Jump to content

Recommended Posts

Hello merger5 and :welcome:! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at support@malwarebytes.org or here (http://helpdesk.malwarebytes.org/home). If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.

Looks like you want to get rid of something that was found from Malwarebytes' Anti-Malware. I want to take a look to the log file. Please launch Malwarebytes' Anti-Malware, go to the Logs tab and find out and copy/paste the log file in which it was found in your next reply.

Link to post
Share on other sites

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume2

Install Date: 3/8/2005 6:22:24 PM

System Uptime: 2/15/2012 8:39:02 PM (1 hours ago)

.

Motherboard: ASUSTeK Computer INC. | | Oxford

Processor: Intel® Pentium® 4 CPU 2.80GHz | CPU 1 | 2800/200mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 227 GiB total, 209.986 GiB free.

D: is FIXED (FAT32) - 6 GiB total, 2.121 GiB free.

E: is CDROM (CDFS)

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP2011: 1/17/2012 11:30:11 AM - Software Distribution Service 3.0

RP2012: 1/17/2012 3:40:30 PM - Software Distribution Service 3.0

RP2013: 1/18/2012 5:25:20 AM - Software Distribution Service 3.0

RP2014: 1/19/2012 5:25:32 AM - Software Distribution Service 3.0

RP2015: 1/20/2012 4:21:27 AM - Software Distribution Service 3.0

RP2016: 1/21/2012 5:25:25 AM - Software Distribution Service 3.0

RP2017: 1/22/2012 5:25:30 AM - Software Distribution Service 3.0

RP2018: 1/23/2012 5:25:36 AM - Software Distribution Service 3.0

RP2019: 1/24/2012 3:32:07 AM - Software Distribution Service 3.0

RP2020: 1/25/2012 2:06:46 PM - Software Distribution Service 3.0

RP2021: 1/26/2012 7:16:03 AM - Software Distribution Service 3.0

RP2022: 1/27/2012 5:04:25 AM - Software Distribution Service 3.0

RP2023: 1/28/2012 5:04:39 AM - Software Distribution Service 3.0

RP2024: 1/30/2012 5:37:25 AM - Software Distribution Service 3.0

RP2025: 1/31/2012 4:22:40 AM - Software Distribution Service 3.0

RP2026: 2/1/2012 3:24:11 AM - Software Distribution Service 3.0

RP2027: 2/2/2012 3:00:23 AM - Software Distribution Service 3.0

RP2028: 2/3/2012 3:43:24 AM - Software Distribution Service 3.0

RP2029: 2/4/2012 3:43:30 AM - Software Distribution Service 3.0

RP2030: 2/5/2012 3:43:41 AM - Software Distribution Service 3.0

RP2031: 2/6/2012 3:43:47 AM - Software Distribution Service 3.0

RP2032: 2/7/2012 3:44:04 AM - Software Distribution Service 3.0

RP2033: 2/8/2012 3:44:05 AM - Software Distribution Service 3.0

RP2034: 2/9/2012 3:44:20 AM - Software Distribution Service 3.0

RP2035: 2/9/2012 6:55:09 PM - Software Distribution Service 3.0

RP2036: 2/10/2012 7:12:06 AM - Software Distribution Service 3.0

RP2037: 2/11/2012 7:48:00 AM - Software Distribution Service 3.0

RP2038: 2/12/2012 8:55:58 AM - Software Distribution Service 3.0

RP2039: 2/13/2012 8:51:03 AM - Software Distribution Service 3.0

RP2040: 2/14/2012 8:55:30 AM - Software Distribution Service 3.0

RP2041: 2/15/2012 4:02:13 PM - Software Distribution Service 3.0

.

==== Installed Programs ======================

.

.

23_24_2500Tour

2400

2400_2500Help

2400_2500trb

Adobe Flash Player 11 ActiveX

Adobe Reader 8.3.1

Agere Systems PCI Soft Modem

AiO_Scan

AIOMinimal

AiOSoftware

Apple Application Support

Apple Mobile Device Support

Apple Software Update

BackgammonMasters Client

Bing Bar

Bing Bar Platform

Bing Rewards Client Installer

Blackhawk Striker from Hewlett-Packard Desktops (remove only)

Blasterball 2 from Hewlett-Packard Desktops (remove only)

Bonjour

Bounce Symphony from Hewlett-Packard Desktops (remove only)

