moonze

Here is the DDS: DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.21.2 Run by Mike at 13:08:53 on 2013-06-22 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2034 [GMT -7:00] . AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83} FW: McAfee Firewall *Enabled* FW: ActiveArmor Firewall *Enabled* . ============== Running Processes ================ . C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Java\jre7\bin\jqs.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe C:\WINDOWS\system32\RunDLL32.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Xfire\Xfire.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\mfevtps.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\alg.exe C:\Program Files\McAfee\VirusScan\mcods.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\notepad.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k rpcss C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k netsvcs . ============== Pseudo HJT Report =============== . mSearch Bar = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html uSearchURL,(Default) = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com BHO: Yahoo! Companion BHO: {13F537F0-AF09-11d6-9029-0002B31F9E59} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120703132834.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll EB: &Yahoo! Messenger: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Google Update] "c:\documents and settings\mike\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background mRun: [RTHDCPL] RTHDCPL.EXE mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent StartupFolder: c:\docume~1\mike\startm~1\programs\startup\xfire.lnk - c:\program files\xfire\Xfire.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe uPolicies-Explorer: NoDriveAutoRun = dword:67108863 uPolicies-Explorer: NoDriveTypeAutoRun = dword:323 uPolicies-Explorer: NoDrives = dword:0 mPolicies-Explorer: NoDriveAutoRun = dword:67108863 mPolicies-Explorer: NoDriveTypeAutoRun = dword:323 mPolicies-Explorer: NoDrives = dword:0 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveAutoRun = dword:67108863 mPolicies-Explorer: NoDriveTypeAutoRun = dword:323 IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2499216C-4BA5-11D5-BD9C-000103C116D5} - {2499216C-4BA5-11D5-BD9C-000103C116D5} - c:\program files\yahoo!\common\ylogin.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - {4C171D40-8277-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe LSP: %SYSTEMROOT%\system32\nvappfilter.dll Trusted Zone: $talisma_url$ . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . TCP: NameServer = 192.168.1.254 TCP: Interfaces\{1B59C705-0113-4BF2-8231-05DD7E5F5AEA} : DHCPNameServer = 192.168.1.254 Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\McSnIePl.dll Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ============= SERVICES / DRIVERS =============== . R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2012-2-22 565888] R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2012-7-3 91640] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2012-7-3 203840] R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2012-7-3 169320] R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-7-3 172416] R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-7-3 60920] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-6-22 40776] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2012-7-3 235264] R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-7-3 363080] R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84904] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-12-11 146872] S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2012-7-3 65928] S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84904] S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-7-3 92632] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2013-06-22 18:04:05 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2013-06-19 21:23:01 -------- d-----w- c:\documents and settings\mike\application data\SPORE 2013-06-19 21:22:43 107888 ----a-w- c:\windows\system32\CmdLineExt.dll 2013-06-14 16:42:24 -------- d-----w- c:\program files\SquareEnix . ==================== Find3M ==================== . 2013-06-22 15:18:21 139280 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2013-06-22 15:18:15 281872 ----a-w- c:\windows\system32\PnkBstrB.xtr 2013-06-22 15:18:15 281872 ----a-w- c:\windows\system32\PnkBstrB.exe 2013-06-21 22:44:04 281872 ----a-w- c:\windows\system32\PnkBstrB.ex0 2013-05-21 04:30:37 1084268 ----a-w- c:\windows\system32\nvdrsdb1.bin 2013-05-21 04:30:37 1 ----a-w- c:\windows\system32\nvdrssel.bin 2013-05-21 04:30:36 1084268 ----a-w- c:\windows\system32\nvdrsdb0.bin 2013-05-20 04:41:00 4178264 ----a-w- c:\windows\system32\D3DX9_41.dll 2013-05-07 22:30:06 920064 ----a-w- c:\windows\system32\wininet.dll 2013-05-07 22:30:05 43520 ------w- c:\windows\system32\licmgr10.dll 2013-05-07 22:30:05 1469440 ------w- c:\windows\system32\inetcpl.cpl 2013-05-07 21:53:29 385024 ------w- c:\windows\system32\html.iec 2013-05-03 01:30:20 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-05-03 00:38:17 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-04-10 01:31:19 1876352 ----a-w- c:\windows\system32\win32k.sys 2013-04-04 21:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-04-04 12:35:08 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-03-28 01:01:56 861088 ----a-w- c:\windows\system32\npDeployJava1.dll 2013-03-28 01:01:56 782240 ----a-w- c:\windows\system32\deployJava1.dll . ============= FINISH: 13:09:29.39 =============== Here is the attached: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume2 Install Date: 4/4/2012 9:26:20 PM System Uptime: 6/22/2013 5:19:06 AM (8 hours ago) . Motherboard: alienware | | alienware Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | Socket M2 | 2611/201mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 466 GiB total, 347.402 GiB free. D: is CDROM (UDF) E: is FIXED (NTFS) - 466 GiB total, 415.119 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: NVIDIA nForce Networking Controller Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Manufacturer: NVIDIA Name: NVIDIA nForce Networking Controller PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Service: NVENETFD . ==== System Restore Points =================== . RP11: 3/25/2013 11:49:27 AM - System Checkpoint RP12: 3/26/2013 5:09:10 PM - System Checkpoint RP13: 3/27/2013 5:31:37 PM - System Checkpoint RP14: 3/27/2013 6:01:51 PM - Installed Java 7 Update 17 RP15: 3/29/2013 5:36:50 PM - System Checkpoint RP16: 3/30/2013 5:38:48 PM - System Checkpoint RP17: 4/1/2013 7:58:13 AM - System Checkpoint RP18: 4/3/2013 2:57:16 PM - System Checkpoint RP19: 4/5/2013 8:46:19 AM - System Checkpoint RP20: 4/6/2013 12:16:40 PM - System Checkpoint RP21: 4/7/2013 12:23:05 PM - System Checkpoint RP22: 4/8/2013 12:53:12 PM - System Checkpoint RP23: 4/9/2013 12:59:29 PM - System Checkpoint RP24: 4/10/2013 1:23:05 PM - System Checkpoint RP25: 4/10/2013 5:53:57 PM - Software Distribution Service 3.0 RP26: 4/12/2013 7:56:08 AM - System Checkpoint RP27: 4/13/2013 10:13:07 AM - System Checkpoint RP28: 4/15/2013 7:37:48 AM - System Checkpoint RP29: 4/16/2013 7:08:15 PM - Installed Windows 7 Upgrade Advisor RP30: 4/17/2013 8:52:50 PM - System Checkpoint RP31: 4/20/2013 6:46:06 AM - System Checkpoint RP32: 4/20/2013 6:47:23 PM - Installed Java 7 Update 21 RP33: 4/22/2013 8:47:31 AM - System Checkpoint RP34: 4/23/2013 7:05:18 PM - System Checkpoint RP35: 4/25/2013 8:44:59 AM - System Checkpoint RP36: 4/26/2013 