Inactive [A] Request for help in cleaning computer 1 of 4 emails

Status
Not open for further replies.
A

agnesb

Hello,

Thanks for being there to help out folks like me. I followed the 5 step preliminary removal instructions. I'm sending a total of 4 emails. The Gmer log will be in the following three emails. Below is the log from Malwarebytes and info from DDS.txt and Attach.txt.

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.20.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.13
Celeste Langstaff :: NONSEQUITUR [administrator]

6/25/2012 9:47:34 AM
mbam-log-2012-06-25 (09-47-34).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 294904
Time elapsed: 38 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Documents and Settings\Celeste Langstaff\My Documents\Downloads\SoftonicDownloader_for_task-killer.exe (PUP.ToolbarDownloader) -> Quarantined and deleted successfully.

(end)


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_24
Run by Celeste Langstaff at 16:31:17 on 2012-06-25
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1084 [GMT -7:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\nvsvc32.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Compal Electronics, INC\Smart Watchdog\SWDsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\X-Rite\Devices\Services\xrdd.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Compal\Wireless Select Switch\WLSS.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Compal\Smart Battery\SMBTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\X-Rite\ColorMunki Display\ColorMunkiDisplayTray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Celeste Langstaff\Application Data\Dropbox\bin\Dropbox.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Celeste Langstaff\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Common Files\Corel\Standby\Standby.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/advanced_search?hl=en
uInternet Settings,ProxyOverride = local;*.local
BHO: AutorunsDisabled - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NVMCTRAY.DLL,NvTaskbarInit
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [WLSS] c:\program files\compal\wireless select switch\WLSS.exe
mRun: [SMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe
mRun: [SMBTray] c:\program files\compal\smart battery\SMBTray.exe
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [Standby] "c:\program files\common files\corel\standby\Standby.exe" -START
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
StartupFolder: c:\docume~1\celest~1\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\celeste langstaff\application data\dropbox\bin\Dropbox.exe
StartupFolder: c:\docume~1\celest~1\startm~1\programs\startup\taskmgr.lnk - c:\windows\system32\taskmgr.exe
StartupFolder: c:\docume~1\celest~1\startm~1\programs\startup\autoru~1\screen~1.lnk - c:\windows\FSScrCtl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\colorm~1.lnk - c:\program files\x-rite\colormunki display\ColorMunkiDisplayTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\xrgamma.lnk - c:\program files\x-rite\colormunki display\XRGamma.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\autoru~1\device~1.lnk - c:\program files\olympus vn-960pc recorder\devicedetector\DevDtct2.exe
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\msoffi~1\office12\ONBttnIE.dll
IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\msoffi~1\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Trusted Zone: intuit.com\community
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} - hxxp://picasaweb.google.com/s/v/63.16/uploader2.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1200598978196
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - hxxp://www.superadblocker.com/activex/sabspx.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} - hxxps://secure.logmein.com/activex/ractrl.cab?lmi=100
Handler: intu-help-qb1 - {9B0F96C7-2E4B-433e-ABF3-043BA1B54AE3} - c:\program files\intuit\quickbooks premier 2008\HelpAsyncPluggableProtocol.dll
Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - c:\program files\intuit\quickbooks 2009\HelpAsyncPluggableProtocol.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - c:\windows\system32\mscoree.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: LMIinit - LMIinit.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\celeste langstaff\application data\mozilla\firefox\profiles\0nykkaku.default\
FF - prefs.js: browser.startup.homepage - about:blank|hxxp://www.google.com/advanced_search?hl=en
FF - prefs.js: network.proxy.type - 1
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\celeste langstaff\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\documents and settings\celeste langstaff\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\celeste langstaff\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\celeste langstaff\local settings\application data\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npatgpc.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\tabletplugins\npwacom.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 31952]
R0 EMSC;COMPAL Embedded System Control;c:\windows\system32\drivers\EMSC.sys [2008-1-18 9856]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-6-24 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-6-24 337880]
R1 avfsmn;avfsmn;c:\windows\system32\drivers\avfsmn.sys [2012-6-21 17704]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 235216]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 41040]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-9-7 301248]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-5-28 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-5-28 55024]
