Jump to content

Computer has Malware and I don't know what to do


Recommended Posts

I have a Dell Inspiron 1011 that is running Windows XP Home Edition 2002 Service Pack 3. I have not been able to connect to a wireless router in months. The computer uses a Dell Wireless 1397 WLAN Minicard. Windows cannot "see" the router or hotspots.

In the past, I've had issues of the wireless connection turning on and off and it had to do with a conflict between Dell's Wireless WLAN Card Utility and the Windows Wireless Network Connection. After supposedly erradicating a virus I had on the computer, now I am unable to make a wireless connection to the internet. I've tried restarting the computer and wireless router many times. I've enabled and disabled the wireless card. I have made sure the Wireless Zero Configuration is running.

However, I know that that I have some sort of virus/malware on my computer. I have tried downloading AVG and it says there is no internet connection (but I am connected via cable). I tried updating Malwarebytes and it also does not let me saying there is no internet connection when, in fact, my internet connection is working (plugged in to cable, not wireless). Some internet sites redirect automatically somewhere else.

Desperate for help!!! Thank you.

Link to post
Share on other sites

  • Root Admin

Yes there is a ZeroAccess root kit that appears to be breaking the network connection. Even when the box appears to be clean you cannot get the network card working.

If you have the time and energy you can have someone assist you in scanning for and removing the infection but fixing the Network card may take a bit longer to track down and fix.

Do me a favor and download this tool and post back the results.

  1. Download the Event Viewer Tool by Vino Rosso VEW and save it to your Desktop:
  2. Double-click VEW.exe
  3. Under 'Select log to query', select:
    • Application
    • System

[*]Under 'Select type to list', select:

  • Error

[*] Click the radio button for 'Number of events'

[*]Type 20 in the 1 to 20 box

[*]Then click the Run button.

[*]Notepad will open with the output log.

Please post the Output log in your next reply

Link to post
Share on other sites

Thank you. Here it is....

Vino's Event Viewer v01c run on Windows XP in English

Report run at 06/10/2011 1:41:23 AM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'Application' Date/Time: 26/09/2011 12:59:21 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 6333453

Log: 'Application' Date/Time: 26/09/2011 12:59:21 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 6333453

Log: 'Application' Date/Time: 26/09/2011 12:59:21 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 26/09/2011 12:59:06 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 6317828

Log: 'Application' Date/Time: 26/09/2011 12:59:06 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 6317828

Log: 'Application' Date/Time: 26/09/2011 12:59:06 AM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 24/09/2011 12:28:55 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 52752578

Log: 'Application' Date/Time: 24/09/2011 12:28:55 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 52752578

Log: 'Application' Date/Time: 24/09/2011 12:28:55 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 23/09/2011 11:35:06 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 6323797

Log: 'Application' Date/Time: 23/09/2011 11:35:06 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 6323797

Log: 'Application' Date/Time: 23/09/2011 11:35:06 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 23/09/2011 4:01:59 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 6340593

Log: 'Application' Date/Time: 23/09/2011 4:01:59 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 6340593

Log: 'Application' Date/Time: 23/09/2011 4:01:59 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 23/09/2011 4:01:43 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledSPRetry 6324968

Log: 'Application' Date/Time: 23/09/2011 4:01:43 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: m->NextScheduledEvent 6324968

Log: 'Application' Date/Time: 23/09/2011 4:01:43 PM

Type: error Category: 0

Event: 100 Source: Bonjour Service

Task Scheduling Error: Continuously busy for more than a second

Log: 'Application' Date/Time: 20/09/2011 9:15:41 PM

Type: error Category: 3

Event: 3024 Source: Windows Search Service

The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context: Application, SystemIndex Catalog

Log: 'Application' Date/Time: 20/09/2011 9:14:45 PM

Type: error Category: 100

Event: 1004 Source: Application Error

Faulting application svchost.exe, version 0.0.0.0, faulting module unknown, version 0.0.0.0, fault address 0x00000000.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 06/10/2011 1:41:16 AM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 06/10/2011 1:37:53 AM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 06/10/2011 1:37:48 AM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 06/10/2011 1:37:44 AM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 06/10/2011 1:37:28 AM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 06/10/2011 1:36:24 AM

Type: error Category: 6

Event: 16 Source: Windows Update Agent

Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.

