TechSpot

SweetPacks malware

By Dick107
Jul 18, 2013
  1. Tried treating this initially with AdwCleaner but remnants remain, creating irritating popup ads and accompanying blank tabs (I use Firefox).

    LOG FILES:
    Malwarebytes Anti-Malware 1.75.0.1300
    www.malwarebytes.org

    Database version: v2013.07.17.06

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer
    **** Kutz :: WSKUTZ101 [administrator]

    7/18/2013 12:27:20
    mbam-log-2013-07-18 (12-27-20).txt

    Scan type: Full scan (C:\|E:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 366718
    Time elapsed: 2 hour(s), 36 minute(s), 49 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
    DDS.TXT
    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 8.0.6001.18702
    Run by **** Kutz at 15:52:26 on 2013-07-18
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1790.422 [GMT -6:00]
    .
    AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
    AV: Lavasoft Ad-Aware *Disabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
    FW: Lavasoft Ad-Aware *Disabled*
    .
    ============== Running Processes ================
    .
    C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
    C:\Program Files\USB Safely Remove\USBSRService.exe
    C:\Program Files\Microsoft Security Client\MsMpEng.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
    C:\Program Files\Google\Google Talk\googletalk.exe
    C:\Program Files\Microsoft Security Client\msseces.exe
    C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
    C:\Program Files\DS Clock\DSClock.exe
    C:\PROGRAM FILES\OPENDNS UPDATER\OPENDNSUPDATER.EXE
    C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
    C:\Program Files\KeyScrambler\KeyScrambler.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
    C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
    C:\WINDOWS\system32\agrsmsvc.exe
    C:\Program Files\SecureBackupShare\ComcastSecureBackupSharebackup.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\NLSSRV32.EXE
    C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
    C:\Program Files\Macrium\Reflect\ReflectService.exe
    C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
    C:\Program Files\Spyware Terminator\st_rsser.exe
    C:\PROGRAM FILES\PALM\HOTSYNC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
    C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\PROGRA~1\MICROS~2\rapimgr.exe
    C:\Program Files\Microsoft ActiveSync\wcescomm.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\WINDOWS\System32\alg.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k NetworkService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\WINDOWS\System32\svchost.exe -k HTTPFilter
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com
    uSearch Page = hxxp://www.google.com
    dURLSearchHooks: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - <orphaned>
    BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
    uRun: [FreeRAM XP] "c:\program files\yourware solutions\freeram xp pro\FreeRAM XP Pro.exe" -win
    uRun: [DS Clock] "c:\program files\ds clock\DSClock.exe"
    uRun: [Thunderbird] c:\program files\mozilla thunderbird\thunderbird.exe
    uRun: [OpenDNS Updater] "c:\program files\opendns updater\OPENDNSUPDATER.EXE" /autostart
    uRun: [WinPatrol] c:\program files\billp studios\winpatrol\winpatrol.exe -expressboot
    uRun: [KeyScrambler] c:\program files\keyscrambler\KeyScrambler.exe
    uRun: [Google Update] "c:\documents and settings\**** kutz\local settings\application data\google\update\GoogleUpdate.exe" /c
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
    mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
    mRun: [KeyScrambler] c:\program files\keyscrambler\keyscrambler.exe /a
    dRunOnce: [RunNarrator] Narrator.exe
    StartupFolder: c:\docume~1\dickku~1\startm~1\programs\startup\firefo~1.lnk - c:\program files\mozilla firefox\firefox.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    uPolicies-Explorer: NoDriveAutoRun = dword:67108863
    uPolicies-Explorer: NoDrives = dword:0
    mPolicies-Explorer: NoDriveAutoRun = dword:67108863
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    mPolicies-Explorer: NoDrives = dword:0
    mPolicies-Explorer: NoResolveTrack = dword:1
    mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
    mPolicies-Explorer: NoDriveAutoRun = dword:67108863
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_10-windows-i586.cab
    DPF: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_10-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_10-windows-i586.cab
    TCP: NameServer = 192.168.0.1
    TCP: Interfaces\{C800F8A8-08F8-472D-ADF8-4B12E2F782BA} : NameServer = 208.67.222.222,208.67.220.220
    TCP: Interfaces\{C800F8A8-08F8-472D-ADF8-4B12E2F782BA} : DHCPNameServer = 192.168.0.1
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
    Notify: SDWinLogon - SDWinLogon.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
    SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
    Hosts: 127.0.0.1 www.spywareinfo.com
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\**** kutz\application data\mozilla\firefox\profiles\xdygynhz.default-1367815334353\
    FF - prefs.js: browser.search.defaulturl -
    FF - prefs.js: browser.startup.homepage - hxxps://news.google.com/
    FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
    FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
    FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
    FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
    FF - plugin: c:\documents and settings\**** kutz\application data\move networks\plugins\npqmp071701000002.dll
    FF - plugin: c:\documents and settings\**** kutz\local settings\application data\huludesktop\instances\0.9.14.1\nphdplg.dll
    FF - plugin: c:\progra~1\palm\packag~1\NPInstal.dll
    FF - plugin: c:\program files\common files\wolfram research\browser\8.0.4.2609412\npmathplugin.dll
    FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
    FF - plugin: c:\program files\google\google updater\2.4.1698.5652\npCIDetect13.dll
    FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
    FF - plugin: c:\program files\google\update\1.3.21.153\npGoogleUpdate3.dll
    FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
    FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
    FF - plugin: c:\program files\nos\bin\np_gp.dll
    FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
    FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll
    FF - plugin: c:\program files\virtools\3d life player\npvirtools.dll
    FF - plugin: c:\windows\system32\adobe\director\np32dsw_1202122.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
    FF - ExtSQL: 2013-06-18 11:36; {FCE04E1F-9378-4f39-96F6-5689A9159E45}; c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\firefox\Ext
    FF - ExtSQL: 2013-07-06 00:34; support@infoseekerapp.com; c:\documents and settings\**** kutz\application data\mozilla\firefox\profiles\xdygynhz.default-1367815334353\extensions\support@infoseekerapp.com
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys [2012-11-23 13560]
    R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-3-20 195296]
    R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [2013-6-28 16504]
    R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2013-6-23 14776]
    R1 ComcastSecureBackupShareFilter;ComcastSecureBackupShareFilter;c:\windows\system32\drivers\ComcastSecureBackupShare.sys [2011-1-18 54776]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2010-2-17 12880]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-2-17 67664]
    R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2012-1-16 32768]
    R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2010-7-1 116608]
    R2 Ad-Aware Service;Ad-Aware Service;c:\program files\ad-aware antivirus\AdAwareService.exe [2013-6-13 1236336]
    R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\iobit\advanced systemcare 6\ASCService.exe [2012-10-24 574272]
    R2 ComcastSecureBackupSharebackup;Comcast Secure Backup & Share Backup Service;c:\program files\securebackupshare\ComcastSecureBackupSharebackup.exe [2010-12-14 15592]
    R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2012-3-1 21992]
    R2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [2010-7-9 65856]
    R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-4-16 39056]
    R2 ReflectService.exe;Macrium Reflect Image Mounting Service;c:\program files\macrium\reflect\ReflectService.exe [2013-6-28 249976]
    R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\spybot - search & destroy 2\SDFSSvc.exe [2013-3-26 1103392]
    R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\spybot - search & destroy 2\SDUpdSvc.exe [2013-3-26 1369624]
    R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\spyware terminator\st_rsser.exe [2012-1-16 587472]
    R2 USBSafelyRemoveService;USB Safely Remove Assistant;c:\program files\usb safely remove\USBSRService.exe [2009-10-1 1004888]
    R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [2011-1-3 209016]
    S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
    S1 SBRE;SBRE;\??\c:\windows\system32\drivers\sbredrv.sys --> c:\windows\system32\drivers\SBREdrv.sys [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 SBAMSvc;Ad-Aware;c:\program files\ad-aware antivirus\SBAMSvc.exe [2012-9-20 3677000]
    S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\spybot - search & destroy 2\SDWSCSvc.exe [2013-3-26 168384]
    S3 DfSdkS;Defragmentation-Service;c:\program files\ashampoo\ashampoo winoptimizer 6\DfSdkS.exe [2010-9-8 406016]
    S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2009-9-14 8704]
    S3 EsgScanner;EsgScanner;c:\windows\system32\drivers\EsgScanner.sys [2012-6-22 19984]
    S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2009-9-14 3072]
    S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2010-7-19 259440]
    S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2004-8-4 14336]
    S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-6 34064]
    S3 PROCEXP151;PROCEXP151;\??\c:\windows\system32\drivers\procexp151.sys --> c:\windows\system32\drivers\PROCEXP151.SYS [?]
    S3 PSMounterEx;Macrium Reflect Image Explorer Driver;c:\windows\system32\drivers\psmounterex.sys [2013-6-28 55416]
    S3 PSVolAcc;PSVolAcc;c:\windows\system32\drivers\PSVolAcc.sys [2013-6-28 13432]
    S3 RegFilter;RegFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\RegFilter.sys [2013-7-5 31520]
    S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2010-2-17 12872]
    S3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [2012-4-3 94040]
    S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasusb.sys --> c:\windows\system32\drivers\SynasUSB.sys [?]
    S3 UrlFilter;UrlFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\UrlFilter.sys [2013-7-5 17360]
