Results 1 to 2 of 2

Thread: Can't get rid of IEToolbar 4.8 Sweetpacks

  1. #1
    Member
    Join Date
    Apr 2010
    Posts
    56

    Default Can't get rid of IEToolbar 4.8 Sweetpacks

    My AV software doen't work and can't be removed. I have tried several things but my laptop remains a mess. Can you help?

    DDS LOG

    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 8.0.6001.18702
    Run by William Beyer at 15:47:45 on 2013-09-01
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.894.394 [GMT -4:00]
    .
    AV: AVG Internet Security 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
    FW: AVG Internet Security 2013 *Enabled*
    .
    ============== Running Processes ================
    .
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\WINDOWS\system32\dmwu.exe
    C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\system32\jmdp\stij.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\HPQ\shared\hpqwmi.exe
    C:\Program Files\internet explorer\iexplore.exe
    C:\Program Files\internet explorer\iexplore.exe
    C:\Program Files\internet explorer\iexplore.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\system32\svchost.exe -k DcomLaunch
    C:\WINDOWS\system32\svchost.exe -k rpcss
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k NetworkService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\WINDOWS\system32\svchost.exe -k netsvcs
    C:\WINDOWS\System32\svchost.exe -k HTTPFilter
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.yahoo.com/
    mStart Page = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10042&barid={8F116669-DEAA-11E2-A2FD-00904BF4010F}
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - LocalServer32 - <no file>
    BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
    BHO: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\15.4.0.5\AVG SafeGuard toolbar_toolbar.dll
    BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg safeguard toolbar\15.4.0.5\AVG SafeGuard toolbar_toolbar.dll
    uRun: [PopUpStopperFreeEdition] "c:\progra~1\panicw~1\pop-up~1\PSFree.exe"
    mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
    mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
    mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
    mRun: [hpWirelessAssistant] c:\program files\hpq\hp wireless assistant\HP Wireless Assistant.exe
    mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
    mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
    mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    uPolicies-Explorer: NoDriveAutoRun = dword:67108863
    uPolicies-Explorer: NoDrives = dword:0
    mPolicies-Explorer: NoDriveAutoRun = dword:67108863
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    mPolicies-Explorer: NoDrives = dword:0
    mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    mPolicies-Explorer: NoDriveAutoRun = dword:67108863
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
    IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab
    DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1183233621718
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{70BD13FA-1AD0-4D6B-A124-A04018F83046} : DHCPNameServer = 192.168.1.1
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - LocalServer32 - <no file>
    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\15.4.0\ViProtocol.dll
    Notify: AtiExtEvent - Ati2evxx.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 60216]
    R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 245048]
    R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 96568]
    R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 39224]
    R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 208184]
    R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 22328]
    R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 182072]
    R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-6-26 37664]
    R2 IBUpdaterService;IBUpdaterService;c:\windows\system32\dmwu.exe [2013-6-26 1167152]
    R2 vToolbarUpdater15.4.0;vToolbarUpdater15.4.0;c:\program files\common files\avg secure search\vtoolbarupdater\15.4.0\ToolbarUpdater.exe [2013-7-30 1616048]
    R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
    R3 HSFHWATI;HSFHWATI;c:\windows\system32\drivers\HSFHWATI.sys [2007-6-30 200192]
    S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 170808]
    S2 avgfws;AVG Firewall;c:\program files\avg\avg2013\avgfws.exe [2013-4-10 1428472]