Log: 'System' Date/Time: 06/10/2011 1:36:05 AM

Type: error Category: 0

Event: 29 Source: W32Time

The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible. No attempt to contact a source will be made for 14 minutes. NtpClient has no source of accurate time.

Log: 'System' Date/Time: 06/10/2011 1:36:05 AM

Type: error Category: 0

Event: 17 Source: W32Time

Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Log: 'System' Date/Time: 26/09/2011 12:58:58 AM

Type: error Category: 0

Event: 14103 Source: PSched

QoS [Adapter {C151F1E6-EEB0-4F01-96B8-04A6C1E4E8C9}]: The netcard driver failed the query for OID_GEN_LINK_SPEED.

Log: 'System' Date/Time: 25/09/2011 11:06:17 PM

Type: error Category: 6

Event: 16 Source: Windows Update Agent

Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.

Log: 'System' Date/Time: 24/09/2011 3:36:34 PM

Type: error Category: 0

Event: 10005 Source: DCOM

DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Log: 'System' Date/Time: 24/09/2011 3:36:06 PM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 24/09/2011 3:36:01 PM

Type: error Category: 0

Event: 7026 Source: Service Control Manager

The following boot-start or system-start driver(s) failed to load: Fips intelppm

Log: 'System' Date/Time: 24/09/2011 3:35:59 PM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 24/09/2011 3:35:13 PM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 24/09/2011 3:34:57 PM

Type: error Category: 0

Event: 10005 Source: DCOM

DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Log: 'System' Date/Time: 24/09/2011 3:32:51 PM

Type: error Category: 0

Event: 10005 Source: DCOM

DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Log: 'System' Date/Time: 24/09/2011 3:28:11 PM

Type: error Category: 0

Event: 7026 Source: Service Control Manager

The following boot-start or system-start driver(s) failed to load: Fips intelppm

Log: 'System' Date/Time: 24/09/2011 3:27:24 PM

Type: error Category: 0

Event: 7 Source: Disk

The device, \Device\Harddisk0\D, has a bad block.

Log: 'System' Date/Time: 24/09/2011 3:27:10 PM

Type: error Category: 0

Event: 10005 Source: DCOM

DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Link to post
Share on other sites

  • Root Admin

Okay, please download and run the following scanner and post back both the logs.

Download
DDS
and save it to your desktop

Disable any script blocker if your Anti-Virus/Anti-Malware has it.

Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.

Then double click
dds.scr
to run the tool.

When done, the
DDS.txt
will open.

Click Yes at the next prompt for Optional Scan.


    When done, DDS will open two (2) logs:

  1. DDS.txt

  2. Attach.txt

  • Save both reports to your desktop
  • Please include the following logs in your next reply:
    DDS.txt
    and
    Attach.txt

Link to post
Share on other sites

DDS.txt

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702

Run by Cami at 2:09:32 on 2011-10-06

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.609 [GMT -4:00]

.

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

svchost.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\system32\WLTRAY.exe

C:\Program Files\WSED\WSED.exe

C:\Program Files\Battery Meter\BTMeter.exe

C:\Program Files\CapsLKNotify\CapsLKNotify.exe

C:\Program Files\Elantech\ETDCtrl.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Documents and Settings\Cami\Local Settings\Application Data\Identities\IdentitiesUpdate\Identitiesupdt32.exe

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

.