9:27:28 PM - System Checkpoint RP37: 4/29/2013 7:09:20 AM - System Checkpoint RP38: 4/30/2013 10:02:48 AM - System Checkpoint RP39: 5/1/2013 11:01:19 AM - System Checkpoint RP40: 5/3/2013 8:59:11 AM - System Checkpoint RP41: 5/4/2013 11:30:04 AM - System Checkpoint RP42: 5/5/2013 5:05:46 PM - System Checkpoint RP43: 5/7/2013 10:54:15 AM - System Checkpoint RP44: 5/8/2013 3:04:33 PM - System Checkpoint RP45: 5/10/2013 6:53:38 AM - System Checkpoint RP46: 5/13/2013 6:17:22 AM - System Checkpoint RP47: 5/15/2013 7:43:55 AM - Software Distribution Service 3.0 RP48: 5/16/2013 8:12:48 AM - System Checkpoint RP49: 5/17/2013 2:10:33 PM - System Checkpoint RP50: 5/18/2013 4:52:45 PM - System Checkpoint RP51: 5/19/2013 9:41:04 PM - Installed DirectX RP52: 5/21/2013 8:57:40 AM - System Checkpoint RP53: 5/22/2013 12:32:24 PM - System Checkpoint RP54: 5/23/2013 12:45:40 PM - System Checkpoint RP55: 5/24/2013 12:47:01 PM - System Checkpoint RP56: 5/25/2013 1:10:54 PM - System Checkpoint RP57: 5/27/2013 6:56:17 AM - System Checkpoint RP58: 5/28/2013 8:43:32 AM - System Checkpoint RP59: 5/29/2013 2:59:46 PM - System Checkpoint RP60: 5/31/2013 8:50:43 AM - System Checkpoint RP61: 6/1/2013 1:16:31 PM - System Checkpoint RP62: 6/4/2013 5:38:02 AM - System Checkpoint RP63: 6/5/2013 3:50:45 PM - System Checkpoint RP64: 6/7/2013 6:11:01 AM - System Checkpoint RP65: 6/9/2013 6:39:44 AM - System Checkpoint RP66: 6/10/2013 9:04:46 AM - System Checkpoint RP67: 6/11/2013 2:45:32 PM - System Checkpoint RP68: 6/12/2013 1:08:02 PM - Software Distribution Service 3.0 RP69: 6/13/2013 1:11:04 PM - System Checkpoint RP70: 6/14/2013 9:40:21 AM - Installed DirectX RP71: 6/16/2013 11:50:03 AM - System Checkpoint RP72: 6/17/2013 12:06:03 PM - System Checkpoint RP73: 6/19/2013 7:12:08 AM - System Checkpoint RP74: 6/19/2013 1:54:38 PM - Installed SPORE™ RP75: 6/21/2013 7:31:10 AM - System Checkpoint RP76: 6/22/2013 11:32:17 AM - System Checkpoint . ==== Installed Programs ====================== . Adobe Flash Player 11 ActiveX Adobe Photoshop 7.0 Adobe Reader XI (11.0.03) Adobe Shockwave Player 12.0 Apple Application Support Apple Software Update att.net Internet Mail Audio MP3 Editor 5.80 Call of Duty® - World at War Call of Duty® - World at War 1.2 Patch Call of Duty® - World at War 1.3 Patch Call of Duty® - World at War 1.4 Patch Call of Duty® - World at War 1.5 Patch Call of Duty® - World at War 1.6 Patch Call of Duty® - World at War 1.7 Patch Canon MP Navigator EX 4.1 Canon MX410 series MP Drivers Canon My Printer CCleaner Disney's Stanley Tiger Tales Eye Candy 4000 FINAL FANTASY XIV - A Realm Reborn (Beta Version) Flvto Youtube Downloader FormatFactory 3.0.1 GetSavin Google Chrome Google Toolbar for Internet Explorer Google Update Helper HandBrake 0.9.8 Happy Cloud Client High Definition Audio Driver Package - KB888111 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB2779562) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB961118) Java 7 Update 21 Java Auto Updater LightScribe 1.4.124.1 Malwarebytes Anti-Malware version 1.75.0.1300 McAfee SecurityCenter Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Excel MUI (English) 2007 Microsoft Office Home and Student 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 12 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable MixPad Nero 7 Essentials NVIDIA Control Panel 314.22 NVIDIA Drivers NVIDIA ForceWare Network Access Manager NVIDIA Graphics Driver 314.22 NVIDIA HD Audio Driver 1.3.23.1 NVIDIA Install Application NVIDIA nView 136.53 NVIDIA PhysX NVIDIA PhysX System Software 9.12.1031 NVIDIA Update 1.12.12 NVIDIA Update Components Paint Shop Pro 7 ESD PowerDVD PunkBuster Services Pyware iPAS QuickTime Realtek High Definition Audio Driver SAMSUNG Intelli-studio Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB2761465) Security Update for Windows Internet Explorer 8 (KB2792100) Security Update for Windows Internet Explorer 8 (KB2797052) Security Update for Windows Internet Explorer 8 (KB2799329) Security Update for Windows Internet Explorer 8 (KB2809289) Security Update for Windows Internet Explorer 8 (KB2817183) Security Update for Windows Internet Explorer 8 (KB2829530) Security Update for Windows Internet Explorer 8 (KB2838727) Security Update for Windows Internet Explorer 8 (KB2847204) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2544521) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647516) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2727528) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB2753842-v2) Security Update for Windows XP (KB2753842) Security Update for Windows XP (KB2757638) Security Update for Windows XP (KB2758857) Security Update for Windows XP (KB2761226) Security Update for Windows XP (KB2770660) Security Update for Windows XP (KB2778344) Security Update for Windows XP (KB2779030) Security Update for Windows XP (KB2780091) Security Update for Windows XP (KB2799494) Security Update for Windows XP (KB2802968) Security Update for Windows XP (KB2807986) Security Update for Windows XP (KB2808735) Security Update for Windows XP (KB2813170) Security Update for Windows XP (KB2813345) Security Update for Windows XP (KB2820197) Security Update for Windows XP (KB2820917) Security Update for Windows XP (KB2829361) Security Update for Windows XP (KB2839229) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982665) Shared C Run-time for x86 Shockwave SPORE™ swMSM TeamSpeak 3 Client TERA Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2598845) Update for Windows Internet Explorer 8 (KB2632503) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2492386) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB973687) Update for Windows XP (KB973815) VideoPad Video Editor WavePad Sound Editor WebFldrs XP Windows 7 Upgrade Advisor Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0) Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 Wizard101 Xfire (remove only) Yahoo! Login Yahoo! Messenger Explorer Bar . ==== Event Viewer Messages From Past Week ======== . 6/19/2013 9:00:59 AM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\wsock32.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\wups.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\wuaueng.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\win32k.sys could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\shgina.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\sens.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\sclgntfy.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\oleaccrc.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\oleacc.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\ntlanman.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\netui1.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\netui0.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\netrap.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\mspatcha.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\logonui.exe could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\kbdus.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\es.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\duser.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\drprov.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\davclnt.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 6/18/2013 6:13:43 PM, warning: Windows File Protection [64008] - The protected system file c:\windows\resources\themes\luna\luna.msstyles could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. . ==== End Of File ===========================