    S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-5-14 4937264]
    S2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-4-18 283136]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-4-18 754856]
    .
    =============== Created Last 30 ================
    .
    2013-09-01 18:45:18 98816 ----a-w- c:\windows\sed.exe
    2013-09-01 18:45:18 256000 ----a-w- c:\windows\PEV.exe
    2013-09-01 18:45:18 208896 ----a-w- c:\windows\MBR.exe
    2013-09-01 18:13:25 -------- d-----w- c:\windows\system32\wbem\repository\FS
    2013-09-01 18:13:25 -------- d-----w- c:\windows\system32\wbem\Repository
    2013-09-01 18:08:20 -------- d-----w- C:\$AVG
    2013-09-01 18:08:18 -------- d-----w- c:\documents and settings\william beyer\application data\AVG2013
    2013-09-01 18:07:58 -------- d-----w- c:\documents and settings\william beyer\local settings\application data\Avg2013
    2013-09-01 18:07:58 -------- d-----w- c:\documents and settings\all users\application data\AVG2013
    2013-09-01 18:07:57 -------- d-----w- c:\documents and settings\william beyer\application data\AVG SafeGuard toolbar
    2013-09-01 18:07:57 -------- d-----w- c:\documents and settings\all users\application data\AVG SafeGuard toolbar
    2013-09-01 18:07:50 -------- d-----w- c:\program files\common files\AVG Secure Search
    2013-09-01 18:07:48 -------- d-----w- c:\program files\AVG SafeGuard toolbar
    2013-09-01 18:07:48 -------- d-----w- c:\documents and settings\william beyer\local settings\application data\AVG SafeGuard toolbar
    2013-09-01 18:06:53 -------- d-----w- c:\program files\Conduit
    2013-09-01 18:06:53 -------- d-----w- c:\documents and settings\all users\application data\Trymedia
    2013-09-01 18:06:53 -------- d-----w- c:\documents and settings\all users\application data\SweetIM
    2013-09-01 18:06:52 -------- d-----w- c:\program files\DefaultTab
    2013-09-01 18:06:51 -------- d-----w- c:\windows\system32\jmdp
    2013-09-01 18:06:51 -------- d-----w- c:\windows\system32\ARFC
    2013-09-01 18:06:50 -------- d-sh--w- c:\documents and settings\william beyer\IECompatCache
    2013-09-01 18:06:50 -------- d-----w- c:\windows\system32\WNLT
    2013-09-01 18:06:49 -------- d-----w- c:\documents and settings\william beyer\local settings\application data\UnitLayers
    2013-09-01 18:06:49 -------- d-----w- c:\documents and settings\william beyer\local settings\application data\Conduit
    2013-09-01 18:06:49 -------- d-----w- c:\documents and settings\william beyer\application data\DealPly
    2013-09-01 18:06:48 -------- d-----w- c:\documents and settings\william beyer\application data\DefaultTab
    2013-09-01 17:36:07 -------- d-----w- c:\program files\FileASSASSIN
    2013-09-01 17:20:02 -------- d-----w- c:\windows\ERUNT
    2013-09-01 17:08:22 -------- d-----w- C:\AdwCleaner
    2013-08-23 21:50:27 -------- d-----w- c:\program files\PC Tools(2)
    2013-08-23 21:43:16 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
    2013-08-23 21:43:15 -------- d-----w- c:\documents and settings\william beyer\application data\TestApp
    .
    ==================== Find3M ====================
    .
    2013-07-30 07:02:59 37664 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
    2013-07-26 02:47:10 11113472 ----a-w- c:\windows\system32\ieframe(2).dll
    2013-07-25 15:52:59 385024 ----a-w- c:\windows\system32\html.iec
    2013-06-22 02:52:37 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2013-06-22 02:52:36 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2013-06-07 21:56:06 920064 ----a-w- c:\windows\system32\wininet.dll
    2013-06-07 21:56:06 920064 ----a-w- c:\windows\system32\wininet(3).dll
    2013-06-07 21:56:06 43520 ----a-w- c:\windows\system32\licmgr10.dll
    2013-06-07 21:56:06 1215488 ----a-w- c:\windows\system32\urlmon(3).dll
    2013-06-07 21:56:06 105984 ----a-w- c:\windows\system32\url(3).dll
    2013-06-07 21:56:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2013-06-04 07:23:02 562688 ----a-w- c:\windows\system32\qedit.dll
    2013-06-04 01:40:45 1876736 ----a-w- c:\windows\system32\win32k.sys
    .
    ============= FINISH: 15:48:19.56 ===============

  2. #2
    Emeritus
    Join Date
    Nov 2005
    Location
    @localhost
    Posts
    6,067

    Default

    hi,

    Sorry for the delay. If you still need help simply reply back.
    How Can I Reduce My Risk?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •