necee99
Posts: 156 +1
This is a dell inspiron 6000. avast showed there were viruses. I have included the logs. by the way, I noticed that the my way search assistant that comes preloaded on the computer was one of the malwares malware bytes found. should I delete this program and how do I do so?
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.16.10
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Hub Cap :: OWNER [administrator]
8/16/2012 12:05:01 PM
mbam-log-2012-08-16 (12-05-01).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 195892
Time elapsed: 15 minute(s), 49 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 4
HKCR\CLSID\{4D25F926-B9FE-4682-BF72-8AB8210D6D75} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D25F926-B9FE-4682-BF72-8AB8210D6D75} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCR\MyWaySearchAssistantDE.Auxiliary (Adware.MyWaySearch) -> Quarantined and deleted successfully.
HKCR\MyWaySearchAssistantDE.Auxiliary.1 (Adware.MyWaySearch) -> Quarantined and deleted successfully.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 2
C:\Program Files\MyWaySA (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWaySA\SrchAsDe (PUP.MyWebSearch) -> Quarantined and deleted successfully.
Files Detected: 0
(No malicious items detected)
(end)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-08-16 12:41:42
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD400VE-75HDT0 rev.09.07D09
Running: 5q932c30.exe; Driver: C:\DOCUME~1\HUBCAP~1\LOCALS~1\Temp\kxtdapow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAA4E4162]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAA4E3FCD]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAA564744]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Hub Cap at 12:46:51 on 2012-08-16
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.247.22 [GMT -5:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
.
============== Pseudo HJT Report ===============
.
uDefault_Page_URL = hxxp://www.dell4me.com/myway
uStart Page = hxxp://home.suddenlink.net/
uSearch Bar = hxxp://mysearch.myway.com/jsp/dellsidebar.jsp?p=DE
uInternet Connection Wizard,ShellNext = hxxp://www.dell4me.com/myway
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [PCMService] "c:\program files\dell\media experience\PCMService.exe"
mRun: [Dell QuickSet] c:\program files\dell\quickset\quickset.exe
mRun: [Dell Wireless Manager UI] c:\windows\system32\WLTRAY
mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe"
mRun: [mmtask] c:\program files\musicmatch\musicmatch jukebox\mmtask.exe
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [QBReminderFlash] "c:\program files\intuit\quickbooks 2005\atom\QBReminder.exe"
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
IE: {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: {15589FA1-C456-11CE-BF01-00AA0055595A} - hxxp://w4s.work4sure.com/c/ge/w4sgeen9.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
TCP: Interfaces\{01FE24F1-18C1-4380-A167-524F9BE98778} : DhcpNameServer = 208.180.42.68 208.180.42.100
Notify: igfxcui - igfxsrvc.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-8-16 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-8-16 353688]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-16 21256]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-16 44808]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-8-16 40776]
.
=============== Created Last 30 ================
.