    S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-4 14336]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-4-18 754856]
    S3 WsAudioDevice_383;WsAudioDevice_383;c:\windows\system32\drivers\WsAudioDevice_383.sys [2009-9-19 16640]
    S4 FileMonitor;FileMonitor;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\FileMonitor.sys [2013-7-5 247968]
    S4 IMFservice;IMF Service;c:\program files\iobit\iobit malware fighter\IMFsrv.exe [2013-7-5 335168]
    S4 pdserv;Bitdefender 60-Second Virus Scanner Service;c:\program files\bitdefender\60-second virus scanner\pdscan.exe \svc --> c:\program files\bitdefender\60-second virus scanner\pdscan.exe \svc [?]
    .
    =============== File Associations ===============
    .
    FileExt: .txt: txtfile="c:\program files\jgsoft\editpadlite\EditPadLite7.exe" "%1"
    ShellExec: Foxit Reader.exe: print="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/p "%1"
    ShellExec: Foxit Reader.exe: printto="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/t "%1" "%2" "%3" "%4"
    .
    =============== Created Last 30 ================
    .
    2013-07-18 16:59:26 7143960 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eefc197f-b545-4e87-a86d-0efa20ff5979}\mpengine.dll
    2013-07-17 07:11:12 -------- d-----w- c:\documents and settings\**** kutz\application data\KeePass
    2013-07-17 00:21:11 -------- d-----w- c:\program files\KeePass Password Safe
    2013-07-16 23:28:56 7143960 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
    2013-07-09 05:20:36 -------- d-----w- c:\documents and settings\all users\application data\HitmanPro
    2013-07-06 22:10:17 -------- d-----w- c:\documents and settings\all users\application data\Key Metric Software
    2013-07-06 22:10:14 -------- d-----w- c:\program files\Key Metric Software
    2013-07-06 22:10:05 -------- d-----w- c:\documents and settings\all users\application data\2003-05.com.keymetricsoft
    2013-07-06 22:08:29 -------- d-----w- c:\documents and settings\**** kutz\application data\Key Metric Software
    2013-07-06 06:35:43 33958 ----a-w- c:\documents and settings\all users\application data\uninstaller.exe
    2013-07-06 06:34:48 -------- d-----w- c:\program files\InfoSeeker
    2013-07-06 06:33:07 632656 ----a-w- c:\windows\system32\msvcr80.dll
    2013-07-06 06:33:07 554832 ----a-w- c:\windows\system32\msvcp80.dll
    2013-07-06 06:33:06 479232 ----a-w- c:\windows\system32\msvcm80.dll
    2013-06-29 19:13:46 -------- d-----w- c:\program files\NirSoft
    2013-06-29 06:00:15 -------- d-----w- c:\program files\Reason
    2013-06-28 16:37:28 13432 ----a-w- c:\windows\system32\drivers\PSVolAcc.sys
    2013-06-28 16:37:27 55416 ----a-w- c:\windows\system32\drivers\psmounterex.sys
    2013-06-28 16:37:27 16504 ----a-w- c:\windows\system32\drivers\pssnap.sys
    2013-06-24 05:17:05 29528 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
    2013-06-24 05:08:06 14776 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
    2013-06-23 18:39:47 -------- d-----w- c:\documents and settings\**** kutz\local settings\application data\adawarebp
    2013-06-21 16:24:23 -------- d-----w- c:\documents and settings\**** kutz\local settings\application data\Program Files
    .
    ==================== Find3M ====================
    .
    2013-07-09 22:42:04 71048 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2013-07-09 22:42:04 692104 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
    2013-06-23 18:31:37 44424 ----a-w- c:\windows\system32\sbbd.exe
    2013-06-23 18:31:37 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys
    2013-06-18 17:32:51 499712 ----a-w- c:\windows\system32\msvcp71.dll
    2013-06-12 00:49:35 9089416 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
    2013-06-08 05:55:44 385024 ----a-w- c:\windows\system32\html.iec
    2013-06-07 21:56:06 920064 ----a-w- c:\windows\system32\wininet.dll
    2013-06-07 21:56:06 43520 ----a-w- c:\windows\system32\licmgr10.dll
    2013-06-07 21:56:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2013-06-04 07:23:02 562688 ----a-w- c:\windows\system32\qedit.dll
    2013-06-04 01:40:45 1876736 ----a-w- c:\windows\system32\win32k.sys
    2013-05-31 14:53:18 209016 -c--a-w- c:\windows\system32\drivers\keyscrambler.sys
    2013-05-22 15:21:06 4325376 ----a-w- c:\documents and settings\all users\application data\ReadOnlyInstaller.msi
    2013-05-16 22:57:21 94112 -c--a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-05-16 22:57:13 144896 -c--a-w- c:\windows\system32\javacpl.cpl
    2013-05-16 22:57:12 866720 -c--a-w- c:\windows\system32\npDeployJava1.dll
    2013-05-16 22:57:11 788896 -c--a-w- c:\windows\system32\deployJava1.dll
    2013-05-15 02:18:18 48730 -c--a-w- c:\documents and settings\all users\application data\1368584229.bdinstall.bin
    2013-05-11 05:58:09 1060864 -c--a-w- c:\windows\system32\mfc71.dll
    2013-05-09 06:28:02 1543680 -c----w- c:\windows\system32\wmvdecod.dll
    2013-05-03 01:26:26 2193536 -c--a-w- c:\windows\system32\ntoskrnl.exe
    2013-05-03 00:38:18 2070144 -c--a-w- c:\windows\system32\ntkrnlpa.exe
    2013-05-02 15:28:50 238872 -c----w- c:\windows\system32\MpSigStub.exe
    2013-05-01 09:59:12 94208 -c--a-w- c:\windows\system32\QuickTimeVR.qtx
    2013-05-01 09:59:12 69632 -c--a-w- c:\windows\system32\QuickTime.qts
    .
    ============= FINISH: 15:53:24.46 ===============
    ATTACH LOG

