My computer has been experiencing many bsod's for about a week or so now so I decided to take a look into it. I have been looking into my processes and heres what I found
The file smss.exe was found in two places of my computer C:\WINDOWS\system32 and also in C:\WINDOWS\ServicePackFiles\i386
The file alg.exe also had the same problem as it was in both folders not sure if this is potentially dangerous or not.
At the moment I have 2 rundll32.exe's running and Im pretty sure that it is always running.
Here are some logs that I have got from recent scans that Ive done according to a different thread that had been closed like 5 years ago
This one is from the software DDS
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_26
Run by Don at 20:13:33 on 2011-08-08
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3327.2340 [GMT -5:00]
.
AV: Sunbelt VIPRE *Enabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Razer\Abyssus\razerhid.exe
C:\Program Files\Steam\steam.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Update\1.3.21.65\GoogleCrashHandler.exe
svchost.exe
C:\Program Files\GameTracker\GSInGameService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sunbelt Software\VIPRE\SBPIMSvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Razer\Abyssus\razerofa.exe
C:\Program Files\Razer\Abyssus\vdDaemon.exe
C:\Program Files\Steam\GameOverlayUI.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Sunbelt Software\VIPRE\sbamui.exe
C:\Program Files\Sunbelt Software\VIPRE\SBAMSvc.exe
C:\Program Files\Sunbelt Software\VIPRE\SBAMTray.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: H - No File
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [Steam] "c:\program files\steam\steam.exe" -silent
uRun: [Google Update] "c:\documents and settings\don\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [GameTracker] c:\program files\gametracker\GTLite.exe
uRun: [DriverFinder] c:\program files\driverfinder\DriverFinder.exe
mRun: [HDAudDeck] c:\program files\via\viaudioi\hdadeck\HDeck.exe 1
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [snpstd] c:\windows\vsnpstd.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Abyssus] c:\program files\razer\abyssus\razerhid.exe
mRun: [SBAMTray] "c:\program files\sunbelt software\vipre\SBAMTray.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
dRunOnce: [RunNarrator] Narrator.exe
StartupFolder: c:\documents and settings\don\start menu\programs\startup\CurseClientStartup.ccip
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 172.16.0.1
TCP: Interfaces\{CA5F1DAE-DF8A-405E-A675-61DCA5D86BBA} : DhcpNameServer = 172.16.0.1
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\don\application data\mozilla\firefox\profiles\0qjk72t9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2680363&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - RuneScape Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2680363&SearchSource=2&q=
FF - plugin: c:\documents and settings\don\local settings\application data\google\update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============
.
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [2011-8-7 21592]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [2011-4-29 101720]
R1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [2011-8-7 212568]
R2 GS In-Game Service;GS In-Game Service;c:\program files\gametracker\GSInGameService.exe [2011-4-29 1677096]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-8-8 366640]
R2 SBAMSvc;VIPRE Antivirus;c:\program files\sunbelt software\vipre\SBAMSvc.exe [2011-7-15 2804280]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [2011-8-7 74200]
R2 SBPIMSvc;SB Recovery Service;c:\program files\sunbelt software\vipre\SBPIMSvc.exe [2011-7-15 181584]
R3 Abyssus03;Razer Abyssus USB Filter Driver;c:\windows\system32\drivers\Abyssus.sys [2011-7-14 9216]
R3 hidkmdf;Filter Driver Service for HID-KMDF Interface layer;c:\windows\system32\drivers\hidkmdf.sys [2011-7-14 6656]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-8-8 22712]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-3-25 845184]
R3 VKbms;Virtual HID Minidriver;c:\windows\system32\drivers\VKbms.sys [2011-7-14 10240]
S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2011-3-25 22784]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-8-8 41272]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
.
=============== Created Last 30 ================
.
