Here's the Logs
Ok, I followed the 8-step Removal process, and here are the requested logs, good sirs:
The MBAM Log:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5519
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
1/14/2011 10:53:19 AM
mbam-log-2011-01-14 (10-53-19).txt
Scan type: Quick scan
Objects scanned: 153452
Time elapsed: 9 minute(s), 43 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
______________________________________________________
The GMER Log:
GMER 1.0.15.15530 -
http://www.gmer.net
Rootkit quick scan 2011-01-14 11:12:52
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdePort2 WDC_WD2500JS-60NCB1 rev.10.02E02
Running: r6vfkp1c.exe; Driver: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\fgldapod.sys
---- Disk sectors - GMER 1.0.15 ----
Disk \Device\Harddisk0\DR0 sectors 488396912 (+254): rootkit-like behavior;
---- System - GMER 1.0.15 ----
SSDT spei.sys ZwEnumerateKey [0xF73D5DA4]
SSDT spei.sys ZwEnumerateValueKey [0xF73D6132]
Code F7C9BC9C ZwRequestPort
Code F7C9BD3C ZwRequestWaitReplyPort
Code F7C9BBFC ZwTraceEvent
Code F7C9BC9B NtRequestPort
Code F7C9BD3B NtRequestWaitReplyPort
Code F7C9BBFB NtTraceEvent
---- Devices - GMER 1.0.15 ----
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdeDeviceP0T0L0-3 85F1AAEA
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort0 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort0 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort1 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort1 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort2 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort2 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort3 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort3 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort4 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort4 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atapi -> DriverStartIo \Device\Ide\IdePort5 85F1AAEA
Device \Driver\atapi \Device\Ide\IdePort5 [F723CB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device \Driver\atyw64k9 \Device\Scsi\atyw64k91Port6Path0Target0Lun0 85A0C500
Device \Driver\atyw64k9 \Device\Scsi\atyw64k91 85A0C500
Device \FileSystem\Ntfs \Ntfs 861D71F8
AttachedDevice \FileSystem\Ntfs \Ntfs bb-run.sys (Promise Disk Accelerator/Promise Technology, Inc.)
Device \FileSystem\Fastfat \Fat 85B1B500
AttachedDevice \FileSystem\Fastfat \Fat bb-run.sys (Promise Disk Accelerator/Promise Technology, Inc.)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 arkbcfltr.sys (Microsoft AR PS/2 Keyboard Filter Driver (Beta 2 Release 2)/Microsoft Corporation)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 arkbcfltr.sys (Microsoft AR PS/2 Keyboard Filter Driver (Beta 2 Release 2)/Microsoft Corporation)
Device \Device\Ide\IdeDeviceP2T0L0-e -> \??\IDE#DiskWDC_WD2500JS-60NCB1_____________________10.02E02#5&9c402e8&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
---- EOF - GMER 1.0.15 ----
_________________________________________________________________
And the DDS Log:
DDS (Ver_10-12-12.02) - NTFSx86
Run by Compaq_Administrator at 11:48:34.98 on Fri 01/14/2011
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.958.379 [GMT -5:00]
AV: AVG Anti-Virus Free *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: Norton Internet Worm Protection *Disabled*
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\ZuneLauncher.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
svchost.exe
C:\WINDOWS\arservice.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
svchost.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\WINDOWS\system32\ZuneBusEnum.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
K:\Programs\firefox.exe
K:\Programs\plugin-container.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Compaq_Administrator\My Documents\Downloads\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uSearch Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uInternet Settings,ProxyServer = http=127.0.0.1:5555
uInternet Settings,ProxyOverride = <local>
mSearchAssistant = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: {C4069E3A-68F1-403E-B40E-20066696354B} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [AlcoholAutomount] "c:\program files\alcohol soft\alcohol 120\AxAutoMntSrv.exe" -automount
uRun: [SandboxieControl] "c:\program files\sandboxie\SbieCtrl.exe"
uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden
uRun: [SUPERAntiSpyware] k:\programs\SUPERAntiSpyware.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [Zune Launcher] "c:\program files\ZuneLauncher.exe"
mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - k:\programs\microsoft office cracked\office10\OSA.EXE
IE: &Google Search - c:\program files\google\GoogleToolbar1.dll/cmsearch.html
IE: &Translate English Word - c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
IE: Backward Links - c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\google\GoogleToolbar1.dll/cmcache.html