============== Pseudo HJT Report ===============

.

uSearch Page = hxxp://www.google.com

uWindow Title = Internet Explorer, optimized for Bing and MSN

uDefault_Page_URL = hxxp://www.msn.com

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

mSearchAssistant = hxxp://www.google.com/ie

uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - c:\program files\ask.com\GenericAskToolbar.dll

BHO: {15fde302-5908-4bcf-8ff9-04b85ce9ab96} - c:\documents and settings\cami\local settings\application data\ServicePTR.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll

BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll

TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [identities Update] c:\documents and settings\cami\local settings\application data\identities\identitiesupdate\Identitiesupdt32.exe

uRun: [intelUpdateNotifier] rundll32.exe "c:\documents and settings\all users\application data\IntelUpdateNotifier.dll",DllRegisterServer

mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"

mRun: [broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe

mRun: [WSED] c:\program files\wsed\WSED.exe

mRun: [bTMeter] c:\program files\battery meter\BTMeter.exe

mRun: [CapsLKNotify] c:\program files\capslknotify\CapsLKNotify.exe

mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [ETDWare] c:\program files\elantech\ETDCtrl.exe

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

dRun: [identities Update] c:\documents and settings\cami\local settings\application data\identities\identitiesupdate\Identitiesupdt32.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe

IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

Notify: igfxcui - igfxdev.dll

SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

.

============= SERVICES / DRIVERS ===============

.

R0 EMSC;COMPAL Embedded System Control;c:\windows\system32\drivers\EMSC.sys [2010-5-10 14248]

R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-9-9 54760]

R3 OA012Afx;Provides a software interface to control audio effects of OA012 camera.;c:\windows\system32\drivers\OA012Afx.sys [2010-5-7 148056]

R3 OA012Ufd;Creative Camera OA012 Upper Filter Driver;c:\windows\system32\drivers\OA012Ufd.sys [2010-5-7 133472]

R3 OA012Vid;Creative Camera OA012 Function Driver;c:\windows\system32\drivers\OA012Vid.sys [2010-5-7 271328]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-5-7 162816]

S2 gupdate;Servicio de actualización de Google (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-5-14 136176]

S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-5-7 1684736]

S3 dsiarhwprog;dsiarhwprog;c:\windows\system32\drivers\dsiarhwprog.sys [2010-5-23 29184]

S3 fsssvc;Servicio de Windows Live Protección infantil;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]

S3 gupdatem;Google Update Servicio (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-5-14 136176]

S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-6-22 39984]

S3 RkPavproc1;RkPavproc1;\??\c:\windows\system32\drivers\rkpavproc1.sys --> c:\windows\system32\drivers\RkPavproc1.sys [?]

S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-25 14336]

.

=============== Created Last 30 ================

.

2011-09-24 17:54:43 0 ---ha-w- c:\documents and settings\cami\zmvcdmwojo.tmp

2011-09-24 17:52:56 98304 ----a-w- c:\documents and settings\all users\application data\IntelUpdateNotifier.dll

2011-09-24 17:52:52 265728 ----a-w- c:\documents and settings\cami\local settings\application data\ServicePTR.dll

2011-09-22 22:21:10 -------- d-----w- c:\documents and settings\cami\application data\Malwarebytes

2011-09-22 20:27:31 -------- d-----w- c:\program files\Elantech

2011-09-22 20:27:30 23040 -c--a-w- c:\windows\system32\dllcache\mouclass.sys

2011-09-22 20:27:30 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys

2011-09-22 20:26:59 83456 ----a-w- c:\windows\system32\drivers\ETD.sys

2011-09-22 20:23:04 -------- d-----w- c:\documents and settings\cami\local settings\application data\Adobe

2011-09-20 00:46:35 -------- d-----w- c:\program files\FYZip

2011-09-20 00:08:17 -------- d--h--w- c:\documents and settings\all users\application data\Common Files

2011-09-20 00:03:08 -------- d-----w- c:\documents and settings\all users\application data\MFAData

.

==================== Find3M ====================

.

