PUP.bProtector

[argus]

Ok, but I'm not on the forum tomorrow, but you certainly do this.
I'll see when I'm online.

[MattiieG]

I do not know if you will know what this is, but on my TaskManager, it shows a svchost with 233 k
in it there is
AudioEndpointBuilder
HomegroupListener
PcaSvc
SysMain
TrkWks
UxSms
Wlansvc
and wudfsvc

Do you know why this is taking up so much memory?

[argus]

These are services within Svchost containers, are all legitimate.

[MattiieG]

okok, I ended it, then all of a sudden it came back, what's going on? do you know?

[argus]

I ended it, then all of a sudden it came back

I do not understand what, Combofix?

[MattiieG]

there are also p2p programs running on my laptop, are these regular? (p2pimsvc, p2psvc)
and, the avast! icons have gone missing from my system tray thing - the big where the internet strength and sound is.
how can I get the icons back?
and I meant svchost

[MattiieG]

and, therefore, due to there being no avast! icons, I cannot use combofix

[argus]

Reboot the machine and it will be fine.

[MattiieG]

ahh, ty

[argus]

Don't panic 

[MattiieG]

ok, here it is...
alas, the svchost thing has gone back up to 180,000 k

[MattiieG]

* it seems that it goes up after using ComboFixer

[argus]

Open notepad and copy/paste the text present inside the code box below:

Code: [Select]


Driver::
ccSet_NST

File::
c:\windows\SYSNATIVE\drivers\NSTx64\7DD02010.005\ccSetx64.sys
c:\windows\system32\drivers\25337890.sys

Folder::
C:\TDSSKiller_Quarantine

Save this as CFScript.txt



Close all browser windows and refering to the picture above.

Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
ComboFix will will re-run. When finished, it will produce a log for you.
Attach the contents of the log in your next reply. (typical location: C:\ComboFix.txt )

[MattiieG]

done

[argus]

I see no present or active malware.



It is necessary to uninstall ComboFix :

• Click Start (or ) then Run.
  
  
  On Windows7 or Vista you may use Start Search field if Run is not available.
  
  
• In the line of text type in (Copy) the following:

Code: [Select]

ComboFix /Uninstall

Note that there is a space between " ComboFix " and " /Uninstall " .

• then click OK (or press Enter ).

Wait for the uninstall process is complete.


Next >

Please download DelFix by "Xplode" to your Desktop.

Run the tool and check the following boxes below;

• Remove disinfection tools
• Create registry backup
• Purge System Restore

Now click on "Run" button. Wait for the programme completes his work.
All the tools we used should be gone.
Tool will create and open an log report (DelFix.txt)
Note: The report will also be stored on C:\DelFix.txt


> I don't need DelFix log report.



How is your computer behaving now ?