IE: E&xport to Microsoft Excel - k:\programs\micros~2\office10\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate Page into English - c:\program files\google\GoogleToolbar1.dll/cmtrans.html
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_05\bin\npjpi150_05.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
Trusted Zone: trymedia.com
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Notify: !SASWinLogon - k:\programs\SASWINLO.DLL
Notify: avgrsstarter - avgrsstx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - k:\programs\SASSEH.DLL
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\compaq~1\applic~1\mozilla\firefox\profiles\3x3rarsk.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll
FF - plugin: c:\program files\java\jre1.5.0_05\bin\NPJPI150_05.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - k:\programs\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: AVG Safe Search: {3f963a5b-e555-4543-90e2-c3908898db71} - c:\program files\avg\avg9\Firefox
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Ask Toolbar:
toolbar@ask.com - %profile%\extensions\toolbar@ask.com
============= SERVICES / DRIVERS ===============
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-4-24 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-4-24 29584]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-4-24 243024]
R1 SASDIFSV;SASDIFSV;k:\programs\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;k:\programs\SASKUTIL.SYS [2010-5-10 67656]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-7-15 308136]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 StarWindServiceAE;StarWind AE Service;c:\program files\alcohol soft\alcohol 120\starwind\StarWindServiceAE.exe [2009-12-23 370688]
R3 SbieDrv;SbieDrv;c:\program files\sandboxie\SbieDrv.sys [2010-7-4 119016]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg9\toolbar\ToolbarBroker.exe [2010-10-26 517448]
=============== Created Last 30 ================
2011-01-13 16:59:27 -------- d-----w- c:\program files\Trend Micro
2011-01-09 02:04:37 -------- d-----w- c:\docume~1\compaq~1\applic~1\SUPERAntiSpyware.com
2011-01-09 02:04:37 -------- d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2011-01-05 17:06:35 -------- d-----w- c:\docume~1\compaq~1\applic~1\AskToolbar
2011-01-03 18:35:53 -------- d-----w- c:\docume~1\compaq~1\applic~1\Malwarebytes
2011-01-03 18:35:37 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-03 18:35:36 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-01-03 18:35:28 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
==================== Find3M ====================
2010-01-07 18:42:02 912192 ----a-w- c:\program files\ZuneDBApi.dll
2010-01-07 18:42:02 554816 ----a-w- c:\program files\UIXcontrols.dll
2010-01-07 18:42:02 1521472 ----a-w- c:\program files\UIX.dll
2010-01-07 18:42:02 1304384 ----a-w- c:\program files\ZuneShell.dll
2010-01-07 18:42:00 644928 ----a-w- c:\program files\UIX.renderapi.dll
2010-01-07 18:24:16 232448 ----a-w- c:\program files\l3codecp.acm
2007-08-27 19:56:58 1089440 ----a-w- c:\program files\msidcrl40.dll
=================== ROOTKIT ====================
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer,
http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD2500JS-60NCB1 rev.10.02E02 -> Harddisk0\DR0 -> \Device\Ide\IdePort2 P2T0L0-e
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x85F1AD01]<<
_asm { PUSH EBP; MOV EBP, ESP; SUB ESP, 0x50; PUSH EBX; PUSH ESI; MOV DWORD [EBP-0x4], 0x8442f85b; SUB DWORD [EBP-0x4], 0x8442f12e; PUSH EDI; CALL 0xffffffffffffe0f7; }
1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x86080AB8]
3 CLASSPNP[0xF7610FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000078[0x85F84F18]
5 ACPI[0xF737C620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> [0x8612A940]
[0x8606F268] -> IRP_MJ_CREATE -> 0x85F1AD01
kernel: MBR read successfully
_asm { XOR DI, DI; MOV SI, 0x200; MOV SS, DI; MOV SP, 0x7a00; MOV BX, 0x7a0; MOV CX, SI; MOV DS, BX; MOV ES, BX; REP MOVSB ; JMP FAR 0x7a0:0x5c; }
detected disk devices:
\Device\Ide\IdeDeviceP2T0L0-e -> \??\IDE#DiskWDC_WD2500JS-60NCB1_____________________10.02E02#5&9c402e8&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
\Driver\atapi DriverStartIo -> 0x85F1AAEA
IoDeviceObjectType -> ParseProcedure -> 0xf7c7c160
\Device\Harddisk0\DR0 -> ParseProcedure -> 0xf7c7c160
user & kernel MBR OK
sectors 488397166 (+255): user != kernel
Warning: possible TDL3 rootkit infection !
============= FINISH: 11:50:22.28 ===============
__________________________________________________________
And the Attach Log:
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-12-12.02)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 4/16/2010 1:54:41 PM
System Uptime: 1/14/2011 11:22:16 AM (0 hours ago)
Motherboard: ASUSTek Computer INC. | | NAGAMI2
Processor: AMD Athlon(tm) 64 Processor 3800+ | Socket 939 | 2405/199mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 225 GiB total, 148.304 GiB free.
D: is FIXED (FAT32) - 8 GiB total, 0.509 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is CDROM ()
K: is FIXED (NTFS) - 932 GiB total, 461.836 GiB free.