2011-08-09 00:54:28 -------- d-----w- c:\documents and settings\don\application data\Malwarebytes
2011-08-09 00:54:22 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-09 00:54:22 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-08-09 00:54:19 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-09 00:54:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-09 00:44:26 -------- d-----w- c:\documents and settings\don\application data\DriverFinder
2011-08-08 03:54:39 74200 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2011-08-08 03:54:38 21592 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2011-08-08 03:51:03 -------- d-----w- c:\documents and settings\all users\application data\Sunbelt
2011-08-08 03:50:56 -------- d-----w- c:\documents and settings\don\application data\Sunbelt
2011-08-08 03:49:45 212568 ----a-w- c:\windows\system32\drivers\sbtis.sys
2011-08-08 03:49:40 -------- d-----w- c:\program files\Sunbelt Software
2011-08-06 19:26:30 -------- d-----w- c:\documents and settings\don\application data\GameTracker
2011-08-06 19:26:08 -------- d-----w- c:\program files\GameTracker
2011-07-15 23:24:08 42832 ----a-w- c:\windows\system32\sbbd.exe
2011-07-14 05:30:31 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-07-14 05:30:10 9216 ----a-w- c:\windows\system32\drivers\Abyssus.sys
2011-07-14 05:30:08 6656 ----a-w- c:\windows\system32\drivers\hidkmdf.sys
2011-07-14 05:30:08 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2011-07-14 05:30:08 10240 ----a-w- c:\windows\system32\drivers\VKbms.sys
2011-07-14 05:30:05 110592 ----a-w- c:\windows\system32\Abyssus.cpl
.
==================== Find3M ====================
.
2011-08-02 02:58:59 140024 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-08-02 02:58:53 280768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-08-02 02:58:53 280768 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-06-22 22:30:35 280768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-06-22 03:28:48 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-06 16:36:00 4005936 ----a-w- c:\windows\system32\GameMon.des
2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 20:14:06.09 ===============
Here is the attach from DDS as well
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 3/25/2011 3:57:25 PM
System Uptime: 8/8/2011 6:17:32 PM (2 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M3A78-CM
Processor: AMD Phenom(tm) 9850 Quad-Core Processor | AM2 | 2511/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 165.08 GiB free.
D: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP68: 5/9/2011 10:33:05 PM - System Checkpoint
RP69: 5/10/2011 10:48:55 PM - Software Distribution Service 3.0
RP70: 5/11/2011 1:25:46 PM - Installed WorldWinner Games
RP71: 5/12/2011 1:48:57 PM - System Checkpoint
RP72: 5/13/2011 1:58:32 PM - System Checkpoint
RP73: 5/14/2011 11:14:41 PM - System Checkpoint
RP74: 5/16/2011 12:25:09 AM - System Checkpoint
RP75: 5/17/2011 12:56:40 AM - System Checkpoint
RP76: 5/18/2011 6:27:22 PM - System Checkpoint
RP77: 5/19/2011 9:13:02 PM - System Checkpoint
RP78: 5/21/2011 9:16:42 PM - System Checkpoint
RP79: 5/22/2011 9:51:19 PM - System Checkpoint
RP80: 5/23/2011 9:52:43 PM - System Checkpoint
RP81: 5/24/2011 11:23:02 PM - System Checkpoint
RP82: 5/26/2011 12:49:05 AM - System Checkpoint
RP83: 5/27/2011 5:48:15 PM - System Checkpoint
RP84: 5/28/2011 11:14:15 AM - Removed Google Earth Plug-in.
RP85: 5/30/2011 3:05:04 PM - System Checkpoint
RP86: 5/31/2011 4:03:46 PM - System Checkpoint
RP87: 6/1/2011 5:23:38 PM - System Checkpoint
RP88: 6/2/2011 10:29:51 PM - System Checkpoint
RP89: 6/4/2011 2:00:43 AM - System Checkpoint
RP90: 6/4/2011 9:19:44 AM - Removed Ventrilo Client
RP91: 6/5/2011 8:30:30 AM - Removed Skype™ 5.3
RP92: 6/6/2011 9:23:14 AM - System Checkpoint
RP93: 6/7/2011 10:01:30 AM - System Checkpoint
RP94: 6/8/2011 10:23:59 AM - System Checkpoint
RP95: 6/10/2011 1:46:00 AM - Installed Oblivion
RP96: 6/10/2011 1:55:58 AM - Installed DirectX 9.0
RP97: 6/10/2011 2:05:58 AM - Removed WorldWinner Games
RP98: 6/10/2011 2:52:51 AM - Removed Skype Toolbars
RP99: 6/10/2011 5:50:58 AM - Installed DirectX
RP100: 6/10/2011 5:51:19 AM - Installed DirectX
RP101: 6/10/2011 5:55:31 AM - Installed DirectX
RP102: 6/10/2011 6:58:10 PM - Software Distribution Service 3.0
RP103: 6/12/2011 5:04:46 AM - System Checkpoint
RP104: 6/13/2011 9:40:08 AM - System Checkpoint
RP105: 6/14/2011 4:14:42 AM - Software Distribution Service 3.0
RP106: 6/15/2011 1:17:11 AM - Installed NVIDIA PhysX
RP107: 6/15/2011 1:17:33 AM - Removed NVIDIA PhysX v8.10.29
RP108: 6/15/2011 1:22:05 AM - Installed Windows KB954550-v5.
RP109: 6/15/2011 1:22:12 AM - Printer Driver Microsoft XPS Document Writer Installed
RP110: 6/15/2011 1:22:23 AM - Printer Driver Microsoft XPS Document Writer Installed
RP111: 6/15/2011 1:24:48 AM - Installed DirectX
RP112: 6/16/2011 2:03:21 AM - System Checkpoint
RP113: 6/17/2011 3:01:36 AM - System Checkpoint
RP114: 6/18/2011 3:43:01 AM - System Checkpoint
RP115: 6/18/2011 11:14:07 AM - Installed Java(TM) 6 Update 26
RP116: 6/19/2011 1:31:23 PM - System Checkpoint
RP117: 6/20/2011 1:42:38 PM - System Checkpoint
RP118: 6/21/2011 2:00:57 PM - System Checkpoint
RP119: 6/22/2011 6:44:34 PM - System Checkpoint
RP120: 6/23/2011 6:25:06 PM - Installed VIPRE Antivirus.
RP121: 6/24/2011 5:48:50 PM - Software Distribution Service 3.0
RP122: 6/25/2011 7:07:57 PM - System Checkpoint
RP123: 6/27/2011 12:15:22 AM - System Checkpoint
RP124: 6/28/2011 12:23:35 AM - System Checkpoint
RP125: 6/28/2011 6:01:21 PM - Software Distribution Service 3.0
RP126: 7/2/2011 3:52:28 AM - System Checkpoint
RP127: 7/3/2011 12:57:19 PM - Installed Ventrilo Client
RP128: 7/4/2011 12:59:55 PM - Removed Skype™ 5.3
RP129: 7/5/2011 1:17:19 PM - System Checkpoint
RP130: 7/6/2011 3:06:40 PM - System Checkpoint
RP131: 7/8/2011 1:40:04 AM - System Checkpoint
RP132: 7/9/2011 12:54:42 AM - Removed VIPRE Antivirus.
RP133: 7/9/2011 1:00:13 AM - Installed VIPRE Antivirus Premium.
RP134: 7/10/2011 6:38:43 PM - System Checkpoint
RP135: 7/11/2011 7:18:02 PM - System Checkpoint
RP136: 7/13/2011 12:09:18 AM - System Checkpoint
RP137: 7/13/2011 2:40:51 AM - Software Distribution Service 3.0
RP138: 7/14/2011 12:21:50 AM - Installed Razer Abyssus 1800.
RP139: 7/14/2011 12:25:58 AM - Removed Razer Abyssus 1800.
RP140: 7/14/2011 12:30:01 AM - Installed Razer Abyssus
RP141: 7/14/2011 12:30:31 AM - Installed Windows XP Wdf01009.
