Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 7622
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
12/15/2011 12:45:03 AM
mbam-log-2011-12-15 (00-45-03).txt
Scan type: Quick scan
Objects scanned: 160333
Time elapsed: 9 minute(s), 14 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 5
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8BD4438C-2511-4B93-AD34-2BDCD0FF78D2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BD4438C-2511-4B93-AD34-2BDCD0FF78D2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.exe\shell\open\command\(default) (Hijack.ExeFile) -> Value: (default) -> Quarantined and deleted successfully.
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Jim\application data\avdrn.dat (Malware.Trace) -> Quarantined and deleted successfully.
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 11/12/2007 5:30:09 PM
System Uptime: 12/15/2011 12:47:29 AM (1 hours ago)
.
Motherboard: Dell Computer Corporation | | Dimension 4300
Processor: Intel(R) Pentium(R) 4 CPU 1.60GHz | Microprocessor | 1594/100mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 37 GiB total, 19.9 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
G: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP959: 9/15/2011 8:30:03 AM - Software Distribution Service 3.0
RP960: 9/18/2011 6:20:55 PM - System Checkpoint
RP961: 9/21/2011 9:04:29 AM - System Checkpoint
RP962: 9/23/2011 8:22:16 AM - System Checkpoint
RP963: 9/24/2011 4:35:47 PM - System Checkpoint
RP964: 9/25/2011 8:53:56 PM - System Checkpoint
RP965: 9/27/2011 8:52:44 AM - System Checkpoint
RP966: 9/28/2011 9:21:45 AM - Software Distribution Service 3.0
RP967: 10/1/2011 6:38:01 PM - System Checkpoint
RP968: 10/8/2011 9:54:02 PM - System Checkpoint
RP969: 10/10/2011 11:11:55 AM - System Checkpoint
RP970: 10/12/2011 1:15:59 AM - Software Distribution Service 3.0
RP971: 10/14/2011 10:15:06 AM - System Checkpoint
RP972: 10/15/2011 10:39:49 PM - System Checkpoint
RP973: 10/17/2011 9:40:11 AM - System Checkpoint
RP974: 10/18/2011 10:35:10 AM - System Checkpoint
RP975: 10/24/2011 11:22:57 PM - Installed Windows Internet Explorer 8.
RP976: 10/24/2011 11:25:02 PM - Software Distribution Service 3.0
RP977: 10/25/2011 12:13:31 AM - Software Distribution Service 3.0
RP978: 10/26/2011 12:37:19 AM - System Checkpoint
RP979: 10/29/2011 10:06:56 AM - System Checkpoint
RP980: 10/31/2011 9:47:01 AM - System Checkpoint
RP981: 11/1/2011 10:05:53 AM - System Checkpoint
RP982: 11/2/2011 10:32:42 AM - System Checkpoint
RP983: 11/4/2011 5:44:01 PM - System Checkpoint
RP984: 11/7/2011 12:46:11 PM - System Checkpoint
RP985: 11/8/2011 1:08:28 PM - System Checkpoint
RP986: 11/10/2011 2:01:38 PM - Software Distribution Service 3.0
RP987: 11/11/2011 12:00:23 PM - Software Distribution Service 3.0
RP988: 11/12/2011 6:24:04 PM - System Checkpoint
RP989: 11/13/2011 6:59:49 PM - System Checkpoint
RP990: 11/15/2011 9:11:59 AM - System Checkpoint
RP991: 11/16/2011 10:11:59 AM - System Checkpoint
RP992: 11/19/2011 11:16:13 AM - System Checkpoint
RP993: 11/20/2011 1:00:03 PM - System Checkpoint
RP994: 11/21/2011 8:42:56 PM - System Checkpoint
RP995: 11/22/2011 9:48:01 PM - System Checkpoint
RP996: 11/23/2011 11:14:53 PM - System Checkpoint
RP997: 11/25/2011 8:09:15 AM - System Checkpoint
RP998: 11/26/2011 8:52:49 AM - System Checkpoint
RP999: 11/27/2011 9:49:54 AM - System Checkpoint
RP1000: 11/28/2011 9:58:14 AM - System Checkpoint