.

============= FINISH: 2:10:20.06 ===============

Attach.txt

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows XP Home Edition

Boot Device: \Device\HarddiskVolume2

Install Date: 5/11/2010 4:53:11 PM

System Uptime: 10/6/2011 1:25:29 AM (1 hours ago)

.

Motherboard: Dell Inc. | | CN0Y53

Processor: Intel® Atom CPU N270 @ 1.60GHz | U1 | 1053/533mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 149 GiB total, 135.106 GiB free.

D: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP22: 8/19/2010 7:12:05 PM - Software Distribution Service 3.0

RP23: 8/25/2010 8:16:23 PM - System Checkpoint

RP24: 9/1/2010 9:16:20 PM - System Checkpoint

RP25: 9/3/2010 10:55:45 PM - Software Distribution Service 3.0

RP26: 9/9/2010 6:28:38 PM - Installed Windows XP KB954708.

RP27: 9/9/2010 6:29:06 PM - Installed DirectX

RP28: 9/12/2010 10:05:27 PM - Software Distribution Service 3.0

RP29: 9/18/2010 10:32:59 PM - Software Distribution Service 3.0

RP30: 9/28/2010 8:55:28 PM - Software Distribution Service 3.0

RP31: 10/2/2010 11:39:41 PM - System Checkpoint

RP32: 10/3/2010 1:07:58 AM - Installed RegTask.

RP33: 10/3/2010 1:14:39 AM - Installed Microsoft Office Word Viewer 2003

RP34: 10/3/2010 1:09:19 PM - Installed Compatibility Pack for the 2007 Office system

RP35: 10/3/2010 10:00:52 PM - Software Distribution Service 3.0

RP36: 10/5/2010 8:52:43 PM - Software Distribution Service 3.0

RP37: 10/8/2010 7:00:06 PM - Software Distribution Service 3.0

RP38: 10/12/2010 9:57:42 PM - Software Distribution Service 3.0

RP39: 10/13/2010 3:48:10 PM - Software Distribution Service 3.0

RP40: 10/16/2010 2:14:17 PM - Software Distribution Service 3.0

RP41: 10/17/2010 4:56:40 PM - System Checkpoint

RP42: 11/2/2010 8:43:08 PM - Instalado iTunes

RP43: 11/4/2010 9:12:33 AM - System Checkpoint

RP44: 11/5/2010 9:36:38 AM - System Checkpoint

RP45: 11/6/2010 8:03:16 PM - System Checkpoint

RP46: 11/15/2010 10:45:16 PM - System Checkpoint

RP47: 1/25/2011 8:27:12 PM - Software Distribution Service 3.0

RP48: 7/14/2011 4:19:17 PM - Software Distribution Service 3.0

RP49: 7/31/2011 2:52:54 PM - Software Distribution Service 3.0

RP50: 7/31/2011 4:53:42 PM - Software Distribution Service 3.0

RP51: 8/17/2011 8:20:25 PM - Software Distribution Service 3.0

RP52: 9/12/2011 6:59:33 PM - Software Distribution Service 3.0

RP53: 9/13/2011 9:12:28 PM - Software Distribution Service 3.0

RP54: 9/14/2011 10:19:07 PM - Software Distribution Service 3.0

RP55: 9/14/2011 11:19:17 PM - Software Distribution Service 3.0

RP56: 9/24/2011 2:48:39 PM - System Checkpoint

.

==== Installed Programs ======================

.