RP142: 7/15/2011 9:25:48 AM - System Checkpoint
RP143: 7/16/2011 4:05:39 PM - System Checkpoint
RP144: 7/17/2011 4:41:35 PM - System Checkpoint
RP145: 7/19/2011 9:19:57 PM - System Checkpoint
RP146: 7/21/2011 11:23:04 PM - System Checkpoint
RP147: 7/23/2011 1:03:42 AM - Removed VIPRE Antivirus Premium.
RP148: 7/23/2011 1:09:14 AM - Installed VIPRE Antivirus Premium.
RP149: 7/24/2011 4:57:25 AM - System Checkpoint
RP150: 7/25/2011 12:05:12 PM - System Checkpoint
RP151: 7/26/2011 4:21:48 PM - System Checkpoint
RP152: 7/28/2011 9:52:23 AM - System Checkpoint
RP153: 7/29/2011 10:41:16 PM - System Checkpoint
RP154: 8/1/2011 11:24:31 AM - System Checkpoint
RP155: 8/2/2011 12:35:29 PM - Removed Razer DeathAdder(TM) Mouse
RP156: 8/3/2011 7:11:57 PM - System Checkpoint
RP157: 8/5/2011 11:13:27 AM - System Checkpoint
RP158: 8/7/2011 5:19:28 AM - System Checkpoint
RP159: 8/7/2011 10:42:42 PM - Removed VIPRE Antivirus Premium.
RP160: 8/7/2011 10:49:34 PM - Installed VIPRE Antivirus.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
AMD Processor Driver
Borderlands
Counter-Strike: Source
GameTracker Lite
Garry's Mod
Google Chrome
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB981793)
Java Auto Updater
Java(TM) 6 Update 26
Malwarebytes' Anti-Malware version 1.51.1.1800
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework Client Profile
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Mozilla Firefox 5.0 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA nView Desktop Manager
NVIDIA PhysX
Oblivion
Platform
PunkBuster Services
Razer Abyssus
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2497640)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2530548)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
StarCraft II
Steam
Team Fortress 2
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Ventrilo Client
VIA Platform Device Manager
VIPRE Antivirus
WebFldrs XP
Windows Driver Package - Cypress (CyUsb) USB
Windows Driver Package - Razer (HidUsb) HIDClass (02/02/2007 1.0.5.0)
Windows XP Service Pack 3
WinRAR 4.01 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
8/8/2011 4:39:55 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84dfa58, parameter4 00000000.
8/8/2011 1:55:11 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84d7a58, parameter4 00000000.
8/7/2011 11:42:19 AM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84e37b4, parameter4 00000000.
8/7/2011 11:42:15 AM, error: System Error [1003] - Error code 1000008e, parameter1 c0000005, parameter2 bd098b60, parameter3 ae72abb8, parameter4 00000000.
8/7/2011 10:44:43 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SBRE
8/5/2011 5:20:33 PM, error: System Error [1003] - Error code 1000000a, parameter1 00000004, parameter2 0000001c, parameter3 00000000, parameter4 804fcf1e.
8/3/2011 1:30:58 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84c7a58, parameter4 00000000.
8/2/2011 5:31:51 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Steam Client Service service to connect.
8/2/2011 5:31:51 PM, error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
This one is form the software GMER
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-08-08 20:32:24
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST3250318AS rev.CC46
Running: gmer.exe; Driver: C:\DOCUME~1\Don\LOCALS~1\Temp\fwtdqpob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Tcpip \Device\Ip sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\Tcp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\Udp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\RawIp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
---- EOF - GMER 1.0.15 ----
Finally this is the Malewarebyte's log
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7413
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
8/8/2011 8:42:27 PM
mbam-log-2011-08-08 (20-42-27).txt
Scan type: Quick scan
Objects scanned: 164283
Time elapsed: 6 minute(s), 3 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
-----------------------------------------
I know this is kind of a pain to go through but im looking for some real help I dont think I have it in my to reinstall windows once again and it probably wont do any good anyways. I was unable to attach pictures of my processes because the files were too large. Although if you need them I can send them some other way. Thank you guys for taking the time to look over this I really appreciate it.