Business Contact Manager for Outlook 2003

CameraDrivers

CCleaner

Comcast High-Speed Internet Install Wizard

Comcast Toolbar

ComcastSUPPORT

Copy

CreativeProjects

Crystal Maze from Hewlett-Packard Desktops (remove only)

Dell Driver Download Manager

Desktop Doctor

Director

DocProc

doubleTwist

Fax

ffdshow [rev 2527] [2008-12-19]

Five Card Frenzy from Hewlett-Packard Desktops (remove only)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB954550-v5)

HP Deskjet Preloaded Printer Drivers

HP Image Zone 3.5

HP Image Zone Plus 3.5

HP Instant Support

HP Officejet Pro 8600 Basic Device Software

HP Officejet Pro 8600 Help

HP Officejet Pro 8600 Product Improvement Study

HP Organize

HP Photo & Imaging 3.5 - HP Devices

HP Product Detection

HP PSC & OfficeJet 3.5

HP Smart Print 1.0.5.0

HP Update

hpg2436

hpg3970

hpg4600

hpg5530

hpg8200

HPIZ350

HPIZFix3

hpmdtab

HpSdpAppCoreApp

HPSystemDiagnostics

I.R.I.S. OCR

InstantShare

InstantShareAlert

IntelliMover Data Transfer Demo

InterVideo WinDVD Creator 2

InterVideo WinDVD Player

iTunes

Java 2 Runtime Environment, SE v1.4.2_03

KBD

LG United Mobile Driver

Malwarebytes Anti-Malware version 1.60.1.1000

Memories Disc Creator 2.0

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2572067)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Default Manager

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft Money 2004

Microsoft Money 2004 System Pack

Microsoft National Language Support Downlevel APIs

Microsoft Office File Validation Add-In

Microsoft Office Small Business Edition 2003

Microsoft Office Standard Edition 2003

Microsoft Plus! Digital Media Edition

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Works 7.0

MSN

MSXML 4.0 SP2 (KB927978)

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Norton Security Suite

NVIDIA Display Driver

Orbital from Hewlett-Packard Desktops (remove only)

Otto from Hewlett-Packard Desktops (remove only)

Overball from Hewlett-Packard Desktops (remove only)

overland

Palm Desktop

PC-Doctor for Windows

PhotoGallery

Photosmart 140,240,7200,7600,7700,7900 Series

Polar Bowler from Hewlett-Packard Desktops (remove only)

PrintScreen

PS2

PSShortcutsP

Python 2.2 combined Win32 extensions

Python 2.2.1

QFolder

QuickBooks Pro 2000

Quicken 2004

QuickProjects

QuickTime

Readme

RealOne Player

RecordNow!

Scan

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Windows Internet Explorer 7 (KB938127)

Security Update for Windows Internet Explorer 7 (KB942615)

Security Update for Windows Internet Explorer 7 (KB953838)

Security Update for Windows Internet Explorer 7 (KB956390)

Security Update for Windows Internet Explorer 7 (KB958215)

Security Update for Windows Internet Explorer 7 (KB960714)

Security Update for Windows Internet Explorer 7 (KB961260)

Security Update for Windows Internet Explorer 7 (KB963027)

Security Update for Windows Internet Explorer 7 (KB969897)

Security Update for Windows Internet Explorer 8 (KB2183461)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB2559049)

Security Update for Windows Internet Explorer 8 (KB2586448)

Security Update for Windows Internet Explorer 8 (KB2618444)

Security Update for Windows Internet Explorer 8 (KB969897)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB972260)

Security Update for Windows Internet Explorer 8 (KB974455)

Security Update for Windows Internet Explorer 8 (KB976325)

Security Update for Windows Internet Explorer 8 (KB978207)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB911564)

Security Update for Windows Media Player 6.4 (KB925398)

Security Update for Windows Media Player 9 (KB936782)

Security Update for Windows XP (KB923689)

SkinsHP1

SkinsHP2

Slyder from Hewlett-Packard Desktops (remove only)

Smart Attorney 8.0

Sonic Update Manager

Toolkit View(HP)

Tradewinds from Hewlett-Packard Desktops (remove only)

TrayApp

Unload

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB972636)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows Internet Explorer 8 (KB976749)

Update for Windows Internet Explorer 8 (KB980182)

Updates from HP

WebFldrs XP

WebReg

WildTangent Web Driver

Windows Genuine Advantage Notifications (KB905474)

Windows Internet Explorer 7

Windows Internet Explorer 8

Windows XP Service Pack 3

Word Symphony from Hewlett-Packard Desktops (remove only)

.

==== Event Viewer Messages From Past Week ========

.