2012-08-16 17:00:09 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-08-16 16:55:58 -------- d-----w- c:\documents and settings\hub cap\application data\Malwarebytes
2012-08-16 16:55:38 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-08-16 16:55:36 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-16 16:55:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-16 15:46:23 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-16 15:44:46 41224 ----a-w- c:\windows\avastSS.scr
2012-08-16 15:43:59 -------- d-----w- c:\program files\AVAST Software
2012-08-16 15:43:59 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-08-16 15:26:33 -------- d-sh--w- c:\documents and settings\hub cap\PrivacIE
2012-08-16 15:23:10 -------- d-sh--w- c:\documents and settings\hub cap\IETldCache
2012-08-16 15:19:28 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-08-16 15:18:20 6144 ------w- c:\windows\system32\dllcache\iecompat.dll
2012-08-16 15:17:53 -------- d-----w- c:\windows\ie8updates
2012-08-16 15:17:31 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-08-16 15:17:28 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-08-16 15:17:27 629760 ------w- c:\windows\system32\dllcache\msfeeds.dll
2012-08-16 15:17:26 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-08-16 15:17:26 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-08-16 15:17:26 2000384 ------w- c:\windows\system32\dllcache\iertutil.dll
2012-08-16 15:17:26 11111424 ------w- c:\windows\system32\dllcache\ieframe.dll
2012-08-16 15:15:27 -------- dc-h--w- c:\windows\ie8
2012-08-16 14:51:24 -------- d-----w- c:\program files\MSXML 4.0
2012-08-16 14:30:45 272128 ------w- c:\windows\system32\dllcache\bthport.sys
2012-08-16 14:30:11 954368 ------w- c:\windows\system32\dllcache\mfc40.dll
2012-08-16 14:30:10 953856 ------w- c:\windows\system32\dllcache\mfc40u.dll
2012-08-16 14:26:52 456320 ------w- c:\windows\system32\dllcache\mrxsmb.sys
2012-08-16 14:26:25 617472 ------w- c:\windows\system32\dllcache\comctl32.dll
2012-08-16 14:25:52 471552 ------w- c:\windows\system32\dllcache\aclayers.dll
2012-08-16 14:23:04 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2012-08-16 14:23:04 119808 ------w- c:\windows\system32\dllcache\t2embed.dll
2012-08-16 14:23:00 744448 ------w- c:\windows\system32\dllcache\helpsvc.exe
2012-08-16 14:22:50 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2012-08-16 14:14:23 203136 ------w- c:\windows\system32\dllcache\rmcast.sys
2012-08-16 14:13:42 401408 ------w- c:\windows\system32\dllcache\rpcss.dll
2012-08-16 14:13:42 35328 ------w- c:\windows\system32\dllcache\sc.exe
2012-08-16 14:13:42 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2012-08-16 14:13:41 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2012-08-16 14:13:41 110592 ------w- c:\windows\system32\dllcache\services.exe
2012-08-16 14:13:40 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2012-08-16 14:13:39 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-08-16 14:13:37 617472 ------w- c:\windows\system32\dllcache\advapi32.dll
2012-08-16 14:13:10 153088 ------w- c:\windows\system32\dllcache\triedit.dll
2012-08-16 14:13:04 139784 ------w- c:\windows\system32\dllcache\rdpwd.sys
2012-08-16 14:12:14 105472 ------w- c:\windows\system32\dllcache\mup.sys
2012-08-16 14:09:56 536576 ------w- c:\windows\system32\dllcache\msado15.dll
2012-08-16 14:09:49 331776 ------w- c:\windows\system32\dllcache\msadce.dll
2012-08-16 14:09:14 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe
2012-08-16 14:04:18 759296 ----a-w- c:\windows\system32\dllcache\VGX.dll
2012-08-16 14:04:08 718336 ------w- c:\windows\system32\dllcache\ntdll.dll
2012-08-16 14:04:07 2148352 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-08-16 14:04:06 2192640 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-08-16 14:04:06 2026496 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-08-16 14:04:05 2069120 ------w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-08-16 14:03:49 10496 ------w- c:\windows\system32\dllcache\ndistapi.sys
2012-08-16 14:03:43 3072 ------w- c:\windows\system32\iacenc.dll
2012-08-16 14:03:43 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-08-16 14:03:07 45568 ------w- c:\windows\system32\dllcache\wab.exe
2012-08-16 14:03:04 590848 ------w- c:\windows\system32\dllcache\rpcrt4.dll
2012-08-16 14:03:04 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-08-16 13:56:22 218112 ------w- c:\windows\system32\dllcache\wordpad.exe
2012-08-16 13:54:44 -------- d-----w- c:\windows\system32\PreInstall
2012-08-15 22:54:06 -------- d-----w- c:\windows\system32\SoftwareDistribution
2012-08-15 22:43:58 -------- d-----w- c:\windows\system32\scripting
2012-08-15 22:43:58 -------- d-----w- c:\windows\l2schemas
2012-08-15 22:43:57 -------- d-----w- c:\windows\system32\en
2012-08-15 22:43:56 -------- d-----w- c:\windows\system32\bits
2012-08-15 22:40:47 -------- d-----w- c:\windows\ServicePackFiles
2012-08-15 22:37:59 46464 ------w- c:\windows\system32\drivers\gagp30kx.sys
2012-08-15 22:36:44 19569 ----a-w- c:\windows\002463_.tmp
2012-08-15 22:36:29 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2012-08-15 22:32:56 -------- d-----w- c:\windows\EHome
2012-08-15 22:20:21 -------- d-----w- c:\program files\common files\SWF Studio
2012-08-15 21:11:51 -------- d-s---w- c:\documents and settings\hub cap\UserData
2012-08-15 20:13:40 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2012-08-15 20:13:40 12160 ----a-w- c:\windows\system32\dllcache\mouhid.sys
2012-08-15 20:13:31 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
.