The file smss.exe was found in two places of my computer C:\WINDOWS\system32 and also in C:\WINDOWS\ServicePackFiles\i386
The file alg.exe also had the same problem as it was in both folders not sure if this is potentially dangerous or not.
At the moment I have 2 rundll32.exe's running and Im pretty sure that it is always running.
Here are some logs that I have got from recent scans that Ive done according to a different thread that had been closed like 5 years ago
This one is from the software DDS
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_26
Run by Don at 20:13:33 on 2011-08-08
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3327.2340 [GMT -5:00]
.
AV: Sunbelt VIPRE *Enabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Razer\Abyssus\razerhid.exe
C:\Program Files\Steam\steam.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Update\1.3.21.65\GoogleCrashHandler.exe
svchost.exe
C:\Program Files\GameTracker\GSInGameService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sunbelt Software\VIPRE\SBPIMSvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Razer\Abyssus\razerofa.exe
C:\Program Files\Razer\Abyssus\vdDaemon.exe
C:\Program Files\Steam\GameOverlayUI.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Documents and Settings\Don\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Sunbelt Software\VIPRE\sbamui.exe
C:\Program Files\Sunbelt Software\VIPRE\SBAMSvc.exe
C:\Program Files\Sunbelt Software\VIPRE\SBAMTray.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: H - No File
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [Steam] "c:\program files\steam\steam.exe" -silent
uRun: [Google Update] "c:\documents and settings\don\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [GameTracker] c:\program files\gametracker\GTLite.exe
uRun: [DriverFinder] c:\program files\driverfinder\DriverFinder.exe
mRun: [HDAudDeck] c:\program files\via\viaudioi\hdadeck\HDeck.exe 1
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [snpstd] c:\windows\vsnpstd.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Abyssus] c:\program files\razer\abyssus\razerhid.exe
mRun: [SBAMTray] "c:\program files\sunbelt software\vipre\SBAMTray.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
dRunOnce: [RunNarrator] Narrator.exe
StartupFolder: c:\documents and settings\don\start menu\programs\startup\CurseClientStartup.ccip
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 172.16.0.1
TCP: Interfaces\{CA5F1DAE-DF8A-405E-A675-61DCA5D86BBA} : DhcpNameServer = 172.16.0.1
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\don\application data\mozilla\firefox\profiles\0qjk72t9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2680363&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - RuneScape Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2680363&SearchSource=2&q=
FF - plugin: c:\documents and settings\don\local settings\application data\google\update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============
.
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [2011-8-7 21592]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [2011-4-29 101720]
R1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [2011-8-7 212568]
R2 GS In-Game Service;GS In-Game Service;c:\program files\gametracker\GSInGameService.exe [2011-4-29 1677096]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-8-8 366640]
R2 SBAMSvc;VIPRE Antivirus;c:\program files\sunbelt software\vipre\SBAMSvc.exe [2011-7-15 2804280]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [2011-8-7 74200]
R2 SBPIMSvc;SB Recovery Service;c:\program files\sunbelt software\vipre\SBPIMSvc.exe [2011-7-15 181584]
R3 Abyssus03;Razer Abyssus USB Filter Driver;c:\windows\system32\drivers\Abyssus.sys [2011-7-14 9216]
R3 hidkmdf;Filter Driver Service for HID-KMDF Interface layer;c:\windows\system32\drivers\hidkmdf.sys [2011-7-14 6656]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-8-8 22712]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-3-25 845184]
R3 VKbms;Virtual HID Minidriver;c:\windows\system32\drivers\VKbms.sys [2011-7-14 10240]
S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2011-3-25 22784]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-8-8 41272]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
.
=============== Created Last 30 ================
.
