gkannon77 Posted April 6, 2013 ID:665734 Share Posted April 6, 2013 And variouos avatar like face popping up on each dialoge box it this normal?As far as the Malware titled PCFIXSPEED, i ran Rogue Killer and it found sometinhg, of which I deleted. Nay other input woul be greatly appreciated. Link to post Share on other sites More sharing options...
gkannon77 Posted April 6, 2013 Author ID:665737 Share Posted April 6, 2013 BTW MLB came back neg, and ESET online scanner came back negative, Re; PCFIXSPEED, it is still present, and anyoong, as are the avatars on each dialogue box. Link to post Share on other sites More sharing options...
gkannon77 Posted April 6, 2013 Author ID:665743 Share Posted April 6, 2013 Sorry here are the logs:.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows XP Home EditionBoot Device: \Device\HarddiskVolume1Install Date: 5/30/2008 2:10:05 PMSystem Uptime: 3/27/2013 8:40:51 PM (237 hours ago).Motherboard: ASUSTeK Computer INC. | | M2A-VMProcessor: AMD Athlon 64 X2 Dual Core Processor 4400+ | Socket AM2 | 2299/200mhzProcessor: AMD Athlon 64 X2 Dual Core Processor 4400+ | Socket AM2 | 2299/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 233 GiB total, 183.663 GiB free.D: is CDROM ()AE: is RemovableF: is RemovableG: is RemovableH: is RemovableI: is Removable.==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP1581: 1/9/2013 7:01:00 PM - Software Distribution Service 3.0RP1582: 1/12/2013 12:22:43 PM - Software Distribution Service 3.0RP1583: 1/19/2013 1:07:59 PM - Software Distribution Service 3.0RP1584: 1/20/2013 1:09:35 PM - System CheckpointRP1585: 1/21/2013 1:22:09 PM - System CheckpointRP1586: 1/22/2013 1:16:38 PM - Software Distribution Service ASRP1587: 1/23/2013 1:16:22 PM - Software Distribution Service 3.0RP1588: 1/24/2013 1:16:31 PM - Software Distribution Service 3.0RP1589: 1/25/2013 1:16:24 PM - Software Distribution Service 3.0RP1590: 1/26/2013 1:16:07 PM - Software Distribution Service 3.0RP1591: 1/27/2013 1:57:37 AM - Software Distribution Service 3.0RP1592: 1/27/2013 1:16:15 PM - Software Distribution Service 3.0RP1593: 1/28/2013 1:15:56 PM - Software Distribution Service 3.0RP1594: 1/29/2013 1:15:16 PM - Software Distribution Service 3.0RP1595: 1/30/2013 1:15:21 PM - Software Distribution Service 3.0RP1596: 1/31/2013 1:14:31 PM - Software Distribution Service 3.0RP1597: 2/3/2013 10:55:19 AM - Software Distribution Service 3.0RP1598: 2/4/2013 10:55:21 AM - Software Distribution Service 3.0RP1599: 2/5/2013 10:55:21 AM - Software Distribution Service 3.0RP1600: 2/6/2013 10:55:40 AM - Software Distribution Service 3.0RP1601: 2/7/2013 10:57:09 AM - Software Distribution Service 3.0RP1602: 2/8/2013 10:57:18 AM - Software Distribution Service 3.0RP1603: 2/9/2013 10:57:10 AM - Software Distribution Service 3.0RP1604: 2/10/2013 2:14:29 AM - Software Distribution Service 3.0RP1605: 2/10/2013 10:57:24 AM - Software Distribution Service 3.0RP1606: 2/11/2013 10:57:32 AM - Software Distribution Service 3.0RP1607: 2/12/2013 10:57:10 AM - Software Distribution Service 3.0RP1608: 2/13/2013 10:57:26 AM - Software Distribution Service 3.0RP1609: 2/14/2013 10:57:46 AM - Software Distribution Service 3.0RP1610: 2/15/2013 10:57:25 AM - Software Distribution Service 3.0RP1611: 2/16/2013 10:57:32 AM - Software Distribution Service 3.0RP1612: 2/17/2013 2:13:50 AM - Software Distribution Service 3.0RP1613: 2/17/2013 10:58:52 AM - Software Distribution Service 3.0RP1614: 2/18/2013 11:01:20 AM - Software Distribution Service 3.0RP1615: 2/19/2013 11:01:35 AM - Software Distribution Service 3.0RP1616: 2/20/2013 11:01:25 AM - Software Distribution Service 3.0RP1617: 2/21/2013 11:01:15 AM - Software Distribution Service 3.0RP1618: 2/22/2013 11:04:24 AM - Software Distribution Service 3.0RP1619: 2/23/2013 11:01:19 AM - Software Distribution Service 3.0RP1620: 2/24/2013 2:14:19 AM - Software Distribution Service 3.0RP1621: 2/24/2013 11:00:52 AM - Software Distribution Service 3.0RP1622: 2/25/2013 10:59:15 AM - Software Distribution Service 3.0RP1623: 2/26/2013 10:59:13 AM - Software Distribution Service 3.0RP1624: 2/27/2013 11:01:06 AM - Software Distribution Service 3.0RP1625: 2/28/2013 11:01:18 AM - Software Distribution Service 3.0RP1626: 3/1/2013 11:01:22 AM - Software Distribution Service 3.0RP1627: 3/2/2013 11:01:20 AM - Software Distribution Service 3.0RP1628: 3/3/2013 2:14:15 AM - Software Distribution Service 3.0RP1629: 3/3/2013 11:05:33 AM - Software Distribution Service 3.0RP1630: 3/4/2013 11:07:04 AM - Software Distribution Service 3.0RP1631: 3/5/2013 11:07:13 AM - Software Distribution Service 3.0RP1632: 3/6/2013 11:07:45 AM - Software Distribution Service 3.0RP1633: 3/7/2013 11:07:12 AM - Software Distribution Service 3.0RP1634: 3/9/2013 1:47:18 PM - Software Distribution Service 3.0RP1635: 3/10/2013 4:00:16 AM - Software Distribution Service 3.0RP1636: 3/11/2013 4:10:04 AM - Software Distribution Service 3.0RP1637: 3/12/2013 4:12:21 AM - Software Distribution Service 3.0RP1638: 3/13/2013 4:12:00 AM - Software Distribution Service 3.0RP1639: 3/14/2013 4:12:31 AM - Software Distribution Service 3.0RP1640: 3/15/2013 4:12:21 AM - Software Distribution Service 3.0RP1641: 3/16/2013 4:12:22 AM - Software Distribution Service 3.0RP1642: 3/17/2013 2:01:04 AM - Software Distribution Service 3.0RP1643: 3/17/2013 4:14:29 AM - Software Distribution Service 3.0RP1644: 3/18/2013 4:12:02 AM - Software Distribution Service 3.0RP1645: 3/19/2013 4:12:21 AM - Software Distribution Service 3.0RP1646: 3/20/2013 4:12:33 AM - Software Distribution Service 3.0RP1647: 3/23/2013 8:07:50 PM - Software Distribution Service 3.0RP1648: 3/26/2013 5:27:15 PM - Software Distribution Service 3.0RP1649: 3/27/2013 6:58:42 PM - Software Distribution Service 3.0RP1650: 3/28/2013 7:43:07 PM - System CheckpointRP1651: 3/28/2013 8:49:58 PM - Software Distribution Service 3.0RP1652: 3/29/2013 8:50:12 PM - Software Distribution Service 3.0RP1653: 3/30/2013 8:50:09 PM - Software Distribution Service 3.0RP1654: 3/31/2013 2:06:09 AM - Software Distribution Service 3.0RP1655: 3/31/2013 8:54:42 PM - Software Distribution Service 3.0RP1656: 4/1/2013 8:54:43 PM - Software Distribution Service 3.0RP1657: 4/2/2013 8:54:21 PM - Software Distribution Service 3.0RP1658: 4/3/2013 8:57:08 PM - Software Distribution Service 3.0RP1659: 4/4/2013 8:57:06 PM - Software Distribution Service 3.0RP1660: 4/5/2013 8:57:06 PM - Software Distribution Service 3.0.==== Installed Programs ======================.24x7 HelpAcrobat.comAd-AwareAdobe AIRAdobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Reader 9.4.0APC PowerChute Personal EditionApple Software UpdateATI - Software Uninstall UtilityATI Catalyst Control CenterATI Display DriverATI Parental Control & Encoderavast! Free AntivirusAVG SafeGuard toolbarBlackMagicBrother MFL-Pro Suite MFC-495CWBrowser Highlighter - FirefoxCatalyst Control Center Core ImplementationCatalyst Control Center Graphics Full ExistingCatalyst Control Center Graphics Full NewCatalyst Control Center Graphics LightCatalyst Control Center Localization Chinese StandardCatalyst Control Center Localization Chinese TraditionalCatalyst Control Center Localization CzechCatalyst Control Center Localization DanishCatalyst Control Center Localization DutchCatalyst Control Center Localization FinnishCatalyst Control Center Localization FrenchCatalyst Control Center Localization GermanCatalyst Control Center Localization GreekCatalyst Control Center Localization HungarianCatalyst Control Center Localization ItalianCatalyst Control Center Localization JapaneseCatalyst Control Center Localization KoreanCatalyst Control Center Localization NorwegianCatalyst Control Center Localization PolishCatalyst Control Center Localization PortugueseCatalyst Control Center Localization RussianCatalyst Control Center Localization SpanishCatalyst Control Center Localization SwedishCatalyst Control Center Localization ThaiCatalyst Control Center Localization Turkishccc-core-staticccc-utilityCCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishCCleanerCritical Update for Windows Media Player 11 (KB959772)DivX SetupESET Online Scanner v3Eusing Free Registry CleanerGoogle ChromeGoogle