myriamlavoie
Members-
Posts
2 -
Joined
-
Last visited
Reputation
0 Neutral-
Malware? search engine redirect
myriamlavoie replied to myriamlavoie's topic in Resolved Malware Removal Logs
Well after removing all the programs and changing back again my homepage and rebooting, the redirect seems to be gone now. Not sure how but I might have fixed my problem just before posting the first log. I'd still appreciate if someone can take a look at it, I wont make any changes to the computer till then. thanks. -
Hi! I got back a netbook from a friend - it works relatively fine but everytime I open a browser I get redirected to the following site: search.conduit.com. I removed all unecessary programs, toolbars and whatnot and ran the malwarebytes program (which found nothing malicious) and of course set up my homepage to a new page (google.com) but it is still happening. I am worried it might be malware. I'm trying my luck in this forum, but otherwise I'm ready to maek a clean OS reinstall. cheers. Here are my logs: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume2 Install Date: 2010-11-08 19:31:53 System Uptime: 2012-09-03 13:09:55 (3 hours ago) . Motherboard: Dell Inc. | | 0P9MDV Processor: Intel® Atom CPU N450 @ 1.66GHz | CPU 1 | 1662/667mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 139 GiB total, 114,854 GiB free. . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP272: 2012-05-08 15:46:03 - System Checkpoint RP273: 2012-05-09 16:49:44 - System Checkpoint RP274: 2012-05-10 17:36:17 - System Checkpoint RP275: 2012-05-11 19:29:20 - System Checkpoint RP276: 2012-05-12 09:00:33 - Software Distribution Service 3.0 RP277: 2012-05-13 09:14:28 - System Checkpoint RP278: 2012-05-14 09:40:16 - System Checkpoint RP279: 2012-05-15 10:40:17 - System Checkpoint RP280: 2012-05-16 11:32:39 - System Checkpoint RP281: 2012-05-17 13:18:54 - System Checkpoint RP282: 2012-05-18 14:51:55 - System Checkpoint RP283: 2012-05-19 14:59:21 - System Checkpoint RP284: 2012-05-20 16:17:02 - System Checkpoint RP285: 2012-05-21 17:47:18 - System Checkpoint RP286: 2012-05-22 17:59:06 - System Checkpoint RP287: 2012-05-23 03:00:20 - Software Distribution Service 3.0 RP288: 2012-05-24 03:03:27 - System Checkpoint RP289: 2012-05-25 07:52:46 - System Checkpoint RP290: 2012-05-26 09:41:53 - System Checkpoint RP291: 2012-05-27 11:11:22 - System Checkpoint RP292: 2012-05-28 19:27:24 - System Checkpoint RP293: 2012-05-29 21:31:22 - System Checkpoint RP294: 2012-05-31 08:59:29 - System Checkpoint RP295: 2012-06-01 14:54:05 - System Checkpoint RP296: 2012-06-02 15:39:16 - System Checkpoint RP297: 2012-06-02 20:46:20 - Installé AVG 2012 RP298: 2012-06-02 20:56:19 - Supprimé AVG 2012 RP299: 2012-06-03 21:16:36 - System Checkpoint RP300: 2012-06-04 21:26:58 - System Checkpoint RP301: 2012-06-05 03:00:21 - Software Distribution Service 3.0 RP302: 2012-06-06 03:21:26 - System Checkpoint RP303: 2012-06-07 04:21:27 - System Checkpoint RP304: 2012-06-08 05:21:26 - System Checkpoint RP305: 2012-06-09 05:29:59 - System Checkpoint RP306: 2012-06-10 06:21:27 - System Checkpoint RP307: 2012-06-11 09:20:16 - System Checkpoint RP308: 2012-06-12 10:03:34 - System Checkpoint RP309: 2012-06-13 10:45:40 - System Checkpoint RP310: 2012-06-14 03:00:22 - Software Distribution Service 3.0 RP311: 2012-06-15 03:55:18 - System Checkpoint RP312: 2012-06-16 04:49:00 - System Checkpoint RP313: 2012-06-17 12:30:08 - System Checkpoint RP314: 2012-06-18 13:41:32 - System Checkpoint RP315: 2012-06-19 14:09:15 - System Checkpoint RP316: 2012-06-20 16:17:42 - System Checkpoint RP317: 2012-06-21 16:49:03 - System Checkpoint RP318: 2012-06-22 17:09:44 - System Checkpoint RP319: 2012-06-23 09:41:15 - Removed Aeria Ignite RP320: 2012-06-24 10:00:33 - System Checkpoint RP321: 2012-06-25 10:24:47 - System Checkpoint RP322: 2012-06-26 10:53:29 - System Checkpoint RP323: 2012-06-27 13:30:23 - System Checkpoint RP324: 2012-06-28 15:56:21 - System Checkpoint RP325: 2012-06-29 16:41:33 - System Checkpoint RP326: 2012-06-30 17:30:21 - System Checkpoint RP327: 2012-07-01 17:31:29 - System Checkpoint RP328: 2012-07-02 17:46:19 - System Checkpoint RP329: 2012-07-03 18:59:09 - System Checkpoint RP330: 2012-07-04 19:04:38 - System Checkpoint RP331: 2012-07-05 20:14:49 - System Checkpoint RP332: 2012-07-06 20:35:12 - System Checkpoint RP333: 2012-07-07 20:44:10 - System Checkpoint RP334: 2012-07-08 23:03:23 - System Checkpoint RP335: 2012-07-10 00:03:55 - System Checkpoint RP336: 2012-07-11 01:14:21 - System Checkpoint RP337: 2012-07-11 03:00:52 - Software Distribution Service 3.0 RP338: 2012-07-12 03:54:21 - System Checkpoint RP339: 2012-07-13 04:22:08 - System Checkpoint RP340: 2012-07-14 04:46:17 - System Checkpoint RP341: 2012-07-15 04:58:31 - System Checkpoint RP342: 2012-07-16 05:51:41 - System Checkpoint RP343: 2012-07-17 05:57:35 - System Checkpoint RP344: 2012-07-18 06:14:08 - System Checkpoint RP345: 2012-07-19 06:39:48 - System Checkpoint RP346: 2012-07-20 07:21:51 - System Checkpoint RP347: 2012-07-21 07:36:55 - System Checkpoint RP348: 2012-07-22 09:04:15 - System Checkpoint RP349: 2012-07-23 09:20:46 - System Checkpoint RP350: 2012-07-24 