Jump to content

AZslim

Members
  • Posts

    6
  • Joined

  • Last visited

Everything posted by AZslim

  1. Hi All, I have been following the sticky instructions. When running the GMER program, it starts off running very quickly and eventually slows to a crawl, and finally locks up. Here is the information from the other programs. Thank you for your help, BTW. I didn't get the ark.txt file. I hope I'm doin it right this time. Thanks again defogger_disable by jpshortstuff (29.01.10.1) Log created at 20:50 on 08/02/2010 (Gene and Maria) DDS (Ver_09-12-01.01) - NTFSx86 Run by Gene and Maria at 22:12:06.35 on Mon 02/08/2010 Internet Explorer: 7.0.5730.11 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.1847 [GMT -7:00] AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe svchost.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\CTSvcCDA.EXE C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\EarthLink TotalAccess\WENGINE\wmonitor.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Common Files\Lanovation\PrismXL\PRISMXL.SYS C:\WINDOWS\System32\svchost.exe -k imgsvc C:\WINDOWS\system32\MsPMSPSv.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Thunderbird\thunderbird.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\Java\jre6\bin\javaw.exe C:\Documents and Settings\Gene and Maria\Desktop\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://www.nytimes.com uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uDefault_Search_URL = hxxp://www.earthlink.net/partner/more/msie/button/search.html uDefault_Page_URL = hxxp://start.earthlink.net mDefault_Search_URL = hxxp://www.google.com/ie uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://start.earthlink.net/AL/Search uURLSearchHooks: SrchHook Class: {44f9b173-041c-4825-a9b9-d914bd9dcbb3} - c:\program files\earthlink totalaccess\ElnIE.dll uURLSearchHooks: H - No File mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll BHO: ElnkPubBHO Class: {512acf1b-64d9-4928-b382-a80556f28db4} - c:\program files\earthlink totalaccess\toolbar\ElnkPuB.dll BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll BHO: Java
  2. Maybe a moderator could send me a private email telling me why I don't get answer?
  3. Hello? I apologize if I have done something wrong. I know I posted to the wrong place before. I think this is right place to discuss this problem, is it not?
  4. Hello? Have I done something wrong?
  5. Hi All, I have been following the sticky instructions. When running the GMER program, it starts off running very quickly and eventually slows to a crawl, and finally locks up. Here is the information from the other programs. Thank you for your help, BTW. I didn't get the ark.txt file. I hope I'm doin it right this time. Thanks again defogger_disable by jpshortstuff (29.01.10.1) Log created at 20:50 on 08/02/2010 (Gene and Maria) DDS (Ver_09-12-01.01) - NTFSx86 Run by Gene and Maria at 22:12:06.35 on Mon 02/08/2010 Internet Explorer: 7.0.5730.11 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.1847 [GMT -7:00] AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe svchost.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\CTSvcCDA.EXE C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\EarthLink TotalAccess\WENGINE\wmonitor.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Common Files\Lanovation\PrismXL\PRISMXL.SYS C:\WINDOWS\System32\svchost.exe -k imgsvc C:\WINDOWS\system32\MsPMSPSv.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Thunderbird\thunderbird.