Toolbar for Internet ExplorerGoogle Update HelperHigh Definition Audio Driver Package - KB888111Highlight Viewer (Windows Live Toolbar)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)Hotfix for Windows Media Format 11 SDK (KB929399)Hotfix for Windows Media Player 11 (KB939683)Hotfix for Windows XP (KB915865)Hotfix for Windows XP (KB926239)Hotfix for Windows XP (KB935448)Hotfix for Windows XP (KB952287)Hotfix for Windows XP (KB954550-v5)Hotfix for Windows XP (KB961118)Hotfix for Windows XP (KB970653-v3)Hotfix for Windows XP (KB976098-v2)Hotfix for Windows XP (KB979306)Hotfix for Windows XP (KB981793)Java 6 Update 7Learning Lodge NavigatorLimeWire 4.18.3Logitech QuickCam SoftwareLogitech® Camera DriverMalwarebytes Anti-Malware version 1.70.0.1100Map Button (Windows Live Toolbar)Microsoft .NET Framework 2.0 Service Pack 2Microsoft .NET Framework 3.0 Service Pack 2Microsoft .NET Framework 3.5 SP1Microsoft Application Error ReportingMicrosoft Compression Client Pack 1.0 for Windows XPMicrosoft Internationalized Domain Names Mitigation APIsMicrosoft National Language Support Downlevel APIsMicrosoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (English) 2007Microsoft Office Access Setup Metadata MUI (English) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office Groove MUI (English) 2007Microsoft Office Groove Setup Metadata MUI (English) 2007Microsoft Office InfoPath MUI (English) 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office Outlook MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (English) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft Security ClientMicrosoft Security EssentialsMicrosoft Software Update for Web Folders (English) 12Microsoft User-Mode Driver Framework Feature Pack 1.0Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable - KB2467175Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Mozilla Firefox (3.0.19)MSXML 4.0 SP2 (KB936181)MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MSXML 6 Service Pack 2 (KB973686)MySpaceIMNero OEMNVDVDPaperPort Image PrinterPC Fix Speed 1.2.0.24Picasa 3REALTEK GbE & FE Ethernet PCI-E NIC DriverRealtek High Definition Audio DriverRegServeScanSoft PaperPort 11Security Update for CAPICOM (KB931906)Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2598041) 32-Bit EditionSecurity Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit EditionSecurity Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition Security Update for Windows Internet Explorer 7 (KB938127)Security Update for Windows Internet Explorer 7 (KB950759)Security Update for Windows Internet Explorer 7 (KB953838)Security Update for Windows Internet Explorer 7 (KB956390)Security Update for Windows Internet Explorer 7 (KB958215)Security Update for Windows Internet Explorer 7 (KB960714)Security Update for Windows Internet Explorer 7 (KB961260)Security Update for Windows Internet Explorer 7 (KB963027)Security Update for Windows Internet Explorer 7 (KB969897)Security Update for Windows Internet Explorer 7 (KB972260)Security Update for Windows Internet Explorer 7 (KB974455)Security Update for Windows Internet Explorer 8 (KB971961)Security Update for Windows Internet Explorer 8 (KB974455)Security Update for Windows Internet Explorer 8 (KB976325)Security Update for Windows Internet Explorer 8 (KB978207)Security Update for Windows Internet Explorer 8 (KB981332)Security Update for Windows Internet Explorer 8 (KB982381)Security Update for Windows Media Player (KB911564)Security Update for Windows Media Player (KB952069)Security Update for Windows Media Player (KB954155)Security Update for Windows Media Player (KB968816)Security Update for Windows Media Player (KB973540)Security Update for Windows Media Player (KB978695)Security Update for Windows Media Player 11 (KB936782)Security Update for Windows Media Player 11 (KB954154)Security Update for Windows Media Player 6.4 (KB925398)Security Update for Windows Media Player 9 (KB936782)Security Update for Windows XP (KB2229593)Security Update for Windows XP (KB890046)Security Update for Windows XP (KB893756)Security Update for