Jump to content

Search the Community

Showing results for tags 'today'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 2 results

  1. I'm having trouble getting rid of some virus that's redirecting all of my google searches to extension.citypage.today and then to a similar bing search. I've tested this with both Google Chrome and Microsoft Edge so I believe it isn't browser specific. Regardless I've tried everything I can think of and nothing has gotten rid of it. While I've also tried a couple of other antiviruses, none of them (including Malwarebytes premium free trial) have helped. I downloaded and ran the FRST scan like asked and attached the files. I also attached my most recent Malwarebytes threat scan. It does say it detects several PUPs but I'm 99.9% sure those aren't related to the extension.citypage.today problem since they didn't show up until after (I think i downloaded some antivirus that wasn't 100% trustworthy in my frantic scramble to try to get rid of this virus- not the best decision, and malwarebytes is having trouble getting rid of that too, but I'll deal with it later as it isn't an immediate problem) threatscan.txt Addition.txt FRST.txt
  2. Hello. Five days ago I caught Chitka Malware; at the same time a red X one-quarter of an inch square began appearing in the middle of my browser page (it makes copying and pasting from text in the browser near the red X impossible), as did a popup in the lower right hand corner of the my screen that says Advertise, and Today, and includes the text of recent searches I've made. My browser also redirects one time in five or so when I click on a link. The red X disappears when I click I've run Malwarebytes Anti-Malware Pro but it detects none of these things. Nor does my copy of AVG Free. Smart Popup Blocker does not stop any of these things. Simple AdBlock sometimes removes the Chitka popup, and sometimes it doesn't. Here is the DDS.txt and ATTACH.txt as requested on the page, http://forums.malwarebytes.org//index.php?showtopic=9573 titled "I'm infected. What Do I Do Now?" Thank you for any help you can give me. S. and B. Schirmer DDS.txt DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_33 Run by newjohndoe at 2:29:31 on 2013-04-28 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3582.1132 [GMT -4:00] . AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . ============== Running Processes ================ . C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe C:\Program Files\AVG\AVG10\avgwdsvc.exe C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe C:\Program Files\Common Files\Nuance\dgnsvc.exe C:\ASUS.SYS\config\DVMExportService.exe P:\Program Files\Java\bin\jqs.exe e:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe e:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\AVG\AVG10\avgnsx.exe C:\Program Files\AVG\AVG10\avgemcx.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe e:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\alg.exe \??\C:\PROGRA~1\AVG\AVG10\avgrsx.exe \??\C:\Program Files\AVG\AVG10\avgcsrvx.exe C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe C:\Program Files\ASUS\Six Engine\SixEngine.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\Program Files\QFan3\QFanHelp.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\WINDOWS\diskediag.exe C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe C:\WINDOWS\stidraw32.exe C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe P:\Program Files\WinZip\WZQKPICK32.EXE E:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\Microsoft Works\msworks.exe C:\Program Files\Microsoft Works\wkswp.exe C:\Program Files\Microsoft Works\wkgdcach.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe C:\Program Files\Microsoft Works\WksWP.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe C:\WINDOWS\notepad.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe C:\Program Files\Microsoft Works\WksWP.exe C:\Program Files\Microsoft Works\WksWP.exe C:\Program Files\Microsoft Works\WksWP.exe C:\Program Files\Microsoft Works\WksWP.exe P:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe E:\Program Files\wbridge5\Wbridge5.exe P:\Chrome\Application\chrome.exe P:\Chrome\Application\chrome.