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume2
    Install Date: 9/9/2009 2:52:55 PM
    System Uptime: 7/18/2013 10:47:10 AM (5 hours ago)
    .
    Motherboard: eMachines | | WMCP61M
    Processor: AMD Athlon(tm) Processor 2650e | Socket AM2 | 1607/201mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 69 GiB total, 38.878 GiB free.
    D: is CDROM ()
    E: is FIXED (NTFS) - 70 GiB total, 56.41 GiB free.
    F: is Removable
    G: is FIXED (NTFS) - 596 GiB total, 409.874 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP1399: 6/27/2013 10:51:12 PM - System Checkpoint
    RP1400: 6/28/2013 10:16:56 AM - Software Distribution Service 3.0
    RP1401: 6/28/2013 11:59:58 PM - Installed Should I Remove It
    RP1402: 6/29/2013 11:06:15 AM - Software Distribution Service 3.0
    RP1403: 6/29/2013 11:39:21 AM - Installed Windows XP KB2808679.
    RP1404: 6/29/2013 1:19:59 PM - Revo Uninstaller's restore point - NirSoft Wireless Network Watcher
    RP1405: 6/30/2013 5:31:49 PM - Software Distribution Service 3.0
    RP1406: 7/1/2013 5:35:06 PM - System Checkpoint
    RP1407: 7/2/2013 9:52:48 AM - Software Distribution Service 3.0
    RP1408: 7/3/2013 11:09:53 AM - Software Distribution Service 3.0
    RP1409: 7/4/2013 11:58:47 AM - Software Distribution Service 3.0
    RP1410: 7/5/2013 12:53:57 PM - Revo Uninstaller's restore point - Coupon Companion
    RP1411: 7/5/2013 12:56:49 PM - Revo Uninstaller's restore point - GetSavin
    RP1412: 7/5/2013 12:59:33 PM - Revo Uninstaller's restore point - FreeOnlineRadioPlayerRecorder Toolbar
    RP1413: 7/5/2013 1:06:51 PM - Revo Uninstaller's restore point - Comodo Dragon
    RP1414: 7/5/2013 1:10:46 PM - Revo Uninstaller's restore point - Norton PC Checkup
    RP1415: 7/5/2013 1:13:23 PM - Revo Uninstaller's restore point - GeekBuddy
    RP1416: 7/5/2013 1:13:46 PM - Removed GeekBuddy.
    RP1417: 7/5/2013 1:21:15 PM - Revo Uninstaller's restore point - Translate.Net
    RP1418: 7/5/2013 1:24:33 PM - Revo Uninstaller's restore point - Scanitto Pro
    RP1419: 7/5/2013 1:26:27 PM - Revo Uninstaller's restore point - Spider Player 2.5.3
    RP1420: 7/6/2013 12:40:54 AM - Revo Uninstaller's restore point - MyPC Backup
    RP1421: 7/6/2013 11:28:19 AM - Revo Uninstaller's restore point - SweetPacks Updater Service
    RP1422: 7/6/2013 11:38:12 AM - Software Distribution Service 3.0
    RP1423: 7/6/2013 4:10:03 PM - Installed FolderSizes 6
    RP1424: 7/6/2013 6:07:09 PM - Revo Uninstaller's restore point - MyPC Backup
    RP1425: 7/7/2013 12:13:02 PM - Software Distribution Service 3.0
    RP1426: 7/7/2013 9:24:59 PM - Removed ASPCA Reminder by We-Care.com v4.1.22.1
    RP1427: 7/8/2013 10:45:46 PM - Software Distribution Service 3.0
    RP1428: 7/9/2013 11:28:21 PM - System Checkpoint
    RP1429: 7/10/2013 12:56:05 AM - Revo Uninstaller's restore point - McAfee Security Scan Plus
    RP1430: 7/10/2013 2:02:54 AM - Software Distribution Service 3.0
    RP1431: 7/10/2013 11:35:39 AM - Software Distribution Service 3.0
    RP1432: 7/11/2013 4:44:18 PM - Software Distribution Service 3.0
    RP1433: 7/12/2013 11:35:25 AM - Revo Uninstaller's restore point - SweetPacks Updater Service
    RP1434: 7/13/2013 6:19:30 AM - Software Distribution Service 3.0
    RP1435: 7/14/2013 9:39:38 AM - Software Distribution Service 3.0
    RP1436: 7/14/2013 8:30:37 PM - Revo Uninstaller's restore point - Internet Explorer Toolbar 4.9 by SweetPacks
    RP1437: 7/14/2013 8:31:19 PM - Removed Internet Explorer Toolbar 4.9 by SweetPacks
    RP1438: 7/14/2013 8:36:58 PM - Revo Uninstaller's restore point - Internet Explorer Toolbar 4.9 by SweetPacks