Windows XP (KB896358)Security Update for Windows XP (KB896423)Security Update for Windows XP (KB896428)Security Update for Windows XP (KB899587)Security Update for Windows XP (KB899591)Security Update for Windows XP (KB900725)Security Update for Windows XP (KB901017)Security Update for Windows XP (KB901214)Security Update for Windows XP (KB902400)Security Update for Windows XP (KB905414)Security Update for Windows XP (KB905749)Security Update for Windows XP (KB908519)Security Update for Windows XP (KB911562)Security Update for Windows XP (KB911927)Security Update for Windows XP (KB913580)Security Update for Windows XP (KB914388)Security Update for Windows XP (KB914389)Security Update for Windows XP (KB918118)Security Update for Windows XP (KB918439)Security Update for Windows XP (KB919007)Security Update for Windows XP (KB920213)Security Update for Windows XP (KB920670)Security Update for Windows XP (KB920683)Security Update for Windows XP (KB920685)Security Update for Windows XP (KB922819)Security Update for Windows XP (KB923191)Security Update for Windows XP (KB923414)Security Update for Windows XP (KB923561)Security Update for Windows XP (KB923980)Security Update for Windows XP (KB924270)Security Update for Windows XP (KB924496)Security Update for Windows XP (KB924667)Security Update for Windows XP (KB925902)Security Update for Windows XP (KB926255)Security Update for Windows XP (KB926436)Security Update for Windows XP (KB927779)Security Update for Windows XP (KB927802)Security Update for Windows XP (KB928255)Security Update for Windows XP (KB928843)Security Update for Windows XP (KB929123)Security Update for Windows XP (KB930178)Security Update for Windows XP (KB931261)Security Update for Windows XP (KB931784)Security Update for Windows XP (KB932168)Security Update for Windows XP (KB933729)Security Update for Windows XP (KB935839)Security Update for Windows XP (KB935840)Security Update for Windows XP (KB936021)Security Update for Windows XP (KB938127)Security Update for Windows XP (KB938464)Security Update for Windows XP (KB941202)Security Update for Windows XP (KB941568)Security Update for Windows XP (KB941569)Security Update for Windows XP (KB941644)Security Update for Windows XP (KB941693)Security Update for Windows XP (KB943055)Security Update for Windows XP (KB943460)Security Update for Windows XP (KB943485)Security Update for Windows XP (KB944338)Security Update for Windows XP (KB944653)Security Update for Windows XP (KB945553)Security Update for Windows XP (KB946026)Security Update for Windows XP (KB946648)Security Update for Windows XP (KB947864)Security Update for Windows XP (KB948590)Security Update for Windows XP (KB948881)Security Update for Windows XP (KB950749)Security Update for Windows XP (KB950760)Security Update for Windows XP (KB950762)Security Update for Windows XP (KB950974)Security Update for Windows XP (KB951066)Security Update for Windows XP (KB951376-v2)Security Update for Windows XP (KB951376)Security Update for Windows XP (KB951698)Security Update for Windows XP (KB951748)Security Update for Windows XP (KB952004)Security Update for Windows XP (KB952954)Security Update for Windows XP (KB953839)Security Update for Windows XP (KB954211)Security Update for Windows XP (KB954600)Security Update for Windows XP (KB955069)Security Update for Windows XP (KB956391)Security Update for Windows XP (KB956572)Security Update for Windows XP (KB956802)Security Update for Windows XP (KB956803)Security Update for Windows XP (KB956841)Security Update for Windows XP (KB956844)Security Update for Windows XP (KB957095)Security Update for Windows XP (KB957097)Security Update for Windows XP (KB958470)Security Update for Windows XP (KB958644)Security Update for Windows XP (KB958687)Security Update for Windows XP (KB958690)Security Update for Windows XP (KB958869)Security Update for Windows XP (KB959426)Security Update for Windows XP (KB960225)Security Update for Windows XP (KB960715)Security Update for Windows XP (KB960803)Security Update for Windows XP (KB960859)Security Update for Windows XP (KB961371)Security Update