I was updating Java when Java detected that there was a program running in the background. It showed it was iqs.exe. I looked it up through Google and its some sort of worm. I used my anti virus and scanned my pc, but it didnt find anything. There is a walkthrough to find it in the registry, but i didnt find it there either. Could use some help trying to find out if its a false reading or if its on my pc.

here is 2nd adware and security check Results of screen317's Security Check version 0.99.61 Windows XP Service Pack 3 x86 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Disabled! McAfee Anti-Virus and Anti-Spyware Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Out of date HijackThis installed! SpywareBlaster 4.4 SpywareGuard v2.2 Spybot - Search & Destroy Malwarebytes Anti-Malware version 1.70.0.1100 HijackThis 2.0.2 JavaFX 2.0.3 Java 7 Update 11 Java version out of Date! Adobe Reader 10.1.6 Adobe Reader out of Date! Google Chrome 25.0.1364.152 Google Chrome 25.0.1364.97 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C:: 6% ````````````````````End of Log`````````````````````` AdwCleanerS1.txt

sorry it took so long. here is adwarecleaner AdwCleanerR1.txt

combofix log.txt

mbar logs mbar-log-2013-03-12 (14-58-31).txt system-log.txt

here is roguekiller: RKreport1_S_03122013_02d1358.txt

Since my PC is now clean, i am ow asking for help on my wifes pc. MB found 2 hidden registry keys and removed them, but i think this pc is still infected. Here are the dds fils for this pc dds.txt attach.txt

It is alot better. Programs are now loading quick. Pages load without delay.

# AdwCleaner v2.114 - Logfile created 03/11/2013 at 16:51:41 # Updated 05/03/2013 by Xplode # Operating system : Microsoft Windows XP Service Pack 3 (32 bits) # User : Mike - TRON33 # Boot Mode : Normal # Running from : C:\Documents and Settings\Mike\Desktop\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\END Folder Deleted : C:\Documents and Settings\Mike\Application Data\Iminent Folder Deleted : C:\Documents and Settings\Mike\Local Settings\Application Data\getsavin Folder Deleted : C:\Program Files\DomaIQ Uninstaller Folder Deleted : C:\Program Files\Iminent ***** [Registry] ***** Key Deleted : HKCU\Software\Crossrider Key Deleted : HKCU\Software\Iminent Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} Key Deleted : HKLM\Software\Iminent Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP ***** [internet Browsers] ***** -\\ Internet Explorer v8.0.6001.18702 [OK] Registry is clean. -\\ Google Chrome v25.0.1364.152 File : C:\Documents and Settings\Mike\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [6026 octets] - [11/03/2013 15:09:13] AdwCleaner[s1].txt - [6083 octets] - [11/03/2013 16:51:41] ########## EOF - C:\AdwCleaner[s1].txt - [6143 octets] ########## Results of screen317's Security Check version 0.99.61 Windows XP Service Pack 3 x86 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Disabled! Please wait while WMIC is being installed.d i s p l a y N a m e ECHO is off. M c A f e ECHO is off. A n t i V i r u s ECHO is off. a n d ECHO is off. A n t i S p y w a r e ECHO is off. Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.70.0.1100 CCleaner Adobe Reader 10.1.6 Adobe Reader out of Date! ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C:: 3% ````````````````````End of Log``````````````````````

Here is AdwCleaner log AdwCleanerR1.txt

I dont know whats in the End file. It seems to be a file, not a folder. I dont have a program to open it. Here is a pic of the file called End. Also included is the newest OTL OTLSun.txt

Here are the files for OTL OTL.Txt Extras.Txt

Here is combofix log file. log.txt

Scan said there was no threat. mbar-log-2013-03-09 (10-20-15).txt system-log.txt

Sorry Maniac, this is a duplicate thread. I posted one yesterday and couldnt find my posting, let alone if anyone responded to it. I did find it today, and someone has responded, so i will be using that thread instead of this one. Im sorry for the trouble, go ahead and close this one out. thanks.

. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume2 Install Date: 4/4/2012 9:26:20 PM System Uptime: 3/8/2013 1:37:01 PM (1 hours ago) . Motherboard: alienware | | alienware Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | Socket M2 | 2611/201mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 466 GiB total, 391.221 GiB free. D: is CDROM () E: is FIXED (NTFS) - 466 GiB total, 415.106 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: NVIDIA nForce Networking Controller Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Manufacturer: NVIDIA Name: NVIDIA nForce Networking Controller PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Service: NVENETFD . ==== System Restore Points =================== . RP239: 12/8/2012 6:01:34 PM - System Checkpoint RP240: 12/9/2012 6:36:07 PM - System Checkpoint RP241: 12/10/2012 6:49:02 PM - System Checkpoint RP242: 12/11/2012 7:07:57 PM - System Checkpoint RP243: 12/13/2012 8:43:01 AM - System Checkpoint RP244: 12/13/2012 9:00:14 AM - Software Distribution Service 3.0 RP245: 12/14/2012 12:28:09 PM - System Checkpoint RP246: 12/16/2012 9:45:05 AM - System Checkpoint RP247: 12/17/2012 5:44:53 PM - System Checkpoint RP248: 12/19/2012 7:18:19 AM - System Checkpoint RP249: 12/20/2012 4:16:08 PM - System Checkpoint RP250: 12/21/2012 4:21:21 PM - System Checkpoint RP251: 12/21/2012 6:21:17 PM - Software Distribution Service 3.0 RP252: 12/23/2012 6:00:56 PM - System Checkpoint RP253: 12/27/2012 5:10:33 AM - System Checkpoint RP254: 12/28/2012 7:48:44 AM - System Checkpoint RP255: 12/30/2012 2:56:40 PM - System Checkpoint RP256: 1/1/2013 5:51:49 AM - System Checkpoint RP257: 1/3/2013 7:49:17 AM - System Checkpoint RP258: 1/4/2013 7:24:11 AM - Software Distribution Service 3.0 RP259: 1/5/2013 4:55:26 PM - System Checkpoint RP260: 1/6/2013 5:30:17 PM - System Checkpoint RP261: 1/8/2013 10:53:20 AM - System Checkpoint RP262: 1/9/2013 8:56:26 AM - Software Distribution Service 3.0 RP263: 1/10/2013 1:57:01 PM - System Checkpoint RP264: 1/11/2013 2:37:59 PM - System Checkpoint RP265: 1/12/2013 6:29:21 PM - System Checkpoint RP266: 1/14/2013 6:41:31 AM - System Checkpoint RP267: 1/17/2013 9:00:14 AM - Software Distribution Service 3.0 RP268: 1/18/2013 10:33:59 AM - System Checkpoint RP269: 1/19/2013 2:23:21 PM - System Checkpoint RP270: 1/21/2013 8:37:03 AM - System Checkpoint RP271: 1/22/2013 8:38:15 AM - System Checkpoint RP272: 1/23/2013 2:55:03 PM - System Checkpoint RP273: 1/24/2013 3:50:34 PM - System Checkpoint RP274: 1/25/2013 3:55:22 PM - System Checkpoint RP275: 1/26/2013 7:45:36 PM - System Checkpoint RP276: 1/28/2013 9:00:43 AM - System Checkpoint RP277: 1/29/2013 10:19:18 AM - System Checkpoint RP278: 1/30/2013 5:04:36 PM - System Checkpoint RP279: 1/31/2013 5:18:13 PM - System Checkpoint RP280: 2/1/2013 6:06:08 PM - System Checkpoint RP281: 2/3/2013 3:49:14 PM - System Checkpoint RP282: 2/5/2013 2:59:03 PM - System Checkpoint RP283: 2/6/2013 3:35:16 PM - System Checkpoint RP284: 2/7/2013 5:30:22 PM - System Checkpoint RP285: 2/9/2013 9:09:13 AM - System Checkpoint RP286: 2/10/2013 9:45:19 AM - System Checkpoint RP287: 2/11/2013 8:34:10 AM - Software Distribution Service 3.0 RP288: 2/12/2013 9:39:10 AM - System Checkpoint RP289: 2/13/2013 9:18:51 AM - Software Distribution Service 3.0 RP290: 2/14/2013 2:47:38 PM - System Checkpoint RP291: 2/16/2013 5:28:28 AM - System Checkpoint RP292: 2/17/2013 8:30:31 AM - System Checkpoint RP293: 2/18/2013 1:18:53 PM - System Checkpoint RP294: 2/21/2013 7:04:30 AM - System Checkpoint RP295: 2/22/2013 7:26:14 AM - System Checkpoint RP296: 2/23/2013 10:00:51 AM - System Checkpoint RP297: 2/25/2013 10:21:58 AM - System Checkpoint RP298: 2/26/2013 2:31:51 PM - System Checkpoint RP299: 2/27/2013 3:41:14 PM - System Checkpoint RP300: 2/28/2013 8:08:50 PM - System Checkpoint RP301: 3/2/2013 7:21:02 AM - System Checkpoint RP302: 3/3/2013 3:23:29 PM - System Checkpoint RP303: 3/4/2013 3:33:20 PM - System Checkpoint RP304: 3/6/2013 6:48:51 AM - System Checkpoint RP305: 3/7/2013 7:57:32 AM - Quitado DownQuick RP306: 3/8/2013 10:03:43 AM - System Checkpoint . ==== Installed Programs ====================== . Adobe Flash Player 11 ActiveX Adobe Photoshop 7.0 Adobe Reader X (10.1.6) Adobe Shockwave Player 11.6 Apple Application Support Apple Software Update att.net Internet Mail Audio MP3 Editor 5.80 Call of Duty® - World at War Call of Duty® - World at War 1.2 Patch Call of Duty® - World at War 1.3 Patch Call of Duty® - World at War 1.4 Patch Call of Duty® - World at War 1.5 Patch Call of Duty® - World at War 1.6 Patch Call of Duty® - World at War 1.7 Patch Canon MP Navigator EX 4.1 Canon MX410 series MP Drivers Canon My Printer CCleaner Disney's Stanley Tiger Tales Eye Candy 4000 Flvto Converter GetSavin Google Chrome Google Toolbar for Internet Explorer Google Update Helper HandBrake 0.9.8 High Definition Audio Driver Package - KB888111 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB2779562) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB961118) LightScribe 1.4.124.1 Malwarebytes Anti-Malware version 1.70.0.1100 McAfee SecurityCenter Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Excel MUI (English) 2007 Microsoft Office Home and Student 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 12 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Nero 7 Essentials NVIDIA Control Panel 314.07 NVIDIA Drivers NVIDIA ForceWare Network Access Manager NVIDIA Graphics Driver 314.07 NVIDIA HD Audio Driver 1.3.23.1 NVIDIA Install Application NVIDIA nView 136.53 NVIDIA PhysX NVIDIA PhysX System Software 9.12.1031 Paint Shop Pro 7 ESD PowerDVD PunkBuster Services Pyware iPAS QuickTime Realtek High Definition Audio Driver SAMSUNG Intelli-studio Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB2761465) Security Update for Windows Internet Explorer 8 (KB2792100) Security Update for Windows Internet Explorer 8 (KB2797052) Security Update for Windows Internet Explorer 8 (KB2799329) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2544521) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647516) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2727528) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB2753842-v2) Security Update for Windows XP (KB2753842) Security Update for Windows XP (KB2757638) Security Update for Windows XP (KB2758857) Security Update for Windows XP (KB2761226) Security Update for Windows XP (KB2770660) Security Update for Windows XP (KB2778344) Security Update for Windows XP (KB2779030) Security Update for Windows XP (KB2780091) Security Update for Windows XP (KB2799494) Security Update for Windows XP (KB2802968) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982665) Shared C Run-time for x86 Shockwave Supreme Savings swMSM TeamSpeak 3 Client Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2598845) Update for Windows Internet Explorer 8 (KB2632503) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2492386) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB973687) Update for Windows XP (KB973815) WebFldrs XP Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0) Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 Wizard101 Xfire (remove only) Yahoo! Login Yahoo! Messenger Explorer Bar . ==== Event Viewer Messages From Past Week ======== . 3/8/2013 7:07:57 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: nvatabus 3/8/2013 11:12:46 AM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\sclgntfy.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 3/7/2013 7:53:46 PM, error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\D. . ==== End Of File =========================== OK, here are the DDS logs: DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 Run by Mike at 14:19:20 on 2013-03-08 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2373 [GMT -8:00] . AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83} FW: McAfee Firewall *Enabled* FW: ActiveArmor Firewall *Enabled* . ============== Running Processes ================ . C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\system32\mfevtps.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe c:\program files\supreme savings\supreme savings-bg.exe C:\WINDOWS\system32\PnkBstrB.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc . ============== Pseudo HJT Report =============== . uStart Page = hxxps://www.google.com/ uSearch Bar = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html uSearch Page = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com mStart Page = hxxp://yahoo.sbc.com/dsl mSearch Bar = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html mSearch Page = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com mDefault_Page_URL = hxxp://yahoo.sbc.com/dsl mDefault_Search_URL = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com uSearchURL,(Default) = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com BHO: Supreme Savings: {11111111-1111-1111-1111-110111991162} - c:\program files\supreme savings\Supreme Savings.dll BHO: Yahoo! Companion BHO: {13F537F0-AF09-11d6-9029-0002B31F9E59} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120703132834.dll BHO: GetSavin 5.0: {9976482F-FF0E-4797-B5AC-7E7AA3FCB3B7} - c:\documents and settings\mike\local settings\application data\getsavin\ie\getsavin_1361393438.