    RP1439: 7/14/2013 8:37:45 PM - Removed Internet Explorer Toolbar 4.9 by SweetPacks
    RP1440: 7/15/2013 10:19:55 AM - Software Distribution Service 3.0
    RP1441: 7/15/2013 12:00:28 PM - Software Distribution Service 3.0
    RP1442: 7/16/2013 12:11:20 PM - System Checkpoint
    RP1443: 7/16/2013 5:28:04 PM - Software Distribution Service 3.0
    RP1444: 7/17/2013 6:26:48 PM - System Checkpoint
    RP1445: 7/18/2013 10:59:21 AM - Software Distribution Service 3.0
    .
    ==== Installed Programs ======================
    .
    32 Bit HP CIO Components Installer
    3D Text Commander 3.0.1 by Insofta Development
    3DVIA player 5.0.0.20
    7-Zip 4.65
    Ad-Aware Browsing Protection
    Adobe Download Manager
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Photoshop 7.0
    Adobe Shockwave Player 12.0
    Advanced SystemCare 6
    Agere Systems PCI-SV92EX Soft Modem
    Alleycode HTML Editor 2.2.1
    AllMyNotes Organizer
    AllMySongs Database
    AM-DeadLink 4.6
    Amazon Kindle
    Amazon MP3 Downloader 1.0.18
    AnalogX Capture
    Aneesoft 3D Flash Gallery GOTD Edition
    Apple Application Support
    Apple Software Update
    Artensoft Photo Mosaic Wizard
    Ashampoo Burning Studio 2010 Advanced
    Ashampoo MyAutoplay Menu 1.0.3
    Ashampoo Photo Commander 7.21
    Ashampoo WinOptimizer 6.60
    Autoplay Menu Designer 3.4
    Bitdefender 60-Second Virus Scanner
    Booknizer 5.1
    BPD_Scan
    BPDSoftware
    BPDSoftware_Ini
    Canon Camera Access Library
    Canon Camera Support Core Library
    Canon G.726 WMP-Decoder
    Canon MovieEdit Task for ZoomBrowser EX
    Canon RAW Image Task for ZoomBrowser EX
    Canon Utilities CameraWindow
    Canon Utilities CameraWindow DC
    Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX
    Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
    Canon Utilities EOS Utility
    Canon Utilities MyCamera
    Canon Utilities MyCamera DC
    Canon Utilities PhotoStitch
    Canon Utilities RemoteCapture DC
    Canon Utilities RemoteCapture Task for ZoomBrowser EX
    Canon Utilities ZoomBrowser EX
    Canon ZoomBrowser EX Memory Card Utility
    CCFinder
    CCleaner
    Celestia 1.6.0
    CloneSpy 2.62
    CNET TechTracker
    Coupon Printer for Windows
    CPUID CPU-Z 1.65.0
    CutePDF Writer 2.8
    Dell Driver Download Manager
    Ditto
    Dll-Files.com Fixer
    Do It Again
    Documents To Go
    DS Clock
    e-Sword
    EASEUS Partition Master 4.0 Home Edition
    Easy Family Tree Deluxe®
    Easy Macro Recorder 3.75
    EditPad Lite 7.2.2
    ERUNT 1.1j
    ESET Online Scanner v3
    Everything 1.2.1.371
    ExifCleaner 1.2
    F.lux
    FastStone Image Viewer 4.8
    Fax
    FileZilla Client 3.7.0.1
    FolderIco 1.0
    FolderSizes 6
    FontFrenzy 1.51
    Foxit Creator
    Foxit PDF IFilter
    Foxit Reader
    FVD Suite 3.0.2
    gBurner
    GIMP 2.6.8
    Glary Utilities 2.56.0.1822
    Glary Utilities 3 (v3.6.0.125)
    GnuCash 2.2.9
    Google Chrome
    Google Drive
    Google Earth
    Google SketchUp 8
    Google Talk (remove only)
    Google Toolbar for Internet Explorer
    Google Update Helper
    Google Updater
    GoToMeeting 4.5.0.457
    HijackThis 2.0.2
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows XP (KB954550-v5)
    Hulu Desktop
    IBM Lotus Symphony
    Incomedia WebSite X5 Smart
    InfoSeeker
    Inpaint 3.1
    IObit Malware Fighter
    Java 7 Update 21
    Java Auto Updater
    JDs Auto Speed Tester
    jv16 PowerTools 2011
    KeePass Password Safe 1.26
    KeyScrambler