R2 asdsrv;Anvi Smart Defender Realtime Guard Service;c:\program files\anvisoft\anvi smart defender\ASDSrv.exe [2012-4-28 644392]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-6-24 20696]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-6-24 44768]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-4-30 5106744]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288]
R2 avhips;AntiMalware Host-based Intrusion Prevention System;c:\windows\system32\drivers\avhips.sys [2012-6-21 23848]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\logmein\x86\LMIGuardianSvc.exe [2010-11-3 374152]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2008-8-11 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-11-7 47640]
R2 Smart Watchdog;Smart Watchdog Service;c:\program files\compal electronics, inc\smart watchdog\SWDsvc.exe [2007-5-14 118784]
R2 TabletServiceWacom;TabletServiceWacom;c:\windows\system32\Wacom_Tablet.exe [2010-7-10 5010288]
R2 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver;c:\windows\system32\drivers\DDCDrv.sys [2011-10-13 10240]
R2 xrdd.exe;X-Rite Device Services Manager;c:\program files\x-rite\devices\services\xrdd.exe [2011-10-11 203088]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232]
R3 CamFilter;CamFilter;c:\windows\system32\drivers\Camfilter.sys [2007-5-11 16640]
R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2010-7-10 16168]
S2 avgcoresvc;LUsbFilt;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-11-18 136176]
S2 pavreport;Pae_avs;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S2 symantecantibotfilter;U81xmdm;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-11-18 136176]
S3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2008-1-17 36608]
S3 LPRB;LPRB;c:\docume~1\celest~1\locals~1\temp\lprb.exe --> c:\docume~1\celest~1\locals~1\temp\LPRB.exe [?]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-5-28 7408]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\drivers\tapoas.sys [2011-8-19 26112]
S3 vsdatant;vsdatant;\??\c:\windows\system32\vsdatant.sys --> c:\windows\system32\vsdatant.sys [?]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]
.
=============== Created Last 30 ================
.
2012-06-25 01:35:03 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-06-25 01:30:32 41184 ----a-w- c:\windows\avastSS.scr
2012-06-25 01:29:04 -------- d-----w- c:\program files\AVAST Software
2012-06-25 01:29:04 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-06-22 00:53:08 -------- d-----w- c:\windows\Task Killer
2012-06-22 00:46:57 -------- d-----w- c:\windows\system32\Task Killer
2012-06-21 17:50:52 -------- d-----w- c:\documents and settings\celeste langstaff\application data\Anvisoft
2012-06-21 17:49:54 23848 ----a-w- c:\windows\system32\drivers\avhips.sys
2012-06-21 17:49:54 17704 ----a-w- c:\windows\system32\drivers\avfsmn.sys
2012-06-21 17:49:24 -------- d-----w- c:\program files\Anvisoft
2012-06-20 21:51:49 -------- d-----w- c:\documents and settings\celeste langstaff\application data\Malwarebytes
2012-06-20 21:51:36 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-06-20 21:51:35 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-20 21:51:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-20 20:50:44 -------- d-----w- c:\program files\Dropbox
2012-06-20 19:58:38 -------- d-----w- c:\program files\uTorrent
2012-06-20 19:55:51 -------- d-----w- c:\documents and settings\celeste langstaff\application data\uTorrent
2012-06-20 19:46:12 -------- d-----w- c:\documents and settings\celeste langstaff\application data\Titanium
2012-06-20 19:34:40 26624 ----a-w- c:\windows\system32\drivers\tap0901.sys
2012-06-20 19:08:23 -------- d-----w- c:\program files\Skype
.
==================== Find3M ====================
.
2012-06-02 22:19:44 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 22:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 22:19:38 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 22:19:34 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 22:19:30 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-15 15:39:54 832512 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:20:33 1863168 ----a-w- c:\windows\system32\win32k.sys
2012-05-04 13:16:13 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32:19 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-23 14:46:47 78336 ----a-w- c:\windows\system32\ieencode.dll
2012-04-23 14:46:47 1830912 ------w- c:\windows\system32\inetcpl.cpl
2012-04-23 14:46:47 17408 ------w- c:\windows\system32\corpol.dll
2012-04-19 11:50:26 24896 ----a-w- c:\windows\system32\drivers\avgidshx.sys
.
============= FINISH: 16:38:08.92 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 6/19/2008 8:31:36 PM
System Uptime: 6/25/2012 4:03:31 PM (0 hours ago)
.
Motherboard: - | | JFL92
Processor: Intel(R) Core(TM)2 Duo CPU T7500 @ 2.20GHz | U2E1 | 2194/mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 93 GiB total, 30.545 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Intel(R) Wireless WiFi Link 4965AGN
Device ID: PCI\VEN_8086&DEV_4229&SUBSYS_11008086&REV_61\4&C308017&0&00E5
Manufacturer: Intel Corporation
Name: Intel(R) Wireless WiFi Link 4965AGN
PNP Device ID: PCI\VEN_8086&DEV_4229&SUBSYS_11008086&REV_61\4&C308017&0&00E5
Service: NETw4x32
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ROOT\NET\0000
Manufacturer:
Name:
PNP Device ID: ROOT\NET\0000
Service:
.
==== System Restore Points ===================
.
RP1: 3/29/2012 3:25:02 PM - System Checkpoint
RP2: 3/31/2012 7:04:00 PM - System Checkpoint
RP3: 4/1/2012 8:53:07 PM - System Checkpoint
RP4: 6/20/2012 2:51:15 PM - Software Distribution Service 3.0
RP5: 6/21/2012 11:08:56 AM - Installed OpenVPN Connect
RP6: 6/22/2012 8:54:01 AM - Removed Private Internet Access Support Files
RP7: 6/24/2012 6:29:04 PM - avast! Free Antivirus Setup