2011-08-09 00:54:28 -------- d-----w- c:\documents and settings\don\application data\Malwarebytes
2011-08-09 00:54:22 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-09 00:54:22 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-08-09 00:54:19 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-09 00:54:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-09 00:44:26 -------- d-----w- c:\documents and settings\don\application data\DriverFinder
2011-08-08 03:54:39 74200 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2011-08-08 03:54:38 21592 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2011-08-08 03:51:03 -------- d-----w- c:\documents and settings\all users\application data\Sunbelt
2011-08-08 03:50:56 -------- d-----w- c:\documents and settings\don\application data\Sunbelt
2011-08-08 03:49:45 212568 ----a-w- c:\windows\system32\drivers\sbtis.sys
2011-08-08 03:49:40 -------- d-----w- c:\program files\Sunbelt Software
2011-08-06 19:26:30 -------- d-----w- c:\documents and settings\don\application data\GameTracker
2011-08-06 19:26:08 -------- d-----w- c:\program files\GameTracker
2011-07-15 23:24:08 42832 ----a-w- c:\windows\system32\sbbd.exe
2011-07-14 05:30:31 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-07-14 05:30:10 9216 ----a-w- c:\windows\system32\drivers\Abyssus.sys
2011-07-14 05:30:08 6656 ----a-w- c:\windows\system32\drivers\hidkmdf.sys
2011-07-14 05:30:08 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2011-07-14 05:30:08 10240 ----a-w- c:\windows\system32\drivers\VKbms.sys
2011-07-14 05:30:05 110592 ----a-w- c:\windows\system32\Abyssus.cpl
.
==================== Find3M ====================
.
2011-08-02 02:58:59 140024 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-08-02 02:58:53 280768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-08-02 02:58:53 280768 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-06-22 22:30:35 280768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-06-22 03:28:48 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-06 16:36:00 4005936 ----a-w- c:\windows\system32\GameMon.des
2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 20:14:06.09 ===============
Here is the attach from DDS as well
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 3/25/2011 3:57:25 PM
System Uptime: 8/8/2011 6:17:32 PM (2 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M3A78-CM
Processor: AMD Phenom(tm) 9850 Quad-Core Processor | AM2 | 2511/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 165.08 GiB free.
D: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP68: 5/9/2011 10:33:05 PM - System Checkpoint
RP69: 5/10/2011 10:48:55 PM - Software Distribution Service 3.0
RP70: 5/11/2011 1:25:46 PM - Installed WorldWinner Games
RP71: 5/12/2011 1:48:57 PM - System Checkpoint
RP72: 5/13/2011 1:58:32 PM - System Checkpoint
RP73: 5/14/2011 11:14:41 PM - System Checkpoint
RP74: 5/16/2011 12:25:09 AM - System Checkpoint
RP75: 5/17/2011 12:56:40 AM - System Checkpoint
RP76: 5/18/2011 6:27:22 PM - System Checkpoint
RP77: 5/19/2011 9:13:02 PM - System Checkpoint
RP78: 5/21/2011 9:16:42 PM - System Checkpoint
RP79: 5/22/2011 9:51:19 PM - System Checkpoint
RP80: 5/23/2011 9:52:43 PM - System Checkpoint
RP81: 5/24/2011 11:23:02 PM - System Checkpoint
RP82: 5/26/2011 12:49:05 AM - System Checkpoint
RP83: 5/27/2011 5:48:15 PM - System Checkpoint
RP84: 5/28/2011 11:14:15 AM - Removed Google Earth Plug-in.