    KLS Mail Backup 2.0.0.0
    Kyodai Mahjongg
    LEGO Digital Designer
    LibreOffice 4.0 Help Pack (English)
    LibreOffice 4.0.4.2
    LightScribe 1.4.136.1
    Livestation
    Ma-Config.com
    Macrium Reflect Standard Edition
    MailAlert
    Malwarebytes Anti-Malware version 1.75.0.1300
    Mathematica Extras 8.0 (2609412)
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB2698023)
    Microsoft .NET Framework 1.1 Security Update (KB2833941)
    Microsoft .NET Framework 1.1 Security Update (KB979906)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Extended
    Microsoft ActiveSync 4.0
    Microsoft Application Error Reporting
    Microsoft Base Smart Card Cryptographic Service Provider Package
    Microsoft Baseline Security Analyzer 2.2
    Microsoft Calculator Plus
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Flight
    Microsoft Games for Windows - LIVE Redistributable
    Microsoft Games for Windows Marketplace
    Microsoft Mathematics
    Microsoft Office Professional
    Microsoft Office Proof (English) 2010
    Microsoft Office Proof (French) 2010
    Microsoft Office Proof (Spanish) 2010
    Microsoft Office Proofing (English) 2010
    Microsoft Office Publisher 2010
    Microsoft Office Publisher MUI (English) 2010
    Microsoft Office Shared MUI (English) 2010
    Microsoft Office Shared Setup Metadata MUI (English) 2010
    Microsoft Office Word Viewer 2003
    Microsoft Security Client
    Microsoft Security Essentials
    Microsoft Silverlight
    Microsoft Software Update for Web Folders (English) 14
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Miro
    Move Media Player
    Mozilla Firefox 22.0 (x86 en-US)
    Mozilla Maintenance Service
    Mozilla Thunderbird 17.0.7 (x86 en-US)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    Music Collection 1.64
    Music Duplicate Remover 6.0
    Network
    novaPDF Pro v5 (novaPDF Professional Desktop 5.5 printer)
    NVIDIA Control Panel 260.99
    NVIDIA Drivers
    NVIDIA Install Application
    NVIDIA nView 135.36
    NVIDIA nView Desktop Manager
    OpenAL
    OpenDNS Updater 2.2.1
    Paint.NET v3.5.6
    Palm Desktop by ACCESS
    Panda USB Vaccine 1.0.1.4
    pdfFactory Pro
    PDFZilla V1.2.7
    Photo Pos Pro
    Phototheca 1.3.0.907
    PhotoWipe 1.0
    Picasa 3
    PicPick
    PocketBible New International Version (NIV)
    PowerISO
    Q-Dir
    QFolder
    Quick PDF Tools 2.1.5.8
    QuickTime
    RealDownloader
    RealNetworks - Microsoft Visual C++ 2008 Runtime
    RealNetworks - Microsoft Visual C++ 2010 Runtime
    RealPlayer
    Realtek High Definition Audio Driver
    RealUpgrade 1.1
    Revo Uninstaller 1.92
    Scan
    Sculptris Alpha 6
    SDFormatter
    Secure Backup and Share
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
    Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
    Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
    Security Update for Windows Internet Explorer 8 (KB2183461)
    Security Update for Windows Internet Explorer 8 (KB2360131)
    Security Update for Windows Internet Explorer 8 (KB2416400)
    Security Update for Windows Internet Explorer 8 (KB2482017)
    Security Update for Windows Internet Explorer 8 (KB2497640)
    Security Update for Windows Internet Explorer 8 (KB2510531)
    Security Update for Windows Internet Explorer 8 (KB2530548)
    Security Update for Windows Internet Explorer 8 (KB2544521)
    Security Update for Windows Internet Explorer 8 (KB2559049)
    Security Update for Windows Internet Explorer 8 (KB2586448)
    Security Update for Windows Internet Explorer 8 (KB2618444)