18:10:46 - System Checkpoint RP351: 2012-07-26 00:09:41 - System Checkpoint RP352: 2012-07-27 01:01:08 - System Checkpoint RP353: 2012-07-30 23:35:19 - System Checkpoint RP354: 2012-08-01 12:08:11 - System Checkpoint RP355: 2012-08-03 15:36:36 - System Checkpoint RP356: 2012-08-05 13:18:22 - System Checkpoint RP357: 2012-08-10 17:28:22 - Supprimé iTunes RP358: 2012-08-10 17:43:49 - Supprimé Bonjour RP359: 2012-08-10 17:45:46 - Supprimé Apple Application Support RP360: 2012-09-03 14:02:27 - Removed Apple Mobile Device Support RP361: 2012-09-03 14:04:08 - Supprimé Apple Software Update RP362: 2012-09-03 14:07:18 - Removed Live! Cam Avatar Creator RP363: 2012-09-03 14:10:52 - Removed syncables desktop. RP364: 2012-09-03 14:12:20 - Removed WD Drive Manager (x86) . ==== Installed Programs ====================== . µTorrent Acrobat.com Adobe AIR Adobe Flash Player 10 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.4) Advanced Audio FX Engine AVG 2012 Battery Meter CapsLKNotify Compatibility Pack for the 2007 Office system Data Lifeguard Diagnostic for Windows 1.24 Dell Support Center Dell System Restore Dell Touchpad Dell Webcam Central EMSC Function Keys Google Chrome Google Talk Plugin Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB915800-v4) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB953955) Hotfix for Windows XP (KB954434) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB954708) Hotfix for Windows XP (KB959252) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB968764) Hotfix for Windows XP (KB969084) Hotfix for Windows XP (KB976002-v5) Hotfix for Windows XP (KB979306) HTC Driver Installer Intel® Graphics Media Accelerator Driver Java Auto Updater Java 6 Update 20 Junk Mail filter update Lecteur Windows Media 11 Malwarebytes Anti-Malware version 1.62.0.1300 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB2656370) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (French) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Excel MUI (French) 2007 Microsoft Office File Validation Add-In Microsoft Office Home and Student 2007 Microsoft Office InfoPath MUI (French) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (French) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint MUI (French) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Arabic) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing (French) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (French) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared MUI (French) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Suite Activation Assistant Microsoft Office Word MUI (English) 2007 Microsoft Office Word MUI (French) 2007 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 12 Microsoft Software Update for Web Folders (French) 12 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Works Mozilla Firefox 14.0.1 (x86 fr) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser (KB2721691) MSXML 4.0 SP3 Parser (KB973685) MSXML 6.0 Parser (KB927977) OpenAL QuickTime Realtek High Definition Audio Driver Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft Office 2007 suites (KB2596666) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB976325) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player (KB979402) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows Search 4 - KB963093 Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2483614) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2660465) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB938464-v2) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371-v2) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB963027) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969897) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB972260) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Segoe UI Skype Click to Call Skype™ 5.10 SpywareBlaster 4.5 SpywareGuard v2.2 Ubuntu Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition Update for Windows Internet Explorer 8 (KB976662) Update for Windows Internet Explorer 8 (KB978506) Update for Windows Internet Explorer 8 (KB980182) Update for Windows Internet Explorer 8 (KB980302) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB2718704) Update for Windows XP (KB898461) Update for Windows XP (KB951618-v2) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB961503) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update for Windows XP (KB980182) VC80CRTRedist - 8.0.50727.6195 VLC media player 1.1.11 WebFldrs XP Windows Internet Explorer 8 Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sign-in Assistant Windows Live Sync Windows Live Writer Windows Management Framework Core Windows Media Format 11 runtime Windows Media Player 11 Windows Presentation Foundation Windows Rights Management Client Backwards Compatibility SP2 Windows Rights Management Client with Service Pack 2 WSED XML Paper Specification Shared Components Pack 1.0 . ==== Event Viewer Messages From Past Week ======== . 2012-09-03 14:04:41, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found. 