RP8: 6/25/2012 6:48:06 AM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
µTorrent
2007 Microsoft Office system
Activation Assistant for the 2007 Microsoft Office suites
Adobe AIR
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe Community Help
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash Player 10 ActiveX
Adobe Flash Player 11 Plugin
Adobe Fonts All
Adobe Linguistics CS4
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Photoshop CS5
Adobe Reader X (10.1.3)
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Anvi Smart Defender 1.01
AnyDVD
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audacity 1.2.6
avast! Free Antivirus
AVG 2012
AVG PC Tuneup
Bluetooth Stack for Windows by Toshiba
Bonjour
Business Contact Manager for Outlook 2007
CCleaner
CDCheck
CloneCD
CloneDVD2
CloneDVDmobile
CoffeeCup Free Zip Wizard
CoffeeCup HTML Editor
ColorMunki Display 1.0.2
Connect
Contents
Core FTP LE 2.1
Corel VideoStudio Pro X3
CutePDF Writer 2.7
DeviceIO
DivX Web Player
Dropbox
DVD Suite
EMSC
EVEREST Home Edition v2.20
Evrsoft First Page 2006
EZ Vinyl Converter by MixMeister 1.0.6
Facebook Plug-In
Final Draft
Final Draft 7
Foxit PDF Editor
Foxit Reader
Google Chrome
Google Talk Plugin
Google Update Helper
GoToMeeting 4.5.0.457
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB981793)
ICA
Impulse To Travel Screen Saver
Intel(R) PROSet/Wireless Software
IP Monitor
iPhoneModem
IPM_VS_Pro
iTunes
Java Auto Updater
Java(TM) 6 Update 24
KeePass Password Safe 1.11
KTP Ware PS/2-x86 5.0.3.13
kuler
LogMeIn
Magic MP3 Tagger 2.2.6
Malwarebytes Anti-Malware version 1.61.0.1400
mDriver
Media Player Codec Pack 3.9.6
MediaShow 3.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Accounting 2007
Microsoft Office Accounting ADP Payroll Addin
Microsoft Office Accounting Equifax Addin
Microsoft Office Accounting Fixed Asset Manager
Microsoft Office Accounting PayPal Addin
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional 2007
Microsoft Office Professional Hybrid 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Small Business Connectivity Components
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MLE
MobileMe Control Panel
Motorola SM56 Data Fax Modem
Mozilla Firefox 11.0 (x86 en-US)
MRU-Blaster v1.5 (Database 3/28/2004)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
MSXML 6.0 Parser (KB933579)
NVIDIA Drivers
Nvu 1.0PR
Olympus Digital Wave Player
OLYMPUS DSS Player-Lite
PageBreeze Free HTML Editor
PDF Settings CS4
PDF Settings CS5
PhotoNow! 1.0
Photoshop Camera Raw
Power2Go 5.0
PowerBackup 2.5
PowerDVD
PowerProducer
PureHD
QODBC Driver
QuickBooks
QuickBooks Enterprise Solutions: Accountant Edition 7.0
QuickBooks Enterprise Solutions: Accountant Edition 9.0
QuickBooks Premier: Accountant Edition 2006
QuickBooks Premier: Accountant Edition 2008
QuickBooks Premier: Accountant Edition 2009
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.0
RealUpgrade 1.1
Registry Mechanic 7.0
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB2183461)
Security Update for Windows Internet Explorer 7 (KB2360131)
Security Update for Windows Internet Explorer 7 (KB2416400)
Security Update for Windows Internet Explorer 7 (KB2482017)
Security Update for Windows Internet Explorer 7 (KB2497640)
Security Update for Windows Internet Explorer 7 (KB2530548)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB2618444)
Security Update for Windows Internet Explorer 7 (KB2647516)
Security Update for Windows Internet Explorer 7 (KB2699988)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Encoder (KB954156)
Security Update for Windows Media Encoder (KB979332)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB977165-v2)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Setup
Share
Skype™ 4.0
Smart Battery
Smart Watchdog
SmartSound Common Data
SmartSound Quicktracks 5
SpaceMonger 2.1.1
Spybot - Search & Destroy
SpywareBlaster 4.2
Suite Shared Configuration CS4
SUPERAntiSpyware Free Edition
SupportSoft Assisted Service
Task Killer (remove only)
Trojan Remover 6.8.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2616676-v2)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2718704)
Update for Windows XP (KB971029)
USB Video Device
Veoh Web Player
VIO
Visual Studio 2005 Tools for Office Second Edition Runtime
VSClassic
VSPro
Wacom Tablet
WebEx
WebFldrs XP
WebTablet IE Plugin
WebTablet Netscape Plugin
WIDCOMM Bluetooth Software
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin
Windows XP Service Pack 3
WinRAR archiver
Wireless Select Switch
Wow Video&Audio utility
X-Rite Device Services Manager
XRD i1d3
Zinio Reader 4
Zortam Mp3 Media Studio 10.60
.
==== Event Viewer Messages From Past Week ========
.
6/25/2012 11:42:00 AM, error: atapi [9] - The device, \Device\Ide\IdePort2, did not respond within the timeout period.
6/25/2012 11:24:34 AM, error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume C:.
6/24/2012 7:21:45 PM, error: HTTP [15005] - Unable to bind to the underlying transport for 0.0.0.0:2869. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
6/24/2012 6:57:20 PM, error: Service Control Manager [7023] - The Anvi Smart Defender Realtime Guard Service service terminated with the following error: The system cannot find the file specified.
6/21/2012 6:10:57 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
6/21/2012 6:10:57 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
6/21/2012 6:10:43 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: avfsmn Avgldx86 Avgmfx86 ElbyCDIO EMSC Fips intelppm SASDIFSV SASKUTIL Tosrfcom
6/21/2012 6:10:17 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
6/21/2012 6:09:56 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
6/21/2012 6:09:31 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
6/21/2012 4:40:45 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service LogMeIn with arguments "" in order to run the server: {C3ADA61A-4E0E-48D4-A2B1-AE5F76D01044}
6/21/2012 12:54:07 PM, error: Dhcp [1002] - The IP address lease 10.28.3.38 for the Network Card with network address 00FFDC2265C9 has been denied by the DHCP server 10.28.20.33 (The DHCP Server sent a DHCPNACK message).
6/21/2012 12:51:07 PM, error: Dhcp [1002] - The IP address lease 10.21.20.14 for the Network Card with network address 00FFDC2265C9 has been denied by the DHCP server 10.28.3.37 (The DHCP Server sent a DHCPNACK message).
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Zdeviceservice service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Wpsscannersvc service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Webcompserver service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Vwkernel service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The USBMN1X1 service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The U81xmdm service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Tunnelguardservice service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The SymIM service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Swupdtmr service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Sr_watchdog service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The SNPSTD3 service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Sisperf service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Se45mdm service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Rt2500 service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Rismxdp service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The PTDCMdm service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Procmon10 service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Pinnaclesys.mediaserver service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Pinger service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Pae_avs service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The P1131vid service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Omniusb service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Olregcap service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Odclientservice service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Nsctop service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The NPPTNT service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Mwspollserver service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The MSMQ service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Mrpostman service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Mgactrl service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Maplom service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The LUsbFilt service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The LMouFilt service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Kpf4 service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Kavsvc service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Imountsrv service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Ikfileflt service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The IJPLMSVC service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Iirsp service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Ibmpmsvc service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Help and Support service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Govsrv service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Genmcmn service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Fasttraksvc service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Epfw service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The EIO service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Eelsservice service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Dlcc_device service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Defragfs service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The DcCam service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The CXAVXBAR service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Cwafrmiregistry service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The CrystalSysInfo service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Ccsetmgr service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Atitool service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Aracpi service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The Addfiltr service terminated with the following error: The specified module could not be found.
6/21/2012 10:45:19 AM, error: Service Control Manager [7023] - The .netframework service terminated with the following error: The specified module could not be found.
6/21/2012 10:20:22 AM, error: Dhcp [1002] - The IP address lease 10.26.3.10 for the Network Card with network address 00FF1533281F has been denied by the DHCP server 10.26.20.21 (The DHCP Server sent a DHCPNACK message).
6/20/2012 9:51:54 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
6/20/2012 8:13:27 PM, error: BROWSER [8007] - The browser was unable to update the service status bits. The data is the error.
6/20/2012 2:50:02 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.
6/20/2012 2:50:02 PM, error: Service Control Manager [7000] - The IMAPI CD-Burning COM Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
6/20/2012 2:40:34 PM, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
6/20/2012 2:40:32 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
6/20/2012 10:40:08 AM, error: Service Control Manager [7034] - The QBCFMonitorService service terminated unexpectedly. It has done this 1 time(s).
.
==== End Of File ===========================
 