RP85: 5/30/2011 3:05:04 PM - System Checkpoint
RP86: 5/31/2011 4:03:46 PM - System Checkpoint
RP87: 6/1/2011 5:23:38 PM - System Checkpoint
RP88: 6/2/2011 10:29:51 PM - System Checkpoint
RP89: 6/4/2011 2:00:43 AM - System Checkpoint
RP90: 6/4/2011 9:19:44 AM - Removed Ventrilo Client
RP91: 6/5/2011 8:30:30 AM - Removed Skype™ 5.3
RP92: 6/6/2011 9:23:14 AM - System Checkpoint
RP93: 6/7/2011 10:01:30 AM - System Checkpoint
RP94: 6/8/2011 10:23:59 AM - System Checkpoint
RP95: 6/10/2011 1:46:00 AM - Installed Oblivion
RP96: 6/10/2011 1:55:58 AM - Installed DirectX 9.0
RP97: 6/10/2011 2:05:58 AM - Removed WorldWinner Games
RP98: 6/10/2011 2:52:51 AM - Removed Skype Toolbars
RP99: 6/10/2011 5:50:58 AM - Installed DirectX
RP100: 6/10/2011 5:51:19 AM - Installed DirectX
RP101: 6/10/2011 5:55:31 AM - Installed DirectX
RP102: 6/10/2011 6:58:10 PM - Software Distribution Service 3.0
RP103: 6/12/2011 5:04:46 AM - System Checkpoint
RP104: 6/13/2011 9:40:08 AM - System Checkpoint
RP105: 6/14/2011 4:14:42 AM - Software Distribution Service 3.0
RP106: 6/15/2011 1:17:11 AM - Installed NVIDIA PhysX
RP107: 6/15/2011 1:17:33 AM - Removed NVIDIA PhysX v8.10.29
RP108: 6/15/2011 1:22:05 AM - Installed Windows KB954550-v5.
RP109: 6/15/2011 1:22:12 AM - Printer Driver Microsoft XPS Document Writer Installed
RP110: 6/15/2011 1:22:23 AM - Printer Driver Microsoft XPS Document Writer Installed
RP111: 6/15/2011 1:24:48 AM - Installed DirectX
RP112: 6/16/2011 2:03:21 AM - System Checkpoint
RP113: 6/17/2011 3:01:36 AM - System Checkpoint
RP114: 6/18/2011 3:43:01 AM - System Checkpoint
RP115: 6/18/2011 11:14:07 AM - Installed Java(TM) 6 Update 26
RP116: 6/19/2011 1:31:23 PM - System Checkpoint
RP117: 6/20/2011 1:42:38 PM - System Checkpoint
RP118: 6/21/2011 2:00:57 PM - System Checkpoint
RP119: 6/22/2011 6:44:34 PM - System Checkpoint
RP120: 6/23/2011 6:25:06 PM - Installed VIPRE Antivirus.
RP121: 6/24/2011 5:48:50 PM - Software Distribution Service 3.0
RP122: 6/25/2011 7:07:57 PM - System Checkpoint
RP123: 6/27/2011 12:15:22 AM - System Checkpoint
RP124: 6/28/2011 12:23:35 AM - System Checkpoint
RP125: 6/28/2011 6:01:21 PM - Software Distribution Service 3.0
RP126: 7/2/2011 3:52:28 AM - System Checkpoint
RP127: 7/3/2011 12:57:19 PM - Installed Ventrilo Client
RP128: 7/4/2011 12:59:55 PM - Removed Skype™ 5.3
RP129: 7/5/2011 1:17:19 PM - System Checkpoint
RP130: 7/6/2011 3:06:40 PM - System Checkpoint
RP131: 7/8/2011 1:40:04 AM - System Checkpoint
RP132: 7/9/2011 12:54:42 AM - Removed VIPRE Antivirus.
RP133: 7/9/2011 1:00:13 AM - Installed VIPRE Antivirus Premium.
RP134: 7/10/2011 6:38:43 PM - System Checkpoint
RP135: 7/11/2011 7:18:02 PM - System Checkpoint
RP136: 7/13/2011 12:09:18 AM - System Checkpoint
RP137: 7/13/2011 2:40:51 AM - Software Distribution Service 3.0
RP138: 7/14/2011 12:21:50 AM - Installed Razer Abyssus 1800.
RP139: 7/14/2011 12:25:58 AM - Removed Razer Abyssus 1800.
RP140: 7/14/2011 12:30:01 AM - Installed Razer Abyssus
RP141: 7/14/2011 12:30:31 AM - Installed Windows XP Wdf01009.
RP142: 7/15/2011 9:25:48 AM - System Checkpoint
RP143: 7/16/2011 4:05:39 PM - System Checkpoint
RP144: 7/17/2011 4:41:35 PM - System Checkpoint
RP145: 7/19/2011 9:19:57 PM - System Checkpoint
RP146: 7/21/2011 11:23:04 PM - System Checkpoint
RP147: 7/23/2011 1:03:42 AM - Removed VIPRE Antivirus Premium.