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll EB: &Yahoo! Messenger: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll EB: &Yahoo! Messenger: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll uRun: [Google Update] "c:\documents and settings\mike\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [updater19962.exe] c:\documents and settings\mike\local settings\application data\updater19962\Updater19962.exe /extensionid=19962 /extensionname='Supreme Savings' /chromeid=ihkeoookbpemkdccdccdmacnidhooohk /stayidle /delay=300 mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet StartupFolder: c:\docume~1\mike\startm~1\programs\startup\xfire.lnk - c:\program files\xfire\Xfire.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2499216C-4BA5-11D5-BD9C-000103C116D5} - {2499216C-4BA5-11D5-BD9C-000103C116D5} - c:\program files\yahoo!\common\ylogin.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - {4C171D40-8277-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe LSP: %SYSTEMROOT%\system32\nvappfilter.dll Trusted Zone: $talisma_url$ . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1333602288436 DPF: {A17E30C4-A9BA-11D4-8673-60DB54C10000} - hxxp://download.yahoo.com/dl/installs/ymail/ymmapi.dll TCP: NameServer = 192.168.1.254 TCP: Interfaces\{1B59C705-0113-4BF2-8231-05DD7E5F5AEA} : DHCPNameServer = 192.168.1.254 Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\McSnIePl.dll Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll Hosts: 127.0.0.1 www.spywareinfo.com . ============= SERVICES / DRIVERS =============== . R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2012-2-22 565416] R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2012-7-3 91200] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2012-7-3 203400] R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2012-7-3 168880] R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-7-3 171976] R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-7-3 60480] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2012-7-3 234824] R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-7-3 362640] R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84464] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-12-11 146872] S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2012-7-3 65488] S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84464] S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-7-3 92192] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2013-03-08 02:40:33 -------- d-----w- c:\documents and settings\mike\application data\Malwarebytes 2013-03-08 02:40:12 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2013-03-08 02:40:09 21104 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-03-08 02:40:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-03-07 15:57:04 -------- d-----w- c:\program files\DomaIQ Uninstaller 2013-03-07 15:56:26 -------- d-----w- c:\program files\Tuguu SL 2013-03-07 15:56:26 -------- d-----w- c:\program files\Supreme Savings 2013-02-28 17:46:21 -------- d-----w- c:\documents and settings\mike\application data\Iminent 2013-02-28 17:45:55 -------- d-----w- c:\program files\Iminent 2013-02-28 17:45:15 -------- d-----w- c:\documents and settings\mike\local settings\application data\getsavin 2013-02-28 03:35:04 -------- d-----w- c:\documents and settings\all users\application data\AVS4YOU 2013-02-28 03:34:58 -------- d-----w- c:\documents and settings\mike\application data\AVS4YOU 2013-02-28 03:34:17 1700352 ----a-w- c:\windows\system32\GdiPlus.dll 2013-02-28 03:33:39 -------- d-----w- c:\program files\AVS4YOU 2013-02-28 03:33:33 -------- d-----w- c:\program files\common files\AVSMedia 2013-02-26 15:40:42 -------- d-----w- c:\documents and settings\all users\application data\NVIDIA Corporation 2013-02-26 15:40:05 65536 ----a-w- c:\windows\system32\OpenCL.dll 2013-02-26 15:32:00 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll 2013-02-26 15:32:00 6070272 ----a-w- c:\windows\system32\nvopencl.dll 2013-02-26 15:32:00 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll 2013-02-26 15:30:56 54272 ----a-w- c:\windows\system32\nvwddi.dll 2013-02-26 15:30:56 223008 ----a-w- c:\windows\system32\nvmctray.dll 2013-02-26 15:30:56 156960 ----a-w- c:\windows\system32\nvsvc32.exe 2013-02-26 15:30:56 15664416 ----a-w- c:\windows\system32\nvcpl.dll 2013-02-26 15:30:56 144160 ----a-w- c:\windows\system32\nvcolor.exe 2013-02-26 15:30:34 1079188 ----a-w- c:\windows\system32\nvdrsdb1.bin 2013-02-26 15:30:34 1079188 ----a-w- c:\windows\system32\nvdrsdb0.bin 2013-02-26 15:30:34 1 ----a-w- c:\windows\system32\nvdrssel.bin 2013-02-15 00:31:24 -------- d-----w- c:\program files\Flvto Converter 2013-02-13 00:26:34 42880 ----a-w- c:\windows\system32\xfcodec.dll . ==================== Find3M ==================== . 2013-03-08 21:54:56 139280 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2013-03-08 21:54:50 281872 ----a-w- c:\windows\system32\PnkBstrB.xtr 2013-03-08 21:54:50 281872 ----a-w- c:\windows\system32\PnkBstrB.exe 2013-03-08 18:43:12 281872 ----a-w- c:\windows\system32\PnkBstrB.ex0 2013-02-28 16:00:03 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-02-28 16:00:03 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-02-10 03:20:28 7749632 ----a-w- c:\windows\system32\nvcuda.dll 2013-02-10 03:20:28 4078976 ----a-w- c:\windows\system32\nv4_disp.dll 2013-02-10 03:20:28 2731296 ----a-w- c:\windows\system32\nvcuvid.dll 2013-02-10 03:20:28 2481664 ----a-w- c:\windows\system32\nvapi.dll 2013-02-10 03:20:28 1990944 ----a-w- c:\windows\system32\nvcuvenc.dll 2013-02-10 03:20:28 19685376 ----a-w- c:\windows\system32\nvoglnt.dll 2013-02-10 03:20:28 17551360 ----a-w- c:\windows\system32\nvcompiler.dll 2013-02-10 03:20:28 10707360 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2013-01-26 03:55:44 552448 ----a-w- c:\windows\system32\oleaut32.dll 2013-01-07 01:19:45 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-01-07 00:37:01 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-01-04 01:20:00 1867264 ----a-w- c:\windows\system32\win32k.sys 2013-01-02 06:49:10 148992 ----a-w- c:\windows\system32\mpg2splt.ax 2013-01-02 06:49:10 1292288 ----a-w- c:\windows\system32\quartz.dll 2012-12-26 20:16:29 916480 ----a-w- c:\windows\system32\wininet.dll 2012-12-26 20:16:28 43520 ------w- c:\windows\system32\licmgr10.dll 2012-12-26 20:16:28 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-12-26 18:12:06 60480 ----a-w- c:\windows\system32\drivers\cfwids.sys 2012-12-26 18:09:06 171976 ----a-w- c:\windows\system32\mfevtps.exe 2012-12-26 18:08:44 91200 ----a-w- c:\windows\system32\drivers\mfetdi2k.sys 2012-12-26 18:08:06 9648 ----a-w- c:\windows\system32\drivers\mfeclnk.sys 2012-12-26 18:07:54 92192 ----a-w- c:\windows\system32\drivers\mferkdet.sys 2012-12-26 18:06:54 565416 ----a-w- c:\windows\system32\drivers\mfehidk.sys 2012-12-26 18:06:04 84464 ----a-w- c:\windows\system32\drivers\mfendisk.sys 2012-12-26 18:05:52 362640 ----a-w- c:\windows\system32\drivers\mfefirek.sys 2012-12-26 18:05:22 65488 ----a-w- c:\windows\system32\drivers\mfebopk.sys 2012-12-26 18:05:02 234824 ----a-w- c:\windows\system32\drivers\mfeavfk.sys 2012-12-26 18:04:34 132976 ----a-w- c:\windows\system32\drivers\mfeapfk.sys 2012-12-24 06:40:59 385024 ------w- c:\windows\system32\html.iec 2012-12-19 05:41:58 28600 ----a-w- c:\windows\system32\nvhdap32.dll 2012-12-19 05:41:55 128440 ----a-w- c:\windows\system32\drivers\nvhda32.sys 2012-12-18 08:31:23 892856 ----a-w- c:\windows\system32\nvhdagenco3220103.dll 2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll . ============= FINISH: 14:20:00.50 =============== RogueKiller V8.5.2 [Feb 23 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version Started in : Normal mode User : Mike [Admin rights] Mode : Scan -- Date : 03/08/2013 19:39:14 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 5 ¤¤¤ [RUN][sUSP PATH] HKCU\[...]\Run : Updater19962.exe (C:\Documents and Settings\Mike\Local Settings\Application Data\Updater19962\Updater19962.exe /extensionid=19962 /extensionname='Supreme Savings' /chromeid=ihkeoookbpemkdccdccdmacnidhooohk /stayidle /delay=300) -> FOUND [RUN][sUSP PATH] HKUS\S-1-5-21-1960408961-606747145-725345543-1003[...]\Run : Updater19962.exe (C:\Documents and Settings\Mike\Local Settings\Application Data\Updater19962\Updater19962.exe /extensionid=19962 /extensionname='Supreme Savings' /chromeid=ihkeoookbpemkdccdccdmacnidhooohk /stayidle /delay=300) -> FOUND [HJPOL] HKLM\[...]\System : DisableTaskMgr (0) -> FOUND [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 www.100888290cs.com 127.0.0.1 100888290cs.com 127.0.0.1 100sexlinks.com [...] ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: ST3500418AS +++++ --- User --- [MBR] 274abf4202f56e82721d0460acd6960c [bSP] 32983720ae5a1b934daac9c779f105a5 : MBR Code unknown Partition table: 1 - [ACTIVE] EXTEN (0x05) [VISIBLE] Offset (sectors): 1008 | Size: 476939 Mo User = LL1 ... OK! Error reading LL2 MBR! +++++ PhysicalDrive1: ST500DM002-1BD142 +++++ --- User --- [MBR] 8b7bd9802c7265530a824b78b2c400a0 [bSP] d602d0ad0fb07330c62657bd886a6d8f : Windows XP MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476929 Mo User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[1]_S_03082013_02d1939.txt >> RKreport[1]_S_03082013_02d1939.txt