Sorry, only 2 emails. I thought the gmer.log was going to be huge because I clicked on the Scan button. Realized my mistake, closed Gmer then ran it again and did not click the Scan button. Here's what it showed:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-06-25 17:52:21
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e Hitachi_HTS722010K9SA00 rev.DC2OC76A
Running: 6jdct024.exe; Driver: C:\DOCUME~1\CELEST~1\LOCALS~1\Temp\uxriqaoc.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xB6F8F28E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xB6F8F0F9]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB7004D92]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs avgidsfilterx.sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp AswRdr.SYS (avast! TDI Redirect Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp AswRdr.SYS (avast! TDI Redirect Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp AswRdr.SYS (avast! TDI Redirect Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

---- EOF - GMER 1.0.15 ----
 
Welcome aboard
yahooo.gif


Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running tools or applying updates other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

=================================================

1. You're not saying what computer problems are.

2. You're running two AV programs, AVG and Avast.
One of them has to go.
If AVG use AVG Remover: http://www.avg.com/us-en/utilities
 
Status
Not open for further replies.

Similar threads

uber_beetle
Infected with fake ad pop-ups - posting FRST and Addition
Replies
12
Views
825
uber_beetle
uber_beetle
wshknwntlprtmn
  • Locked
Inactive Not sure what's going on here....
Replies
12
Views
2K
Broni
Broni
L
Solved Unknown spyware/ Monitoring/ Hijacking of my devices
Replies
15
Views
3K
Broni
Broni

Latest posts

Back