RP148: 7/23/2011 1:09:14 AM - Installed VIPRE Antivirus Premium.
RP149: 7/24/2011 4:57:25 AM - System Checkpoint
RP150: 7/25/2011 12:05:12 PM - System Checkpoint
RP151: 7/26/2011 4:21:48 PM - System Checkpoint
RP152: 7/28/2011 9:52:23 AM - System Checkpoint
RP153: 7/29/2011 10:41:16 PM - System Checkpoint
RP154: 8/1/2011 11:24:31 AM - System Checkpoint
RP155: 8/2/2011 12:35:29 PM - Removed Razer DeathAdder(TM) Mouse
RP156: 8/3/2011 7:11:57 PM - System Checkpoint
RP157: 8/5/2011 11:13:27 AM - System Checkpoint
RP158: 8/7/2011 5:19:28 AM - System Checkpoint
RP159: 8/7/2011 10:42:42 PM - Removed VIPRE Antivirus Premium.
RP160: 8/7/2011 10:49:34 PM - Installed VIPRE Antivirus.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
AMD Processor Driver
Borderlands
Counter-Strike: Source
GameTracker Lite
Garry's Mod
Google Chrome
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB981793)
Java Auto Updater
Java(TM) 6 Update 26
Malwarebytes' Anti-Malware version 1.51.1.1800
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework Client Profile
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Mozilla Firefox 5.0 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA nView Desktop Manager
NVIDIA PhysX
Oblivion
Platform
PunkBuster Services
Razer Abyssus
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2497640)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2530548)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
StarCraft II
Steam
Team Fortress 2
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Ventrilo Client
VIA Platform Device Manager
VIPRE Antivirus
WebFldrs XP
Windows Driver Package - Cypress (CyUsb) USB
Windows Driver Package - Razer (HidUsb) HIDClass (02/02/2007 1.0.5.0)
Windows XP Service Pack 3
WinRAR 4.01 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
8/8/2011 4:39:55 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84dfa58, parameter4 00000000.
8/8/2011 1:55:11 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84d7a58, parameter4 00000000.
8/7/2011 11:42:19 AM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84e37b4, parameter4 00000000.
8/7/2011 11:42:15 AM, error: System Error [1003] - Error code 1000008e, parameter1 c0000005, parameter2 bd098b60, parameter3 ae72abb8, parameter4 00000000.
8/7/2011 10:44:43 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SBRE
8/5/2011 5:20:33 PM, error: System Error [1003] - Error code 1000000a, parameter1 00000004, parameter2 0000001c, parameter3 00000000, parameter4 804fcf1e.
8/3/2011 1:30:58 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000047, parameter2 804fcf44, parameter3 b84c7a58, parameter4 00000000.
8/2/2011 5:31:51 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Steam Client Service service to connect.
8/2/2011 5:31:51 PM, error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
This one is form the software GMER
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-08-08 20:32:24
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST3250318AS rev.CC46
Running: gmer.exe; Driver: C:\DOCUME~1\Don\LOCALS~1\Temp\fwtdqpob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Tcpip \Device\Ip sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\Tcp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\Udp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
AttachedDevice \Driver\Tcpip \Device\RawIp sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software, Inc.)
---- EOF - GMER 1.0.15 ----
Finally this is the Malewarebyte's log
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7413
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
8/8/2011 8:42:27 PM
mbam-log-2011-08-08 (20-42-27).txt
Scan type: Quick scan
Objects scanned: 164283
Time elapsed: 6 minute(s), 3 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
-----------------------------------------
I know this is kind of a pain to go through but im looking for some real help I dont think I have it in my to reinstall windows once again and it probably wont do any good anyways. I was unable to attach pictures of my processes because the files were too large. Although if you need them I can send them some other way. Thank you guys for taking the time to look over this I really appreciate it.