2/9/2012 6:55:32 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656353).

2/9/2012 6:01:02 AM, error: Service Control Manager [7023] - The DNS Client service terminated with the following error: No protocol sequences have been registered.

2/9/2012 6:01:02 AM, error: dnscache [11004] - Unable to start DNS Client service. Could not start the Remote Procedure Call (RPC) interface for this service. To correct the problem, you may restart the RPC and DNS Client services. To do so, use the following commands at a command prompt: (1) type "net start rpc" to start the RPC service, and (2) type "net start dnscache" to start the DNS Client service. For specific error code information, see the record data displayed below.

2/9/2012 6:00:34 AM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.

2/8/2012 9:12:21 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the N360 service.

2/15/2012 4:13:59 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

2/15/2012 3:59:01 PM, error: Dhcp [1002] - The IP address lease 192.168.1.2 for the Network Card with network address 00112F0D7F92 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

2/15/2012 3:57:21 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

2/15/2012 3:55:47 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

2/15/2012 3:52:07 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BHDrvx86 eeCtrl Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SRTSPX SymIRON SYMTDI Tcpip

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBT service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:52:07 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/15/2012 3:51:15 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

.

==== End Of File ===========================

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702

Run by Administrator at 21:35:32 on 2012-02-15

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.511.50 [GMT -5:00]

.

AV: Norton Security Suite *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}

AV: Norton AntiVirus *Enabled/Outdated* {B5510F6F-87E1-47F7-A411-360BC453007C}

FW: Norton Internet Security *Enabled*

FW: Norton Security Suite *Enabled*

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe

C:\Program Files\QuickTime\QTTask.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\system32\RunDll32.exe

svchost.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe

C:\Program Files\Norton Security Suite\Engine\5.2.0.13\ccSvcHst.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe

C:\WINDOWS\System32\svchost.exe -k imgsvc

C:\Program Files\Norton Security Suite\Engine\5.2.0.13\ccSvcHst.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\mswinext.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.comcast.net/

uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=pavilion&pf=desktop

uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=pavilion&pf=desktop

uSearch Bar = hxxp://www.comcast.net/toolbar2.0/search/

uWindow Title = Windows Internet Explorer provided by Comcast

mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=pavilion&pf=desktop

mWindow Title = Windows Internet Explorer provided by Comcast

uInternet Settings,ProxyOverride = *.local

mSearchAssistant = hxxp://www.comcast.net/toolbar2.0/search/

BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll

BHO: HP Smart Print BHO: {1658d3a1-9e13-4196-a82a-d70d70880f36} - c:\program files\hewlett-packard\smartprint\QuickPrintBHO.dll

BHO: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~1\COMCAS~1.DLL

BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton security suite\engine\5.2.0.13\coIEPlg.dll

BHO: PodcastBHO Class: {65134fdf-f8a5-4b3d-91d9-cdf273cfd578} - c:\program files\common files\doubletwist\IEPodcastPlugin.dll

BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton security suite\engine\5.2.0.13\ips\IPSBHO.DLL

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll

BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\6.3.2291.0\npwinext.dll

BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No File

TB: HP view: {b2847e28-5d7d-4deb-8b67-05d28bcf79f5} - c:\program files\hp\digital imaging\bin\hpdtlk02.dll

TB: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~1\COMCAS~1.DLL

TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton security suite\engine\5.2.0.13\coIEPlg.dll

TB: @c:\program files\msn toolbar\platform\6.3.2291.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\6.3.2291.0\npwinext.dll

TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File

EB: hp view: {8f4902b6-6c04-4ade-8052-aa58578a21bd} - c:\windows\system32\Shdocvw.dll

EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File

uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background

uRun: [backupNotify] c:\program files\hp\digital imaging\bin\backupnotify.exe

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [ddoctorv2] "c:\program files\comcast\desktop doctor\bin\sprtcmd.exe" /P ddoctorv2

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot

mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"

mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume

mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

mRun: [<NO NAME>]

mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"

StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\monito~1.lnk - c:\windows\system32\RunDll32.exe

IE: Add To HP Organize... - c:\progra~1\hewlet~1\hporga~1\bin\core.hp.main\SendTo.html

IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000

IE: {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/

IE: {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/

IE: {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204

DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab

DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab

TCP: DhcpNameServer = 192.168.1.1

TCP: Interfaces\{924374A9-09C9-4C6D-A02C-E4382A9B59A9} : DhcpNameServer = 192.168.1.1

Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll

Notify: igfxcui - igfxsrvc.dll

.