==================== Find3M ====================
.
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 13:40:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:49:33 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:49:32 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:49:32 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ------w- c:\windows\system32\html.iec
2012-06-05 15:50:25 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:50:25 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32:08 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 20:19:44 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 20:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 20:19:38 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 20:19:34 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 20:19:30 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
.
============= FINISH: 12:48:11.09 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 8/15/2012 3:09:27 PM
System Uptime: 8/16/2012 11:10:25 AM (1 hours ago)
.
Motherboard: Dell Inc. | | 0W9260
Processor: Intel(R) Celeron(R) M processor 1.40GHz | Microprocessor | 1396/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 34 GiB total, 24.01 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\29BE2501484FC000
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\29BE2501484FC000
Service: NIC1394
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Dell Wireless 1370 WLAN Mini-PCI Card
Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_00051028&REV_02\4&2FA23535&0&18F0
Manufacturer: Broadcom
Name: Dell Wireless 1370 WLAN Mini-PCI Card
PNP Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_00051028&REV_02\4&2FA23535&0&18F0
Service: BCM43XX
.
==== System Restore Points ===================
.
RP1: 8/15/2012 3:09:32 PM - System Checkpoint
RP2: 8/15/2012 5:36:53 PM - Installed Windows XP Service Pack 3.
RP3: 8/16/2012 8:54:13 AM - Software Distribution Service 3.0
RP4: 8/16/2012 9:22:01 AM - Removed EarthLink setup files
RP5: 8/16/2012 9:23:18 AM - Removed Get High Speed Internet!
RP6: 8/16/2012 9:46:11 AM - Removed Norton Security Center
RP7: 8/16/2012 9:49:35 AM - Software Distribution Service 3.0
RP8: 8/16/2012 10:43:59 AM - avast! Free Antivirus Setup
.
==== Installed Programs ======================
.
Adobe Acrobat - Reader 6.0.2 Update
Adobe Reader 6.0.1
ALPS Touch Pad Driver
avast! Free Antivirus
Broadcom Management Programs 2
Conexant D110 MDC V.9x Modem
Dell Driver Reset Tool
Dell Media Experience
Dell Picture Studio v3.0
Dell Support 3.1
Dell System Restore
Dell Wireless WLAN Card
Digital Line Detect
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Intel(R) Graphics Media Accelerator Driver for Mobile
Internal Network Card Power Management
Internet Explorer Default Page
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro Studio, Dell Editon
Java 2 Runtime Environment, SE v1.4.2_03
Learn2 Player (Uninstall Only)
Macromedia Flash Player
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Modem Helper
MSXML 4.0 SP2 (KB954430)
Musicmatch for Windows Media Player
Musicmatch® Jukebox
MyWay Search Assistant
NetWaiting
PowerDVD 5.5
QuickBooks Simple Start Special Edition
QuickSet
QuickTime
RealPlayer Basic
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2722913)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Sonic DLA
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2718704)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973815)
Viewpoint Media Player
WebCyberCoach 3.2 Dell
WebFldrs XP
Windows Internet Explorer 8
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
WordPerfect Office 12
.
==== Event Viewer Messages From Past Week ========
.
8/16/2012 9:23:39 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
8/16/2012 11:57:37 AM, error: Service Control Manager [7000] - The SDDMI2 service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.16.10
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Hub Cap :: OWNER [administrator]
8/16/2012 12:05:01 PM
mbam-log-2012-08-16 (12-05-01).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 195892
Time elapsed: 15 minute(s), 49 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 4
HKCR\CLSID\{4D25F926-B9FE-4682-BF72-8AB8210D6D75} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D25F926-B9FE-4682-BF72-8AB8210D6D75} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCR\MyWaySearchAssistantDE.Auxiliary (Adware.MyWaySearch) -> Quarantined and deleted successfully.
HKCR\MyWaySearchAssistantDE.Auxiliary.1 (Adware.MyWaySearch) -> Quarantined and deleted successfully.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 2
C:\Program Files\MyWaySA (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWaySA\SrchAsDe (PUP.MyWebSearch) -> Quarantined and deleted successfully.
Files Detected: 0
(No malicious items detected)
(end)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-08-16 12:41:42
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD400VE-75HDT0 rev.09.07D09
Running: 5q932c30.exe; Driver: C:\DOCUME~1\HUBCAP~1\LOCALS~1\Temp\kxtdapow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAA4E4162]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAA4E3FCD]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAA564744]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Hub Cap at 12:46:51 on 2012-08-16
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.247.22 [GMT -5:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
.
============== Pseudo HJT Report ===============
.
uDefault_Page_URL = hxxp://www.dell4me.com/myway
uStart Page = hxxp://home.suddenlink.net/
uSearch Bar = hxxp://mysearch.myway.com/jsp/dellsidebar.jsp?p=DE
uInternet Connection Wizard,ShellNext = hxxp://www.dell4me.com/myway
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [PCMService] "c:\program files\dell\media experience\PCMService.exe"
mRun: [Dell QuickSet] c:\program files\dell\quickset\quickset.exe
mRun: [Dell Wireless Manager UI] c:\windows\system32\WLTRAY
mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe"
mRun: [mmtask] c:\program files\musicmatch\musicmatch jukebox\mmtask.exe
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [QBReminderFlash] "c:\program files\intuit\quickbooks 2005\atom\QBReminder.exe"
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
IE: {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: {15589FA1-C456-11CE-BF01-00AA0055595A} - hxxp://w4s.work4sure.com/c/ge/w4sgeen9.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
TCP: Interfaces\{01FE24F1-18C1-4380-A167-524F9BE98778} : DhcpNameServer = 208.180.42.68 208.180.42.100
Notify: igfxcui - igfxsrvc.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-8-16 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-8-16 353688]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-16 21256]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-16 44808]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-8-16 40776]
.
=============== Created Last 30 ================
.
2012-08-16 17:00:09 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-08-16 16:55:58 -------- d-----w- c:\documents and settings\hub cap\application data\Malwarebytes
2012-08-16 16:55:38 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-08-16 16:55:36 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-16 16:55:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-16 15:46:23 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-16 15:44:46 41224 ----a-w- c:\windows\avastSS.scr
2012-08-16 15:43:59 -------- d-----w- c:\program files\AVAST Software
2012-08-16 15:43:59 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-08-16 15:26:33 -------- d-sh--w- c:\documents and settings\hub cap\PrivacIE
2012-08-16 15:23:10 -------- d-sh--w- c:\documents and settings\hub cap\IETldCache
2012-08-16 15:19:28 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-08-16 15:18:20 6144 ------w- c:\windows\system32\dllcache\iecompat.dll
2012-08-16 15:17:53 -------- d-----w- c:\windows\ie8updates
2012-08-16 15:17:31 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-08-16 15:17:28 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-08-16 15:17:27 629760 ------w- c:\windows\system32\dllcache\msfeeds.dll
2012-08-16 15:17:26 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-08-16 15:17:26 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-08-16 15:17:26 2000384 ------w- c:\windows\system32\dllcache\iertutil.dll
2012-08-16 15:17:26 11111424 ------w- c:\windows\system32\dllcache\ieframe.dll
2012-08-16 15:15:27 -------- dc-h--w- c:\windows\ie8
2012-08-16 14:51:24 -------- d-----w- c:\program files\MSXML 4.0
2012-08-16 14:30:45 272128 ------w- c:\windows\system32\dllcache\bthport.sys
2012-08-16 14:30:11 954368 ------w- c:\windows\system32\dllcache\mfc40.dll
2012-08-16 14:30:10 953856 ------w- c:\windows\system32\dllcache\mfc40u.dll
2012-08-16 14:26:52 456320 ------w- c:\windows\system32\dllcache\mrxsmb.sys
2012-08-16 14:26:25 617472 ------w- c:\windows\system32\dllcache\comctl32.dll
2012-08-16 14:25:52 471552 ------w- c:\windows\system32\dllcache\aclayers.dll
2012-08-16 14:23:04 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2012-08-16 14:23:04 119808 ------w- c:\windows\system32\dllcache\t2embed.dll
2012-08-16 14:23:00 744448 ------w- c:\windows\system32\dllcache\helpsvc.exe
2012-08-16 14:22:50 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2012-08-16 14:14:23 203136 ------w- c:\windows\system32\dllcache\rmcast.sys
2012-08-16 14:13:42 401408 ------w- c:\windows\system32\dllcache\rpcss.dll
2012-08-16 14:13:42 35328 ------w- c:\windows\system32\dllcache\sc.exe
2012-08-16 14:13:42 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2012-08-16 14:13:41 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2012-08-16 14:13:41 110592 ------w- c:\windows\system32\dllcache\services.exe
2012-08-16 14:13:40 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2012-08-16 14:13:39 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-08-16 14:13:37 617472 ------w- c:\windows\system32\dllcache\advapi32.dll
2012-08-16 14:13:10 153088 ------w- c:\windows\system32\dllcache\triedit.dll
2012-08-16 14:13:04 139784 ------w- c:\windows\system32\dllcache\rdpwd.sys
2012-08-16 14:12:14 105472 ------w- c:\windows\system32\dllcache\mup.sys
2012-08-16 14:09:56 536576 ------w- c:\windows\system32\dllcache\msado15.dll
2012-08-16 14:09:49 331776 ------w- c:\windows\system32\dllcache\msadce.dll
2012-08-16 14:09:14 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe
2012-08-16 14:04:18 759296 ----a-w- c:\windows\system32\dllcache\VGX.dll
2012-08-16 14:04:08 718336 ------w- c:\windows\system32\dllcache\ntdll.dll
2012-08-16 14:04:07 2148352 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-08-16 14:04:06 2192640 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-08-16 14:04:06 2026496 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-08-16 14:04:05 2069120 ------w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-08-16 14:03:49 10496 ------w- c:\windows\system32\dllcache\ndistapi.sys
2012-08-16 14:03:43 3072 ------w- c:\windows\system32\iacenc.dll
2012-08-16 14:03:43 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-08-16 14:03:07 45568 ------w- c:\windows\system32\dllcache\wab.exe
2012-08-16 14:03:04 590848 ------w- c:\windows\system32\dllcache\rpcrt4.dll
2012-08-16 14:03:04 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-08-16 13:56:22 218112 ------w- c:\windows\system32\dllcache\wordpad.exe
2012-08-16 13:54:44 -------- d-----w- c:\windows\system32\PreInstall
2012-08-15 22:54:06 -------- d-----w- c:\windows\system32\SoftwareDistribution
2012-08-15 22:43:58 -------- d-----w- c:\windows\system32\scripting
2012-08-15 22:43:58 -------- d-----w- c:\windows\l2schemas
2012-08-15 22:43:57 -------- d-----w- c:\windows\system32\en
2012-08-15 22:43:56 -------- d-----w- c:\windows\system32\bits
2012-08-15 22:40:47 -------- d-----w- c:\windows\ServicePackFiles
2012-08-15 22:37:59 46464 ------w- c:\windows\system32\drivers\gagp30kx.sys
2012-08-15 22:36:44 19569 ----a-w- c:\windows\002463_.tmp
2012-08-15 22:36:29 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2012-08-15 22:32:56 -------- d-----w- c:\windows\EHome
2012-08-15 22:20:21 -------- d-----w- c:\program files\common files\SWF Studio
2012-08-15 21:11:51 -------- d-s---w- c:\documents and settings\hub cap\UserData
2012-08-15 20:13:40 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2012-08-15 20:13:40 12160 ----a-w- c:\windows\system32\dllcache\mouhid.sys
2012-08-15 20:13:31 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
.