Action Replay DSi Code Manager

Adobe Flash Player 10 ActiveX

Adobe Reader X (10.1.0)

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Battery Meter

Bonjour

CapsLKNotify

Compatibility Pack for the 2007 Office system

Dell Driver Download Manager

Dell Touchpad

Dell Wireless WLAN Card Utility

EMSC

EPSON Printer Software

EPSON Scan

ETDWare PS/2-x86 7.0.4.4 WHQL

Free Window Registry Repair

Function Keys

FYZip 1.00

Galería fotográfica de Windows Live

Google Chrome

Google Toolbar for Internet Explorer

Google Update Helper

Herramienta de carga de Windows Live

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB2158563)

Hotfix for Windows XP (KB915800-v4)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB953955)

Hotfix for Windows XP (KB954434)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB954708)

Hotfix for Windows XP (KB959252)

Hotfix for Windows XP (KB961118)

Hotfix for Windows XP (KB968764)

Hotfix for Windows XP (KB969084)

Hotfix for Windows XP (KB976098-v2)

Hotfix for Windows XP (KB979306)

Hotfix for Windows XP (KB981793)

Integrated Webcam Driver (1.01.01.0116)

Intel® Graphics Media Accelerator Driver

iTunes

Java 6 Update 13

Junk Mail filter update

Malwarebytes' Anti-Malware version 1.51.0.1200

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2416447)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Kernel-Mode Driver Framework Feature Pack 1.7

Microsoft Office Small Business Edition 2003

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Sync Framework Runtime Native v1.0 (x86)

Microsoft Sync Framework Services Native v1.0 (x86)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

MSXML 4.0 SP3 Parser (KB973685)

MSXML 6.0 Parser (KB927977)

QuickTime

Realtek High Definition Audio Driver

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Windows Internet Explorer 8 (KB2183461)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB2378111)

Security Update for Windows Media Player (KB952069)

Security Update for Windows Media Player (KB954155)

Security Update for Windows Media Player (KB968816)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player (KB979402)

Security Update for Windows Search 4 - KB963093

Security Update for Windows XP (KB2079403)

Security Update for Windows XP (KB2115168)

Security Update for Windows XP (KB2121546)

Security Update for Windows XP (KB2160329)

Security Update for Windows XP (KB2229593)

Security Update for Windows XP (KB2259922)

Security Update for Windows XP (KB2279986)

Security Update for Windows XP (KB2286198)

Security Update for Windows XP (KB2296011)

Security Update for Windows XP (KB2347290)

Security Update for Windows XP (KB2360937)

Security Update for Windows XP (KB2387149)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2412687)

Security Update for Windows XP (KB2423089)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2508272)

Security Update for Windows XP (KB2535512)

Security Update for Windows XP (KB2536276)

Security Update for Windows XP (KB2544893)

Security Update for Windows XP (KB923561)

Security Update for Windows XP (KB938464-v2)

Security Update for Windows XP (KB946648)

Security Update for Windows XP (KB950762)

Security Update for Windows XP (KB950974)

Security Update for Windows XP (KB951066)

Security Update for Windows XP (KB951376-v2)

Security Update for Windows XP (KB951748)

Security Update for Windows XP (KB952004)

Security Update for Windows XP (KB952954)

Security Update for Windows XP (KB954459)

Security Update for Windows XP (KB954600)

Security Update for Windows XP (KB955069)

Security Update for Windows XP (KB956572)

Security Update for Windows XP (KB956744)

Security Update for Windows XP (KB956802)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB957097)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB958687)

Security Update for Windows XP (KB958690)

Security Update for Windows XP (KB958869)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961371-v2)

Security Update for Windows XP (KB961373)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB963027)

Security Update for Windows XP (KB968537)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB969897)

Security Update for Windows XP (KB969898)

Security Update for Windows XP (KB969947)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB970430)

Security Update for Windows XP (KB971468)

Security Update for Windows XP (KB971557)

Security Update for Windows XP (KB971633)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB971961)

Security Update for Windows XP (KB972260)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973346)

Security Update for Windows XP (KB973354)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB973904)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975561)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977165)

Security Update for Windows XP (KB977816)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978251)

Security Update for Windows XP (KB978262)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979559)

Security Update for Windows XP (KB979683)

Security Update for Windows XP (KB979687)

Security Update for Windows XP (KB980195)

