chickenscratch
Posts: 21 +0
I've got a google redirect problem and sometimes simply typing in a web address will get me redirected.
I've followed the step-by-step malware thread, but I'm not sure if gmer worked correctly. I've got one log from it that looks shorter than what I've seen from others. I also tried to run a scan by clicking scan. It ran, looked liked it finished, and froze up when I thought it had finished and clicked save. I'm going to go ahead and post my logs and if I need to run gmer again, please let me know, because I'm not sure if it ran correctly or not. I will remain online until this is fixed.
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5466
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
1/5/2011 5:21:48 PM
mbam-log-2011-01-05 (17-21-48).txt
Scan type: Quick scan
Objects scanned: 166400
Time elapsed: 13 minute(s), 59 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2011-01-05 18:00:48
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD800BB-75FRA0 rev.77.07W77
Running: t52lt93c.exe; Driver: C:\DOCUME~1\Robert\LOCALS~1\Temp\pxtdrpog.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- EOF - GMER 1.0.15 ----
DDS (Ver_10-12-12.02) - NTFSx86
Run by Robert at 18:03:20.71 on Wed 01/05/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1334 [GMT -6:00]
AV: Microsoft Security Essentials *Enabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
============== Running Processes ===============
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\D-Link\Wireless G WUA-1340\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Robert\My Documents\Downloads\dds.scr
============== Pseudo HJT Report ===============
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [Sonic RecordNow!]
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [MsnMsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IntelMeM] c:\program files\intel\modem event monitor\IntelMEM.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [StorageGuard] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [DVDSentry] c:\windows\system32\DSentry.exe
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [D-Link Wireless G WUA-1340] c:\program files\d-link\wireless g wua-1340\AirGCFG.exe
mRun: [ANIWZCS2Service] c:\program files\ani\aniwzcs2 service\WZCSLDR2.exe
mRun: [MSSE] "c:\program files\microsoft security essentials\msseces.exe" -hide -runkey
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\robert\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\program files\pokerstars\PokerStarsUpdate.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {00000075-0000-0010-8000-00AA00389B71} - hxxp://codecs.microsoft.com/codecs/i386/voxmsdec.CAB
DPF: {01113300-3E00-11D2-8470-0060089874ED}
DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02}
DPF: {17492023-C23A-453E-A040-C7C580BBF700}
DPF: {33564D57-0000-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Notify: igfxcui - igfxdev.dll
SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - No File
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\robert\applic~1\mozilla\firefox\profiles\fwy467tx.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en
FF - prefs.js: keyword.URL - hxxp://gamebox.my-quick-search.com/search.aspx?srch=ku&q=
FF - prefs.js: network.proxy.ftp - 128.31.1.15
FF - prefs.js: network.proxy.ftp_port - 3124
FF - prefs.js: network.proxy.gopher - 128.31.1.15
FF - prefs.js: network.proxy.gopher_port - 3124
FF - prefs.js: network.proxy.http - 128.31.1.15
FF - prefs.js: network.proxy.http_port - 3124
FF - prefs.js: network.proxy.socks - 128.31.1.15
FF - prefs.js: network.proxy.socks_port - 3124
FF - prefs.js: network.proxy.ssl - 128.31.1.15
FF - prefs.js: network.proxy.ssl_port - 3124
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\documents and settings\robert\application data\mozilla\firefox\profiles\fwy467tx.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\documents and settings\robert\application data\mozilla\firefox\profiles\fwy467tx.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp07051001.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npicaN.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npmozax.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npViewpoint_03050024.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\tvuplayer\npTVUAx.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll
FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: TVU Web Player: firefox@tvunetworks.com - %profile%\extensions\firefox@tvunetworks.com
FF - Ext: <?xmlversion=1.0?><RDF xmlns=http://www.w3.org/1999/02/22-rdf-syntax-ns# xmlns:em=http://www.mozilla.org/2004/em-rdf#><Description about=urn:mozilla:install-manifest><em:id>{2a43f346-13de-4aad-adeb-00b61e5bcde3}: {2a43f346-13de-4aad-adeb-00b61e5bcde3} - %profile%\extensions\{2a43f346-13de-4aad-adeb-00b61e5bcde3}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
============= SERVICES / DRIVERS ===============
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 151216]
S1 bswbnhfq;bswbnhfq;\??\c:\windows\system32\drivers\bswbnhfq.sys --> c:\windows\system32\drivers\bswbnhfq.sys [?]
S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2009-12-18 11336]
S3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2010-2-26 14424]
=============== Created Last 30 ================
2011-01-06 00:01:31 6273872 ----a-w- c:\docume~1\alluse~1\applic~1\microsoft\microsoft antimalware\definition updates\{8f4d5760-e51c-4b99-830c-ccfcf47f784b}\mpengine.dll
2011-01-05 00:47:03 50176 ----a-w- c:\windows\system32\proquota.exe
2011-01-05 00:47:03 50176 ----a-w- c:\windows\system32\dllcache\proquota.exe
2011-01-05 00:40:37 -------- d-sha-r- C:\cmdcons
2011-01-05 00:36:38 98816 ----a-w- c:\windows\sed.exe
2011-01-05 00:36:38 89088 ----a-w- c:\windows\MBR.exe
2011-01-05 00:36:38 256512 ----a-w- c:\windows\PEV.exe
2011-01-05 00:36:38 161792 ----a-w- c:\windows\SWREG.exe
2011-01-05 00:36:30 -------- d-----w- C:\ComboFix
2010-12-28 14:18:41 -------- d-----w- c:\program files\common files\Windows Live
2010-12-26 20:42:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2010-12-23 18:42:59 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-23 18:42:49 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-22 18:58:25 -------- d-----w- c:\program files\Penumbra Overture
2010-12-22 18:55:42 -------- d-----w- c:\program files\Aquaria
2010-12-22 18:55:08 -------- d-----w- c:\docume~1\robert\locals~1\applic~1\2DBoy
2010-12-22 18:55:08 -------- d-----w- c:\docume~1\alluse~1\applic~1\2DBoy
2010-12-22 18:54:30 -------- d-----w- c:\program files\WorldOfGoo
2010-12-22 18:54:15 -------- d-----w- c:\program files\Samorost2
2010-12-22 18:00:42 -------- d-----w- c:\program files\gish
2010-12-22 17:56:27 -------- d-----w- c:\program files\lugaru
2010-12-20 20:51:58 -------- d-----w- c:\docume~1\robert\applic~1\Braid
2010-12-19 18:01:39 -------- d-----w- c:\docume~1\alluse~1\applic~1\SSScanAppDataDir
2010-12-15 11:54:08 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-15 11:53:16 45568 ------w- c:\windows\system32\dllcache\wab.exe
2010-12-15 02:46:37 -------- d-----w- c:\documents and settings\robert\Revenge of the Titans 1.71
2010-12-15 02:46:24 -------- d-sh--w- c:\docume~1\robert\locals~1\applic~1\.#
2010-12-15 01:59:42 -------- d-----w- c:\program files\Machinarium
2010-12-15 01:55:31 -------- d-----w- c:\program files\Revenge Of The Titans HIB
2010-12-15 01:54:54 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2010-12-15 01:54:48 81768 ----a-w- c:\windows\system32\xinput1_3.dll
2010-12-15 01:53:58 -------- d-----w- c:\program files\Braid
2010-12-15 01:52:37 -------- d-----w- c:\program files\Data Realms
2010-12-15 01:52:18 -------- d-----w- c:\program files\OpenAL
2010-12-15 01:52:17 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-12-15 01:52:17 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-12-15 01:52:12 -------- d-----w- c:\program files\Osmos
==================== Find3M ====================
2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-13 00:53:06 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-12 22:34:10 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-09 22:38:53 1409 ----a-w- c:\windows\QTFont.for
2010-11-06 00:26:58 916480 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:26:58 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-11-06 00:26:58 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-11-03 12:25:54 385024 ----a-w- c:\windows\system32\html.iec
2010-10-28 13:13:22 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-10-19 20:51:33 222080 ------w- c:\windows\system32\MpSigStub.exe
============= FINISH: 18:06:45.73 ===============
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-12-12.02)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 5/12/2004 8:47:33 AM
System Uptime: 1/5/2011 5:51:45 PM (1 hours ago)
Motherboard: Dell Computer Corp. | | 0K0057
Processor: Intel(R) Pentium(R) 4 CPU 3.06GHz | Microprocessor | 3059/533mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 74 GiB total, 20.154 GiB free.
D: is CDROM ()
E: is FIXED (FAT32) - 466 GiB total, 282.368 GiB free.
F: is Removable
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP1809: 11/26/2010 11:18:33 AM - Software Distribution Service 3.0
RP1810: 11/26/2010 7:45:19 PM - Spybot-S&D Spyware removal
RP1811: 11/27/2010 8:18:32 PM - System Checkpoint
RP1812: 11/28/2010 1:54:53 AM - Software Distribution Service 3.0
RP1813: 11/28/2010 11:17:20 AM - Software Distribution Service 3.0
RP1814: 11/29/2010 11:17:14 AM - Software Distribution Service 3.0
RP1815: 11/30/2010 11:17:16 AM - Software Distribution Service 3.0
RP1816: 12/1/2010 11:17:16 AM - Software Distribution Service 3.0
RP1817: 12/2/2010 11:17:16 AM - Software Distribution Service 3.0
RP1818: 12/3/2010 11:17:02 AM - Software Distribution Service 3.0
RP1819: 12/4/2010 11:16:39 AM - Software Distribution Service 3.0
RP1820: 12/5/2010 1:55:51 AM - Software Distribution Service 3.0
RP1821: 12/5/2010 11:17:37 AM - Software Distribution Service 3.0
RP1822: 12/6/2010 11:17:55 AM - Software Distribution Service 3.0
RP1823: 12/7/2010 11:17:03 AM - Software Distribution Service 3.0
RP1824: 12/8/2010 8:53:36 PM - System Checkpoint
RP1825: 12/9/2010 11:16:53 AM - Software Distribution Service 3.0
RP1826: 12/10/2010 11:17:05 AM - Software Distribution Service 3.0
RP1827: 12/11/2010 11:17:02 AM - Software Distribution Service 3.0
RP1828: 12/12/2010 1:55:39 AM - Software Distribution Service 3.0
RP1829: 12/12/2010 11:17:25 AM - Software Distribution Service 3.0
RP1830: 12/13/2010 11:17:33 AM - Software Distribution Service 3.0
RP1831: 12/14/2010 11:17:18 AM - Software Distribution Service 3.0
RP1832: 12/14/2010 7:54:45 PM - Installed DirectX
RP1833: 12/15/2010 11:19:51 AM - Software Distribution Service 3.0
RP1834: 12/15/2010 8:23:50 PM - Software Distribution Service 3.0
RP1835: 12/16/2010 8:32:31 PM - System Checkpoint
RP1836: 12/16/2010 9:07:54 PM - Software Distribution Service 3.0
RP1837: 12/17/2010 9:46:32 PM - System Checkpoint
RP1838: 12/18/2010 9:08:39 PM - Software Distribution Service 3.0
RP1839: 12/19/2010 1:57:39 AM - Software Distribution Service 3.0
RP1840: 12/19/2010 9:08:18 PM - Software Distribution Service 3.0
RP1841: 12/20/2010 5:40:58 PM - Software Distribution Service 3.0
RP1842: 12/20/2010 9:08:18 PM - Software Distribution Service 3.0
RP1843: 12/21/2010 9:08:00 PM - Software Distribution Service 3.0
RP1844: 12/22/2010 9:07:54 PM - Software Distribution Service 3.0
RP1845: 12/23/2010 9:52:15 PM - System Checkpoint
RP1846: 12/24/2010 12:46:12 PM - Software Distribution Service 3.0
RP1847: 12/25/2010 12:46:44 PM - Software Distribution Service 3.0
RP1848: 12/26/2010 1:58:01 AM - Software Distribution Service 3.0
RP1849: 12/26/2010 12:46:55 PM - Software Distribution Service 3.0
RP1850: 12/27/2010 1:31:12 PM - System Checkpoint
RP1851: 12/28/2010 8:25:00 AM - Software Distribution Service 3.0
RP1852: 12/29/2010 8:19:31 AM - Software Distribution Service 3.0
RP1853: 12/30/2010 8:35:09 AM - System Checkpoint
RP1854: 12/30/2010 11:39:54 PM - Software Distribution Service 3.0
RP1855: 12/31/2010 11:39:35 PM - Software Distribution Service 3.0
RP1856: 1/1/2011 1:52:37 PM - Installed Java(TM) 6 Update 23
RP1857: 1/2/2011 2:03:08 AM - Software Distribution Service 3.0
RP1858: 1/2/2011 4:49:19 PM - Software Distribution Service 3.0
RP1859: 1/3/2011 4:49:21 PM - Software Distribution Service 3.0
RP1860: 1/4/2011 4:49:19 PM - Software Distribution Service 3.0
RP1861: 1/5/2011 5:16:37 PM - Software Distribution Service 3.0
==== Installed Programs ======================
µTorrent
1310
1310_Help
1310Tour
1310Trb
3D Groove Playback Engine
Ad-Aware SE Personal
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Help Center 1.0
Adobe Photoshop Album 2.0 Starter Edition
Adobe Photoshop CS2
Adobe Reader 7.0.5 Language Support
Adobe Reader 7.0.9
Adobe Shockwave Player 11.5
Adobe Stock Photos 1.0
AiO_Scan
AiO_Scan_CDA
AIOMinimal
AiOSoftware
AiOSoftwareNPI
ANIO Service
ANIWZCS2 Service
Aquaria
BACS
Banctec Service Agreement
Best Friends Forever 1.03
Braid (Version 1.015)
Broadcom Advanced Control Suite
BufferChm
C4100
c4100_Help
CCleaner (remove only)
Centra One Install
Citrix XenApp Web Plugin
Civilization III
Copy
CreativeProjects
Critical Update for Windows Media Player 11 (KB959772)
CustomerResearchQFolder
Dell Digital Jukebox Driver
Dell Networking Guide
DellSupport
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DVDSentry
Easy Bridge
eSupportQFolder
Fax
Fax_CDA
Feeding Frenzy
ffdshow [rev 1723] [2007-12-24]
Full Tilt Poker
GdiplusUpgrade
GTK+ 2.6.9 runtime environment
Hamsterball 2.16
Help and Support Customization
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 7.0
HP Image Zone 3.5
HP Imaging Device Functions 7.0
HP Photosmart Essential
HP Photosmart, Officejet and Deskjet 7.0.A
HP PSC & OfficeJet 3.5
HP Software Update
HP Solution Center 7.0
HPPhotoSmartExpress
HPProductAssistant
HPSystemDiagnostics
Insaniquarium Deluxe
InstantShare
InstantShareDevicesMFC
Intel(R) 537EP V9x DF PCI Modem
Intel(R) Extreme Graphics 2 Driver
Internet Explorer Default Page
iTunes
Java Auto Updater
Java(TM) 6 Update 23
K-Lite Codec Pack 4.9.0 (Basic)
Machinarium
Macromedia Extension Manager
Malwarebytes' Anti-Malware
MarketResearch
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Encarta Encyclopedia Standard 2004
Microsoft IntelliPoint 5.0
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Office Standard Edition 2003
Microsoft Security Essentials
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Modem Event Monitor
Modem Helper
Modem On Hold
Mozilla Firefox (3.6.13)
MS Access 97 SP2
MSN Music Assistant
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NewCopy_CDA
NVIDIA Drivers
NVIDIA nView Desktop Manager
OCR Software by I.R.I.S 7.0
Ogg Codecs 0.81.15562
OpenAL
Overland
PanoStandAlone
Pawn
PeerBlock 1.0.0 (r181)
Penumbra Overture
PhotoGallery
Poker Tracker Version 2.04.00
PokerStars
PokerStove version 1.12
PowerDVD
PrintScreen
ProductContextNPI
QFolder
QuickProjects
QuickTime
Readme
Revenge of the Titans HIB (remove only)
Scan
ScannerCopy
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Encoder (KB954156)
Security Update for Windows Media Encoder (KB979332)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Shockwave
Silvestri Q&A Review PN
SimCity 3000 Unlimited
SkinsHP1
SkinsHP2
SolutionCenter
Sonic DLA
Sonic RecordNow!
Sonic Update Manager
Spectrogram 12
Spybot - Search & Destroy
Spybot - Search & Destroy 1.3
Status
System Requirements Lab for Intel
Toolbox
TrayApp
TVersity Codec Pack 1.2
TVUPlayer 2.5.3.1
Ultimate Gin 4.1
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB971930)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Viewpoint Manager (Remove Only)
VLC media player 1.1.0-pre1
WebFldrs XP
WebReg
Winamp
Winamp Detector Plug-in
Windows 7 Upgrade Advisor
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live ID Sign-in Assistant
Windows Live Messenger
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
WinRAR archiver
Wireless G WUA-1340
WordPerfect Office 11
World Series of Poker Deluxe Casion Pak
Worms Armageddon
Worms2
Xenon 2000 - Project PCF
==== Event Viewer Messages From Past Week ========
1/5/2011 7:11:51 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Exploit:Java/CVE-2010-0840.W&threatid=2147641020 User: NT AUTHORITY\SYSTEM Name: Exploit:Java/CVE-2010-0840.W ID: 2147641020 Severity: Severe Category: Exploit Path: Action: Remove Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.95.3234.0, AS: 1.95.3234.0 Engine Version: 1.1.6402.0
1/5/2011 5:25:34 PM, error: atapi [11] - The driver detected a controller error on \Device\Ide\IdePort0.
1/5/2011 5:22:24 PM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The Pml Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The iPodService service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7031] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
1/5/2011 5:00:43 PM, error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
1/5/2011 5:00:42 PM, error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
1/4/2011 6:49:42 PM, error: Dhcp [1002] - The IP address lease 192.168.1.113 for the Network Card with network address 0022B0E0413A has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/4/2011 6:39:55 PM, error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
1/4/2011 3:29:24 AM, error: Dhcp [1002] - The IP address lease 192.168.1.104 for the Network Card with network address 0022B0E0413A has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
1/3/2011 10:30:51 PM, error: Tcpip [4199] - The system detected an address conflict for IP address 192.168.1.104 with the system having network hardware address 00:14:A5:AC:A4:3B. Network operations on this system may be disrupted as a result.
==== End Of File ===========================
I've followed the step-by-step malware thread, but I'm not sure if gmer worked correctly. I've got one log from it that looks shorter than what I've seen from others. I also tried to run a scan by clicking scan. It ran, looked liked it finished, and froze up when I thought it had finished and clicked save. I'm going to go ahead and post my logs and if I need to run gmer again, please let me know, because I'm not sure if it ran correctly or not. I will remain online until this is fixed.
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5466
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
1/5/2011 5:21:48 PM
mbam-log-2011-01-05 (17-21-48).txt
Scan type: Quick scan
Objects scanned: 166400
Time elapsed: 13 minute(s), 59 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2011-01-05 18:00:48
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD800BB-75FRA0 rev.77.07W77
Running: t52lt93c.exe; Driver: C:\DOCUME~1\Robert\LOCALS~1\Temp\pxtdrpog.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- EOF - GMER 1.0.15 ----
DDS (Ver_10-12-12.02) - NTFSx86
Run by Robert at 18:03:20.71 on Wed 01/05/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1334 [GMT -6:00]
AV: Microsoft Security Essentials *Enabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
============== Running Processes ===============
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\D-Link\Wireless G WUA-1340\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Robert\My Documents\Downloads\dds.scr
============== Pseudo HJT Report ===============
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [Sonic RecordNow!]
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [MsnMsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IntelMeM] c:\program files\intel\modem event monitor\IntelMEM.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [StorageGuard] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [DVDSentry] c:\windows\system32\DSentry.exe
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [D-Link Wireless G WUA-1340] c:\program files\d-link\wireless g wua-1340\AirGCFG.exe
mRun: [ANIWZCS2Service] c:\program files\ani\aniwzcs2 service\WZCSLDR2.exe
mRun: [MSSE] "c:\program files\microsoft security essentials\msseces.exe" -hide -runkey
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\robert\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\program files\pokerstars\PokerStarsUpdate.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {00000075-0000-0010-8000-00AA00389B71} - hxxp://codecs.microsoft.com/codecs/i386/voxmsdec.CAB
DPF: {01113300-3E00-11D2-8470-0060089874ED}
DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02}
DPF: {17492023-C23A-453E-A040-C7C580BBF700}
DPF: {33564D57-0000-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Notify: igfxcui - igfxdev.dll
SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - No File
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\robert\applic~1\mozilla\firefox\profiles\fwy467tx.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en
FF - prefs.js: keyword.URL - hxxp://gamebox.my-quick-search.com/search.aspx?srch=ku&q=
FF - prefs.js: network.proxy.ftp - 128.31.1.15
FF - prefs.js: network.proxy.ftp_port - 3124
FF - prefs.js: network.proxy.gopher - 128.31.1.15
FF - prefs.js: network.proxy.gopher_port - 3124
FF - prefs.js: network.proxy.http - 128.31.1.15
FF - prefs.js: network.proxy.http_port - 3124
FF - prefs.js: network.proxy.socks - 128.31.1.15
FF - prefs.js: network.proxy.socks_port - 3124
FF - prefs.js: network.proxy.ssl - 128.31.1.15
FF - prefs.js: network.proxy.ssl_port - 3124
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\documents and settings\robert\application data\mozilla\firefox\profiles\fwy467tx.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\documents and settings\robert\application data\mozilla\firefox\profiles\fwy467tx.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp07051001.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npicaN.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npmozax.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npViewpoint_03050024.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\tvuplayer\npTVUAx.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll
FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: TVU Web Player: firefox@tvunetworks.com - %profile%\extensions\firefox@tvunetworks.com
FF - Ext: <?xmlversion=1.0?><RDF xmlns=http://www.w3.org/1999/02/22-rdf-syntax-ns# xmlns:em=http://www.mozilla.org/2004/em-rdf#><Description about=urn:mozilla:install-manifest><em:id>{2a43f346-13de-4aad-adeb-00b61e5bcde3}: {2a43f346-13de-4aad-adeb-00b61e5bcde3} - %profile%\extensions\{2a43f346-13de-4aad-adeb-00b61e5bcde3}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
============= SERVICES / DRIVERS ===============
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 151216]
S1 bswbnhfq;bswbnhfq;\??\c:\windows\system32\drivers\bswbnhfq.sys --> c:\windows\system32\drivers\bswbnhfq.sys [?]
S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2009-12-18 11336]
S3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2010-2-26 14424]
=============== Created Last 30 ================
2011-01-06 00:01:31 6273872 ----a-w- c:\docume~1\alluse~1\applic~1\microsoft\microsoft antimalware\definition updates\{8f4d5760-e51c-4b99-830c-ccfcf47f784b}\mpengine.dll
2011-01-05 00:47:03 50176 ----a-w- c:\windows\system32\proquota.exe
2011-01-05 00:47:03 50176 ----a-w- c:\windows\system32\dllcache\proquota.exe
2011-01-05 00:40:37 -------- d-sha-r- C:\cmdcons
2011-01-05 00:36:38 98816 ----a-w- c:\windows\sed.exe
2011-01-05 00:36:38 89088 ----a-w- c:\windows\MBR.exe
2011-01-05 00:36:38 256512 ----a-w- c:\windows\PEV.exe
2011-01-05 00:36:38 161792 ----a-w- c:\windows\SWREG.exe
2011-01-05 00:36:30 -------- d-----w- C:\ComboFix
2010-12-28 14:18:41 -------- d-----w- c:\program files\common files\Windows Live
2010-12-26 20:42:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2010-12-23 18:42:59 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-23 18:42:49 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-22 18:58:25 -------- d-----w- c:\program files\Penumbra Overture
2010-12-22 18:55:42 -------- d-----w- c:\program files\Aquaria
2010-12-22 18:55:08 -------- d-----w- c:\docume~1\robert\locals~1\applic~1\2DBoy
2010-12-22 18:55:08 -------- d-----w- c:\docume~1\alluse~1\applic~1\2DBoy
2010-12-22 18:54:30 -------- d-----w- c:\program files\WorldOfGoo
2010-12-22 18:54:15 -------- d-----w- c:\program files\Samorost2
2010-12-22 18:00:42 -------- d-----w- c:\program files\gish
2010-12-22 17:56:27 -------- d-----w- c:\program files\lugaru
2010-12-20 20:51:58 -------- d-----w- c:\docume~1\robert\applic~1\Braid
2010-12-19 18:01:39 -------- d-----w- c:\docume~1\alluse~1\applic~1\SSScanAppDataDir
2010-12-15 11:54:08 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-15 11:53:16 45568 ------w- c:\windows\system32\dllcache\wab.exe
2010-12-15 02:46:37 -------- d-----w- c:\documents and settings\robert\Revenge of the Titans 1.71
2010-12-15 02:46:24 -------- d-sh--w- c:\docume~1\robert\locals~1\applic~1\.#
2010-12-15 01:59:42 -------- d-----w- c:\program files\Machinarium
2010-12-15 01:55:31 -------- d-----w- c:\program files\Revenge Of The Titans HIB
2010-12-15 01:54:54 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2010-12-15 01:54:48 81768 ----a-w- c:\windows\system32\xinput1_3.dll
2010-12-15 01:53:58 -------- d-----w- c:\program files\Braid
2010-12-15 01:52:37 -------- d-----w- c:\program files\Data Realms
2010-12-15 01:52:18 -------- d-----w- c:\program files\OpenAL
2010-12-15 01:52:17 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-12-15 01:52:17 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-12-15 01:52:12 -------- d-----w- c:\program files\Osmos
==================== Find3M ====================
2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-13 00:53:06 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-12 22:34:10 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-09 22:38:53 1409 ----a-w- c:\windows\QTFont.for
2010-11-06 00:26:58 916480 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:26:58 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-11-06 00:26:58 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-11-03 12:25:54 385024 ----a-w- c:\windows\system32\html.iec
2010-10-28 13:13:22 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-10-19 20:51:33 222080 ------w- c:\windows\system32\MpSigStub.exe
============= FINISH: 18:06:45.73 ===============
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-12-12.02)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 5/12/2004 8:47:33 AM
System Uptime: 1/5/2011 5:51:45 PM (1 hours ago)
Motherboard: Dell Computer Corp. | | 0K0057
Processor: Intel(R) Pentium(R) 4 CPU 3.06GHz | Microprocessor | 3059/533mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 74 GiB total, 20.154 GiB free.
D: is CDROM ()
E: is FIXED (FAT32) - 466 GiB total, 282.368 GiB free.
F: is Removable
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP1809: 11/26/2010 11:18:33 AM - Software Distribution Service 3.0
RP1810: 11/26/2010 7:45:19 PM - Spybot-S&D Spyware removal
RP1811: 11/27/2010 8:18:32 PM - System Checkpoint
RP1812: 11/28/2010 1:54:53 AM - Software Distribution Service 3.0
RP1813: 11/28/2010 11:17:20 AM - Software Distribution Service 3.0
RP1814: 11/29/2010 11:17:14 AM - Software Distribution Service 3.0
RP1815: 11/30/2010 11:17:16 AM - Software Distribution Service 3.0
RP1816: 12/1/2010 11:17:16 AM - Software Distribution Service 3.0
RP1817: 12/2/2010 11:17:16 AM - Software Distribution Service 3.0
RP1818: 12/3/2010 11:17:02 AM - Software Distribution Service 3.0
RP1819: 12/4/2010 11:16:39 AM - Software Distribution Service 3.0
RP1820: 12/5/2010 1:55:51 AM - Software Distribution Service 3.0
RP1821: 12/5/2010 11:17:37 AM - Software Distribution Service 3.0
RP1822: 12/6/2010 11:17:55 AM - Software Distribution Service 3.0
RP1823: 12/7/2010 11:17:03 AM - Software Distribution Service 3.0
RP1824: 12/8/2010 8:53:36 PM - System Checkpoint
RP1825: 12/9/2010 11:16:53 AM - Software Distribution Service 3.0
RP1826: 12/10/2010 11:17:05 AM - Software Distribution Service 3.0
RP1827: 12/11/2010 11:17:02 AM - Software Distribution Service 3.0
RP1828: 12/12/2010 1:55:39 AM - Software Distribution Service 3.0
RP1829: 12/12/2010 11:17:25 AM - Software Distribution Service 3.0
RP1830: 12/13/2010 11:17:33 AM - Software Distribution Service 3.0
RP1831: 12/14/2010 11:17:18 AM - Software Distribution Service 3.0
RP1832: 12/14/2010 7:54:45 PM - Installed DirectX
RP1833: 12/15/2010 11:19:51 AM - Software Distribution Service 3.0
RP1834: 12/15/2010 8:23:50 PM - Software Distribution Service 3.0
RP1835: 12/16/2010 8:32:31 PM - System Checkpoint
RP1836: 12/16/2010 9:07:54 PM - Software Distribution Service 3.0
RP1837: 12/17/2010 9:46:32 PM - System Checkpoint
RP1838: 12/18/2010 9:08:39 PM - Software Distribution Service 3.0
RP1839: 12/19/2010 1:57:39 AM - Software Distribution Service 3.0
RP1840: 12/19/2010 9:08:18 PM - Software Distribution Service 3.0
RP1841: 12/20/2010 5:40:58 PM - Software Distribution Service 3.0
RP1842: 12/20/2010 9:08:18 PM - Software Distribution Service 3.0
RP1843: 12/21/2010 9:08:00 PM - Software Distribution Service 3.0
RP1844: 12/22/2010 9:07:54 PM - Software Distribution Service 3.0
RP1845: 12/23/2010 9:52:15 PM - System Checkpoint
RP1846: 12/24/2010 12:46:12 PM - Software Distribution Service 3.0
RP1847: 12/25/2010 12:46:44 PM - Software Distribution Service 3.0
RP1848: 12/26/2010 1:58:01 AM - Software Distribution Service 3.0
RP1849: 12/26/2010 12:46:55 PM - Software Distribution Service 3.0
RP1850: 12/27/2010 1:31:12 PM - System Checkpoint
RP1851: 12/28/2010 8:25:00 AM - Software Distribution Service 3.0
RP1852: 12/29/2010 8:19:31 AM - Software Distribution Service 3.0
RP1853: 12/30/2010 8:35:09 AM - System Checkpoint
RP1854: 12/30/2010 11:39:54 PM - Software Distribution Service 3.0
RP1855: 12/31/2010 11:39:35 PM - Software Distribution Service 3.0
RP1856: 1/1/2011 1:52:37 PM - Installed Java(TM) 6 Update 23
RP1857: 1/2/2011 2:03:08 AM - Software Distribution Service 3.0
RP1858: 1/2/2011 4:49:19 PM - Software Distribution Service 3.0
RP1859: 1/3/2011 4:49:21 PM - Software Distribution Service 3.0
RP1860: 1/4/2011 4:49:19 PM - Software Distribution Service 3.0
RP1861: 1/5/2011 5:16:37 PM - Software Distribution Service 3.0
==== Installed Programs ======================
µTorrent
1310
1310_Help
1310Tour
1310Trb
3D Groove Playback Engine
Ad-Aware SE Personal
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Help Center 1.0
Adobe Photoshop Album 2.0 Starter Edition
Adobe Photoshop CS2
Adobe Reader 7.0.5 Language Support
Adobe Reader 7.0.9
Adobe Shockwave Player 11.5
Adobe Stock Photos 1.0
AiO_Scan
AiO_Scan_CDA
AIOMinimal
AiOSoftware
AiOSoftwareNPI
ANIO Service
ANIWZCS2 Service
Aquaria
BACS
Banctec Service Agreement
Best Friends Forever 1.03
Braid (Version 1.015)
Broadcom Advanced Control Suite
BufferChm
C4100
c4100_Help
CCleaner (remove only)
Centra One Install
Citrix XenApp Web Plugin
Civilization III
Copy
CreativeProjects
Critical Update for Windows Media Player 11 (KB959772)
CustomerResearchQFolder
Dell Digital Jukebox Driver
Dell Networking Guide
DellSupport
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DVDSentry
Easy Bridge
eSupportQFolder
Fax
Fax_CDA
Feeding Frenzy
ffdshow [rev 1723] [2007-12-24]
Full Tilt Poker
GdiplusUpgrade
GTK+ 2.6.9 runtime environment
Hamsterball 2.16
Help and Support Customization
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 7.0
HP Image Zone 3.5
HP Imaging Device Functions 7.0
HP Photosmart Essential
HP Photosmart, Officejet and Deskjet 7.0.A
HP PSC & OfficeJet 3.5
HP Software Update
HP Solution Center 7.0
HPPhotoSmartExpress
HPProductAssistant
HPSystemDiagnostics
Insaniquarium Deluxe
InstantShare
InstantShareDevicesMFC
Intel(R) 537EP V9x DF PCI Modem
Intel(R) Extreme Graphics 2 Driver
Internet Explorer Default Page
iTunes
Java Auto Updater
Java(TM) 6 Update 23
K-Lite Codec Pack 4.9.0 (Basic)
Machinarium
Macromedia Extension Manager
Malwarebytes' Anti-Malware
MarketResearch
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Encarta Encyclopedia Standard 2004
Microsoft IntelliPoint 5.0
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Office Standard Edition 2003
Microsoft Security Essentials
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Modem Event Monitor
Modem Helper
Modem On Hold
Mozilla Firefox (3.6.13)
MS Access 97 SP2
MSN Music Assistant
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NewCopy_CDA
NVIDIA Drivers
NVIDIA nView Desktop Manager
OCR Software by I.R.I.S 7.0
Ogg Codecs 0.81.15562
OpenAL
Overland
PanoStandAlone
Pawn
PeerBlock 1.0.0 (r181)
Penumbra Overture
PhotoGallery
Poker Tracker Version 2.04.00
PokerStars
PokerStove version 1.12
PowerDVD
PrintScreen
ProductContextNPI
QFolder
QuickProjects
QuickTime
Readme
Revenge of the Titans HIB (remove only)
Scan
ScannerCopy
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Encoder (KB954156)
Security Update for Windows Media Encoder (KB979332)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Shockwave
Silvestri Q&A Review PN
SimCity 3000 Unlimited
SkinsHP1
SkinsHP2
SolutionCenter
Sonic DLA
Sonic RecordNow!
Sonic Update Manager
Spectrogram 12
Spybot - Search & Destroy
Spybot - Search & Destroy 1.3
Status
System Requirements Lab for Intel
Toolbox
TrayApp
TVersity Codec Pack 1.2
TVUPlayer 2.5.3.1
Ultimate Gin 4.1
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB971930)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Viewpoint Manager (Remove Only)
VLC media player 1.1.0-pre1
WebFldrs XP
WebReg
Winamp
Winamp Detector Plug-in
Windows 7 Upgrade Advisor
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live ID Sign-in Assistant
Windows Live Messenger
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
WinRAR archiver
Wireless G WUA-1340
WordPerfect Office 11
World Series of Poker Deluxe Casion Pak
Worms Armageddon
Worms2
Xenon 2000 - Project PCF
==== Event Viewer Messages From Past Week ========
1/5/2011 7:11:51 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Exploit:Java/CVE-2010-0840.W&threatid=2147641020 User: NT AUTHORITY\SYSTEM Name: Exploit:Java/CVE-2010-0840.W ID: 2147641020 Severity: Severe Category: Exploit Path: Action: Remove Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.95.3234.0, AS: 1.95.3234.0 Engine Version: 1.1.6402.0
1/5/2011 5:25:34 PM, error: atapi [11] - The driver detected a controller error on \Device\Ide\IdePort0.
1/5/2011 5:22:24 PM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The Pml Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7034] - The iPodService service terminated unexpectedly. It has done this 1 time(s).
1/5/2011 5:00:43 PM, error: Service Control Manager [7031] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
1/5/2011 5:00:43 PM, error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
1/5/2011 5:00:42 PM, error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
1/4/2011 6:49:42 PM, error: Dhcp [1002] - The IP address lease 192.168.1.113 for the Network Card with network address 0022B0E0413A has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/4/2011 6:39:55 PM, error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
1/4/2011 3:29:24 AM, error: Dhcp [1002] - The IP address lease 192.168.1.104 for the Network Card with network address 0022B0E0413A has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
1/3/2011 10:30:51 PM, error: Tcpip [4199] - The system detected an address conflict for IP address 192.168.1.104 with the system having network hardware address 00:14:A5:AC:A4:3B. Network operations on this system may be disrupted as a result.
==== End Of File ===========================