============= SERVICES / DRIVERS ===============

.

R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\n360\0502000.00d\symds.sys [2012-2-7 340088]

R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\0502000.00d\symefa.sys [2012-2-7 744568]

R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.0.125\definitions\bashdefs\20120207.003\BHDrvx86.sys [2012-2-8 820344]

R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\n360\0502000.00d\ironx86.sys [2012-2-7 136312]

R2 iPodDrv;iPodDrv;c:\windows\system32\drivers\iPodDrv.sys [2011-7-27 6656]

R2 N360;Norton Security Suite;c:\program files\norton security suite\engine\5.2.0.13\ccsvchst.exe [2012-2-7 130008]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2012-2-8 106104]

R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.0.125\definitions\ipsdefs\20120214.003\IDSXpx86.sys [2012-2-15 356280]

R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.0.125\definitions\virusdefs\20120215.004\NAVENG.SYS [2012-2-15 86136]

R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.0.125\definitions\virusdefs\20120215.004\NAVEX15.SYS [2012-2-15 1576312]

S2 mrtRate;mrtRate; [x]

S3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\drivers\lgandbus.sys [2011-12-17 14336]

S3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\drivers\lganddiag.sys [2011-12-17 20736]

S3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\drivers\lgandgps.sys [2011-12-17 20096]

S3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\drivers\lgandmodem.sys [2011-12-17 25088]

.

=============== Created Last 30 ================

.

2012-02-15 21:08:11 -------- d-----w- c:\documents and settings\administrator\application data\Malwarebytes

2012-02-15 21:07:35 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes

2012-02-15 21:07:30 20464 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-02-15 21:07:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2012-02-07 22:57:41 369784 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\symtdi.sys

2012-02-07 22:57:41 331384 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\symtdiv.sys

2012-02-07 22:57:41 299640 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\symnets.sys

2012-02-07 22:57:40 744568 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\symefa.sys

2012-02-07 22:57:40 516216 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\srtsp.sys

2012-02-07 22:57:40 50168 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\srtspx.sys

2012-02-07 22:57:40 340088 ----a-w- c:\windows\system32\drivers\n360\0502000.00d\symds.sys

2012-02-07 22:57:40 136312 ----a-r- c:\windows\system32\drivers\n360\0502000.00d\ironx86.sys

2012-02-07 22:57:13 -------- d-----w- c:\windows\system32\drivers\n360\0502000.00D

2012-01-26 22:17:07 -------- d-----w- c:\program files\iPod

2012-01-19 20:17:36 3705856 ----a-w- c:\documents and settings\administrator\application data\microsoft\internet explorer\hewlett-packard\smartprint\SmartPrint.msi

2012-01-18 21:10:30 -------- d-----w- c:\windows\Hewlett-Packard

2012-01-17 19:56:57 -------- d-----w- c:\program files\Microsoft

2012-01-17 19:56:48 -------- d-----w- c:\program files\MSN Toolbar

2012-01-17 19:56:28 -------- d-----w- c:\program files\Bing Bar Installer

2012-01-17 19:54:16 -------- d-----w- c:\documents and settings\administrator\application data\HpUpdate

2012-01-17 19:53:58 544616 ------w- c:\windows\system32\HPDiscoPM5912.dll

2012-01-17 19:51:37 488808 ----a-w- c:\windows\system32\HPWia1_OJ8600.dll

2012-01-17 19:51:37 1946472 ----a-w- c:\windows\system32\HPScanTRDrv_OJ8600.dll

2012-01-17 19:51:23 429928 ----a-w- c:\windows\system32\hpinksts5912.dll

2012-01-17 19:51:23 270696 ----a-w- c:\windows\system32\hpinksts5912LM.dll

2012-01-17 19:51:23 216424 ----a-w- c:\windows\system32\hpinkcoi5912.dll

.

==================== Find3M ====================

.

2012-02-13 14:51:34 3997 ----a-w- c:\windows\viassary-hp.reg

2011-11-25 21:57:19 293376 ----a-w- c:\windows\system32\winsrv.dll

2011-11-23 13:25:32 1859584 ----a-w- c:\windows\system32\win32k.sys

2011-11-21 21:09:28 1409 ----a-w- c:\windows\QTFont.for

2011-11-20 20:52:25 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-11-18 12:35:08 60416 ----a-w- c:\windows\system32\packager.exe

.

============= FINISH: 21:37:05.91 ===============

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.