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\Java\jre6\bin\javaw.exe C:\Documents and Settings\Gene and Maria\Desktop\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://www.nytimes.com uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uDefault_Search_URL = hxxp://www.earthlink.net/partner/more/msie/button/search.html uDefault_Page_URL = hxxp://start.earthlink.net mDefault_Search_URL = hxxp://www.google.com/ie uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://start.earthlink.net/AL/Search uURLSearchHooks: SrchHook Class: {44f9b173-041c-4825-a9b9-d914bd9dcbb3} - c:\program files\earthlink totalaccess\ElnIE.dll uURLSearchHooks: H - No File mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll BHO: ElnkPubBHO Class: {512acf1b-64d9-4928-b382-a80556f28db4} - c:\program files\earthlink totalaccess\toolbar\ElnkPuB.dll BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: ElnkProtectionBHO Class: {9579d574-d4d8-4335-9560-fe8641a013bd} - c:\program files\earthlink totalaccess\toolbar\ProtctIE.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll BHO: ElnkLegacyUninstBHO Class: {e713904c-df05-4c79-bbad-02db923253be} - c:\program files\earthlink totalaccess\toolbar\uninsttb.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: EarthLink Toolbar: {c7768536-96f8-4001-b1a2-90ee21279187} - c:\program files\earthlink totalaccess\toolbar\Toolbar.dll TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [spybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" dRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe dRunOnce: [setDefaultMidi] MIDIDEF.EXE dRunOnce: [iETI] c:\program files\skype\phone\ieplugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000 IE: EarthLink Google Search - c:\program files\earthlink totalaccess\toolbar\SearchUI.dll/search.html IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {5067A26B-1337-4436-8AFE-EE169C2DA79F} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll DPF: DirectAnimation Java Classes DPF: Microsoft XML Parser for Java DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://www.apple.com/qtactivex/qtplugin.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/B/E/5BE645ED-2F2D-4E4D-9C54-AFB56EFCB312/LegitCheckControl.cab DPF: {33564D57-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/D/0/D/D0DD87DA-994F-4334-8B55-AF2E4D98ED0C/wmv9dmo.cab DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1160810177468 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab?e=1228529342520&h=a2ec17e542bfcb2ebd68e7bc34043e48/&filename=jinstall-6u11-windows-i586-jc.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: {0A214BCC-7E66-4EC3-9B3D-9FE9445461BA} = 207.69.188.185,207.69.188.186 TCP: {1EE46790-870C-4020-8533-DA307CBE595A} = 207.69.188.185 207.69.188.186 Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: avgrsstarter - avgrsstx.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll LSA: Notification Packages = :\windows\system32\srr Hosts: 127.0.0.1 www.spywareinfo.com ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\genean~1\applic~1\mozilla\firefox\profiles\ifv0c559.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.nytimes.com/ FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true); c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600); c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5); c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com"); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20); ============= SERVICES / DRIVERS =============== R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-2-6 64288] R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-5-7 335240] R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2006-11-22 27784] R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-5-7 108552] R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-6-25 908056] R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-6-25 297752] R2 EarthLinkMonitor;EarthLink Monitor Service;c:\program files\earthlink totalaccess\wengine\wmonitor.exe [2005-1-26 65604] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-12-2 1181328] R3 SWUSBFLT;Microsoft SideWinder VIA Filter Driver;c:\windows\system32\drivers\SWUSBFLT.SYS [2006-12-2 3968] S3 BW2NDIS5;BW2NDIS5;c:\windows\system32\drivers\BW2NDIS5.SYS [2004-11-1 17536] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\magix\common\database\bin\fbserver.exe [2006-11-26 1527900] S3 UPnPService;UPnPService;c:\program files\common files\magix shared\upnpservice\UPnPService.exe [2006-11-26 