RP1001: 11/29/2011 12:31:08 PM - System Checkpoint
RP1002: 11/29/2011 1:54:54 PM - Software Distribution Service 3.0
RP1003: 12/1/2011 12:17:22 PM - System Checkpoint
RP1004: 12/2/2011 12:57:30 PM - System Checkpoint
RP1005: 12/3/2011 5:50:40 PM - System Checkpoint
RP1006: 12/7/2011 12:04:30 PM - System Checkpoint
RP1007: 12/9/2011 10:29:49 AM - System Checkpoint
RP1008: 12/10/2011 11:22:49 AM - System Checkpoint
RP1009: 12/11/2011 11:53:12 AM - System Checkpoint
RP1010: 12/12/2011 8:47:09 AM - Restore Operation
RP1011: 12/12/2011 8:53:04 AM - Restore Operation
RP1012: 12/12/2011 10:30:25 AM - Installed Symantec AntiVirus
RP1013: 12/13/2011 11:19:12 AM - System Checkpoint
RP1014: 12/14/2011 12:33:42 AM - Removed Symantec AntiVirus
RP1015: 12/14/2011 12:47:34 AM - ARO 2011 - Before Installation
RP1016: 12/14/2011 12:48:58 AM - ARO 2011 - FIRST RUN
RP1017: 12/14/2011 1:06:24 AM - ARO 2011 Wed, Dec 14, 11 01:06
.
==== Installed Programs ======================
.
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 10 ActiveX
Adobe Reader 8.1.2
ArcSoft PhotoStudio 5.5
ArcSoft VideoImpression 2
Ask Toolbar
AutoUpdate
AVG 2011
AVG PC Tuneup 2011
AVS DVD Copy version 1.4
Bing Bar
CA eTrust PestPatrol
Copy
CreativeProjects
CreativeProjectsTemplates
CueTour
Destinations
Director
DivX
DocProc
DWGeditor
eDrawings 2007
Google Earth Plug-in
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Diagnostic Assistant
HP Image Zone 4.0
HP Photo Imaging Software
HP Photo Printing Software
hp photosmart 1115 series
hp photosmart printer series (Remove only)
HP Scanjet 4070
HP Software Update
HP Unload DLL Patch
hpg4070
HPSystemDiagnostics
InstallMgr
InstantShare
Java 2 Runtime Environment, SE v1.4.2_04
Java(TM) 6 Update 15
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Malwarebytes' Anti-Malware version 1.51.2.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Default Manager
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works 7.0
MSN Toolbar
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Overland
PhotoGallery
Polaroid Digital Camera
PowerDVD
PrintScreen
QFolder
QuickProjects
RealPlayer
RealUpgrade 1.0
Rhapsody Player Engine
Scan
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB982381)
SkinsHP1
SolidWorks 2007 SP04
SolidWorks Explorer 2007 sp04
SolidWorks Installation Manager
TrayApp
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Veetle TV 0.9.18
Viewpoint Media Player
WebFldrs XP
WebReg
Windows Defender
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
12/15/2011 12:48:32 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
12/14/2011 12:41:08 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Avgtdix Tcpip
12/14/2011 12:41:08 AM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: The system cannot find the file specified.
12/14/2011 12:41:08 AM, error: Service Control Manager [7003] - The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec
12/14/2011 12:41:08 AM, error: Service Control Manager [7003] - The IPSEC Services service depends on the following nonexistent service: IPSec
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/14/2011 12:38:10 AM, error: NetBT [4311] - Initialization failed because the driver device could not be created.
12/14/2011 12:36:17 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
12/14/2011 1:11:33 AM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
.