Security Update for Windows XP (KB980218)

Security Update for Windows XP (KB980232)

Security Update for Windows XP (KB980436)

Security Update for Windows XP (KB981322)

Security Update for Windows XP (KB981349)

Security Update for Windows XP (KB981852)

Security Update for Windows XP (KB981957)

Security Update for Windows XP (KB981997)

Security Update for Windows XP (KB982132)

Security Update for Windows XP (KB982214)

Security Update for Windows XP (KB982665)

Security Update for Windows XP (KB982802)

Segoe UI

Skype Toolbars

Skype™ 4.2

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows Internet Explorer 8 (KB980182)

Update for Windows Internet Explorer 8 (KB980302)

Update for Windows XP (KB2141007)

Update for Windows XP (KB2345886)

Update for Windows XP (KB898461)

Update for Windows XP (KB951618-v2)

Update for Windows XP (KB951978)

Update for Windows XP (KB955759)

Update for Windows XP (KB961503)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB971737)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

Update for Windows XP (KB980182)

WebFldrs XP

Windows Internet Explorer 8

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live ID Sign-in Assistant

Windows Live Mail

Windows Live Messenger

Windows Live Protección Infantil

Windows Live Sync

Windows Live Toolbar

Windows Live Writer

Windows Management Framework Core

Windows Presentation Foundation

Windows Search 4.0

WSED

XML Paper Specification Shared Components Pack 1.0

.

==== Event Viewer Messages From Past Week ========

.

10/6/2011 1:36:05 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)

.

==== End Of File ===========================

Link to post
Share on other sites

  • Root Admin

Well I see a driver that might be from Panda AV but other than that I don't see an Anti-Virus product on here.

Well my suggestion would be to have someone help you scan for malware and clean that up and then from there you can go to the PC Help forum to cleanup the system more if you like.

Here are the steps needed to get your computer cleaned....

Please read the following so that you can begin the cleaning process:

You have 3 Options that you can choose from as listed below:

  • Option 1 —— Free Expert advice in the Malware Removal Forum
  • Option 2 —— Paying customer -- Contact Support via email
  • Option 3 —— Premium, Fee-Based Support

OPTION 1

As we don't deal with malware removal in the
General Malwarebytes' Anti-Malware Forum
, you need to start a topic in the
Malware Removal forum
so a qualified helper can help you fix any malware related problems/infections you may have.

  • Please read and follow the
    directions here
    , skipping any steps you are unable to complete. Then post a
    NEW topic here
    .

  • After posting your new post, make sure under
    options
    , you select
    Track this topic
    and choose
    Immediate Email Notification
    , so that you're alerted when someone has replied to your post.

  • One of the
    expert helpers
    there will give you one-on-one assistance when one becomes available.

  • Please refrain from making any further changes to your computer such as (Install/Uninstall programs, use special fix tools, delete files, edit the registry, etc...) unless advised by a malware removal helper. Doing so can result in system changes which may hinder the attempts by a helper to clean your machine.

NOTE:

Please DO NOT post back to (bump) your topic within the first 48 hours.

Replying to your own posts changes the post count and helpers are looking for topics with zero replies. If you reply to your own post helpers may think that you're already being helped and thus overlook your post.
    • If there is no reply from any experts after 48 hours, you can reply to the topic, asking for help again.

      Or

    • You may send a Private Message to a Moderator asking for assistance.

OPTION 2

Alternatively, as a paying customer, you can contact the help desk at
support@malwarebytes.org
or
here
.

OPTION 3

If you would like to use our Malwarebytes Premium Services, Comprehensive solutions to all your computer support needs—from installation and set-up to troubleshooting and tune-ups go to our
Malwarebytes Premium Services
support site.

Please be patient, someone will assist you as soon as it is possible.

PS: Please use the "ADDREPLY" Add-Reply.png button instead of other ones when you start replying. :)

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.