Jump to content

Browser redirect

bkralovec
 Share

Recommended Posts

bkralovec

bkralovec

Posted
Posted

I am getting search site re-directs and unable to run Malwarebytes due to a Run-time error.

Here are my logs.

Any help would be appreciated.

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 6.0.2900.5512

Run by Chris at 6:14:58 on 2013-03-06

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.2144 [GMT -7:00]

.

AV: AVG Anti-Virus Free *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}

.

============== Running Processes ================

.

C:\Program Files\AVG\AVG9\avgchsvx.exe

C:\Program Files\AVG\AVG9\avgrsx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\AVG\AVG9\avgcsrvx.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\AVG\AVG9\avgtray.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe

C:\Program Files\Intuit\QuickBooks 2008\QBW32.EXE

C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe

C:\Program Files\AVG\AVG9\avgwdsvc.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe

C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files\AVG\AVG9\avgemc.exe

C:\Program Files\AVG\AVG9\avgnsx.exe

C:\Program Files\AVG\AVG9\avgcsrvx.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\Intuit\QuickBooks 2008\qbhelp.exe

C:\WINDOWS\System32\alg.exe

C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\WINDOWS\system32\SearchFilterHost.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.facebook.com/?ref=cue

uWindow Title = Windows Internet Explorer provided by Microsoft

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg9\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>

BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: Windows Live Toolbar Helper: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - c:\program files\windows live\toolbar\wltcore.dll

BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll

TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [sUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe

mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe

mRun: [intuit SyncManager] c:\program files\common files\intuit\sync\IntuitSyncManager.exe startup

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [asfiec] "c:\windows\system32\rundll32.exe" "c:\documents and settings\chris\application data\asfiec.dll",level

mRun: [bvesv] "c:\windows\system32\rundll32.exe" "c:\documents and settings\chris\application data\bvesv.dll",set_pHYs

mRun: [soundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe

mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent

dRun: [Microsoft] rundll32 "c:\documents and settings\chris\local settings\application data\mozilla\microsoft\ejxhoetf.dll",DllRegisterServerW

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\intuit~1.lnk - c:\program files\common files\intuit\dataprotect\IntuitDataProtect.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~2.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\intuit\quickbooks 2008\QBW32.EXE

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

mPolicies-Explorer: NoDriveTypeAutoRun = dword:145

IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler: intu-help-qb4 - {ACE22922-D07C-4860-B51B-8CF472FEC2CB} - c:\program files\intuit\quickbooks 2008\HelpAsyncPluggableProtocol.dll

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll

Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -

Notify: avgrsstarter - avgrsstx.dll

SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\chris\application data\mozilla\firefox\profiles\yk8kjcc2.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/

FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll

FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\microsoft silverlight\3.0.40624.0\npctrlui.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_171.dll

FF - ExtSQL: 2013-03-05 21:13; {6713ce9d-b090-4085-bb3d-48e1e7a9b8ff}; c:\documents and settings\chris\application data\mozilla\firefox\profiles\yk8kjcc2.default\extensions\{6713ce9d-b090-4085-bb3d-48e1e7a9b8ff}.xpi

FF - ExtSQL: !HIDDEN! 2009-11-03 15:19; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

.

============= SERVICES / DRIVERS ===============

.

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-1-14 226016]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-1-14 29712]

R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-1-14 243152]

R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]

R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]

R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608]

R2 ASFIPmon;Broadcom ASF IP and SMBIOS Mailbox Monitor;c:\program files\broadcom\asfipmon\AsfIpMon.exe [2007-6-20 79168]

R2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2010-7-15 921952]

R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-7-15 308136]

R2 QBVSS;QBIDPService;c:\program files\common files\intuit\dataprotect\QBIDPService.exe [2011-6-30 1248256]

R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-3-6 40776]

S0 cerc6;cerc6; [x]

S3 hitmanpro36;HitmanPro 3.6 Support Driver;c:\windows\system32\drivers\hitmanpro36.sys [2013-1-21 27424]

.

=============== Created Last 30 ================

.