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uSearch Bar = hxxp://www.google.com/ie uSearch Page = hxxp://www.google.com uDefault_Search_URL = hxxp://www.google.com/ie uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s uURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned> uURLSearchHooks: SearchHook Class: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned> BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg10\avgssie.dll BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - p:\program files\java\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll BHO: SpeedBit Link Verification Helper: {D5974A72-C81C-4DC3-BE77-A8A7BBC8864E} - p:\program files\downloadaccelplus\LinkVerifier.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - p:\program files\java\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - p:\program files\java\lib\deploy\jqs\ie\jqs_plugin.dll BHO: SimpleAdblock Class: {FFCB3198-32F3-4E8B-9539-4324694ED664} - c:\program files\common files\simple adblock\SimpleAdblock.dll TB: @c:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll uRun: [iSUSPM] c:\documents and settings\all users\application data\flexnet\connect\11\ISUSPM.exe -scheduler mRun: [HDAudDeck] c:\program files\via\viaudioi\hdadeck\HDeck.exe 1 mRun: [JMB36X IDE Setup] c:\windows\raidtool\xInsIDE.exe mRun: [TurboV Help] "c:\program files\asus\turbov evo\TurboVHelp.exe" mRun: [TurboV EVO] "c:\program files\asus\turbov evo\TurboV_EVO.exe" -b mRun: [six Engine] "c:\program files\asus\six engine\SixEngine.exe" -b mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume mRun: [QFan Help] "c:\program files\qfan3\QFanHelp.exe" mRun: [WorksFUD] c:\program files\microsoft works\wkfud.exe mRun: [Microsoft Works Portfolio] c:\program files\microsoft works\WksSb.exe /AllUsers mRun: [Microsoft Works Update Detection] c:\program files\common files\microsoft shared\works shared\WkUFind.exe mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe mRun: [ATICustomerCare] "c:\program files\ati\aticustomercare\ATICustomerCare.exe" mRun: [QuickTime Task] "p:\program files\quicktime\qttask.exe" -atboottime mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [MemoryMangerExi] c:\windows\diskediag.exe mRun: [bCU] "c:\program files\devicevm\browser configuration utility\BCU.exe" mRun: [vProt] "c:\program files\avg secure search\vprot.exe" mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe" mRun: [DNS7reminder] "p:\program files\nuance\naturallyspeaking11\ereg\ereg.exe" -r "c:\documents and settings\all users\application data\nuance\naturallyspeaking11\Ereg.ini" mRun: [startCCC] "p:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRunOnce: [Z1] cmd /c "e:\program files\mbar\mbar.exe" /cleanup /s StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\common files\microsoft shared\works shared\wkcalrem.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - p:\program files\winzip\WZQKPICK32.EXE uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: &Download with &DAP - p:\program files\downloadaccelplus\dapextie.htm IE: &Verify with DAP - p:\program files\downloadaccelplus\dapverify.htm IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Download &all with DAP - p:\program files\downloadaccelplus\dapextie2.htm IE: Search the Web - c:\program files\sweetim\toolbars\internet explorer\resources\menuext.html IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: NameServer = 192.168.1.254 TCP: Interfaces\{5F2F77E2-A052-4406-9D10-E8F4DF4223CC} : DHCPNameServer = 192.168.1.254 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll Notify: AtiExtEvent - Ati2evxx.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\newjohndoe\application data\mozilla\firefox\profiles\p5n82ypw.default\ FF - prefs.js: browser.search.selectedEngine - Search FF - prefs.js: browser.startup.homepage - www.google.com FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\14.2.0\npsitesafety.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll FF - plugin: c:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_146.dll FF - plugin: c:\windows\system32\npdeployJava1.dll FF - plugin: c:\windows\system32\npptools.dll FF - plugin: e:\program files\canon\easy-photoprint ex\NPEZFFPI.DLL FF - plugin: e:\program files\google\picasa3\npPicasa3.dll FF - plugin: p:\program files\java\bin\plugin2\npjp2.