2012-09-03 13:11:30, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect. 2012-09-03 13:11:30, error: Service Control Manager [7000] - The Internet Pass-Through Service service failed to start due to the following error: The system cannot find the file specified. 2012-09-03 13:11:30, error: Service Control Manager [7000] - The Apple Mobile Device service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. . ==== End Of File =========================== . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Admin at 16:03:42 on 2012-09-03 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1013.343 [GMT -4:00] . AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . ============== Running Processes =============== . C:\PROGRA~1\AVG\AVG2012\avgrsx.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\AVG\AVG2012\avgnsx.exe C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe C:\WINDOWS\system32\ctfmon.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\WISPTIS.EXE C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\Application\chrome.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.gmail.com/ uInternet Settings,ProxyOverride = <local> BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll BHO: SpywareGuardDLBLOCK.CBrowserHelper: {4a368e80-174f-4872-96b5-0b27ddd11db2} - c:\spywareguard\dlprotect.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Google Update] "c:\documents and settings\admin\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [Akamai NetSession Interface] "c:\documents and settings\admin\local settings\application data\akamai\netsession_win.exe" uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe mRun: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [bTMeter] c:\program files\battery meter\BTMeter.exe mRun: [WSED] c:\program files\wsed\WSED.exe mRun: [<NO NAME>] mRun: [CapsLKNotify] c:\program files\capslknotify\CapsLKNotify.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\docume~1\admin\startm~1\programs\startup\spywar~1.lnk - c:\spywareguard\sgmain.exe IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL DPF: {75AA409D-05F9-4F27-BD53-C7339D4B1D0A} - hxxps://courriel1.mcccf.gouv.qc.ca/dwa85W.cab DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{77A24C14-D67B-48BD-A412-F609EDAEE9A9} : DhcpNameServer = 192.168.1.1 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: igfxcui - igfxdev.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: SpywareGuard.Handler: {81559c35-8464-49f7-bb0e-07a383bef910} - c:\spywareguard\spywareguard.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\admin\application data\mozilla\firefox\profiles\m6r26psk.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=3&q={searchTerms} FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2851639&SearchSource=13 FF - plugin: c:\documents and settings\admin\application data\mozilla\plugins\npgoogletalk.dll FF - plugin: c:\documents and settings\admin\application data\mozilla\plugins\npgtpo3dautoplugin.dll FF - plugin: c:\documents and settings\admin\local settings\application data\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 31952] R0 EMSC;COMPAL Embedded System Control;c:\windows\system32\drivers\EMSC.sys [2010-8-19 14248] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 235216] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 41040] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 301248] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-7-4 5160568] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232] R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\drivers\CtClsFlt.sys [2010-8-19 143840] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-9-3 40776] R3 OAO17Afx;OAO17Afx;c:\windows\system32\drivers\OAO17Afx.sys [2010-8-19 134144] R3 PCDSRVC{E9D79540-57D5953E-06020200}_0;PCDSRVC{E9D79540-57D5953E-06020200}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc.pkms [2012-8-17 22640] S2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\passthrusvr.exe --> c:\program files\htc\internet pass-through\PassThruSvr.exe [?] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-8-19 1684736] S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2012-1-8 24576] S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2010-6-22 21248] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-25 113120] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-8-19 174592] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-25 14336] . =============== Created Last 30 ================ . 2012-09-03 18:24:42 -------- d-----w- C:\ubuntu 2012-09-03 17:46:52 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-09-03 17:46:49 -------- d-----w- c:\documents and settings\admin\application data\Malwarebytes 2012-09-03 17:46:26 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2012-09-03 17:46:25 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-09-03 17:46:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-08-10 21:38:18 558133 ----a-w- c:\windows\system32\sqlite3.dll . ==================== Find3M ==================== . 2012-06-25 20:04:24 1394248 ----a-w- c:\windows\system32\msxml4.dll 2012-06-13 13:29:09 1875072 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 16:04:53,34 ==============