-w- c:\windows\system32\wininet.dll
2013-07-25 18:07:32 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2013-07-25 18:06:52 78336 ----a-w- c:\windows\system32\ieencode.dll
2013-07-25 18:06:36 17408 ----a-w- c:\windows\system32\corpol.dll
2013-07-10 10:37:53 406016 ----a-w- c:\windows\system32\usp10.dll
2013-07-04 02:59:11 2193536 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08:30 2070144 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-19 19:19:17 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-06-19 19:19:13 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-06-19 19:19:13 144896 ----a-w- c:\windows\system32\javacpl.cpl
2013-06-19 19:19:12 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-06-04 07:23:02 562688 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 01:40:45 1876736 ----a-w- c:\windows\system32\win32k.sys
1998-03-02 02:48:00 1175552 ----a-w- c:\program files\Snooker147.exe
.
============= FINISH: 12:42:28.01 ===============