for Windows XP (KB961373)Security Update for Windows XP (KB961501)Security Update for Windows XP (KB968537)Security Update for Windows XP (KB969059)Security Update for Windows XP (KB969898)Security Update for Windows XP (KB969947)Security Update for Windows XP (KB970238)Security Update for Windows XP (KB970430)Security Update for Windows XP (KB971468)Security Update for Windows XP (KB971486)Security Update for Windows XP (KB971557)Security Update for Windows XP (KB971633)Security Update for Windows XP (KB971657)Security Update for Windows XP (KB971961)Security Update for Windows XP (KB972270)Security Update for Windows XP (KB973346)Security Update for Windows XP (KB973354)Security Update for Windows XP (KB973507)Security Update for Windows XP (KB973525)Security Update for Windows XP (KB973869)Security Update for Windows XP (KB973904)Security Update for Windows XP (KB974112)Security Update for Windows XP (KB974318)Security Update for Windows XP (KB974392)Security Update for Windows XP (KB974571)Security Update for Windows XP (KB975025)Security Update for Windows XP (KB975467)Security Update for Windows XP (KB975560)Security Update for Windows XP (KB975561)Security Update for Windows XP (KB975562)Security Update for Windows XP (KB975713)Security Update for Windows XP (KB977165)Security Update for Windows XP (KB977816)Security Update for Windows XP (KB977914)Security Update for Windows XP (KB978037)Security Update for Windows XP (KB978251)Security Update for Windows XP (KB978262)Security Update for Windows XP (KB978338)Security Update for Windows XP (KB978542)Security Update for Windows XP (KB978601)Security Update for Windows XP (KB978706)Security Update for Windows XP (KB979309)Security Update for Windows XP (KB979482)Security Update for Windows XP (KB979559)Security Update for Windows XP (KB979683)Security Update for Windows XP (KB980195)Security Update for Windows XP (KB980218)Security Update for Windows XP (KB980232)SkinsSkype Click to CallSkype™ 5.5Smart Menus (Windows Live Toolbar)Spybot - Search & DestroySUPERAntiSpywareUninstall 1.0.0.1Update for 2007 Microsoft Office System (KB967642)Update for Microsoft .NET Framework 3.5 SP1 (KB963707)Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit EditionUpdate for Windows Internet Explorer 8 (KB975364)Update for Windows Internet Explorer 8 (KB976662)Update for Windows Internet Explorer 8 (KB976749)Update for Windows Internet Explorer 8 (KB980182)Update for Windows XP (KB894391)Update for Windows XP (KB898461)Update for Windows XP (KB900485)Update for Windows XP (KB908531)Update for Windows XP (KB910437)Update for Windows XP (KB911280)Update for Windows XP (KB914882)Update for Windows XP (KB916595)Update for Windows XP (KB920872)Update for Windows XP (KB922582)Update for Windows XP (KB925720)Update for Windows XP (KB927891)Update for Windows XP (KB930916)Update for Windows XP (KB932823-v3)Update for Windows XP (KB938828)Update for Windows XP (KB942763)Update for Windows XP (KB951072-v2)Update for Windows XP (KB955759)Update for Windows XP (KB955839)Update for Windows XP (KB967715)Update for Windows XP (KB968389)Update for Windows XP (KB971737)Update for Windows XP (KB973687)Update for Windows XP (KB973815)VC80CRTRedist - 8.0.50727.4053VTech Download Agent LibraryWebFldrs XPWebRegWindows Feature Pack for Storage (32-bit) - IMAPI update for Blu-RayWindows Imaging ComponentWindows Installer 3.1 (KB893803)Windows Internet Explorer 8Windows Live Favorites for Windows Live ToolbarWindows Live installerWindows Live MessengerWindows Live Sign-in AssistantWindows Live ToolbarWindows Live Toolbar Extension (Windows Live Toolbar)Windows Media Format 11 runtimeWindows Media Player 11Windows XP Hotfix - KB873339Windows XP Hotfix - KB885835Windows XP Hotfix - KB885836Windows XP Hotfix - KB886185Windows XP Hotfix - KB887472Windows XP Hotfix - KB888302Windows XP Hotfix - KB890859Windows XP Hotfix - KB891781.==== End Of File ===========================DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702Run by Owner at 17:40:32 on 2013-04-06Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.3454.2360 [GMT -4:00].AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}.============== Running Processes ================.C:\WINDOWS\system32\Ati2evxx.exec:\Program Files\Microsoft Security Client\MsMpEng.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Lavasoft\Ad-Aware\aawservice.exeC:\WINDOWS\Explorer.EXEC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\mom.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exeC:\WINDOWS\system32\spoolsv.exec:\program files\common files\logitech\lvmvfm\LVPrcSrv.exeC:\Program Files\SUPERAntiSpyware\SASCORE.EXEC:\Program Files\24x7Help\App24x7Svc.exeC:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\WINDOWS\system32\HPZipm12.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\tbh\monitor\bin\tbhMonitor.exeC:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exec:\Program Files\tbh\base\bin\tbhDaemon.exeC:\WINDOWS\System32\alg.exeC:\WINDOWS\RTHDCPL.EXEC:\WINDOWS\system32\wuauclt.exeC:\WINDOWS\system32\LVCOMSX.EXEC:\WINDOWS\system32\ElkCtrl.exeC:\Program Files\Alwil Software\Avast5\avastUI.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\Program Files\VTech\DownloadManager\System\AgentMonitor.exeC:\Program Files\PCFixSpeed\PCFixTray.exeC:\Program Files\24x7Help\App24x7Help.exeC:\Program Files\AVG SafeGuard toolbar\vprot.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files\Brother\Brmfcmon\BrMfcWnd.exeC:\Program Files\24x7Help\App24x7Hook.exeC:\Program Files\Brother\Brmfcmon\BrMfcmon.exeC:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exeC:\Program Files\Microsoft Office\Office12\WINWORD.EXEC:\Program Files\RegServe\RSListener.exeC:\Program Files\Windows NT\Accessories\wordpad.exeC:\Program Files\PCFixSpeed\PCFixSpeed.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\system32\wbem\wmiprvse.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\WINDOWS\system32\svchost.exe -k NetworkServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k imgsvc.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.google.com/uSearch Bar = hxxp://www.google.com/ieuSearch Page = hxxp://www.google.comuDefault_Search_URL = hxxp://www.google.com/ieuSearchAssistant = hxxp://www.google.com/ieuSearchURL,(Default) = hxxp://www.google.com/search?q=%sBHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dllBHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dllBHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_07\bin\ssv.dllBHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - <orphaned>BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dllBHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned>BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dllBHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dllBHO: Windows Live Toolbar Helper: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dllTB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dllTB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dllTB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dllTB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dlluRun: [ctfmon.exe] c:\windows\system32\ctfmon.exeuRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"mRun: [RTHDCPL] RTHDCPL.EXEmRun: [Alcmtr] ALCMTR.EXEmRun: [LVCOMSX] c:\windows\system32\LVCOMSX.EXEmRun: [LogitechCameraService(E)] c:\windows\system32\ElkCtrl.exe /automationmRun: [PPort11reminder] "c:\program files\scansoft\paperport\ereg\ereg.exe" -r "c:\documents and settings\all users\application data\scansoft\paperport\11\config\ereg\Ereg.ini"mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /noguimRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkeymRun: [AgentMonitor] c:\program files\vtech\downloadmanager\system\AgentMonitor.exemRun: [PCFixSpeed] "c:\program files\pcfixspeed\PCFixTray.exe" /startupmRun: [24x7HELP] "c:\program files\24x7help\App24x7Help.exe" /STARTUPmRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"mRun: [RSAgent] c:\program files\regserve\RSAgent.exemRun: [RSListener] c:\program files\regserve\RSListener.exedRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exedRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -tStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\status~1.lnk - c:\program files\brother\brmfcmon\BrMfcWnd.