2013-03-06 10:03:12 -------- d-----w- c:\documents and settings\chris\application data\SUPERAntiSpyware.com

2013-03-06 10:02:47 -------- d-----w- c:\program files\SUPERAntiSpyware

2013-03-06 10:02:47 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com

2013-03-06 09:45:45 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2013-03-06 09:45:45 -------- d-----w- c:\documents and settings\chris\application data\Malwarebytes

2013-03-06 09:45:42 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes

2013-03-06 09:45:41 21104 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-03-06 09:45:41 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-03-06 04:16:42 -------- d-----w- c:\program files\Windows Resource Kits

2013-03-06 03:48:33 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll

2013-03-06 03:48:30 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll

2013-03-06 03:48:30 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll

2013-03-06 03:48:28 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe

2013-03-06 03:48:25 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe

2013-03-06 03:48:01 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe

2013-03-06 03:46:58 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys

2013-03-06 03:45:59 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll

2013-03-06 03:44:58 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys

2013-03-06 03:43:57 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys

2013-03-06 03:42:57 161568 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys

2013-03-06 03:41:58 82432 -c--a-w- c:\windows\system32\dllcache\rwia450.dll

2013-03-06 03:40:58 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys

2013-03-06 03:39:58 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys

2013-03-06 03:38:59 59104 -c--a-w- c:\windows\system32\dllcache\n9i128v2.dll

2013-03-06 03:37:58 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys

2013-03-06 03:36:57 37376 -c--a-w- c:\windows\system32\dllcache\kousd.dll

2013-03-06 03:35:57 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll

2013-03-06 03:34:59 150239 -c--a-w- c:\windows\system32\dllcache\hsf_amos.sys

2013-03-06 03:33:57 27165 -c--a-w- c:\windows\system32\dllcache\fetnd5.sys

2013-03-06 03:32:58 19594 -c--a-w- c:\windows\system32\dllcache\e100isa4.sys

2013-03-06 03:31:59 17152 -c--a-w- c:\windows\system32\dllcache\cyclad-z.sys

2013-03-06 03:30:59 37888 -c--a-w- c:\windows\system32\dllcache\bthmodem.sys

2013-03-06 03:29:38 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll

2013-03-06 03:29:33 2188928 -c--a-w- c:\windows\system32\dllcache\ntoskrnl.exe

2013-03-06 02:38:59 8704 -c--a-w- c:\windows\system32\dllcache\snmptrap.exe

2013-03-06 02:37:59 57399 -c--a-w- c:\windows\system32\dllcache\cplexe.exe

2013-03-06 02:14:02 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll

2013-03-06 02:14:02 24661 ----a-w- c:\windows\system32\spxcoins.dll

2013-03-06 02:14:02 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll

2013-03-06 02:14:02 13312 ----a-w- c:\windows\system32\irclass.dll

2013-03-06 02:13:50 16535 ----a-r- c:\windows\SET155.tmp

2013-03-06 02:13:47 1088840 ----a-r- c:\windows\SET149.tmp

2013-03-06 02:13:46 1296669 ----a-r- c:\windows\SET146.tmp

2013-03-05 19:07:34 -------- d-----w- c:\windows\Dell

2013-03-05 15:32:20 -------- d-sh--w- C:\$RECYCLE.BIN

2013-03-05 15:22:12 824832 ----a-w- c:\windows\system32\MPSSVC.dll

2013-03-05 15:20:24 285696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys

2013-03-05 15:20:24 125952 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys

2013-03-05 15:18:59 77312 ----a-w- c:\windows\system32\drivers\mpsdrv.sys

2013-02-16 02:58:12 106088 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll

.

==================== Find3M ====================

.

2013-02-27 19:31:10 71024 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-02-27 19:31:10 691568 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-01-21 20:15:51 27424 ----a-w- c:\windows\system32\drivers\hitmanpro36.sys

2013-01-15 17:17:36 226016 ----a-w- c:\windows\system32\drivers\avgldx86.sys

.

============= FINISH: 6:15:11.31 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume2

Install Date: 3/5/2013 7:39:27 PM

System Uptime: 3/6/2013 2:43:33 AM (4 hours ago)

.

Motherboard: Dell Inc. | | 0TP412

Processor: Intel Pentium III Xeon processor | CPU | 2792/1066mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 233 GiB total, 208.11 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP1: 3/5/2013 7:58:46 PM - System Checkpoint

RP2: 3/5/2013 8:10:20 PM - Installed Microsoft Fix it 50043

RP3: 3/5/2013 9:18:45 PM - Installed Windows Resource Kit Tools - SubInAcl.exe

RP4: 3/6/2013 2:30:51 AM - Malwarebytes Anti-Rootkit Restore Point

.

==== Installed Programs ======================

.

Acrobat.com

Adobe AIR

Adobe Flash Player 10 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader 9.5.4

AnswerWorks Runtime

AVG Free 9.0

Broadcom ASF Management Applications

Broadcom Management Programs

CCleaner

Corel Applications

Dell Backup and Recovery Manager

Dell ETS Factory Installation

DIGReqEx

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Intel® Matrix Storage Manager

Java™ 6 Update 16

Junk Mail filter update

Lytec Medical 98

Malwarebytes Anti-Malware version 1.70.0.1100

MathPlayer

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2698023)

Microsoft .NET Framework 1.1 Security Update (KB2742597)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office Professional 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Picture It! Express 9

Microsoft Picture It! Library 9

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft Software Update for Web Folders (English) 12

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Sync Framework Runtime Native v1.0 (x86)

Microsoft Sync Framework Services Native v1.0 (x86)

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Mozilla Firefox 19.0 (x86 en-US)

Mozilla Maintenance Service

MSN

MSN Encarta Plus Support Files

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

MSXML 6.0 Parser (KB927977)

NVIDIA Drivers

PowerDVD DX

QuickBooks

QuickBooks Pro 2011

Roxio Creator Audio

Roxio Creator Copy

Roxio Creator Data

Roxio Creator DE 10.3

Roxio Creator Tools

Roxio Express Labeler 3

Roxio Update Manager

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)

Segoe UI

SUPERAntiSpyware

SupportSoft Assisted Service

Tax Forms Helper 2012 10.5

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Mail

Windows Live Messenger

Windows Live Photo Gallery

Windows Live Sign-in Assistant

Windows Live Sync

Windows Live Toolbar

Windows Live Upload Tool

Windows Live Writer

Windows Presentation Foundation

Windows Resource Kit Tools - SubInAcl.exe

XML Paper Specification Shared Components Pack 1.0

.

==== Event Viewer Messages From Past Week ========

.

3/6/2013 2:32:10 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume2'. It has stopped monitoring the volume.

3/5/2013 8:02:49 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)

3/5/2013 7:59:16 PM, error: System Error [1003] - Error code 10000050, parameter1 e7316000, parameter2 00000000, parameter3 8053a0c4, parameter4 00000001.

3/5/2013 7:53:14 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

3/5/2013 7:36:51 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service SENS with arguments "" in order to run the server: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

3/4/2013 5:32:56 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AvgLdx86 AvgMfx86 Fips intelppm

3/4/2013 5:31:53 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

.

==== End Of File ===========================

Link to post
Share on other sites
MrCharlie

MrCharlie

Posted
Posted

Welcome to the forum.

See if you can download and run SUPERAntiSpyware Portable Scanner: (please make sure you update it before you run it)

http://www.superanti...ag=SAS_HOMEPAGE

Post the log.

Reboot and ...........

Please remove any usb or external drives from the computer before you run this scan!

Please download and run RogueKiller to your desktop.

RogueKiller<---use this one for 64 bit systems

Quit all running programs.

For Windows XP, double-click to start.

For Vista or Windows 7-8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.

When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

(please don't put logs in code or quotes)

P2P Warning:

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

MrC

Note:

Removing malware can be unpredictable
...things can go very wrong!
Backup
any files that cannot be replaced. You can copy them to a CD/DVD, external drive or a pen drive

<+>
Please don't run any other scans, download, install or uninstall any programs while I'm working with you.

<+>The removal of malware isn't instantaneous, please be patient.

<+>
Please stick with me until I give you the "all clear".

------->Your topic will be closed if you haven't replied within 3 days!<--------

(If I don't respond within 24 hours, please send me a PM)

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.