647242] =============== Created Last 30 ================ 2010-02-09 03:49:11 0 ----a-w- c:\documents and settings\gene and maria\defogger_reenable 2010-02-07 00:41:44 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys 2010-02-07 00:21:57 0 dc-h--w- c:\docume~1\alluse~1\applic~1\{BC9FCCF7-E686-494B-8C9B-55C9A39A7CA9} 2010-02-07 00:05:37 107368 ----a-w- c:\windows\system32\GEARAspi.dll 2010-02-07 00:04:47 0 d-----w- c:\program files\iPod 2010-02-07 00:04:42 0 d-----w- c:\program files\iTunes 2010-02-06 06:08:50 0 d-----w- c:\docume~1\genean~1\applic~1\Malwarebytes 2010-02-06 06:08:45 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-02-06 06:08:44 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes 2010-02-06 06:08:43 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-02-06 06:08:43 0 d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-02-06 06:00:28 0 d-----w- c:\program files\Spybot - Search & Destroy 2010-02-06 06:00:28 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy 2010-01-24 04:59:08 0 d-----w- c:\program files\File Extension Finder 2010-01-24 04:44:34 0 d-----w- c:\docume~1\genean~1\applic~1\Uniblue 2010-01-13 07:45:33 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll ==================== Find3M ==================== 2010-01-05 10:00:29 832512 ----a-w- c:\windows\system32\wininet.dll 2010-01-05 10:00:21 78336 ----a-w- c:\windows\system32\ieencode.dll 2010-01-05 10:00:20 17408 ----a-w- c:\windows\system32\corpol.dll 2008-08-16 10:06:25 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008081620080817\index.dat ============= FINISH: 22:12:57.76 =============== UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-12-01.01) Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 10/12/2006 11:44:51 PM System Uptime: 2/7/2010 9:03:42 PM (25 hours ago) Motherboard: Intel Corporation | | D875PBZ Processor: Intel® Pentium® 4 CPU 2.80GHz | J2E1 | 2793/200mhz ==== Disk Partitions ========================= A: is Removable C: is FIXED (NTFS) - 128 GiB total, 22.878 GiB free. D: is FIXED (NTFS) - 151 GiB total, 149.42 GiB free. E: is CDROM (UDF) F: is Removable G: is Removable H: is Removable I: is CDROM (CDFS) J: is Removable W: is Removable ==== Disabled Device Manager Items ============= ==== System Restore Points =================== RP1358: 11/11/2009 3:00:18 AM - Software Distribution Service 3.0 RP1359: 11/12/2009 5:03:55 AM - System Checkpoint RP1360: 11/13/2009 6:11:31 AM - System Checkpoint RP1361: 11/14/2009 6:26:28 AM - System Checkpoint RP1362: 11/15/2009 7:25:59 AM - System Checkpoint RP1363: 11/16/2009 8:48:54 AM - System Checkpoint RP1364: 11/17/2009 11:00:54 AM - System Checkpoint RP1365: 11/18/2009 12:48:54 PM - System Checkpoint RP1366: 11/19/2009 2:24:54 PM - System Checkpoint RP1367: 11/20/2009 3:25:31 PM - System Checkpoint RP1368: 11/21/2009 5:13:14 PM - System Checkpoint RP1369: 11/22/2009 6:09:15 PM - System Checkpoint RP1370: 11/23/2009 6:22:57 PM - System Checkpoint RP1371: 11/24/2009 7:21:26 PM - System Checkpoint RP1372: 11/25/2009 3:00:19 AM - Software Distribution Service 3.0 RP1373: 11/26/2009 5:26:44 AM - System Checkpoint RP1374: 11/26/2009 8:48:50 AM - Avg8 Update RP1375: 11/27/2009 10:16:38 AM - System Checkpoint RP1376: 11/28/2009 11:08:35 AM - System Checkpoint RP1377: 11/29/2009 11:37:12 AM - System Checkpoint RP1378: 11/30/2009 11:58:01 AM - System Checkpoint RP1379: 12/1/2009 2:02:35 PM - System Checkpoint RP1380: 12/2/2009 3:19:48 PM - System Checkpoint RP1381: 12/3/2009 3:58:48 PM - System Checkpoint RP1382: 12/4/2009 4:46:48 PM - System Checkpoint RP1383: 12/5/2009 4:51:46 PM - System Checkpoint RP1384: 12/6/2009 5:12:35 PM - System Checkpoint RP1385: 12/7/2009 5:44:30 PM - System Checkpoint RP1386: 12/9/2009 1:18:15 AM - System Checkpoint RP1387: 12/9/2009 3:00:22 AM - Software Distribution Service 3.0 RP1388: 12/9/2009 9:22:35 AM - Avg8 Update RP1389: 12/10/2009 10:51:00 AM - System Checkpoint RP1390: 12/11/2009 9:22:19 AM - Avg8 Update RP1391: 12/11/2009 9:23:08 AM - Avg8 