    Security Update for Windows Internet Explorer 8 (KB2647516)
    Security Update for Windows Internet Explorer 8 (KB2675157)
    Security Update for Windows Internet Explorer 8 (KB2699988)
    Security Update for Windows Internet Explorer 8 (KB2722913)
    Security Update for Windows Internet Explorer 8 (KB2744842)
    Security Update for Windows Internet Explorer 8 (KB2761465)
    Security Update for Windows Internet Explorer 8 (KB2792100)
    Security Update for Windows Internet Explorer 8 (KB2797052)
    Security Update for Windows Internet Explorer 8 (KB2799329)
    Security Update for Windows Internet Explorer 8 (KB2809289)
    Security Update for Windows Internet Explorer 8 (KB2817183)
    Security Update for Windows Internet Explorer 8 (KB2829530)
    Security Update for Windows Internet Explorer 8 (KB2838727)
    Security Update for Windows Internet Explorer 8 (KB2846071)
    Security Update for Windows Internet Explorer 8 (KB2847204)
    Security Update for Windows Internet Explorer 8 (KB969897)
    Security Update for Windows Internet Explorer 8 (KB971961)
    Security Update for Windows Internet Explorer 8 (KB972260)
    Security Update for Windows Internet Explorer 8 (KB974455)
    Security Update for Windows Internet Explorer 8 (KB976325)
    Security Update for Windows Internet Explorer 8 (KB978207)
    Security Update for Windows Internet Explorer 8 (KB981332)
    Security Update for Windows Internet Explorer 8 (KB982381)
    Security Update for Windows Media Player (KB2834904)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows XP (KB2834886)
    Security Update for Windows XP (KB2845187)
    Security Update for Windows XP (KB2850851)
    Security Update for Windows XP (KB923789)
    Security Update for Windows XP (KB972260)
    Seesmic Look
    Serif PagePlus Essentials
    Setup IsoEdit
    Shape Collage
    Should I Remove It
    SIW version 2010.03.11
    SlimCleaner
    Smart Defrag 2
    SoftMaker Office 2010
    SoftOrbits Html Web Gallery Generator 1.2
    Software Informer 1.0 BETA
    Speccy
    Spybot - Search & Destroy
    Spyware Terminator 2012
    Startup Defender 1.9.5
    StartupRun
    Static EMail Backup 2.9
    Stellarium 0.11.2
    SUPERAntiSpyware Free Edition
    swMSM
    System Checkup 3.3
    System Requirements Lab
    TheSage
    Tipard Video Converter 6.1.18
    Titan Backup
    TreeSize Free V2.4
    Tux Paint 0.9.21b
    Tux Paint Stamps 2009-06-28
    Tweak UI
    Unity Web Player (All users)
    UnloadSupport
    Update for Microsoft .NET Framework 3.5 SP1 (KB2836940)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2600217)
    Update for Microsoft .NET Framework 4 Extended (KB2836939)
    Update for Windows Internet Explorer 8 (KB2598845)
    Update for Windows Internet Explorer 8 (KB2632503)
    Update for Windows Internet Explorer 8 (KB973874)
    Update for Windows Internet Explorer 8 (KB975364)
    Update for Windows Internet Explorer 8 (KB976749)
    Update for Windows Internet Explorer 8 (KB980182)
    USB Safely Remove 5.1
    VC 9.0 Runtime
    Video Converter Professional 4.0.0.0
    Visual C++ 2008 x86 Runtime - (v9.0.30729)
    Visual C++ 2008 x86 Runtime - v9.0.30729.01
    VLC media player 2.0.6
    WebFldrs XP
    WinDirStat 1.1.2
    Windows 7 Upgrade Advisor Beta
    Windows Genuine Advantage Notifications (KB905474)
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Internet Explorer 8
    Windows Live ID Sign-in Assistant
    Windows Management Framework Core
    Windows Media Format 11 runtime
    Windows Media Player 11