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoDriveTypeAutoRun = dword:145IE: &Search - <no file>IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htmIE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspxIE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_07\bin\ssv.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dllIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dllIE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe.INFO: HKCU has more than 50 listed domains.If you wish to scan all of them, select the 'Force scan all domains' option...INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option..DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cabDPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} - hxxp://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cabDPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cabDPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cabDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?e=1215742177452&h=4b4da0f0a2c69928636fb7423f35c9f4/&filename=jinstall-6u7-windows-i586-jc.cabDPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cabDPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cabDPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cabDPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cabDPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} - hxxp://zone.msn.com/binframework/v10/StProxy.cab55579.cabDPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cabTCP: NameServer = 192.168.1.1TCP: Interfaces\{3F203DB7-C3EA-4A5B-A928-9644129C709B} : DHCPNameServer = 192.168.1.1Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dllHandler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\14.2.0\ViProtocol.dllNotify: AtiExtEvent - Ati2evxx.dllSSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dllSEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllSEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLLmASetup: ccc-core-static - msiexec /fums {A75BF1D0-C7C3-CB55-EE17-3225387FD154} /qbmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\26.0.1410.43\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromeHosts: 127.0.0.1 www.spywareinfo.com.================= FIREFOX ===================.FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\7rpurla4.default\FF - prefs.js: browser.search.selectedEngine - GoogleFF - component: c:\documents and settings\owner\application data\mozilla\firefox\profiles\7rpurla4.default\extensions\browserhighlighter@ebay.com\components\Shim.dllFF - plugin: c:\program files\divx\divx plus web player\npdivx32.dllFF - plugin: c:\program files\google\picasa3\npPicasa3.dllFF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll.---- FIREFOX POLICIES ----FF - user.js: extensions.BabylonToolbar.autoRvrt - falseFF - user.js: extensions.BabylonToolbar_i.newTab - falseFF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=441dbdb6000000000000001bfc8735c3&q=FF - user.js: extensions.BabylonToolbar.id - 441dbdb6000000000000001bfc8735c3FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}FF - user.js: extensions.BabylonToolbar.instlDay - 15615FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.0.7FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.0.7FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.8.0.714:42:10FF - user.js: extensions.BabylonToolbar.prtnrId - babylonFF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbarFF - user.js: extensions.BabylonToolbar.aflt - babsstFF - user.js: extensions.BabylonToolbar_i.smplGrp - noneFF - user.js: extensions.BabylonToolbar.tlbrId - baseFF - user.js: extensions.BabylonToolbar.instlRef - sstFF - user.js: extensions.BabylonToolbar.dfltLng - enFF - user.js: extensions.BabylonToolbar.excTlbr - falseFF - user.js: extensions.BabylonToolbar.admin - falseFF - user.js: extensions.BabylonToolbar_i.babTrack - affID=108976FF - user.js: extensions.BabylonToolbar_i.babExt - FF - user.js: extensions.BabylonToolbar_i.srcExt - ss.