Update RP1392: 12/12/2009 9:42:02 AM - System Checkpoint RP1393: 12/12/2009 1:34:13 PM - Installed W Photo Studio RP1394: 12/13/2009 1:57:05 PM - System Checkpoint RP1395: 12/14/2009 4:19:20 PM - System Checkpoint RP1396: 12/15/2009 5:50:26 PM - System Checkpoint RP1397: 12/16/2009 7:27:31 PM - System Checkpoint RP1398: 12/17/2009 7:38:26 PM - System Checkpoint RP1399: 12/18/2009 8:04:20 PM - System Checkpoint RP1400: 12/20/2009 3:31:31 AM - System Checkpoint RP1401: 12/21/2009 7:34:55 AM - System Checkpoint RP1402: 12/22/2009 7:37:09 AM - System Checkpoint RP1403: 12/22/2009 8:10:26 AM - Avg8 Update RP1404: 12/23/2009 10:21:13 AM - System Checkpoint RP1405: 12/24/2009 11:09:54 AM - System Checkpoint RP1406: 12/25/2009 12:22:53 PM - System Checkpoint RP1407: 12/26/2009 4:58:32 PM - System Checkpoint RP1408: 12/27/2009 5:18:14 PM - System Checkpoint RP1409: 12/28/2009 9:10:18 AM - Avg8 Update RP1410: 12/29/2009 9:18:08 AM - System Checkpoint RP1411: 12/30/2009 10:30:41 AM - System Checkpoint RP1412: 12/31/2009 11:13:22 AM - System Checkpoint RP1413: 1/1/2010 12:02:42 PM - System Checkpoint RP1414: 1/2/2010 12:25:51 PM - System Checkpoint RP1415: 1/3/2010 1:24:13 PM - System Checkpoint RP1416: 1/4/2010 8:02:23 AM - Avg8 Update RP1417: 1/5/2010 8:35:44 AM - System Checkpoint RP1418: 1/6/2010 8:59:20 AM - System Checkpoint RP1419: 1/7/2010 10:59:20 AM - System Checkpoint RP1420: 1/8/2010 12:35:20 PM - System Checkpoint RP1421: 1/9/2010 2:11:59 PM - System Checkpoint RP1422: 1/10/2010 2:59:04 PM - System Checkpoint RP1423: 1/11/2010 3:35:20 PM - System Checkpoint RP1424: 1/12/2010 5:06:09 PM - System Checkpoint RP1425: 1/13/2010 3:00:23 AM - Software Distribution Service 3.0 RP1426: 1/14/2010 5:49:29 AM - System Checkpoint RP1427: 1/15/2010 7:26:03 AM - System Checkpoint RP1428: 1/16/2010 7:51:02 AM - System Checkpoint RP1429: 1/17/2010 8:23:27 AM - System Checkpoint RP1430: 1/18/2010 9:00:40 AM - System Checkpoint RP1431: 1/19/2010 9:39:05 AM - System Checkpoint RP1432: 1/20/2010 11:38:46 AM - System Checkpoint RP1433: 1/21/2010 1:02:46 PM - System Checkpoint RP1434: 1/22/2010 3:00:19 AM - Software Distribution Service 3.0 RP1435: 1/23/2010 4:46:40 AM - System Checkpoint RP1436: 1/23/2010 9:52:51 PM - Systweak Registry Cleaner Sat, Jan 23, 10 21:52 RP1437: 1/23/2010 9:54:45 PM - Systweak System Cleaner Sat, Jan 23, 10 21:54 RP1438: 1/23/2010 9:56:26 PM - Systweak System Optimizer Sat, Jan 23, 10 21:56 RP1439: 1/24/2010 11:19:26 PM - System Checkpoint RP1440: 1/25/2010 11:22:40 PM - System Checkpoint RP1441: 1/27/2010 12:58:40 AM - System Checkpoint RP1442: 1/28/2010 2:34:40 AM - System Checkpoint RP1443: 1/29/2010 4:46:40 AM - System Checkpoint RP1444: 1/30/2010 6:34:41 AM - System Checkpoint RP1445: 1/31/2010 8:26:02 AM - System Checkpoint RP1446: 2/1/2010 9:07:47 AM - System Checkpoint RP1447: 2/2/2010 9:33:46 AM - System Checkpoint RP1448: 2/3/2010 8:14:26 AM - Avg8 Update RP1449: 2/4/2010 8:21:45 AM - System Checkpoint RP1450: 2/5/2010 8:22:51 AM - System Checkpoint RP1451: 2/5/2010 10:40:40 PM - Software Distribution Service 3.0 RP1452: 2/6/2010 4:55:58 PM - Removed iTunes RP1453: 2/6/2010 5:04:34 PM - Installed iTunes RP1454: 2/7/2010 5:16:49 PM - System Checkpoint RP1455: 2/7/2010 10:15:57 PM - Systweak Registry Cleaner Sun, Feb 07, 10 22:15 ==== Installed Programs ====================== Ad-Aware Adobe Flash Player 10 Plugin Adobe Flash Player 9 ActiveX Adobe Flash Player ActiveX Adobe Reader 7.1.0 Adobe
  6. Hi. I had the antivirus soft virus among others. Your product found it, but I think I stiff have some problems as I can get to my internet options menu. I followed instructions on the sticky and downloaded and ran the DeFogger instructions. It ran like the post said except it didn't ask to reboot so I'm stopping and here is the log: defogger_disable by jpshortstuff (29.01.10.1) Log created at 20:50 on 08/02/2010 (Gene and Maria) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=-
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.