==== End Of File ===========================
www.malwarebytes.org
Database version: 7622
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
12/15/2011 12:45:03 AM
mbam-log-2011-12-15 (00-45-03).txt
Scan type: Quick scan
Objects scanned: 160333
Time elapsed: 9 minute(s), 14 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 5
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8BD4438C-2511-4B93-AD34-2BDCD0FF78D2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BD4438C-2511-4B93-AD34-2BDCD0FF78D2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{81705D67-3F73-4983-859B-97D0922E5ABE} (Trojan.FakeAlert) -> Value: {81705D67-3F73-4983-859B-97D0922E5ABE} -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.exe\shell\open\command\(default) (Hijack.ExeFile) -> Value: (default) -> Quarantined and deleted successfully.
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Jim\application data\avdrn.dat (Malware.Trace) -> Quarantined and deleted successfully.
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-12-15 00:58:34
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST340016A rev.3.10
Running: cbxgdd1h.exe; Driver: C:\DOCUME~1\Jim\LOCALS~1\Temp\kgddrfob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- EOF - GMER 1.0.15 ----
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 11/12/2007 5:30:09 PM
System Uptime: 12/15/2011 12:47:29 AM (1 hours ago)
.
Motherboard: Dell Computer Corporation | | Dimension 4300
Processor: Intel(R) Pentium(R) 4 CPU 1.60GHz | Microprocessor | 1594/100mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 37 GiB total, 19.9 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
G: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP959: 9/15/2011 8:30:03 AM - Software Distribution Service 3.0
RP960: 9/18/2011 6:20:55 PM - System Checkpoint
RP961: 9/21/2011 9:04:29 AM - System Checkpoint
RP962: 9/23/2011 8:22:16 AM - System Checkpoint
RP963: 9/24/2011 4:35:47 PM - System Checkpoint
RP964: 9/25/2011 8:53:56 PM - System Checkpoint
RP965: 9/27/2011 8:52:44 AM - System Checkpoint
RP966: 9/28/2011 9:21:45 AM - Software Distribution Service 3.0
RP967: 10/1/2011 6:38:01 PM - System Checkpoint
RP968: 10/8/2011 9:54:02 PM - System Checkpoint
RP969: 10/10/2011 11:11:55 AM - System Checkpoint
RP970: 10/12/2011 1:15:59 AM - Software Distribution Service 3.0
RP971: 10/14/2011 10:15:06 AM - System Checkpoint
RP972: 10/15/2011 10:39:49 PM - System Checkpoint
RP973: 10/17/2011 9:40:11 AM - System Checkpoint
RP974: 10/18/2011 10:35:10 AM - System Checkpoint
RP975: 10/24/2011 11:22:57 PM - Installed Windows Internet Explorer 8.
RP976: 10/24/2011 11:25:02 PM - Software Distribution Service 3.0
RP977: 10/25/2011 12:13:31 AM - Software Distribution Service 3.0
RP978: 10/26/2011 12:37:19 AM - System Checkpoint
RP979: 10/29/2011 10:06:56 AM - System Checkpoint
RP980: 10/31/2011 9:47:01 AM - System Checkpoint
RP981: 11/1/2011 10:05:53 AM - System Checkpoint
RP982: 11/2/2011 10:32:42 AM - System Checkpoint
RP983: 11/4/2011 5:44:01 PM - System Checkpoint
RP984: 11/7/2011 12:46:11 PM - System Checkpoint
RP985: 11/8/2011 1:08:28 PM - System Checkpoint
RP986: 11/10/2011 2:01:38 PM - Software Distribution Service 3.0
RP987: 11/11/2011 12:00:23 PM - Software Distribution Service 3.0
RP988: 11/12/2011 6:24:04 PM - System Checkpoint
RP989: 11/13/2011 6:59:49 PM - System Checkpoint
RP990: 11/15/2011 9:11:59 AM - System Checkpoint
RP991: 11/16/2011 10:11:59 AM - System Checkpoint
RP992: 11/19/2011 11:16:13 AM - System Checkpoint
RP993: 11/20/2011 1:00:03 PM - System Checkpoint
RP994: 11/21/2011 8:42:56 PM - System Checkpoint
RP995: 11/22/2011 9:48:01 PM - System Checkpoint
RP996: 11/23/2011 11:14:53 PM - System Checkpoint
RP997: 11/25/2011 8:09:15 AM - System Checkpoint
RP998: 11/26/2011 8:52:49 AM - System Checkpoint
RP999: 11/27/2011 9:49:54 AM - System Checkpoint
RP1000: 11/28/2011 9:58:14 AM - System Checkpoint
RP1001: 11/29/2011 12:31:08 PM - System Checkpoint
RP1002: 11/29/2011 1:54:54 PM - Software Distribution Service 3.0
RP1003: 12/1/2011 12:17:22 PM - System Checkpoint
RP1004: 12/2/2011 12:57:30 PM - System Checkpoint
RP1005: 12/3/2011 5:50:40 PM - System Checkpoint
RP1006: 12/7/2011 12:04:30 PM - System Checkpoint
RP1007: 12/9/2011 10:29:49 AM - System Checkpoint
RP1008: 12/10/2011 11:22:49 AM - System Checkpoint
RP1009: 12/11/2011 11:53:12 AM - System Checkpoint
RP1010: 12/12/2011 8:47:09 AM - Restore Operation
RP1011: 12/12/2011 8:53:04 AM - Restore Operation
RP1012: 12/12/2011 10:30:25 AM - Installed Symantec AntiVirus
RP1013: 12/13/2011 11:19:12 AM - System Checkpoint
RP1014: 12/14/2011 12:33:42 AM - Removed Symantec AntiVirus
RP1015: 12/14/2011 12:47:34 AM - ARO 2011 - Before Installation
RP1016: 12/14/2011 12:48:58 AM - ARO 2011 - FIRST RUN
RP1017: 12/14/2011 1:06:24 AM - ARO 2011 Wed, Dec 14, 11 01:06
.
==== Installed Programs ======================
.
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 10 ActiveX
Adobe Reader 8.1.2
ArcSoft PhotoStudio 5.5
ArcSoft VideoImpression 2
Ask Toolbar
AutoUpdate
AVG 2011
AVG PC Tuneup 2011
AVS DVD Copy version 1.4
Bing Bar
CA eTrust PestPatrol
Copy
CreativeProjects
CreativeProjectsTemplates
CueTour
Destinations
Director
DivX
DocProc
DWGeditor
eDrawings 2007
Google Earth Plug-in
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Diagnostic Assistant
HP Image Zone 4.0
HP Photo Imaging Software
HP Photo Printing Software
hp photosmart 1115 series
hp photosmart printer series (Remove only)
HP Scanjet 4070
HP Software Update
HP Unload DLL Patch
hpg4070
HPSystemDiagnostics
InstallMgr
InstantShare
Java 2 Runtime Environment, SE v1.4.2_04
Java(TM) 6 Update 15
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Malwarebytes' Anti-Malware version 1.51.2.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Default Manager
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works 7.0
MSN Toolbar
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Overland
PhotoGallery
Polaroid Digital Camera
PowerDVD
PrintScreen
QFolder
QuickProjects
RealPlayer
RealUpgrade 1.0
Rhapsody Player Engine
Scan
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB982381)
SkinsHP1
SolidWorks 2007 SP04
SolidWorks Explorer 2007 sp04
SolidWorks Installation Manager
TrayApp
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Veetle TV 0.9.18
Viewpoint Media Player
WebFldrs XP
WebReg
Windows Defender
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
12/15/2011 12:48:32 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
12/14/2011 12:41:08 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Avgtdix Tcpip
12/14/2011 12:41:08 AM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: The system cannot find the file specified.
12/14/2011 12:41:08 AM, error: Service Control Manager [7003] - The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec
12/14/2011 12:41:08 AM, error: Service Control Manager [7003] - The IPSEC Services service depends on the following nonexistent service: IPSec
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/14/2011 12:41:08 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/14/2011 12:38:10 AM, error: NetBT [4311] - Initialization failed because the driver device could not be created.
12/14/2011 12:36:17 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
12/14/2011 1:11:33 AM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
.
==== End Of File ===========================