==================== Find3M ====================
.
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 13:40:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:49:33 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:49:32 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:49:32 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ------w- c:\windows\system32\html.iec
2012-06-05 15:50:25 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:50:25 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32:08 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 20:19:44 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 20:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 20:19:38 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 20:19:34 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 20:19:30 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
.
============= FINISH: 12:48:11.09 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 8/15/2012 3:09:27 PM
System Uptime: 8/16/2012 11:10:25 AM (1 hours ago)
.
Motherboard: Dell Inc. | | 0W9260
Processor: Intel(R) Celeron(R) M processor 1.40GHz | Microprocessor | 1396/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 34 GiB total, 24.01 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\29BE2501484FC000
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\29BE2501484FC000
Service: NIC1394
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Dell Wireless 1370 WLAN Mini-PCI Card
Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_00051028&REV_02\4&2FA23535&0&18F0
Manufacturer: Broadcom
Name: Dell Wireless 1370 WLAN Mini-PCI Card
PNP Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_00051028&REV_02\4&2FA23535&0&18F0
Service: BCM43XX
.
==== System Restore Points ===================
.
RP1: 8/15/2012 3:09:32 PM - System Checkpoint
RP2: 8/15/2012 5:36:53 PM - Installed Windows XP Service Pack 3.
RP3: 8/16/2012 8:54:13 AM - Software Distribution Service 3.0
RP4: 8/16/2012 9:22:01 AM - Removed EarthLink setup files
RP5: 8/16/2012 9:23:18 AM - Removed Get High Speed Internet!
RP6: 8/16/2012 9:46:11 AM - Removed Norton Security Center
RP7: 8/16/2012 9:49:35 AM - Software Distribution Service 3.0
RP8: 8/16/2012 10:43:59 AM - avast! Free Antivirus Setup
.
==== Installed Programs ======================
.
Adobe Acrobat - Reader 6.0.2 Update
Adobe Reader 6.0.1
ALPS Touch Pad Driver
avast! Free Antivirus
Broadcom Management Programs 2
Conexant D110 MDC V.9x Modem
Dell Driver Reset Tool
Dell Media Experience
Dell Picture Studio v3.0
Dell Support 3.1
Dell System Restore
Dell Wireless WLAN Card
Digital Line Detect
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Intel(R) Graphics Media Accelerator Driver for Mobile
Internal Network Card Power Management
Internet Explorer Default Page
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro Studio, Dell Editon
Java 2 Runtime Environment, SE v1.4.2_03
Learn2 Player (Uninstall Only)
Macromedia Flash Player
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Modem Helper
MSXML 4.0 SP2 (KB954430)
Musicmatch for Windows Media Player
Musicmatch® Jukebox
MyWay Search Assistant
NetWaiting
PowerDVD 5.5
QuickBooks Simple Start Special Edition
QuickSet
QuickTime
RealPlayer Basic
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2722913)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Sonic DLA
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2718704)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973815)
Viewpoint Media Player
WebCyberCoach 3.2 Dell
WebFldrs XP
Windows Internet Explorer 8
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
WordPerfect Office 12
.
==== Event Viewer Messages From Past Week ========
.
8/16/2012 9:23:39 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
8/16/2012 11:57:37 AM, error: Service Control Manager [7000] - The SDDMI2 service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================