============= SERVICES / DRIVERS ===============.R0 ahci8086;ahci8086;c:\windows\system32\drivers\ahci8086.sys [2006-7-19 119808]R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-8-30 195296]R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-6 441176]R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-6-8 307928]R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-3-6 33112]R1 MpKsl32f36608;MpKsl32f36608;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5fb817d-f7d1-4dc6-8f01-056f09b4603d}\MpKsl32f36608.sys [2013-4-6 29904]R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608]R2 24x7HelpSvc;24x7HelpService;c:\program files\24x7help\App24x7Svc.exe [2013-3-6 342168]R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-5-12 611664]R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-6-8 19544]R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-3-27 398184]R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-3-27 682344]R2 tbhMonitor.exe;The Browser Highlighter Monitor;c:\program files\tbh\monitor\bin\tbhMonitor.exe [2009-10-22 70952]R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-3-6 968880]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-3-27 21104]S2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2011-2-6 42184].=============== Created Last 30 ================.2013-04-06 21:34:32 60872 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5fb817d-f7d1-4dc6-8f01-056f09b4603d}\offreg.dll2013-04-06 21:09:50 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5fb817d-f7d1-4dc6-8f01-056f09b4603d}\MpKsl32f36608.sys2013-04-06 20:51:54 -------- d-----w- c:\program files\RegServe2013-04-06 00:57:11 7108640 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5fb817d-f7d1-4dc6-8f01-056f09b4603d}\mpengine.dll2013-04-05 00:57:10 7108640 ------w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll2013-03-27 23:17:15 -------- d-----w- c:\program files\ESET2013-03-27 23:13:23 -------- d-----w- c:\documents and settings\owner\application data\Malwarebytes2013-03-27 23:12:34 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes2013-03-27 23:12:31 21104 ----a-w- c:\windows\system32\drivers\mbam.sys2013-03-27 23:12:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware.==================== Find3M ====================.2013-04-02 10:33:22 237088 ------w- c:\windows\system32\MpSigStub.exe2013-03-07 00:22:03 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys2013-01-20 19:59:04 195296 ----a-w- c:\windows\system32\drivers\MpFilter.sys.============= FINISH: 17:41:19.06 =============== Link to post Share on other sites More sharing options...
MrCharlie Posted April 6, 2013 ID:665748 Share Posted April 6, 2013 Welcome to the forum.Please remove any usb or external drives from the computer before you run this scan!Please download and run RogueKiller to your desktop.RogueKiller<---use this one for 64 bit systemsQuit all running programs.For Windows XP, double-click to start.For Vista or Windows 7-8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.Click Scan to scan the system.When the scan completes > Close out the program > Don't Fix anything!Don't run any other options, they're not all bad!!!!!!!Post back the report which should be located on your desktop.(please don't put logs in code or quotes)P2P Warning:If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.MrCNote:Removing malware can be unpredictable...things can go very wrong! Backup any files that cannot be replaced. You can copy them to a CD/DVD, external drive or a pen drive<+>Please don't run any other scans, download, install or uninstall any programs while I'm working with you.<+>The removal of malware isn't instantaneous, please be patient.<+>Please stick with me until I give you the "all clear".------->Your topic will be closed if you haven't replied within 3 days!<--------(If I don't respond within 24 hours, please send me a PM) Link to post Share on other sites More sharing options...
LDTate Posted April 10, 2013 ID:667034 Share Posted April 10, 2013 Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts