Jump to content

ajexpress

Members
  • Posts

    17
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Cut & Paste from AVG scan. "";"Found registry key with reference to infected file C:\WINDOWS\system32\drivers\netbt.sys, HKLM\SYSTEM\CurrentControlSet\services\NetBT";"Secured"
  2. Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.11.15 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Jada and Aaron :: JADA [administrator] 1/11/2013 6:06:25 PM MBAM-log-2013-01-11 (18-19-43).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 253880 Time elapsed: 10 minute(s), 46 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 1 HKCU\SOFTWARE\U36VRSFLG6 (Trojan.FakeAlert) -> No action taken. Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
  3. Sorry for the delay, the holidays had me away from the computer.
  4. MiniToolBox by Farbar Version: 25-11-2012 Ran by Jada and Aaron (administrator) on 02-01-2013 at 20:16:27 Running from "C:\Documents and Settings\Jada and Aaron\My Documents\Downloads" Microsoft Windows XP Service Pack 3 (X86) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Intel® PRO/1000 PL Network Connection = Local Area Connection (Connected) # ---------------------------------- # Interface IP Configuration # ---------------------------------- pushd interface ip # Interface IP Configuration for "Local Area Connection" set address name="Local Area Connection" source=dhcp set dns name="Local Area Connection" source=dhcp register=PRIMARY set wins name="Local Area Connection" source=dhcp popd # End of interface IP configuration Windows IP Configuration Host Name . . . . . . . . . . . . : Jada Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Intel® PRO/1000 PL Network Connection Physical Address. . . . . . . . . : 00-12-3F-7E-45-E3 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 71.11.122.41 Subnet Mask . . . . . . . . . . . : 255.255.252.0 Default Gateway . . . . . . . . . : 71.11.120.1 DHCP Server . . . . . . . . . . . : 68.114.37.12 DNS Servers . . . . . . . . . . . : 24.217.0.5 24.217.201.67 24.247.15.53 NetBIOS over Tcpip. . . . . . . . : Disabled Lease Obtained. . . . . . . . . . : Wednesday, January 02, 2013 7:51:04 PM Lease Expires . . . . . . . . . . : Wednesday, January 02, 2013 8:51:04 PM Server: vip01olvemo.stls.mo.charter.com Address: 24.217.0.5 Name: google.com Addresses: 74.125.225.66, 74.125.225.73, 74.125.225.69, 74.125.225.64 74.125.225.71, 74.125.225.78, 74.125.225.68, 74.125.225.72, 74.125.225.65 74.125.225.70, 74.125.225.67 Pinging google.com [74.125.225.41] with 32 bytes of data: Reply from 74.125.225.41: bytes=32 time=18ms TTL=54 Reply from 74.125.225.41: bytes=32 time=19ms TTL=54 Ping statistics for 74.125.225.41: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 18ms, Maximum = 19ms, Average = 18ms Server: vip01olvemo.stls.mo.charter.com Address: 24.217.0.5 Name: yahoo.com Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140 Pinging yahoo.com [98.138.253.109] with 32 bytes of data: Reply from 98.138.253.109: bytes=32 time=45ms TTL=51 Reply from 98.138.253.109: bytes=32 time=53ms TTL=51 Ping statistics for 98.138.253.109: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 45ms, Maximum = 53ms, Average = 49ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface 0x10003 ...00 12 3f 7e 45 e3 ...... Intel® PRO/1000 PL Network Connection =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 71.11.120.1 71.11.122.41 10 71.11.120.0 255.255.252.0 71.11.122.41 71.11.122.41 10 71.11.122.41 255.255.255.255 127.0.0.1 127.0.0.1 10 71.255.255.255 255.255.255.255 71.11.122.41 71.11.122.41 10 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 169.254.0.0 255.255.0.0 71.11.122.41 71.11.122.41 20 224.0.0.0 240.0.0.0 71.11.122.41 71.11.122.41 10 255.255.255.255 255.255.255.255 71.11.122.41 71.11.122.41 1 Default Gateway: 71.11.120.1 =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation) Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation) Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation) Catalog9 18 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1046156 Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1046156 Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/20/2012 07:35:33 PM) (Source: ESENT) (User: ) Description: wuauclt (3388) An attempt to open the file "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:02 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:01 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/04/2012 07:38:00 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). System errors: ============= Error: (01/02/2013 07:51:07 PM) (Source: W32Time) (User: ) Description: The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible. No attempt to contact a source will be made for 15 minutes. NtpClient has no source of accurate time. Error: (01/02/2013 07:51:07 PM) (Source: W32Time) (User: ) Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751) Error: (01/02/2013 07:51:07 PM) (Source: W32Time) (User: ) Description: The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible. No attempt to contact a source will be made for 14 minutes. NtpClient has no source of accurate time. Error: (01/02/2013 07:51:07 PM) (Source: W32Time) (User: ) Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751) Error: (01/02/2013 07:51:00 PM) (Source: Dhcp) (User: ) Description: Your computer has lost the lease to its IP address 71.10.188.91 on the Network Card with network address 00123F7E45E3. Error: (12/30/2012 11:15:44 AM) (Source: Dhcp) (User: ) Description: Your computer has lost the lease to its IP address 71.10.188.91 on the Network Card with network address 00123F7E45E3. Error: (12/29/2012 00:17:09 PM) (Source: Dhcp) (User: ) Description: Your computer has lost the lease to its IP address 24.217.27.141 on the Network Card with network address 00123F7E45E3. Error: (12/28/2012 05:27:33 PM) (Source: DCOM) (User: NT AUTHORITY) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/28/2012 05:25:23 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/28/2012 05:18:11 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Microsoft Office Sessions: ========================= Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1046156 Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1046156 Error: (12/22/2012 05:08:52 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/20/2012 07:35:33 PM) (Source: ESENT)(User: ) Description: wuauclt3388C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:02 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:01 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledEvent 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/04/2012 07:38:00 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. =========================== Installed Programs ============================ ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.41612) Adobe Flash Player 11 ActiveX (Version: 11.2.202.235) Adobe Flash Player 11 Plugin (Version: 11.3.300.262) Adobe Reader 7.0.9 (Version: 7.0.9) Adobe Shockwave Player 11.5 (Version: 11.5.9.620) AGEIA PhysX v2.4.4 Air Conflicts Single Player Demo AOLIcon (Version: 1.00.0000) Apple Application Support (Version: 2.3.2) Apple Mobile Device Support (Version: 6.0.1.3) Apple Software Update (Version: 2.1.3.127) ArcSoft Panorama Maker 4 ATI Control Panel (Version: 6.14.10.5160) ATI Display Driver (Version: 8.162-050803a2-025672C-Dell) Battlefield Vietnam Blasterball 2 (Version: 09/20/2005 11:55 AM) Bonjour (Version: 3.0.0.10) Canon PhotoRecord Canon PowerShot A40 WIA Driver Canon Utilities PhotoStitch 3.1 Canon Utilities RAW Image Converter Canon Utilities RemoteCapture 2.2 Canon Utilities ZoomBrowser EX Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000) Corel Photo Album 6 (Version: 6.00) Dell Digital Jukebox Driver Dell Driver Reset Tool (Version: 1.02.0000) Dell Game Console Dell Photo AIO Printer 924 Dell System Restore (Version: 2.00.0000) DellSupport (Version: 6.0.3062) Digital Content Portal (Version: 1.00.0000) EducateU (Version: 1.00.0000) Facebook Plug-In FastStone Image Viewer 3.9 (Version: 3.9) File Uploader (Version: 1.1.1) GEAR driver installer for x86 and x64 (Version: 4.015.1) Google AFE Google Chrome (Version: 23.0.1271.97) Google Earth (Version: 6.1.0.5001) Google Gears (Version: 0.5.3600) Google Update Helper (Version: 1.3.21.123) Google Updater (Version: 2.4.2432.1652) High Definition Audio Driver Package - KB835221 (Version: 20040219.000000) Intel Matrix Storage Manager Intel® 537EP V9x DF PCI Modem Intel® PRO Network Connections Drivers Intel® PROSet for Wired Connections (Version: 9.30.0000) iPod for Windows 2006-01-10 (Version: 4.7.0) iTunes (Version: 11.0.1.12) Jasc Paint Shop Photo Album 5 (Version: 5.21) Learn2 Player (Uninstall Only) Macromedia Flash Player (Version: 7.0.19.0) Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000) MCU (Version: 1.00.0000) Memeo Instant Backup (Version: 4.60.0.7923) Microsoft .NET Framework 1.0 Hotfix (KB2572066) Microsoft .NET Framework 1.0 Hotfix (KB953295) Microsoft .NET Framework 1.0 Hotfix (KB979904) Microsoft .NET Framework 1.1 (Version: 1.1.4322) Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729) Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1) Microsoft Document Explorer 2005 Microsoft Document Explorer 2005 (Version: 8.0.50727.42) Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0) Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514) Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463) Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) MobileMe Control Panel (Version: 3.1.6.0) Modem Event Monitor Modem Helper (Version: 2.40) Modem On Hold (Version: 1.12) Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US)) MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0) MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0) MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0) Musicmatch for Windows Media Player (Version: 0.00.000) Musicmatch® Jukebox (Version: 10.10.1038) Nikon Message Center (Version: 0.92.000) Nikon Transfer (Version: 1.3.0) Otto Picasa 3 (Version: 3.8) PowerDVD 5.5 PunkBuster Services (Version: 0.988) QuickBooks Simple Start Special Edition (Version: ) QuickTime (Version: 7.73.80.64) Sonic Encoders (Version: 1.00) Spybot - Search & Destroy (Version: 1.6.2) SpywareBlaster 4.2 (Version: 4.2.0) Tweak UI Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) Update for Windows Internet Explorer 8 (KB2447568) (Version: 1) Update for Windows Internet Explorer 8 (KB976662) (Version: 1) Update for Windows Media Player 10 (KB910393) Update for Windows Media Player 10 (KB913800) Update for Windows Media Player 10 (KB926251) Update for Windows XP (KB2141007) (Version: 1) Update for Windows XP (KB2345886) (Version: 1) Update for Windows XP (KB2467659) (Version: 1) Update for Windows XP (KB2541763) (Version: 1) Update for Windows XP (KB2607712) (Version: 1) Update for Windows XP (KB2616676) (Version: 1) Update for Windows XP (KB2641690) (Version: 1) Update for Windows XP (KB951072-v2) (Version: 2) Update for Windows XP (KB951978) (Version: 1) Update for Windows XP (KB955759) (Version: 1) Update for Windows XP (KB955839) (Version: 1) Update for Windows XP (KB967715) (Version: 1) Update for Windows XP (KB968389) (Version: 1) Update for Windows XP (KB971029) (Version: 1) Update for Windows XP (KB971737) (Version: 1) Update for Windows XP (KB973687) (Version: 1) Update for Windows XP (KB973815) (Version: 1) Update Rollup 2 for Windows XP Media Center Edition 2005 V1 Home 2.0 (Version: 2.02.13) VandM WD Diagnostics (Version: 1.09.0002) WebFldrs XP (Version: 9.50.7523) WildTangent Web Driver Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0) Windows Genuine Advantage Notifications (KB905474) (Version: 1.5.0540.0) Windows Genuine Advantage Validation Tool Windows Internet Explorer 7 (Version: 20061027.150806) Windows Internet Explorer 8 (Version: 20090308.140743) Windows Media Format 11 runtime Windows Media Player 10 (Version: 9.00.3636) Windows Media Player 10 Hotfix - KB895316 Windows Media Player 10 Hotfix [see EmeraldQFE2 for more information] Windows Media Player 11 Windows Media Player Firefox Plugin (Version: 1.0.0.8) Windows PowerShell 1.0 (Version: 2) Windows XP Media Center Edition 2005 KB2502898 Windows XP Media Center Edition 2005 KB2619340 Windows XP Media Center Edition 2005 KB2628259 Windows XP Media Center Edition 2005 KB908246 Windows XP Media Center Edition 2005 KB925766 Windows XP Media Center Edition 2005 KB973768 Windows XP Service Pack 3 (Version: 20080414.031525) WordPerfect Office 12 (Version: 12.01) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 62% Total physical RAM: 1022.09 MB Available physical RAM: 383.58 MB Total Pagefile: 2459.75 MB Available Pagefile: 1929.96 MB Total Virtual: 2047.88 MB Available Virtual: 1970.7 MB ========================= Partitions: ===================================== 2 Drive c: () (Fixed) (Total:69.79 GB) (Free:20.06 GB) NTFS ========================= Users: ======================================== User accounts for \\JADA Administrator Guest HelpAssistant Jada & Aaron Admin Jada and Aaron SUPPORT_388945a0 ========================= Minidump Files ================================== C:\WINDOWS\Minidump\Mini103009-01.dmp C:\WINDOWS\Minidump\Mini112709-01.dmp **** End of log **** DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 Run by Jada and Aaron at 20:23:05 on 2013-01-02 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.373 [GMT -6:00] . AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . ============== Running Processes ================ . C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\DellSupport\DSAgnt.exe C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\locator.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Memeo\AutoBackup\InstantBackup.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe c:\program files\common files\installshield\updateservice\isuspm.exe C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k rpcss C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Connection Wizard,ShellNext = iexplore uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s uURLSearchHooks: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - <orphaned> dURLSearchHooks: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - <orphaned> BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned> BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - <orphaned> uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [sigmatelSysTrayApp] stsystra.exe mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [ATIPTA] "c:\program files\ati technologies\ati control panel\atiptaxx.exe" mRun: [intelMeM] c:\program files\intel\modem event monitor\IntelMEM.exe mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe" mRun: [iSUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup mRun: [iSUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start mRun: [MimBoot] c:\progra~1\musicm~1\musicm~3\mimboot.exe mRun: [DLCCCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\DLCCtime.dll,_RunDLLEntry@16 mRun: [dlccmon.exe] "c:\program files\dell photo aio printer 924\dlccmon.exe" mRun: [hcsystray] c:\program files\kuma games\hcsystray\hc_tray.exe mRun: [Nikon Transfer Monitor] c:\program files\common files\nikon\monitor\NkMonitor.exe mRun: [Corel Photo Downloader] c:\program files\corel\corel photo album 6\MediaDetect.exe mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [Memeo Instant Backup] c:\program files\memeo\autobackup\MemeoLauncher2.exe --silent --no_ui mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" dRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:323 uPolicies-Explorer: NoDriveAutoRun = dword:67108863 uPolicies-Explorer: NoDrives = dword:0 mPolicies-Explorer: NoDriveAutoRun = dword:67108863 mPolicies-Explorer: NoDriveTypeAutoRun = dword:323 mPolicies-Explorer: NoDrives = dword:0 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:323 mPolicies-Explorer: NoDriveAutoRun = dword:67108863 IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000 IE: {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - {0B4350D1-055F-47A3-B112-5F2F2B0D6F08} - c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/F/D/9/FD9E437D-5BC8-4264-A093-DFA2C39D197E/LegitCheckControl.cab DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photos.walmart.com/WalmartActivia.cab DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1143094851980 DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab TCP: NameServer = 24.217.0.5 24.217.201.67 24.247.15.53 TCP: Interfaces\{C743B2E2-AF0C-452C-859C-A8CDE93C121B} : DHCPNameServer = 24.217.0.5 24.217.201.67 24.247.15.53 Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned> Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - <orphaned> SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\jada and aaron\application data\mozilla\firefox\profiles\vgfg5fqn.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - component: c:\program files\google\google gears\firefox\lib\ff36\gears.dll FF - plugin: c:\documents and settings\jada and aaron\application data\facebook\npfbplugin_1_0_1.dll FF - plugin: c:\documents and settings\jada and aaron\application data\facebook\npfbplugin_1_0_3.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll FF - plugin: c:\program files\google\picasa3\npPicasa2.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol400.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol500.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_262.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension FF - Ext: XULRunner: {9538ED55-A687-4328-A5EA-E0DBED2FAAF1} - c:\documents and settings\administrator\local settings\application data\{9538ED55-A687-4328-A5EA-E0DBED2FAAF1} FF - Ext: Google Gears: {000a9d1c-beef-4f90-9363-039d445309b8} - c:\program files\google\google gears\Firefox . ============= SERVICES / DRIVERS =============== . R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-12-22 399432] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-12-22 676936] R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-22 22856] S4 0268541270047218mcinstcleanup;McAfee Application Installer Cleanup (0268541270047218);c:\windows\temp\026854~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service --> c:\windows\temp\026854~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service [?] S4 MemeoBackgroundService;MemeoBackgroundService;c:\program files\memeo\autobackup\MemeoBackgroundService.exe [2011-5-4 25824] . =============== Created Last 30 ================ . 2012-12-22 20:51:56 -------- d-----w- c:\program files\iTunes 2012-12-22 20:51:56 -------- d-----w- c:\documents and settings\all users\application data\188F1432-103A-4ffb-80F1-36B633C5C9E1 2012-12-22 19:43:27 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2012-12-22 19:43:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-12-22 19:43:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-12-21 02:06:56 -------- d-----w- c:\windows\ERUNT 2012-12-21 02:06:48 -------- d-----w- C:\JRT 2012-12-16 22:36:17 98816 ----a-w- c:\windows\sed.exe 2012-12-16 22:36:17 256000 ----a-w- c:\windows\PEV.exe 2012-12-16 22:36:17 208896 ----a-w- c:\windows\MBR.exe . ==================== Find3M ==================== . 2012-10-25 09:12:26 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-10-25 09:12:26 69632 ----a-w- c:\windows\system32\QuickTime.qts 2009-09-14 17:44:21 10038 ----a-w- c:\program files\common files\fedykyjasi.pif . ============= FINISH: 20:23:17.77 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume2 Install Date: 1/3/2006 12:19:49 PM System Uptime: 1/2/2013 12:28:02 PM (8 hours ago) . Motherboard: Dell Inc. | | 0YC523 Processor: Intel® Pentium® D CPU 2.80GHz | Microprocessor | 2793/800mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 70 GiB total, 20.062 GiB free. D: is CDROM () E: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP704: 10/20/2012 10:35:34 AM - System Checkpoint RP705: 11/8/2012 7:18:48 PM - System Checkpoint RP706: 12/4/2012 8:00:58 PM - ComboFix created restore point RP707: 12/6/2012 5:49:48 PM - System Checkpoint RP708: 12/15/2012 1:26:30 PM - System Checkpoint RP709: 12/16/2012 4:34:13 PM - System Checkpoint RP710: 12/20/2012 7:46:15 PM - Removed AVG 2012 RP711: 12/20/2012 7:48:12 PM - Removed AVG 2012 RP712: 12/21/2012 8:00:31 PM - System Checkpoint RP713: 12/22/2012 1:13:32 PM - Removed Java 6 Update 24 RP714: 12/22/2012 2:27:40 PM - Removed Company of Heroes. RP715: 12/22/2012 2:29:34 PM - Removed Quake Live Mozilla Plugin RP716: 12/22/2012 2:32:26 PM - Removed Safari RP717: 12/22/2012 2:34:55 PM - Configured Battlefield Vietnam RP718: 12/23/2012 2:55:30 PM - System Checkpoint RP719: 12/28/2012 5:53:57 PM - System Checkpoint RP720: 12/30/2012 11:33:39 AM - System Checkpoint . ==== Installed Programs ====================== . ABBYY FineReader 6.0 Sprint Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader 7.0.9 Adobe Shockwave Player 11.5 AGEIA PhysX v2.4.4 Air Conflicts Single Player Demo AOLIcon Apple Application Support Apple Mobile Device Support Apple Software Update ArcSoft Panorama Maker 4 ATI Control Panel ATI Display Driver Battlefield Vietnam Blasterball 2 Bonjour Canon PhotoRecord Canon PowerShot A40 WIA Driver Canon Utilities PhotoStitch 3.1 Canon Utilities RAW Image Converter Canon Utilities RemoteCapture 2.2 Canon Utilities ZoomBrowser EX Compatibility Pack for the 2007 Office system Corel Photo Album 6 Dell Digital Jukebox Driver Dell Driver Reset Tool Dell Game Console Dell Photo AIO Printer 924 Dell System Restore DellSupport Digital Content Portal EducateU Facebook Plug-In FastStone Image Viewer 3.9 File Uploader GEAR driver installer for x86 and x64 Google AFE Google Chrome Google Earth Google Gears Google Update Helper Google Updater High Definition Audio Driver Package - KB835221 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Internet Explorer 7 (KB947864) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 10 (KB903157) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB970653-v3) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Intel Matrix Storage Manager Intel® 537EP V9x DF PCI Modem Intel® PRO Network Connections Drivers Intel® PROSet for Wired Connections iPod for Windows 2006-01-10 iTunes Jasc Paint Shop Photo Album 5 Learn2 Player (Uninstall Only) Macromedia Flash Player Malwarebytes Anti-Malware version 1.65.1.1000 MCU Memeo Instant Backup Microsoft .NET Framework 1.0 Hotfix (KB2572066) Microsoft .NET Framework 1.0 Hotfix (KB953295) Microsoft .NET Framework 1.0 Hotfix (KB979904) Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Document Explorer 2005 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office File Validation Add-In Microsoft Office Standard Edition 2003 Microsoft Plus! Digital Media Edition Installer Microsoft Plus! Photo Story 2 LE Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 MobileMe Control Panel Modem Event Monitor Modem Helper Modem On Hold Mozilla Firefox (3.6.3) MSXML 4.0 SP2 (KB925672) MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 6.0 Parser (KB933579) Musicmatch for Windows Media Player Musicmatch® Jukebox Nikon Message Center Nikon Transfer Otto Picasa 3 PowerDVD 5.5 PunkBuster Services QuickBooks Simple Start Special Edition QuickTime Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 7 (KB928090) Security Update for Windows Internet Explorer 7 (KB929969) Security Update for Windows Internet Explorer 7 (KB931768) Security Update for Windows Internet Explorer 7 (KB933566) Security Update for Windows Internet Explorer 7 (KB937143) Security Update for Windows Internet Explorer 7 (KB938127) Security Update for Windows Internet Explorer 7 (KB939653) Security Update for Windows Internet Explorer 7 (KB942615) Security Update for Windows Internet Explorer 7 (KB944533) Security Update for Windows Internet Explorer 7 (KB950759) Security Update for Windows Internet Explorer 7 (KB953838) Security Update for Windows Internet Explorer 7 (KB956390) Security Update for Windows Internet Explorer 7 (KB958215) Security Update for Windows Internet Explorer 7 (KB960714) Security Update for Windows Internet Explorer 7 (KB961260) Security Update for Windows Internet Explorer 7 (KB963027) Security Update for Windows Internet Explorer 7 (KB969897) Security Update for Windows Internet Explorer 7 (KB972260) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 10 (KB911565) Security Update for Windows Media Player 10 (KB917734) Security Update for Windows Media Player 10 (KB936782) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows Media Player 6.4 (KB925398) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2491683) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923689) Security Update for Windows XP (KB938464-v2) Security Update for Windows XP (KB938464) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950760) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951376) Security Update for Windows XP (KB951698) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB953839) Security Update for Windows XP (KB954211) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956391) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956841) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957095) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Sonic Encoders Spybot - Search & Destroy SpywareBlaster 4.2 Tweak UI Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2447568) Update for Windows Internet Explorer 8 (KB976662) Update for Windows Media Player 10 (KB910393) Update for Windows Media Player 10 (KB913800) Update for Windows Media Player 10 (KB926251) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB951072-v2) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update Rollup 2 for Windows XP Media Center Edition 2005 V1 Home 2.0 VandM WD Diagnostics WebFldrs XP WildTangent Web Driver Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool Windows Internet Explorer 7 Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 10 Windows Media Player 10 Hotfix - KB895316 Windows Media Player 10 Hotfix [see EmeraldQFE2 for more information] Windows Media Player 11 Windows Media Player Firefox Plugin Windows PowerShell 1.0 Windows XP Media Center Edition 2005 KB2502898 Windows XP Media Center Edition 2005 KB2619340 Windows XP Media Center Edition 2005 KB2628259 Windows XP Media Center Edition 2005 KB908246 Windows XP Media Center Edition 2005 KB925766 Windows XP Media Center Edition 2005 KB973768 Windows XP Service Pack 3 WordPerfect Office 12 . ==== Event Viewer Messages From Past Week ======== . 1/2/2013 7:51:07 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751) . ==== End Of File ===========================
  5. Ok, the internet connection is great. But, when I go to start > turn off computer it takes roughly two minutes for the box to come up which gives the options of turning off or restarting. Any ideas?
  6. The internet connection is back. Before it was very, very slow to shutdown.....I'd say it would almost take almost 5 minutes for it to shutdown or restart. I haven't been able to test that yet, but will tonight. Overall it appears much better. I'll get a chance to test it more thoroughly tonight and I'll report my findings. Thanks again for your help.
  7. W/Updated MBAM. Malwarebytes Anti-Malware (Trial) 1.65.1.1000 www.malwarebytes.org Database version: v2012.12.22.05 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Administrator :: JADA [administrator] Protection: Enabled 12/22/2012 1:45:01 PM mbam-log-2012-12-22 (13-45-01).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 251091 Time elapsed: 8 minute(s), 11 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
  8. Sorry, following another post and removing the existing MBAM and downloading the latest version. Post the log when I use the updated MBAM.
  9. I have internet connectivity again. Attempted to update MBAM and got Error Code: 732 (0,0)
  10. Computer seems to be fine.....but always seemed fairly fine outside of no internet access and it would always take forever to shutdown or restart. MBAM log below. Keep in mind this isn't an updated MBAM due to internet access, but I could put it on the thumb drive and update that way. Let me know if that's what you want me to do. I'll try accessing the internet again and report my findings. Malwarebytes' Anti-Malware 1.41 Database version: 3062 Windows 5.1.2600 Service Pack 3 12/22/2012 1:23:35 PM mbam-log-2012-12-22 (13-23-35).txt Scan type: Quick Scan Objects scanned: 120968 Time elapsed: 5 minute(s), 27 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  11. # AdwCleaner v2.101 - Logfile created 12/20/2012 at 19:59:43 # Updated 16/12/2012 by Xplode # Operating system : Microsoft Windows XP Service Pack 3 (32 bits) # User : Jada and Aaron - JADA # Boot Mode : Normal # Running from : H:\Computer Fix\AdwCleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\DOCUME~1\JADAAN~1\LOCALS~1\Temp\Uninstall.exe File Deleted : C:\Program Files\Mozilla Firefox\.autoreg File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint Folder Deleted : C:\Documents and Settings\Jada & Aaron Admin\Application Data\AVG Secure Search Folder Deleted : C:\Documents and Settings\Jada and Aaron\Application Data\Viewpoint Folder Deleted : C:\Program Files\Viewpoint ***** [Registry] ***** Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\Softonic Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1 Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1 Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\Software\MetaStream Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP Key Deleted : HKLM\Software\Viewpoint ***** [internet Browsers] ***** -\\ Internet Explorer v8.0.6001.18702 [OK] Registry is clean. -\\ Mozilla Firefox v3.6.3 (en-US) Profile name : default File : C:\Documents and Settings\Jada and Aaron\Application Data\Mozilla\Firefox\Profiles\vgfg5fqn.default\prefs.js Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search"); Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search"); Deleted : user_pref("keyword.URL", "hxxp://isearch.avg.com/search?cid=%7Bd12f8064-1572-42f5-9b99-96f4e2d9f4c8%[...] Profile name : default File : C:\Documents and Settings\Jada & Aaron Admin\Application Data\Mozilla\Firefox\Profiles\1si0uzzj.default\prefs.js Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search"); Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search"); Profile name : default File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\lizqlu2p.default\prefs.js [OK] File is clean. -\\ Google Chrome v20.0.1132.47 File : C:\Documents and Settings\Jada and Aaron\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[s1].txt - [4192 octets] - [20/12/2012 19:59:43] ########## EOF - C:\AdwCleaner[s1].txt - [4252 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.2.1 (12.20.2012:1) OS: Microsoft Windows XP x86 Ran by Administrator on Thu 12/20/2012 at 20:06:59.29 Blog: http://thisisudax.blogspot.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] hkey_current_user\software\billp studios\detected\startup ~~~ Files ~~~ Folders ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Thu 12/20/2012 at 20:13:43.60 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ MiniToolBox by Farbar Version: 25-11-2012 Ran by Administrator (administrator) on 20-12-2012 at 20:27:32 Running from "H:\Computer Fix" Microsoft Windows XP Service Pack 3 (X86) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Intel® PRO/1000 PL Network Connection = Local Area Connection (Disconnected) # ---------------------------------- # Interface IP Configuration # ---------------------------------- pushd interface ip popd # End of interface IP configuration Windows IP Configuration Server: UnKnown Address: 127.0.0.1 Ping request could not find host google.com. Please check the name and try again. Server: UnKnown Address: 127.0.0.1 Ping request could not find host yahoo.com. Please check the name and try again. Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation) Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation) Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation) Catalog9 18 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (12/20/2012 07:35:33 PM) (Source: ESENT) (User: ) Description: wuauclt (3388) An attempt to open the file "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:02 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:01 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/04/2012 07:38:00 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:37:58 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:37:57 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). Error: (12/04/2012 07:37:56 PM) (Source: ESENT) (User: ) Description: svchost (1168) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8). System errors: ============= Error: (12/20/2012 08:02:00 PM) (Source: DCOM) (User: NT AUTHORITY) Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with DCOM within the required timeout. Error: (12/20/2012 07:55:51 PM) (Source: DCOM) (User: NT AUTHORITY) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/20/2012 07:52:40 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/16/2012 04:53:56 PM) (Source: DCOM) (User: NT AUTHORITY) Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with DCOM within the required timeout. Error: (12/16/2012 04:52:09 PM) (Source: DCOM) (User: NT AUTHORITY) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/04/2012 08:26:56 PM) (Source: Service Control Manager) (User: ) Description: The TCP/IP NetBIOS Helper service depends on the following nonexistent service: NetBT Error: (12/04/2012 08:26:56 PM) (Source: Service Control Manager) (User: ) Description: The DHCP Client service depends on the following nonexistent service: NetBT Error: (12/04/2012 08:20:59 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (12/04/2012 08:13:56 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Error: (11/08/2012 06:44:23 PM) (Source: DCOM) (User: JADA) Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout. Microsoft Office Sessions: ========================= Error: (12/20/2012 07:35:33 PM) (Source: ESENT)(User: ) Description: wuauclt3388C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:02 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:01 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: m->NextScheduledEvent 35109 Error: (12/04/2012 07:38:00 PM) (Source: Bonjour Service)(User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/04/2012 07:38:00 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:37:58 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:37:57 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. Error: (12/04/2012 07:37:56 PM) (Source: ESENT)(User: ) Description: svchost1168C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process. =========================== Installed Programs ============================ ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.41612) Adobe Flash Player 11 ActiveX (Version: 11.2.202.235) Adobe Flash Player 11 Plugin (Version: 11.3.300.262) Adobe Reader 7.0.9 (Version: 7.0.9) Adobe Shockwave Player 11.5 (Version: 11.5.9.620) AGEIA PhysX v2.4.4 Air Conflicts Single Player Demo AOL Instant Messenger AOLIcon (Version: 1.00.0000) Apple Application Support (Version: 2.1.7) Apple Mobile Device Support (Version: 5.1.1.4) Apple Software Update (Version: 2.1.3.127) ArcSoft Panorama Maker 4 ATI Control Panel (Version: 6.14.10.5160) ATI Display Driver (Version: 8.162-050803a2-025672C-Dell) Battlefield Vietnam Blasterball 2 (Version: 09/20/2005 11:55 AM) Bonjour (Version: 3.0.0.10) Canon PhotoRecord Canon PowerShot A40 WIA Driver Canon Utilities PhotoStitch 3.1 Canon Utilities RAW Image Converter Canon Utilities RemoteCapture 2.2 Canon Utilities ZoomBrowser EX Company of Heroes (Version: 1.0.0.78) Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000) Corel Photo Album 6 (Version: 6.00) Dell Digital Jukebox Driver Dell Driver Reset Tool (Version: 1.02.0000) Dell Game Console Dell Photo AIO Printer 924 Dell System Restore (Version: 2.00.0000) DellSupport (Version: 6.0.3062) Digital Content Portal (Version: 1.00.0000) EducateU (Version: 1.00.0000) FastStone Image Viewer 3.9 (Version: 3.9) File Uploader (Version: 1.1.1) GEAR driver installer for x86 and x64 (Version: 4.015.1) Google AFE Google Chrome (Version: 20.0.1132.47) Google Earth (Version: 6.1.0.5001) Google Gears (Version: 0.5.3600) Google Toolbar for Internet Explorer (Version: 1.0.0) Google Toolbar for Internet Explorer (Version: 7.3.2710.138) Google Update Helper (Version: 1.3.21.111) Google Updater (Version: 2.4.2432.1652) High Definition Audio Driver Package - KB835221 (Version: 20040219.000000) Intel Matrix Storage Manager Intel® 537EP V9x DF PCI Modem Intel® PRO Network Connections Drivers Intel® PROSet for Wired Connections (Version: 9.30.0000) iPod for Windows 2006-01-10 (Version: 4.7.0) iTunes (Version: 10.6.1.7) Jasc Paint Shop Photo Album 5 (Version: 5.21) Java Auto Updater (Version: 2.0.3.1) Java 6 Update 24 (Version: 6.0.240) Learn2 Player (Uninstall Only) Macromedia Flash Player (Version: 7.0.19.0) Malwarebytes' Anti-Malware MCU (Version: 1.00.0000) Memeo Instant Backup (Version: 4.60.0.7923) Microsoft .NET Framework 1.0 Hotfix (KB2572066) Microsoft .NET Framework 1.0 Hotfix (KB953295) Microsoft .NET Framework 1.0 Hotfix (KB979904) Microsoft .NET Framework 1.1 (Version: 1.1.4322) Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729) Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1) Microsoft Document Explorer 2005 Microsoft Document Explorer 2005 (Version: 8.0.50727.42) Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0) Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514) Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463) Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) MobileMe Control Panel (Version: 3.1.6.0) Modem Event Monitor Modem Helper (Version: 2.40) Modem On Hold (Version: 1.12) Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US)) MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0) MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0) MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0) Musicmatch for Windows Media Player (Version: 0.00.000) Musicmatch® Jukebox (Version: 10.10.1038) Nikon Message Center (Version: 0.92.000) Nikon Transfer (Version: 1.3.0) Otto Picasa 3 (Version: 3.8) PowerDVD 5.5 PunkBuster Services (Version: 0.988) Quake Live Mozilla Plugin (Version: 1.0.319) QuickBooks Simple Start Special Edition (Version: ) QuickTime (Version: 7.72.80.56) Safari (Version: 5.34.57.2) Seagate Dashboard (Version: 1.1.0.1421) Sonic Encoders (Version: 1.00) Spybot - Search & Destroy (Version: 1.6.2) SpywareBlaster 4.2 (Version: 4.2.0) Tweak UI Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) Update for Windows Internet Explorer 8 (KB2447568) (Version: 1) Update for Windows Internet Explorer 8 (KB976662) (Version: 1) Update for Windows Media Player 10 (KB910393) Update for Windows Media Player 10 (KB913800) Update for Windows Media Player 10 (KB926251) Update for Windows XP (KB2141007) (Version: 1) Update for Windows XP (KB2345886) (Version: 1) Update for Windows XP (KB2467659) (Version: 1) Update for Windows XP (KB2541763) (Version: 1) Update for Windows XP (KB2607712) (Version: 1) Update for Windows XP (KB2616676) (Version: 1) Update for Windows XP (KB2641690) (Version: 1) Update for Windows XP (KB951072-v2) (Version: 2) Update for Windows XP (KB951978) (Version: 1) Update for Windows XP (KB955759) (Version: 1) Update for Windows XP (KB955839) (Version: 1) Update for Windows XP (KB967715) (Version: 1) Update for Windows XP (KB968389) (Version: 1) Update for Windows XP (KB971029) (Version: 1) Update for Windows XP (KB971737) (Version: 1) Update for Windows XP (KB973687) (Version: 1) Update for Windows XP (KB973815) (Version: 1) Update Rollup 2 for Windows XP Media Center Edition 2005 V1 Home 2.0 (Version: 2.02.13) VandM WD Diagnostics (Version: 1.09.0002) WebFldrs XP (Version: 9.50.7523) WildTangent Web Driver Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0) Windows Genuine Advantage Notifications (KB905474) (Version: 1.5.0540.0) Windows Genuine Advantage Validation Tool Windows Internet Explorer 7 (Version: 20061027.150806) Windows Internet Explorer 8 (Version: 20090308.140743) Windows Media Format 11 runtime Windows Media Player 10 (Version: 9.00.3636) Windows Media Player 10 Hotfix - KB895316 Windows Media Player 10 Hotfix [see EmeraldQFE2 for more information] Windows Media Player 11 Windows Media Player Firefox Plugin (Version: 1.0.0.8) Windows PowerShell 1.0 (Version: 2) Windows XP Media Center Edition 2005 KB2502898 Windows XP Media Center Edition 2005 KB2619340 Windows XP Media Center Edition 2005 KB2628259 Windows XP Media Center Edition 2005 KB908246 Windows XP Media Center Edition 2005 KB925766 Windows XP Media Center Edition 2005 KB973768 Windows XP Service Pack 3 (Version: 20080414.031525) WordPerfect Office 12 (Version: 12.01) ========================= Devices: ================================ Name: ACPI Multiprocessor PC Description: ACPI Multiprocessor PC Class Guid: {4D36E966-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard computers) Service: \Driver\ACPI_HAL Name: Microsoft ACPI-Compliant System Description: Microsoft ACPI-Compliant System Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: ACPI Name: ACPI Power Button Description: ACPI Power Button Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Intel® Pentium® D CPU 2.80GHz Description: Intel Processor Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65} Manufacturer: Intel Service: intelppm Name: Intel® Pentium® D CPU 2.80GHz Description: Intel Processor Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65} Manufacturer: Intel Service: intelppm Name: PCI bus Description: PCI bus Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: pci Name: Intel® 945G/P Processor to I/O Controller - 2770 Description: Intel® 945G/P Processor to I/O Controller - 2770 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: Name: Intel® 945G/P PCI Express Root Port - 2771 Description: Intel® 945G/P PCI Express Root Port - 2771 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pci Name: RADEON X300 SE 128MB HyperMemory Description: RADEON X300 SE 128MB HyperMemory Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318} Manufacturer: ATI Technologies Inc. Service: ati2mtag Name: Plug and Play Monitor Description: Plug and Play Monitor Class Guid: {4D36E96E-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard monitor types) Service: Name: RADEON X300 SE 128MB HyperMemory Secondary Description: RADEON X300 SE 128MB HyperMemory Secondary Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318} Manufacturer: ATI Technologies Inc. Service: ati2mtag Name: Microsoft UAA Bus Driver for High Definition Audio Description: Microsoft UAA Bus Driver for High Definition Audio Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: HDAudBus Name: SigmaTel High Definition Audio CODEC Description: SigmaTel High Definition Audio CODEC Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: SigmaTel Service: STHDA Name: Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D0 Description: Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D0 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pci Name: Intel® 82801GR/GH/GHM (ICH7 Family) PCI Express Root Port - 27E0 Description: Intel® 82801GR/GH/GHM (ICH7 Family) PCI Express Root Port - 27E0 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pci Name: Intel® 82801GR/GH/GHM (ICH7 Family) PCI Express Root Port - 27E2 Description: Intel® 82801GR/GH/GHM (ICH7 Family) PCI Express Root Port - 27E2 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pci Name: Intel® PRO/1000 PL Network Connection Description: Intel® PRO/1000 PL Network Connection Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: e1express Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8 Description: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8 Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: USB Root Hub Description: USB Root Hub Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9 Description: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9 Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: USB Root Hub Description: USB Root Hub Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: USB Human Interface Device Description: USB Human Interface Device Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} Manufacturer: (Standard system devices) Service: HidUsb Name: HID Keyboard Device Description: HID Keyboard Device Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard keyboards) Service: kbdhid Name: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA Description: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: USB Root Hub Description: USB Root Hub Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: USB Human Interface Device Description: USB Human Interface Device Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} Manufacturer: (Standard system devices) Service: HidUsb Name: HID-compliant mouse Description: HID-compliant mouse Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: mouhid Name: USB Composite Device Description: USB Composite Device Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Name: Dell Photo AIO Printer 924 Description: Dell Photo AIO Printer 924 Class Guid: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F} Manufacturer: Dell Service: usbscan Name: USB Printing Support Description: USB Printing Support Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Microsoft Service: usbprint Name: Dell Photo AIO Printer 924 Description: Dell Photo AIO Printer 924 Class Guid: {4D36E979-E325-11CE-BFC1-08002BE10318} Manufacturer: Dell Inkjet Drivers Service: Name: USB Human Interface Device Description: USB Human Interface Device Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} Manufacturer: (Standard system devices) Service: HidUsb Name: HID-compliant device Description: HID-compliant device Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} Manufacturer: (Standard system devices) Service: Name: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB Description: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: USB Root Hub Description: USB Root Hub Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC Description: Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Intel Service: usbehci Name: USB Root Hub Description: USB Root Hub Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: USB Mass Storage Device Description: USB Mass Storage Device Class Guid: {36FC9E60-C465-11CF-8056-444553540000} Manufacturer: Compatible USB storage device Service: USBSTOR Name: SanDisk Cruzer USB Device Description: Disk drive Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard disk drives) Service: disk Name: Generic volume Description: Generic volume Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F} Manufacturer: Microsoft Service: Name: SanDisk Cruzer USB Device Description: CD-ROM Drive Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Name: Intel® 82801 PCI Bridge - 244E Description: Intel® 82801 PCI Bridge - 244E Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pci Name: Intel® 537EP V9x DF PCI Modem Description: Intel® 537EP V9x DF PCI Modem Class Guid: {4D36E96D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Corporation Service: Modem Name: Unimodem Half-Duplex Audio Device Description: Unimodem Half-Duplex Audio Device Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: MODEMCSA Name: Intel® 82801GH (ICH7DH) LPC Interface Controller - 27B0 Description: Intel® 82801GH (ICH7DH) LPC Interface Controller - 27B0 Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: isapnp Name: ISAPNP Read Data Port Description: ISAPNP Read Data Port Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: System board Description: System board Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Direct memory access controller Description: Direct memory access controller Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Numeric data processor Description: Numeric data processor Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Programmable interrupt controller Description: Programmable interrupt controller Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: System speaker Description: System speaker Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: System CMOS/real time clock Description: System CMOS/real time clock Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: System timer Description: System timer Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Standard floppy disk controller Description: Standard floppy disk controller Class Guid: {4D36E969-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard floppy disk controllers) Service: fdc Name: Floppy disk drive Description: Floppy disk drive Class Guid: {4D36E980-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard floppy disk drives) Service: flpydisk Name: Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF Description: Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: pciide Name: Primary IDE Channel Description: Primary IDE Channel Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard IDE ATA/ATAPI controllers) Service: atapi Name: SONY DVD-ROM DDU1615 Description: CD-ROM Drive Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Name: HL-DT-ST DVD+-RW GWA4164B Description: CD-ROM Drive Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Name: Intel® 82801GR/GH SATA AHCI Controller Description: Intel® 82801GR/GH SATA AHCI Controller Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: iaStor Name: ST380819AS Description: Disk drive Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard disk drives) Service: disk Name: Intel® 82801G (ICH7 Family) SMBus Controller - 27DA Description: Intel® 82801G (ICH7 Family) SMBus Controller - 27DA Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: Intel Service: Name: System board Description: System board Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Motherboard resources Description: Motherboard resources Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: ACPI Fixed Feature Button Description: ACPI Fixed Feature Button Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: Name: Logical Disk Manager Description: Logical Disk Manager Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: dmio Name: Volume Manager Description: Volume Manager Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: ftdisk Name: Generic volume Description: Generic volume Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F} Manufacturer: Microsoft Service: Name: Generic volume Description: Generic volume Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F} Manufacturer: Microsoft Service: Name: Generic volume Description: Generic volume Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F} Manufacturer: Microsoft Service: Name: AFD Description: AFD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: AFD Name: Beep Description: Beep Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Beep Name: catchme Description: catchme Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: catchme Name: dmboot Description: dmboot Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: dmboot Name: dmload Description: dmload Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: dmload Name: DSproct Description: DSproct Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: DSproct Name: DellSupport UniDriver Description: DellSupport UniDriver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: dsunidrv Name: Fips Description: Fips Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Fips Name: Generic Packet Classifier Description: Generic Packet Classifier Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Gpc Name: HTTP Description: HTTP Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: HTTP Name: i2omgmt Description: i2omgmt Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: i2omgmt Name: IP Traffic Filter Driver Description: IP Traffic Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: IpFilterDriver Name: IP Network Address Translator Description: IP Network Address Translator Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: IpNat Name: IPSEC driver Description: IPSEC driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: IPSec Name: ksecdd Description: ksecdd Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ksecdd Name: mnmdd Description: mnmdd Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mnmdd Name: mountmgr Description: mountmgr Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mountmgr Name: NDIS System Driver Description: NDIS System Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDIS Name: Remote Access NDIS TAPI Driver Description: Remote Access NDIS TAPI Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NdisTapi Name: NDIS Usermode I/O Protocol Description: NDIS Usermode I/O Protocol Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Ndisuio Name: NDProxy Description: NDProxy Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDProxy Name: NetBios over Tcpip Description: NetBios over Tcpip Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NetBT Name: Null Description: Null Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Null Name: NWLink IPX/SPX/NetBIOS Compatible Transport Protocol Description: NWLink IPX/SPX/NetBIOS Compatible Transport Protocol Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NwlnkIpx Name: NWLink NetBIOS Description: NWLink NetBIOS Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NwlnkNb Name: NWLink SPX/SPXII Protocol Description: NWLink SPX/SPXII Protocol Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NwlnkSpx Name: PartMgr Description: PartMgr Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: PartMgr Name: ParVdm Description: ParVdm Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ParVdm Name: Remote Access Auto Connection Driver Description: Remote Access Auto Connection Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RasAcd Name: RDPCDD Description: RDPCDD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPCDD Name: Secdrv Description: Secdrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Secdrv Name: TCP/IP Protocol Driver Description: TCP/IP Protocol Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Tcpip Name: VgaSave Description: VgaSave Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: VgaSave Name: VolSnap Description: VolSnap Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: VolSnap Name: Remote Access IP ARP Driver Description: Remote Access IP ARP Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Wanarp Name: Windows Socket 2.0 Non-IFS Service Provider Support Environment Description: Windows Socket 2.0 Non-IFS Service Provider Support Environment Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: WS2IFSL Name: Audio Codecs Description: Audio Codecs Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: audstub Name: Legacy Audio Drivers Description: Legacy Audio Drivers Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: audstub Name: Media Control Devices Description: Media Control Devices Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: audstub Name: Legacy Video Capture Devices Description: Legacy Video Capture Devices Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: audstub Name: Video Codecs Description: Video Codecs Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: audstub Name: WAN Miniport (L2TP) Description: WAN Miniport (L2TP) Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: Rasl2tp Name: WAN Miniport (IP) Description: WAN Miniport (IP) Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: NdisWan Name: WAN Miniport (IPX) Description: WAN Miniport (IPX) Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: NdisWan Name: WAN Miniport (PPPOE) Description: WAN Miniport (PPPOE) Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: RasPppoe Name: WAN Miniport (PPTP) Description: WAN Miniport (PPTP) Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: PptpMiniport Name: Intel® PRO/1000 PL Network Connection - Packet Scheduler Miniport Description: Packet Scheduler Miniport Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: PSched Name: WAN Miniport (IP) - Packet Scheduler Miniport Description: Packet Scheduler Miniport Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: PSched Name: Direct Parallel Description: Direct Parallel Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: Raspti Name: Terminal Server Device Redirector Description: Terminal Server Device Redirector Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: rdpdr Name: Terminal Server Keyboard Driver Description: Terminal Server Keyboard Driver Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: TermDD Name: Terminal Server Mouse Driver Description: Terminal Server Mouse Driver Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: TermDD Name: Plug and Play Software Device Enumerator Description: Plug and Play Software Device Enumerator Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: swenum Name: Microsoft Kernel System Audio Device Description: Microsoft Kernel System Audio Device Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: sysaudio Name: Microsoft WINMM WDM Audio Compatibility Driver Description: Microsoft WINMM WDM Audio Compatibility Driver Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: wdmaud Name: Microsoft Kernel Wave Audio Mixer Description: Microsoft Kernel Wave Audio Mixer Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Microsoft Service: kmixer Name: Microcode Update Device Description: Microcode Update Device Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: update Name: Microsoft System Management BIOS Driver Description: Microsoft System Management BIOS Driver Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard system devices) Service: mssmbios ========================= Memory info: =================================== Percentage of memory in use: 43% Total physical RAM: 1022.09 MB Available physical RAM: 582.36 MB Total Pagefile: 2459.75 MB Available Pagefile: 2130.99 MB Total Virtual: 2047.88 MB Available Virtual: 1970.7 MB ========================= Partitions: ===================================== 2 Drive c: () (Fixed) (Total:69.79 GB) (Free:19.35 GB) NTFS 5 Drive g: (U3 System) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS 6 Drive h: () (Removable) (Total:1.86 GB) (Free:1.72 GB) FAT ========================= Users: ======================================== User accounts for \\JADA Administrator Guest HelpAssistant Jada & Aaron Admin Jada and Aaron SUPPORT_388945a0 ========================= Minidump Files ================================== C:\WINDOWS\Minidump\Mini103009-01.dmp C:\WINDOWS\Minidump\Mini112709-01.dmp **** End of log ****
  12. Yep, still here, had to do some xmas shopping yesterday after work. I'll have the results posted tonight
  13. ComboFix 12-12-14.01 - Jada and Aaron 12/16/2012 16:40:53.8.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.411 [GMT -6:00] Running from: H:\ComboFix.exe AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\system32\Cache c:\windows\system32\Cache\272512937d9e61a4.fb c:\windows\system32\Cache\287204568329e189.fb c:\windows\system32\Cache\28bc8f716fd76a47.fb c:\windows\system32\Cache\2c53092c95605355.fb c:\windows\system32\Cache\31a0997e9a5b5eb3.fb c:\windows\system32\Cache\32c84fe32bb74d60.fb c:\windows\system32\Cache\3917078cb68ec657.fb c:\windows\system32\Cache\590ba23ce359fd0c.fb c:\windows\system32\Cache\610289e025a3ee9a.fb c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb c:\windows\system32\Cache\6d03dad1035885d3.fb c:\windows\system32\Cache\a8556537add6dfc5.fb c:\windows\system32\Cache\ad10a52aff5e038d.fb c:\windows\system32\Cache\c1fa887b03019701.fb c:\windows\system32\Cache\c4d28dca2e7648be.fb c:\windows\system32\Cache\d201ef9910cd39de.fb c:\windows\system32\Cache\d2e94710a5708128.fb c:\windows\system32\Cache\d79b9dfe81484ec4.fb c:\windows\system32\Cache\e3e2f6c6327916fc.fb c:\windows\system32\Cache\f998975c9cc711ee.fb c:\windows\system32\URTTemp c:\windows\system32\URTTemp\fusion.dll c:\windows\system32\URTTemp\mscoree.dll c:\windows\system32\URTTemp\mscoree.dll.local c:\windows\system32\URTTemp\mscorsn.dll c:\windows\system32\URTTemp\mscorwks.dll c:\windows\system32\URTTemp\msvcr71.dll c:\windows\system32\URTTemp\regtlib.exe c:\windows\wt c:\windows\wt\data.wts c:\windows\wt\updater\wcmdmgr.exe c:\windows\wt\updater\wcmdmgrl.exe c:\windows\wt\updater\wt.ini c:\windows\wt\webdriver.dll c:\windows\wt\webdriver\4.1.1\actorobject.dll c:\windows\wt\webdriver\4.1.1\dx5drv.dll c:\windows\wt\webdriver\4.1.1\dx7drv.dll c:\windows\wt\webdriver\4.1.1\objectbundle.dll c:\windows\wt\webdriver\4.1.1\sound.dll c:\windows\wt\webdriver\4.1.1\wdcaps.ded c:\windows\wt\webdriver\4.1.1\wdengine.dll c:\windows\wt\webdriver\4.1.1\webdriver.dll c:\windows\wt\webdriver\4.1.1\wthost.exe c:\windows\wt\webdriver\4.1.1\wthostctl.dll c:\windows\wt\webdriver\4.1.1\wtmulti.dll c:\windows\wt\webdriver\4.1.1\wtmulti.jar c:\windows\wt\webdriver\4.1.1\wtwmplug.ax c:\windows\wt\webdriver\4.1.1\wtwmplug.ini c:\windows\wt\webdriver\jdriver.dll c:\windows\wt\webdriver\rdriver.dll c:\windows\wt\webdriver\wildtangent.jar c:\windows\wt\webdriver\wtdmmp.dll c:\windows\wt\webdriver\wtdmmpi.jar c:\windows\wt\webdriver\wtdmmpv.dll c:\windows\wt\wt3d.dll c:\windows\wt\wt3d.ini c:\windows\wt\wtupdates\dmmp\3.0.2.000\files\controlPanel\index.html c:\windows\wt\wtupdates\dmmp\3.0.2.000\files\update_info\data.wts c:\windows\wt\wtupdates\dmmp\3.0.2.000\files\wtdmmp.dll c:\windows\wt\wtupdates\dmmp\3.0.2.000\files\wtdmmpi.jar c:\windows\wt\wtupdates\dmmp\3.0.2.000\files\wtdmmpv.dll c:\windows\wt\wtupdates\dmmp\3.0.2.000\install\dmmp.cdanfo c:\windows\wt\wtupdates\dmmp\3.0.2.000\install\DMMP_Uninstall.cdas c:\windows\wt\wtupdates\DRM\3.2.0.19\files\controlpanel\index.html c:\windows\wt\wtupdates\DRM\3.2.0.19\files\DRM0302.dll c:\windows\wt\wtupdates\DRM\3.2.0.19\files\DRM0302Java.jar c:\windows\wt\wtupdates\DRM\3.2.0.19\files\jDRM0302.dll c:\windows\wt\wtupdates\DRM\3.2.0.19\files\rDRM0302.dll c:\windows\wt\wtupdates\DRM\3.2.0.19\files\wt.sto c:\windows\wt\wtupdates\DRM\3.2.0.19\install\DRM0302.cdanfo c:\windows\wt\wtupdates\DRM\3.2.0.19\install\DRM0302_Uninstall.cdas c:\windows\wt\wtupdates\webd\4.1.1\files\actorobject.dll c:\windows\wt\wtupdates\webd\4.1.1\files\controlpanel\index.html c:\windows\wt\wtupdates\webd\4.1.1\files\dx5drv.dll c:\windows\wt\wtupdates\webd\4.1.1\files\dx7drv.dll c:\windows\wt\wtupdates\webd\4.1.1\files\jdriver.dll c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\data.wts c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\webdriver.dll c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\wt3d.dll c:\windows\wt\wtupdates\webd\4.1.1\files\npWTHost.dll c:\windows\wt\wtupdates\webd\4.1.1\files\nsIWTHostPlugin.xpt c:\windows\wt\wtupdates\webd\4.1.1\files\ObjectBundle.dll c:\windows\wt\wtupdates\webd\4.1.1\files\rdriver.dll c:\windows\wt\wtupdates\webd\4.1.1\files\Sound.dll c:\windows\wt\wtupdates\webd\4.1.1\files\update_info\data.wts c:\windows\wt\wtupdates\webd\4.1.1\files\wdcaps.ded c:\windows\wt\wtupdates\webd\4.1.1\files\wdengine.dll c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331.cdanfo c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331_fileList.cdas c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331_Uninstall.cdas c:\windows\wt\wtupdates\webd\4.1.1\files\webdriver.dll c:\windows\wt\wtupdates\webd\4.1.1\files\wildtangent.jar c:\windows\wt\wtupdates\webd\4.1.1\files\wt3d.ini c:\windows\wt\wtupdates\webd\4.1.1\files\WTHost.exe c:\windows\wt\wtupdates\webd\4.1.1\files\WTHostCtl.dll c:\windows\wt\wtupdates\webd\4.1.1\files\wtmulti.dll c:\windows\wt\wtupdates\webd\4.1.1\files\wtmulti.jar c:\windows\wt\wtupdates\webd\4.1.1\files\wtvh.dll c:\windows\wt\wtupdates\webd\4.1.1\files\wtwmplug.ax c:\windows\wt\wtupdates\webd\4.1.1\files\wtwmplug.ini c:\windows\wt\wtupdates\webd\4.1.1\install\Webd4_1_1.cdanfo c:\windows\wt\wtupdates\webd\4.1.1\install\Webd4_1_1_Uninstall.cdas c:\windows\wt\wtupdates\WireControl\1.0.0.63\files\controlpanel\index.html c:\windows\wt\wtupdates\WireControl\1.0.0.63\files\install\WireControl.cdanfo c:\windows\wt\wtupdates\WireControl\1.0.0.63\files\install\WireControl_Uninstall.cdas c:\windows\wt\wtupdates\WireControl\1.0.0.63\files\WireControl.dll c:\windows\wt\wtupdates\wtdmmp\update_info\data.wts c:\windows\wt\wtupdates\wtupdater\appinfo.dat c:\windows\wt\wtupdates\wtwebdriver\update_info\data.wts c:\windows\wt\wtvh.dll . . ((((((((((((((((((((((((( Files Created from 2012-11-16 to 2012-12-16 ))))))))))))))))))))))))))))))) . . . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-09-14 17:44 . 2009-09-14 17:44 10038 ----a-w- c:\program files\Common Files\fedykyjasi.pif . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2012-06-24 16:32 2068536 ----a-w- c:\program files\AVG Secure Search\11.1.0.7\AVG Secure Search_toolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.7\AVG Secure Search_toolbar.dll" [2012-06-24 2068536] . [HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-01 68856] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SigmatelSysTrayApp"="stsystra.exe" [2005-03-23 339968] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-06-17 139264] "ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-06 344064] "IntelMeM"="c:\program files\Intel\Modem Event Monitor\IntelMEM.exe" [2003-09-04 221184] "DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-02-23 53248] "ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920] "MimBoot"="c:\progra~1\MUSICM~1\MUSICM~3\mimboot.exe" [2006-01-18 8192] "DLCCCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll" [2005-06-07 69632] "dlccmon.exe"="c:\program files\Dell Photo AIO Printer 924\dlccmon.exe" [2005-07-22 425984] "hcsystray"="c:\program files\Kuma Games\hcsystray\hc_tray.exe" [2006-11-02 30928] "Nikon Transfer Monitor"="c:\program files\Common Files\Nikon\Monitor\NkMonitor.exe" [2008-09-30 485208] "Corel Photo Downloader"="c:\program files\Corel\Corel Photo Album 6\MediaDetect.exe" [2005-08-31 106496] "AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656] "Memeo Instant Backup"="c:\program files\Memeo\AutoBackup\MemeoLauncher2.exe" [2011-05-04 136416] "Seagate Dashboard"="c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe" [2011-06-01 79112] "AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-06-24 1104440] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-01 68856] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696] QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912] . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\Seagate\\Seagate Dashboard\\HipServAgent\\HipServAgent.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings] "AllowInboundEchoRequest"= 1 (0x1) . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [4/19/2012 3:50 AM 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [1/31/2012 3:46 AM 31952] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2/22/2012 4:25 AM 235216] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [3/19/2012 4:17 AM 301248] R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/14/2012 3:53 AM 193288] R2 vToolbarUpdater11.1.0;vToolbarUpdater11.1.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\11.1.0\ToolbarUpdater.exe [6/24/2012 10:32 AM 935480] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [12/23/2011 12:32 PM 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [12/23/2011 12:32 PM 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [12/23/2011 12:32 PM 17232] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [4/30/2012 8:44 AM 5106744] S4 0268541270047218mcinstcleanup;McAfee Application Installer Cleanup (0268541270047218);c:\windows\TEMP\026854~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service --> c:\windows\TEMP\026854~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service [?] S4 MemeoBackgroundService;MemeoBackgroundService;c:\program files\Memeo\AutoBackup\MemeoBackgroundService.exe [5/4/2011 3:04 PM 25824] S4 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [6/1/2011 10:42 AM 14088] . Contents of the 'Scheduled Tasks' folder . 2012-07-05 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 22:57] . 2012-10-20 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2006-12-19 16:08] . 2012-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 01:18] . 2012-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 01:18] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 Trusted Zone: internet Trusted Zone: mcafee.com Trusted Zone: musicmatch.com\online TCP: DhcpNameServer = 24.217.0.5 24.217.201.67 24.247.15.53 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.1.0\ViProtocol.dll FF - ProfilePath - c:\documents and settings\Jada and Aaron\Application Data\Mozilla\Firefox\Profiles\vgfg5fqn.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7Bd12f8064-1572-42f5-9b99-96f4e2d9f4c8%7D&mid=b4bdff589a9647d08967d15b799aac10-a6111efd2678abad68a810209487b7ed6eba58aa&ds=AVG&v=11.1.0.7〈=en&pr=fr&d=2012-05-22%2022%3A57%3A21&sap=ku&q= . - - - - ORPHANS REMOVED - - - - . WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) HKLM-Run-WinPatrol - c:\program files\BillP Studios\WinPatrol\winpatrol.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-12-16 16:53 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'explorer.exe'(4080) c:\windows\system32\WININET.dll c:\windows\system32\ieframe.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\Ati2evxx.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\windows\eHome\ehRecvr.exe c:\windows\eHome\ehSched.exe c:\program files\Intel\Intel Matrix Storage Manager\iaantmon.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE c:\windows\system32\PnkBstrA.exe c:\windows\system32\locator.exe c:\program files\AVG\AVG2012\avgnsx.exe c:\program files\AVG\AVG2012\avgemcx.exe c:\windows\ehome\mcrdsvc.exe c:\program files\AVG\AVG2012\avgrsx.exe c:\windows\system32\dllhost.exe c:\program files\AVG\AVG2012\avgcsrvx.exe c:\windows\system32\wscntfy.exe c:\windows\stsystra.exe c:\progra~1\MUSICM~1\MUSICM~3\MMDiag.exe c:\windows\system32\dlcccoms.exe c:\program files\MUSICMATCH\Musicmatch Jukebox\mim.exe c:\program files\iPod\bin\iPodService.exe c:\program files\Memeo\AutoBackup\InstantBackup.exe . ************************************************************************** . Completion time: 2012-12-16 17:00:59 - machine was rebooted ComboFix-quarantined-files.txt 2012-12-16 23:00 ComboFix2.txt 2012-05-21 04:21 . Pre-Run: 20,419,768,320 bytes free Post-Run: 20,629,630,976 bytes free . - - End Of File - - 7AE0C1132F416F978BACF4C146A57114
  14. Long story short, here is the original problem: http://forums.malwarebytes.org/index.php?showtopic=110032&hl=&fromsearch=1 I thought this issue was resolved, but turned out the fix only worked for about a week, then experienced the same thing. I think, correct me if I'm wrong, the other thread is closed, so figure I needed to open a new one. The local area connections status says "Acquiring network address", but if never does. I've posted new dds.txt and attach.txt below. Thanks in advance for your help. . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume2 Install Date: 1/3/2006 12:19:49 PM System Uptime: 12/4/2012 8:23:43 PM (0 hours ago) . Motherboard: Dell Inc. | | 0YC523 Processor: Intel® Pentium® D CPU 2.80GHz | Microprocessor | 2793/800mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 70 GiB total, 18.9 GiB free. D: is CDROM () E: is CDROM () F: is Removable . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP697: 8/11/2012 12:13:52 PM - System Checkpoint RP698: 8/19/2012 12:51:49 PM - System Checkpoint RP699: 8/20/2012 3:09:32 PM - System Checkpoint RP700: 8/25/2012 9:33:07 AM - System Checkpoint RP701: 8/26/2012 5:59:03 PM - System Checkpoint RP702: 9/13/2012 7:01:44 PM - System Checkpoint RP703: 9/27/2012 7:38:00 AM - System Checkpoint RP704: 10/20/2012 10:35:34 AM - System Checkpoint RP705: 11/8/2012 7:18:48 PM - System Checkpoint RP706: 12/4/2012 8:00:58 PM - ComboFix created restore point . ==== Installed Programs ====================== . ABBYY FineReader 6.0 Sprint Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader 7.0.9 Adobe Shockwave Player 11.5 AGEIA PhysX v2.4.4 Air Conflicts Single Player Demo AOL Instant Messenger AOLIcon Apple Application Support Apple Mobile Device Support Apple Software Update ArcSoft Panorama Maker 4 ATI Control Panel ATI Display Driver AVG 2012 Battlefield Vietnam Blasterball 2 Bonjour Canon PhotoRecord Canon PowerShot A40 WIA Driver Canon Utilities PhotoStitch 3.1 Canon Utilities RAW Image Converter Canon Utilities RemoteCapture 2.2 Canon Utilities ZoomBrowser EX Company of Heroes Compatibility Pack for the 2007 Office system Corel Photo Album 6 Dell Digital Jukebox Driver Dell Driver Reset Tool Dell Game Console Dell Photo AIO Printer 924 Dell System Restore DellSupport Digital Content Portal EducateU Facebook Plug-In FastStone Image Viewer 3.9 File Uploader GEAR driver installer for x86 and x64 Google AFE Google Chrome Google Earth Google Gears Google Toolbar for Internet Explorer Google Update Helper Google Updater High Definition Audio Driver Package - KB835221 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Internet Explorer 7 (KB947864) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 10 (KB903157) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB970653-v3) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Intel Matrix Storage Manager Intel® 537EP V9x DF PCI Modem Intel® PRO Network Connections Drivers Intel® PROSet for Wired Connections iPod for Windows 2006-01-10 iTunes Jasc Paint Shop Photo Album 5 Java Auto Updater Java 6 Update 24 Learn2 Player (Uninstall Only) Macromedia Flash Player Malwarebytes' Anti-Malware MCU Memeo Instant Backup Microsoft .NET Framework 1.0 Hotfix (KB2572066) Microsoft .NET Framework 1.0 Hotfix (KB953295) Microsoft .NET Framework 1.0 Hotfix (KB979904) Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Document Explorer 2005 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office File Validation Add-In Microsoft Office Standard Edition 2003 Microsoft Plus! Digital Media Edition Installer Microsoft Plus! Photo Story 2 LE Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 MobileMe Control Panel Modem Event Monitor Modem Helper Modem On Hold Mozilla Firefox (3.6.3) MSXML 4.0 SP2 (KB925672) MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 6.0 Parser (KB933579) Musicmatch for Windows Media Player Musicmatch® Jukebox Nikon Message Center Nikon Transfer Otto Picasa 3 PowerDVD 5.5 PunkBuster Services Quake Live Mozilla Plugin QuickBooks Simple Start Special Edition QuickTime Safari Seagate Dashboard Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 7 (KB928090) Security Update for Windows Internet Explorer 7 (KB929969) Security Update for Windows Internet Explorer 7 (KB931768) Security Update for Windows Internet Explorer 7 (KB933566) Security Update for Windows Internet Explorer 7 (KB937143) Security Update for Windows Internet Explorer 7 (KB938127) Security Update for Windows Internet Explorer 7 (KB939653) Security Update for Windows Internet Explorer 7 (KB942615) Security Update for Windows Internet Explorer 7 (KB944533) Security Update for Windows Internet Explorer 7 (KB950759) Security Update for Windows Internet Explorer 7 (KB953838) Security Update for Windows Internet Explorer 7 (KB956390) Security Update for Windows Internet Explorer 7 (KB958215) Security Update for Windows Internet Explorer 7 (KB960714) Security Update for Windows Internet Explorer 7 (KB961260) Security Update for Windows Internet Explorer 7 (KB963027) Security Update for Windows Internet Explorer 7 (KB969897) Security Update for Windows Internet Explorer 7 (KB972260) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 10 (KB911565) Security Update for Windows Media Player 10 (KB917734) Security Update for Windows Media Player 10 (KB936782) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows Media Player 6.4 (KB925398) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2491683) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923689) Security Update for Windows XP (KB938464-v2) Security Update for Windows XP (KB938464) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950760) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951376) Security Update for Windows XP (KB951698) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB953839) Security Update for Windows XP (KB954211) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956391) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956841) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957095) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Sonic Encoders Spybot - Search & Destroy SpywareBlaster 4.2 Tweak UI Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2447568) Update for Windows Internet Explorer 8 (KB976662) Update for Windows Media Player 10 (KB910393) Update for Windows Media Player 10 (KB913800) Update for Windows Media Player 10 (KB926251) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB951072-v2) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update Rollup 2 for Windows XP Media Center Edition 2005 V1 Home 2.0 VandM Viewpoint Media Player WD Diagnostics WebFldrs XP WildTangent Web Driver Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool Windows Internet Explorer 7 Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 10 Windows Media Player 10 Hotfix - KB895316 Windows Media Player 10 Hotfix [see EmeraldQFE2 for more information] Windows Media Player 11 Windows Media Player Firefox Plugin Windows PowerShell 1.0 Windows XP Media Center Edition 2005 KB2502898 Windows XP Media Center Edition 2005 KB2619340 Windows XP Media Center Edition 2005 KB2628259 Windows XP Media Center Edition 2005 KB908246 Windows XP Media Center Edition 2005 KB925766 Windows XP Media Center Edition 2005 KB973768 Windows XP Service Pack 3 WordPerfect Office 12 . ==== Event Viewer Messages From Past Week ======== . 12/4/2012 8:26:56 PM, error: Service Control Manager [7003] - The TCP/IP NetBIOS Helper service depends on the following nonexistent service: NetBT 12/4/2012 8:26:56 PM, error: Service Control Manager [7003] - The DHCP Client service depends on the following nonexistent service: NetBT . ==== End Of File =========================== . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24 Run by Jada and Aaron at 20:47:15 on 2012-12-04 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.516 [GMT -6:00] . AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . ============== Running Processes =============== . C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\DellSupport\DSAgnt.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Memeo\AutoBackup\InstantBackup.exe svchost.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\PnkBstrA.exe svchost.exe C:\Program Files\AVG\AVG2012\avgnsx.exe svchost.exe C:\Program Files\AVG\AVG2012\avgemcx.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.1.0\ToolbarUpdater.exe C:\Program Files\AVG\AVG2012\avgrsx.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wscntfy.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s uURLSearchHooks: H - No File mURLSearchHooks: H - No File BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.7\AVG Secure Search_toolbar.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.7\AVG Secure Search_toolbar.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: {70DE7956-479D-4EB7-8641-2B45774C350E} - No File {e7df6bff-55a5-4eb7-a673-4ed3e9456d39} uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [sigmatelSysTrayApp] stsystra.exe mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [ATIPTA] "c:\program files\ati technologies\ati control panel\atiptaxx.exe" mRun: [intelMeM] c:\program files\intel\modem event monitor\IntelMEM.exe mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe" mRun: [iSUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup mRun: [iSUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start mRun: [MimBoot] c:\progra~1\musicm~1\musicm~3\mimboot.exe mRun: [DLCCCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\DLCCtime.dll,_RunDLLEntry@16 mRun: [dlccmon.exe] "c:\program files\dell photo aio printer 924\dlccmon.exe" mRun: [hcsystray] c:\program files\kuma games\hcsystray\hc_tray.exe mRun: [WinPatrol] c:\program files\billp studios\winpatrol\winpatrol.exe -expressboot mRun: [Nikon Transfer Monitor] c:\program files\common files\nikon\monitor\NkMonitor.exe mRun: [Corel Photo Downloader] c:\program files\corel\corel photo album 6\MediaDetect.exe mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [Memeo Instant Backup] c:\program files\memeo\autobackup\MemeoLauncher2.exe --silent --no_ui mRun: [seagate Dashboard] c:\program files\seagate\seagate dashboard\MemeoLauncher.exe --silent --no_ui mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" mRun: [vProt] "c:\program files\avg secure search\vprot.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" dRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000 IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\progra~1\aim\aim.exe IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {F4430FE8-2638-42e5-B849-800749B94EED} IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll IE: {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - {0B4350D1-055F-47A3-B112-5F2F2B0D6F08} - c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll Trusted Zone: internet Trusted Zone: mcafee.com Trusted Zone: musicmatch.com\online DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/F/D/9/FD9E437D-5BC8-4264-A093-DFA2C39D197E/LegitCheckControl.cab DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photos.walmart.com/WalmartActivia.cab DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1143094851980 DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 24.217.0.5 24.217.201.67 24.247.15.53 TCP: Interfaces\{C743B2E2-AF0C-452C-859C-A8CDE93C121B} : DhcpNameServer = 24.217.0.5 24.217.201.67 24.247.15.53 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\11.1.0\ViProtocol.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\jada and aaron\application data\mozilla\firefox\profiles\vgfg5fqn.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7Bd12f8064-1572-42f5-9b99-96f4e2d9f4c8%7D&mid=b4bdff589a9647d08967d15b799aac10-a6111efd2678abad68a810209487b7ed6eba58aa&ds=AVG&v=11.1.0.7〈=en&pr=fr&d=2012-05-22%2022%3A57%3A21&sap=ku&q= FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff10.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff11.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff12.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff5.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff6.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff7.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff8.dll FF - component: c:\program files\avg\avg2012\firefox4\components\avgssff9.dll FF - component: c:\program files\google\google gears\firefox\lib\ff36\gears.dll FF - plugin: c:\documents and settings\all users\application data\id software\quakelive\npquakezero.dll FF - plugin: c:\documents and settings\jada and aaron\application data\facebook\npfbplugin_1_0_1.dll FF - plugin: c:\documents and settings\jada and aaron\application data\facebook\npfbplugin_1_0_3.dll FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\11.1.0\npsitesafety.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll FF - plugin: c:\program files\google\picasa3\npPicasa2.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol400.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol500.dll FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_262.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension FF - Ext: XULRunner: {9538ED55-A687-4328-A5EA-E0DBED2FAAF1} - c:\documents and settings\administrator\local settings\application data\{9538ED55-A687-4328-A5EA-E0DBED2FAAF1} FF - Ext: Google Gears: {000a9d1c-beef-4f90-9363-039d445309b8} - c:\program files\google\google gears\Firefox FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff FF - Ext: AVG Safe Search: {1E73965B-8B48-48be-9C8D-68B920ABC1C4} - c:\program files\avg\avg2012\Firefox4 FF - Ext: AVG Do Not Track: {F53C93F1-07D5-430c-86D4-C9531B27DFAF} - c:\program files\avg\avg2012\firefox\DoNotTrack FF - Ext: AVG Security Toolbar: avg@toolbar - c:\documents and settings\all users\application data\avg secure search\11.1.0.7 . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-1-31 31952] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-2-22 235216] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-12-23 41040] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-3-19 301248] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288] R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328] R2 vToolbarUpdater11.1.0;vToolbarUpdater11.1.0;c:\program files\common files\avg secure search\vtoolbarupdater\11.1.0\ToolbarUpdater.exe [2012-6-24 935480] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-4-30 5106744] S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-1-5 135664] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-5-22 250056] S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-1-5 135664] S4 0268541270047218mcinstcleanup;McAfee Application Installer Cleanup (0268541270047218);c:\windows\temp\026854~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service --> c:\windows\temp\026854~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service [?] S4 MemeoBackgroundService;MemeoBackgroundService;c:\program files\memeo\autobackup\MemeoBackgroundService.exe [2011-5-4 25824] S4 SeagateDashboardService;Seagate Dashboard Service;c:\program files\seagate\seagate dashboard\SeagateDashboardService.exe [2011-6-1 14088] . =============== Created Last 30 ================ . 2012-12-05 02:00:45 98816 ----a-w- c:\windows\sed.exe 2012-12-05 02:00:45 518144 ----a-w- c:\windows\SWREG.exe 2012-12-05 02:00:45 256000 ----a-w- c:\windows\PEV.exe 2012-12-05 02:00:45 208896 ----a-w- c:\windows\MBR.exe 2012-12-05 02:00:40 -------- d-s---w- C:\ComboFix . ==================== Find3M ==================== . 2009-09-14 17:44:21 10038 ----a-w- c:\program files\common files\fedykyjasi.pif . ============= FINISH: 20:48:33.45 ===============
  15. No router, just modem. Your first suggestion worked, I'm back online. Thanks for all your help. If you need me to do anything else let me know, otherwise I consider this case closed. Again, thanks so much for your help!!!!!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.