    Windows Search 4.0
    Windows XP Service Pack 3
    WinKey
    WinPatrol
    WinSnap
    WinUtilities 7.0
    WordWeb
    Xilisoft HD Video Converter 6
    Zoner Photo Studio 12
    .
    ==== Event Viewer Messages From Past Week ========
    .
    7/18/2013 1:10:21 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.155.93.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.9700.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
    7/18/2013 1:04:41 AM, error: Service Control Manager [7034] - The LightScribeService Direct Disc Labeling Service service terminated unexpectedly. It has done this 1 time(s).
    7/17/2013 2:06:24 PM, error: Disk [11] - The driver detected a controller error on \Device\Harddisk3\D.
    7/16/2013 8:55:04 AM, error: Service Control Manager [7022] - The Ad-Aware service hung on starting.
    7/14/2013 9:32:14 AM, error: nvgts [9] - The device, \Device\Scsi\nvgts2, did not respond within the timeout period.
    7/14/2013 9:32:14 AM, error: nvgts [5] - A parity error was detected on \Device\Scsi\nvgts2.
    7/14/2013 9:31:57 AM, error: Service Control Manager [7034] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s).
    7/14/2013 9:30:42 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Comcast Secure Backup & Share Backup Service service to connect.
    7/14/2013 9:30:42 AM, error: Service Control Manager [7000] - The Comcast Secure Backup & Share Backup Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    7/14/2013 4:03:26 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Lbd SBRE
    7/14/2013 4:02:45 PM, error: Service Control Manager [7023] - The HP Network Devices Support service terminated with the following error: The specified module could not be found.
    7/14/2013 4:02:45 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Spybot-S&D 2 Security Center Service service to connect.
    7/14/2013 4:02:45 PM, error: Service Control Manager [7000] - The Spybot-S&D 2 Security Center Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    7/14/2013 4:02:44 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Google Update Service (gupdate) service to connect.
    7/14/2013 4:02:44 PM, error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    7/14/2013 12:45:45 AM, error: Service Control Manager [7034] - The Google Update Service (gupdate) service terminated unexpectedly. It has done this 1 time(s).
    .
    ==== End Of File ===========================
     

    Attached Files:

  2. Broni

    Broni Malware Annihilator Posts: 52,904   +344

    Welcome aboard [​IMG]

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    =================================

    If there are no other issues and Firefox is the only browser affected try resetting Firefox: https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-most-problems
    If you want to backup your bookmarks and passwords use this: http://mozbackup.jasnapaka.com/
    Do NOT backup anything else.
     
  3. Dick107

    Dick107 TS Rookie Topic Starter

    Broni, it appears that only Firefox was affected as operation seemed normal on both IE and Chrome.
    I did a Firefox reset and hopefully that got things back on track.
    (I was happy that I printed out my FF add-ons before the reset as I didn't see them in the 'saved' folder.)

    Thanks (again) for your help. You helped me thru a nasty webpage re-direct problem a few years ago.

    **** Kutz
    Lakewood, CO
     
  4. Broni

    Broni Malware Annihilator Posts: 52,904   +344

    You're very welcome [​IMG]
     

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...