. Programs slow to open and close. Slow ineraction with internet, DSL seems like dial up. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume2 Install Date: 4/4/2012 9:26:20 PM System Uptime: 3/8/2013 1:37:01 PM (1 hours ago) . Motherboard: alienware | | alienware Processor: AMD Athlon 64 X2 Dual Core Processor 5200+ | Socket M2 | 2611/201mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 466 GiB total, 391.221 GiB free. D: is CDROM () E: is FIXED (NTFS) - 466 GiB total, 415.106 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: NVIDIA nForce Networking Controller Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Manufacturer: NVIDIA Name: NVIDIA nForce Networking Controller PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&3B53FC9C&0&00 Service: NVENETFD . ==== System Restore Points =================== . RP239: 12/8/2012 6:01:34 PM - System Checkpoint RP240: 12/9/2012 6:36:07 PM - System Checkpoint RP241: 12/10/2012 6:49:02 PM - System Checkpoint RP242: 12/11/2012 7:07:57 PM - System Checkpoint RP243: 12/13/2012 8:43:01 AM - System Checkpoint RP244: 12/13/2012 9:00:14 AM - Software Distribution Service 3.0 RP245: 12/14/2012 12:28:09 PM - System Checkpoint RP246: 12/16/2012 9:45:05 AM - System Checkpoint RP247: 12/17/2012 5:44:53 PM - System Checkpoint RP248: 12/19/2012 7:18:19 AM - System Checkpoint RP249: 12/20/2012 4:16:08 PM - System Checkpoint RP250: 12/21/2012 4:21:21 PM - System Checkpoint RP251: 12/21/2012 6:21:17 PM - Software Distribution Service 3.0 RP252: 12/23/2012 6:00:56 PM - System Checkpoint RP253: 12/27/2012 5:10:33 AM - System Checkpoint RP254: 12/28/2012 7:48:44 AM - System Checkpoint RP255: 12/30/2012 2:56:40 PM - System Checkpoint RP256: 1/1/2013 5:51:49 AM - System Checkpoint RP257: 1/3/2013 7:49:17 AM - System Checkpoint RP258: 1/4/2013 7:24:11 AM - Software Distribution Service 3.0 RP259: 1/5/2013 4:55:26 PM - System Checkpoint RP260: 1/6/2013 5:30:17 PM - System Checkpoint RP261: 1/8/2013 10:53:20 AM - System Checkpoint RP262: 1/9/2013 8:56:26 AM - Software Distribution Service 3.0 RP263: 1/10/2013 1:57:01 PM - System Checkpoint RP264: 1/11/2013 2:37:59 PM - System Checkpoint RP265: 1/12/2013 6:29:21 PM - System Checkpoint RP266: 1/14/2013 6:41:31 AM - System Checkpoint RP267: 1/17/2013 9:00:14 AM - Software Distribution Service 3.0 RP268: 1/18/2013 10:33:59 AM - System Checkpoint RP269: 1/19/2013 2:23:21 PM - System Checkpoint RP270: 1/21/2013 8:37:03 AM - System Checkpoint RP271: 1/22/2013 8:38:15 AM - System Checkpoint RP272: 1/23/2013 2:55:03 PM - System Checkpoint RP273: 1/24/2013 3:50:34 PM - System Checkpoint RP274: 1/25/2013 3:55:22 PM - System Checkpoint RP275: 1/26/2013 7:45:36 PM - System Checkpoint RP276: 1/28/2013 9:00:43 AM - System Checkpoint RP277: 1/29/2013 10:19:18 AM - System Checkpoint RP278: 1/30/2013 5:04:36 PM - System Checkpoint RP279: 1/31/2013 5:18:13 PM - System Checkpoint RP280: 2/1/2013 6:06:08 PM - System Checkpoint RP281: 2/3/2013 3:49:14 PM - System Checkpoint RP282: 2/5/2013 2:59:03 PM - System Checkpoint RP283: 2/6/2013 3:35:16 PM - System Checkpoint RP284: 2/7/2013 5:30:22 PM - System Checkpoint RP285: 2/9/2013 9:09:13 AM - System Checkpoint RP286: 2/10/2013 9:45:19 AM - System Checkpoint RP287: 2/11/2013 8:34:10 AM - Software Distribution Service 3.0 RP288: 2/12/2013 9:39:10 AM - System Checkpoint RP289: 2/13/2013 9:18:51 AM - Software Distribution Service 3.0 RP290: 2/14/2013 2:47:38 PM - System Checkpoint RP291: 2/16/2013 5:28:28 AM - System Checkpoint RP292: 2/17/2013 8:30:31 AM - System Checkpoint RP293: 2/18/2013 1:18:53 PM - System Checkpoint RP294: 2/21/2013 7:04:30 AM - System Checkpoint RP295: 2/22/2013 7:26:14 AM - System Checkpoint RP296: 2/23/2013 10:00:51 AM - System Checkpoint RP297: 2/25/2013 10:21:58 AM - System Checkpoint RP298: 2/26/2013 2:31:51 PM - System Checkpoint RP299: 2/27/2013 3:41:14 PM - System Checkpoint RP300: 2/28/2013 8:08:50 PM - System Checkpoint RP301: 3/2/2013 7:21:02 AM - System Checkpoint RP302: 3/3/2013 3:23:29 PM - System Checkpoint RP303: 3/4/2013 3:33:20 PM - System Checkpoint RP304: 3/6/2013 6:48:51 AM - System Checkpoint RP305: 3/7/2013 7:57:32 AM - Quitado DownQuick RP306: 3/8/2013 10:03:43 AM - System Checkpoint . ==== Installed Programs ====================== . Adobe Flash Player 11 ActiveX Adobe Photoshop 7.0 Adobe Reader X (10.1.6) Adobe Shockwave Player 11.6 Apple Application Support Apple Software Update att.net Internet Mail Audio MP3 Editor 5.80 Call of Duty® - World at War Call of Duty® - World at War 1.2 Patch Call of Duty® - World at War 1.3 Patch Call of Duty® - World at War 1.4 Patch Call of Duty® - World at War 1.5 Patch Call of Duty® - World at War 1.6 Patch Call of Duty® - World at War 1.7 Patch Canon MP Navigator EX 4.1 Canon MX410 series MP Drivers Canon My Printer CCleaner Disney's Stanley Tiger Tales Eye Candy 4000 Flvto Converter GetSavin Google Chrome Google Toolbar for Internet Explorer Google Update Helper HandBrake 0.9.8 High Definition Audio Driver Package - KB888111 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB2779562) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB961118) LightScribe 1.4.124.1 Malwarebytes Anti-Malware version 1.70.0.1100 McAfee SecurityCenter Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Excel MUI (English) 2007 Microsoft Office Home and Student 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 12 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Nero 7 Essentials NVIDIA Control Panel 314.07 NVIDIA Drivers NVIDIA ForceWare Network Access Manager NVIDIA Graphics Driver 314.07 NVIDIA HD Audio Driver 1.3.23.1 NVIDIA Install Application NVIDIA nView 136.53 NVIDIA PhysX NVIDIA PhysX System Software 9.12.1031 Paint Shop Pro 7 ESD PowerDVD PunkBuster Services Pyware iPAS QuickTime Realtek High Definition Audio Driver SAMSUNG Intelli-studio Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB2761465) Security Update for Windows Internet Explorer 8 (KB2792100) Security Update for Windows Internet Explorer 8 (KB2797052) Security Update for Windows Internet Explorer 8 (KB2799329) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2544521) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647516) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2709162) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2727528) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB2753842-v2) Security Update for Windows XP (KB2753842) Security Update for Windows XP (KB2757638) Security Update for Windows XP (KB2758857) Security Update for Windows XP (KB2761226) Security Update for Windows XP (KB2770660) Security Update for Windows XP (KB2778344) Security Update for Windows XP (KB2779030) Security Update for Windows XP (KB2780091) Security Update for Windows XP (KB2799494) Security Update for Windows XP (KB2802968) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982665) Shared C Run-time for x86 Shockwave Supreme Savings swMSM TeamSpeak 3 Client Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2598845) Update for Windows Internet Explorer 8 (KB2632503) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2492386) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB973687) Update for Windows XP (KB973815) WebFldrs XP Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0) Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 Wizard101 Xfire (remove only) Yahoo! Login Yahoo! Messenger Explorer Bar . ==== Event Viewer Messages From Past Week ======== . 3/8/2013 7:07:57 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: nvatabus 3/8/2013 11:12:46 AM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\sclgntfy.dll could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time. 3/7/2013 7:53:46 PM, error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\D. . ==== End Of File =========================== DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 Run by Mike at 14:19:20 on 2013-03-08 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2373 [GMT -8:00] . AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83} FW: McAfee Firewall *Enabled* FW: ActiveArmor Firewall *Enabled* . ============== Running Processes ================ . C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\system32\mfevtps.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe c:\program files\supreme savings\supreme savings-bg.exe C:\WINDOWS\system32\PnkBstrB.