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin2.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin3.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin4.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin5.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin6.dll FF - plugin: p:\program files\quicktime\plugins\npqtplugin7.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 22992] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592] R0 mv91xx;mv91xx;c:\windows\system32\drivers\mv91xx.sys [2010-8-6 257064] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-12-8 255968] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34896] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-12 297168] R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-2-13 33112] R2 AsSysCtrlService;ASUS System Control Service;c:\program files\asus\assysctrlservice\1.00.05\AsSysCtrlService.exe [2011-3-5 109056] R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520] R2 BCUService;Browser Configuration Utility Service;c:\program files\devicevm\browser configuration utility\BCUService.exe [2009-10-26 223464] R2 DragonSvc;Dragon Service;c:\program files\common files\nuance\dgnsvc.exe [2011-6-4 296808] R2 DvmMDES;DeviceVM Meta Data Export Service;c:\asus.sys\config\DVMExportService.exe [2009-7-17 319488] R2 MBAMScheduler;MBAMScheduler;e:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-12 418376] R2 MBAMService;MBAMService;e:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-3-14 701512] R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-3-1 968880] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-3 134480] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-3 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-3 27216] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-3-7 22856] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-4-27 40776] R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-4-26 64904] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-4-26 146568] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-3-5 2127728] S2 5613;5613;\??\c:\docume~1\newjoh~1\locals~1\temp\5613.sys --> c:\docume~1\newjoh~1\locals~1\temp\5613.sys [?] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2012-1-31 7391072] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-5-12 167264] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [2011-3-14 11264] S3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2013-4-27 35144] S3 PACSPTISVR-Sound_Organizer;PACSPTISVR-Sound_Organizer;p:\program files\sony\sound organizer\sony.earth\PACSPTISVR.exe [2010-11-19 157024] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2013-04-28 02:46:45 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2013-04-28 02:38:07 143688 ----a-w- c:\windows\system32\drivers\6FC03202.sys 2013-04-28 02:20:20 35144 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2013-04-26 02:00:45 -------- d-----w- c:\program files\MSXML 4.0 2013-04-24 21:03:42 -------- d-----w- C:\Sony_SoundOrganizer_2F70A8C8665241a6ABC5BCF09F756BC3 2013-04-22 06:47:34 -------- d-----w- c:\documents and settings\newjohndoe\application data\JAM Software 2013-04-19 12:52:23 275696 ----a-w- c:\windows\system32\mucltui.dll 2013-04-19 12:52:23 214256 ----a-w- c:\windows\system32\muweb.dll 2013-04-19 12:52:23 17136 ----a-w- c:\windows\system32\mucltui.dll.mui 2013-04-19 12:45:38 -------- d-----w- c:\documents and settings\all users\application data\MFAData 2013-04-19 07:55:41 -------- d-----w- c:\documents and settings\newjohndoe\local settings\application data\Google 2013-04-19 06:59:27 -------- d-----w- c:\documents and settings\all users\application data\Sony Corporation 2013-04-19 06:44:12 -------- d-----w- c:\documents and settings\newjohndoe\application data\Nuance 2013-04-19 06:21:14 -------- d-----w- c:\documents and settings\newjohndoe\application data\FLEXnet 2013-04-19 06:19:08 -------- d-----w- c:\program files\common files\IVA 2013-04-19 06:18:54 -------- d-----w- c:\program files\common files\Nuance 2013-04-19 06:16:39 -------- d-----w- c:\windows\Speech 2013-04-19 06:16:39 -------- d-----w- c:\documents and settings\all users\application data\Nuance 2013-04-19 04:06:22 -------- d--h--w- C:\$AVG 2013-04-19 03:43:25 -------- d--h--w- c:\documents and settings\newjohndoe\local settings\application data\PCHealth 2013-04-19 03:38:59 -------- d-----w- c:\program files\msn gaming zone 2013-04-19 03:16:50 -------- d-----w- c:\documents and settings\all users\application data\AVG10 2013-04-01 06:20:47 409600 ----a-w- c:\windows\system32\wrap_oal.dll 2013-04-01 06:20:47 114688 ----a-w- c:\windows\system32\OpenAL32.dll 2013-04-01 06:20:47 -------- d-----w- c:\program files\OpenAL 2013-04-01 06:04:54 -------- d-sh--w- c:\windows\system32\AI_RecycleBin 2013-04-01 06:04:08 -------- d-sh--w- C:\AI_RecycleBin 2013-04-01 06:04:02 -------- d--h--w- c:\documents and settings\newjohndoe\application data\Strongvault . ==================== Find3M ==================== . 2013-04-11 17:56:48 71192 ----a-w- c:\windows\system32\atimpc32.dll 2013-04-11 17:56:48 71192 ----a-w- c:\windows\system32\amdpcom32.dll 2013-04-11 17:54:48 6850048 ----a-w- c:\windows\system32\drivers\ati2mtag.sys 2013-04-11 17:45:58 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll 2013-04-11 17:44:52 306176 ----a-w- c:\windows\system32\ati2dvag.dll 2013-04-11 17:22:50 212992 ----a-w- c:\windows\system32\atipdlxx.dll 2013-04-11 17:22:38 163840 ----a-w- c:\windows\system32\Oemdspif.dll 2013-04-11 17:22:30 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe 2013-04-11 17:22:22 43520 ----a-w- c:\windows\system32\ati2edxx.dll 2013-04-11 17:22:10 192512 ----a-w- c:\windows\system32\ati2evxx.dll 2013-04-11 17:20:52 643072 ----a-w- c:\windows\system32\ati2evxx.exe 2013-04-11 17:19:36 53248 ----a-w- c:\windows\system32\ATIDDC.DLL 2013-04-11 17:05:46 4844064 ----a-w- c:\windows\system32\ati3duag.dll 2013-04-11 16:49:06 18964480 ----a-w- c:\windows\system32\atioglxx.dll 2013-04-11 16:43:58 2380672 ----a-w- c:\windows\system32\ativvaxx.dll 2013-04-11 16:43:02 307200 ----a-w- c:\windows\system32\atiiiexx.dll 2013-04-11 16:27:58 163840 ----a-w- c:\windows\system32\atiapfxx.exe 2013-04-11 16:23:36 929792 ----a-w- c:\windows\system32\atikvmag.dll 2013-04-11 16:18:52 245760 ----a-w- c:\windows\system32\atiadlxx.dll 2013-04-11 16:18:32 17408 ----a-w- c:\windows\system32\atitvo32.dll 2013-04-11 16:17:48 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll 2013-04-11 16:15:54 495616 ----a-w- c:\windows\system32\atiok3x2.dll 2013-04-11 16:13:08 663552 ----a-w- c:\windows\system32\ati2cqag.dll 2013-04-04 18:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-03-08 15:13:14 71024 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-03-08 15:13:14 691568 -c--a-w- c:\windows\system32\FlashPlayerApp.exe 2013-03-08 08:36:22 293376 ----a-w- c:\windows\system32\winsrv.dll 2013-03-07 01:32:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-07 00:50:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-03-02 03:12:59 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2013-03-02 01:25:02 1867264 ----a-w- c:\windows\system32\win32k.sys 2013-02-27 07:56:51 2067456 ----a-w- c:\windows\system32\mstscax.dll 2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys 2013-02-12 00:32:23 12928 ------w- c:\windows\system32\drivers\usb8023x.sys 2010-03-25 15:02:12 3782272 ----a-w- c:\program files\AiSuite.exe 2010-01-10 02:55:16 811648 -c--a-w- c:\program files\RegSchdTask.exe 2009-12-29 01:19:28 461440 ----a-w- c:\program files\CpuLevelUpHook64.exe 2009-12-29 01:19:26 326272 ----a-w- c:\program files\CpuLevelUpHook32.exe 2009-12-29 01:19:24 589440 -c--a-w- c:\program files\CpuLevelUpHookLaunch.exe 2009-12-29 01:19:22 887936 ----a-w- c:\program files\CpuLevelUpHelp.exe 2009-06-29 20:25:36 69632 ----a-w- c:\program files\AsAcpi.dll 2009-01-23 00:44:28 876 -c--a-w- c:\program files\asus.reg 2009-01-23 00:44:28 292 -c--a-w- c:\program files\epu.reg 2008-01-28 16:58:18 57344 ----a-w- c:\program files\AsInsHelp.dll 2007-10-11 18:51:00 53248 -c--a-w- c:\program files\HookKey32.dll 2007-10-11 18:50:56 48128 -c--a-w- c:\program files\HookKey64.dll 2007-08-08 14:48:42 69632 -c--a-w- c:\program files\HookKey.dll 2005-09-09 21:31:12 40960 ----a-w- c:\program files\AsUninsHlp.dll . ============= FINISH: 2:30:10.23 =============== ATTACH.txt . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume1 Install Date: 3/5/2011 5:54:41 AM System Uptime: 4/27/2013 10:39:56 PM (4 hours ago) . Motherboard: ASUSTeK Computer INC. | | P7P55D-E PRO Processor: Intel® Core i5 CPU 750 @ 2.67GHz | LGA1156 | 2675/133mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 20 GiB total, 0.943 GiB free. D: is CDROM () E: is FIXED (NTFS) - 98 GiB total, 38.98 GiB free. P: is FIXED (NTFS) - 293 GiB total, 203.052 GiB free. . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP759: 4/26/2013 5:43:40 PM - Software Distribution Service 3.0 . ==== Installed Programs ====================== . Adobe Digital Editions 2.0 Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.1) AI Suite Amazing Slow Downer (remove only) AMD Catalyst Install Manager Amnesia - The Dark Descent Demo Apple Software Update ASUS VGA Driver ATI AVIVO Codecs ATI Catalyst Registration ATI Stream SDK v2 Developer Audacity 2.0.2 AVG 2011 Batman: Arkham Asylum - Demo Bing Bar Platform Browser Configuration Utility Canon MX330 series MP Drivers Canon Utilities Easy-PhotoPrint EX Catalyst Control Center Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Comic Seer Company of Heroes Singleplayer Demo Compatibility Pack for the 2007 Office system Digital Voice Editor 3 DivX Setup Download Accelerator Plus (DAP) Dragon NaturallySpeaking 11 EPU-6 Engine ERValue5.0 Express Gate Fallout 3 Google Chrome Google Earth Plug-in Google Update Helper Half-Life 2 Half-Life 2: Episode One Half-Life 2: Episode Two HEED 4 build 22 version 12.02.28 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows XP (KB954550-v5) HVAC-Calc Residential Java 6 Update 33 JMicron JMB36X Driver K-Lite Mega Codec Pack 9.3.0 Left 4 Dead Left 4 Dead 2 Malwarebytes Anti-Malware version 1.75.0.1300 marvell 91xx driver Mass Effect 2 Demo Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Default Manager Microsoft Halo Trial Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Works 6.0 Microsoft Works and Money 2002 Setup Launcher Mozilla Firefox 20.0.1 (x86 en-US) MSN MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 Parser and SDK MSXML 6 Service Pack 2 (KB973686) Nero OEM NVIDIA PhysX OpenAL PC Probe II Penumbra Episode 1 Demo Picasa 3 Platform Portal QuickTime REALTEK GbE & FE Ethernet PCI-E NIC Driver Renesas Electronics USB 3.0 Host Controller Driver REScheck 4.4.3.0 (Current User) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB2792100) Security Update for Windows Internet Explorer 8 (KB2797052) Security Update for Windows Internet Explorer 8 (KB2799329) Security Update for Windows Internet Explorer 8 (KB2809289) Security Update for Windows Internet Explorer 8 (KB2817183) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Simple Adblock Sony Player Plug-in for Windows Media Player Sound Organizer Steam Team Fortress 2 The Walking Dead TreeSize Free V2.7 TurboV EVO Unlocker 1.9.1 Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB976662) VC80CRTRedist - 8.0.50727.6195 VIA Platform Device Manager Visual C++ 9.0 Runtime for Dragon NaturallySpeaking Wbridge5 4.9 WebFldrs XP Windows Imaging Component Windows Internet Explorer 8 Windows Live ID Sign-in Assistant Windows Media Format 11 runtime Windows Media Player Firefox Plugin Windows Presentation Foundation Windows XP Service Pack 3 WinRAR 4.20 (32-bit) WinZip 16.5 Works Suite OS Pack XML Paper Specification Shared Components Pack 1.0 Youtube Downloader HD v. 2.9.5 . ==== Event Viewer Messages From Past Week ======== . 4/27/2013 10:40:36 PM, error: Service Control Manager [7000] - The SeaPort service failed to start due to the following error: The system cannot find the path specified. 4/27/2013 10:38:18 PM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied. 4/26/2013 5:51:07 PM, error: Service Control Manager [7000] - The 5613 service failed to start due to the following error: The system cannot find the file specified. 4/26/2013 5:49:32 PM, error: Service Control Manager [7034] - The vToolbarUpdater14.2.0 service terminated unexpectedly. It has done this 1 time(s). . ==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.