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc . ============== Pseudo HJT Report =============== . uStart Page = hxxps://www.google.com/ uSearch Bar = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html uSearch Page = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com mStart Page = hxxp://yahoo.sbc.com/dsl mSearch Bar = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html mSearch Page = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com mDefault_Page_URL = hxxp://yahoo.sbc.com/dsl mDefault_Search_URL = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com uSearchURL,(Default) = hxxp://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com BHO: Supreme Savings: {11111111-1111-1111-1111-110111991162} - c:\program files\supreme savings\Supreme Savings.dll BHO: Yahoo! Companion BHO: {13F537F0-AF09-11d6-9029-0002B31F9E59} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120703132834.dll BHO: GetSavin 5.0: {9976482F-FF0E-4797-B5AC-7E7AA3FCB3B7} - c:\documents and settings\mike\local settings\application data\getsavin\ie\getsavin_1361393438.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Yahoo! Companion: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\common\ycomp5,0,8,0.dll TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll EB: &Yahoo! Messenger: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll EB: &Yahoo! Messenger: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll uRun: [Google Update] "c:\documents and settings\mike\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [updater19962.exe] c:\documents and settings\mike\local settings\application data\updater19962\Updater19962.exe /extensionid=19962 /extensionname='Supreme Savings' /chromeid=ihkeoookbpemkdccdccdmacnidhooohk /stayidle /delay=300 mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet StartupFolder: c:\docume~1\mike\startm~1\programs\startup\xfire.lnk - c:\program files\xfire\Xfire.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2499216C-4BA5-11D5-BD9C-000103C116D5} - {2499216C-4BA5-11D5-BD9C-000103C116D5} - c:\program files\yahoo!\common\ylogin.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - {4C171D40-8277-11D5-AD55-00010333D0AD} - c:\program files\yahoo!\messenger\yhexbmes.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe LSP: %SYSTEMROOT%\system32\nvappfilter.dll Trusted Zone: $talisma_url$ . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1333602288436 DPF: {A17E30C4-A9BA-11D4-8673-60DB54C10000} - hxxp://download.yahoo.com/dl/installs/ymail/ymmapi.dll TCP: NameServer = 192.168.1.254 TCP: Interfaces\{1B59C705-0113-4BF2-8231-05DD7E5F5AEA} : DHCPNameServer = 192.168.1.254 Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\McSnIePl.dll Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll Hosts: 127.0.0.1 www.spywareinfo.com . ============= SERVICES / DRIVERS =============== . R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2012-2-22 565416] R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2012-7-3 91200] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-7-3 167784] R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2012-7-3 203400] R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2012-7-3 168880] R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-7-3 171976] R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-7-3 60480] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2012-7-3 234824] R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-7-3 362640] R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84464] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-12-11 146872] S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2012-7-3 65488] S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2012-12-17 84464] S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-7-3 92192] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2013-03-08 02:40:33 -------- d-----w- c:\documents and settings\mike\application data\Malwarebytes 2013-03-08 02:40:12 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2013-03-08 02:40:09 21104 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-03-08 02:40:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-03-07 15:57:04 -------- d-----w- c:\program files\DomaIQ Uninstaller 2013-03-07 15:56:26 -------- d-----w- c:\program files\Tuguu SL 2013-03-07 15:56:26 -------- d-----w- c:\program files\Supreme Savings 2013-02-28 17:46:21 -------- d-----w- c:\documents and settings\mike\application data\Iminent 2013-02-28 17:45:55 -------- d-----w- c:\program files\Iminent 2013-02-28 17:45:15 -------- d-----w- c:\documents and settings\mike\local settings\application data\getsavin 2013-02-28 03:35:04 -------- d-----w- c:\documents and settings\all users\application data\AVS4YOU 2013-02-28 03:34:58 -------- d-----w- c:\documents and settings\mike\application data\AVS4YOU 2013-02-28 03:34:17 1700352 ----a-w- c:\windows\system32\GdiPlus.dll 2013-02-28 03:33:39 -------- d-----w- c:\program files\AVS4YOU 2013-02-28 03:33:33 -------- d-----w- c:\program files\common files\AVSMedia 2013-02-26 15:40:42 -------- d-----w- c:\documents and settings\all users\application data\NVIDIA Corporation 2013-02-26 15:40:05 65536 ----a-w- c:\windows\system32\OpenCL.dll 2013-02-26 15:32:00 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll 2013-02-26 15:32:00 6070272 ----a-w- c:\windows\system32\nvopencl.dll 2013-02-26 15:32:00 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll 2013-02-26 15:30:56 54272 ----a-w- c:\windows\system32\nvwddi.dll 2013-02-26 15:30:56 223008 ----a-w- c:\windows\system32\nvmctray.dll 2013-02-26 15:30:56 156960 ----a-w- c:\windows\system32\nvsvc32.exe 2013-02-26 15:30:56 15664416 ----a-w- c:\windows\system32\nvcpl.dll 2013-02-26 15:30:56 144160 ----a-w- c:\windows\system32\nvcolor.exe 2013-02-26 15:30:34 1079188 ----a-w- c:\windows\system32\nvdrsdb1.bin 2013-02-26 15:30:34 1079188 ----a-w- c:\windows\system32\nvdrsdb0.bin 2013-02-26 15:30:34 1 ----a-w- c:\windows\system32\nvdrssel.bin 2013-02-15 00:31:24 -------- d-----w- c:\program files\Flvto Converter 2013-02-13 00:26:34 42880 ----a-w- c:\windows\system32\xfcodec.dll . ==================== Find3M ==================== . 2013-03-08 21:54:56 139280 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2013-03-08 21:54:50 281872 ----a-w- c:\windows\system32\PnkBstrB.xtr 2013-03-08 21:54:50 281872 ----a-w- c:\windows\system32\PnkBstrB.exe 2013-03-08 18:43:12 281872 ----a-w- c:\windows\system32\PnkBstrB.ex0 2013-02-28 16:00:03 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-02-28 16:00:03 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-02-10 03:20:28 7749632 ----a-w- c:\windows\system32\nvcuda.dll 2013-02-10 03:20:28 4078976 ----a-w- c:\windows\system32\nv4_disp.dll 2013-02-10 03:20:28 2731296 ----a-w- c:\windows\system32\nvcuvid.dll 2013-02-10 03:20:28 2481664 ----a-w- c:\windows\system32\nvapi.dll 2013-02-10 03:20:28 1990944 ----a-w- c:\windows\system32\nvcuvenc.dll 2013-02-10 03:20:28 19685376 ----a-w- c:\windows\system32\nvoglnt.dll 2013-02-10 03:20:28 17551360 ----a-w- c:\windows\system32\nvcompiler.dll 2013-02-10 03:20:28 10707360 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2013-01-26 03:55:44 552448 ----a-w- c:\windows\system32\oleaut32.dll 2013-01-07 01:19:45 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-01-07 00:37:01 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-01-04 01:20:00 1867264 ----a-w- c:\windows\system32\win32k.sys 2013-01-02 06:49:10 148992 ----a-w- c:\windows\system32\mpg2splt.ax 2013-01-02 06:49:10 1292288 ----a-w- c:\windows\system32\quartz.dll 2012-12-26 20:16:29 916480 ----a-w- c:\windows\system32\wininet.dll 2012-12-26 20:16:28 43520 ------w- c:\windows\system32\licmgr10.dll 2012-12-26 20:16:28 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-12-26 18:12:06 60480 ----a-w- c:\windows\system32\drivers\cfwids.sys 2012-12-26 18:09:06 171976 ----a-w- c:\windows\system32\mfevtps.exe 2012-12-26 18:08:44 91200 ----a-w- c:\windows\system32\drivers\mfetdi2k.sys 2012-12-26 18:08:06 9648 ----a-w- c:\windows\system32\drivers\mfeclnk.sys 2012-12-26 18:07:54 92192 ----a-w- c:\windows\system32\drivers\mferkdet.sys 2012-12-26 18:06:54 565416 ----a-w- c:\windows\system32\drivers\mfehidk.sys 2012-12-26 18:06:04 84464 ----a-w- c:\windows\system32\drivers\mfendisk.sys 2012-12-26 18:05:52 362640 ----a-w- c:\windows\system32\drivers\mfefirek.sys 2012-12-26 18:05:22 65488 ----a-w- c:\windows\system32\drivers\mfebopk.sys 2012-12-26 18:05:02 234824 ----a-w- c:\windows\system32\drivers\mfeavfk.sys 2012-12-26 18:04:34 132976 ----a-w- c:\windows\system32\drivers\mfeapfk.sys 2012-12-24 06:40:59 385024 ------w- c:\windows\system32\html.iec 2012-12-19 05:41:58 28600 ----a-w- c:\windows\system32\nvhdap32.dll 2012-12-19 05:41:55 128440 ----a-w- c:\windows\system32\drivers\nvhda32.sys 2012-12-18 08:31:23 892856 ----a-w- c:\windows\system32\nvhdagenco3220103.dll 2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll . ============= FINISH: 14:20:00.50 ===============

Hi, i been having an issue with my pc running slow. Programs are slow to open, and close. Processes running in the background, that i dont know what they are. Not only on my pc, but wifes as well. I will just start off with mine, then make a new topic for hers. Also, how come when i click on the Analyze This button on HijackThis, it says there is no interenet connection? My pc is always connected. Here is my log file. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:54:55 AM, on 3/7/2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe C:\Program Files\Xfire\Xfire.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\WINDOWS\system32\mfevtps.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Documents and Settings\Mike\Desktop\HijackThis.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe c:\program files\supreme savings\supreme savings-bg.exe C:\Program Files\Internet Explorer\iexplore.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/sbcydsl/defaults/sb/*http://www.yahoo.com/search/ie.html R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://rd.yahoo.com/customize/sbcydsl/defaults/sp/*http://www.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://rd.yahoo.com/customize/sbcydsl/defaults/su/*http://www.yahoo.com O2 - BHO: CrossriderApp0019962 - {11111111-1111-1111-1111-110111991162} - C:\Program Files\Supreme Savings\Supreme Savings.dll O2 - BHO: Yahoo! Companion BHO - {13F537F0-AF09-11d6-9029-0002B31F9E59} - C:\Program Files\Yahoo!\Common\ycomp5,0,8,0.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120703132834.dll O2 - BHO: GetSavin 5.0 - {9976482F-FF0E-4797-B5AC-7E7AA3FCB3B7} - C:\Documents and Settings\Mike\Local Settings\Application Data\getsavin\ie\getsavin_1361393438.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Common\ycomp5,0,8,0.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Mike\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [updater19962.exe] C:\Documents and Settings\Mike\Local Settings\Application Data\Updater19962\Updater19962.exe /extensionid=19962 /extensionname='Supreme Savings' /chromeid=ihkeoookbpemkdccdccdmacnidhooohk /stayidle /delay=300 O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dll O9 - Extra 'Tools' menuitem: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.alienware.com O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe -- End of file - 11411 bytes