L: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\B71EB011D800
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\B71EB011D800
Service: NIC1394
==== System Restore Points ===================
RP187: 10/16/2010 6:23:59 PM - System Checkpoint
RP188: 10/17/2010 8:47:35 PM - System Checkpoint
RP189: 10/19/2010 1:23:59 AM - System Checkpoint
RP190: 10/20/2010 9:41:21 AM - System Checkpoint
RP191: 10/21/2010 2:16:51 PM - System Checkpoint
RP192: 10/22/2010 2:41:11 PM - System Checkpoint
RP193: 10/23/2010 7:01:24 PM - System Checkpoint
RP194: 10/24/2010 11:34:06 PM - System Checkpoint
RP195: 10/25/2010 11:53:57 PM - System Checkpoint
RP196: 10/26/2010 9:47:57 AM - Avg Update
RP197: 10/27/2010 11:54:27 AM - System Checkpoint
RP198: 10/28/2010 5:18:16 PM - System Checkpoint
RP199: 10/29/2010 5:25:55 PM - System Checkpoint
RP200: 10/30/2010 5:28:13 PM - System Checkpoint
RP201: 10/31/2010 7:14:59 AM - Installed Google SketchUp 8
RP202: 11/1/2010 7:21:23 AM - System Checkpoint
RP203: 11/2/2010 7:31:26 AM - System Checkpoint
RP204: 11/3/2010 9:43:17 AM - System Checkpoint
RP205: 11/4/2010 11:14:58 AM - System Checkpoint
RP206: 11/5/2010 12:08:03 PM - System Checkpoint
RP207: 11/6/2010 4:25:25 PM - System Checkpoint
RP208: 11/6/2010 5:45:12 PM - Installed Windows XP KB942288-v3.
RP209: 11/6/2010 5:45:42 PM - Installed DirectX
RP210: 11/6/2010 5:45:53 PM - Installed DirectX
RP211: 11/7/2010 8:24:54 PM - System Checkpoint
RP212: 11/8/2010 9:49:04 PM - System Checkpoint
RP213: 11/9/2010 10:32:51 AM - Avg Update
RP214: 11/9/2010 10:34:33 AM - Avg Update
RP215: 11/10/2010 11:16:21 AM - System Checkpoint
RP216: 11/11/2010 7:05:59 PM - System Checkpoint
RP217: 11/12/2010 10:22:44 PM - System Checkpoint
RP218: 11/14/2010 12:09:04 AM - System Checkpoint
RP219: 11/15/2010 7:49:21 AM - System Checkpoint
RP220: 11/16/2010 10:32:05 AM - System Checkpoint
RP221: 11/17/2010 10:36:35 AM - System Checkpoint
RP222: 11/18/2010 11:35:35 AM - System Checkpoint
RP223: 11/19/2010 12:10:49 PM - System Checkpoint
RP224: 11/20/2010 1:58:31 PM - System Checkpoint
RP225: 11/21/2010 9:15:09 PM - System Checkpoint
RP226: 11/23/2010 12:39:43 AM - System Checkpoint
RP227: 11/24/2010 7:52:55 AM - System Checkpoint
RP228: 11/24/2010 8:00:57 AM - Avg Update
RP229: 11/24/2010 8:02:25 AM - Avg Update
RP230: 11/25/2010 8:38:27 AM - System Checkpoint
RP231: 11/26/2010 4:43:22 PM - System Checkpoint
RP232: 11/27/2010 5:59:29 PM - System Checkpoint
RP233: 11/28/2010 6:32:21 PM - System Checkpoint
RP234: 11/29/2010 6:52:27 PM - System Checkpoint
RP235: 11/30/2010 7:05:24 PM - System Checkpoint
RP236: 12/1/2010 8:44:19 PM - System Checkpoint
RP237: 12/3/2010 12:39:22 PM - System Checkpoint
RP238: 12/4/2010 5:20:47 PM - System Checkpoint
RP239: 12/5/2010 11:30:09 PM - System Checkpoint
RP240: 12/7/2010 6:54:28 AM - System Checkpoint
RP241: 12/8/2010 7:54:43 AM - System Checkpoint
RP242: 12/9/2010 11:45:08 AM - System Checkpoint
RP243: 12/10/2010 12:46:27 PM - System Checkpoint
RP244: 12/11/2010 5:07:36 PM - System Checkpoint
RP245: 12/13/2010 7:53:31 AM - System Checkpoint
RP246: 12/14/2010 12:21:37 PM - System Checkpoint
RP247: 12/15/2010 2:27:40 PM - System Checkpoint
RP248: 12/16/2010 2:53:39 PM - System Checkpoint
RP249: 12/17/2010 5:52:53 PM - System Checkpoint
RP250: 12/18/2010 8:19:41 PM - System Checkpoint
RP251: 12/20/2010 8:11:43 AM - System Checkpoint
RP252: 12/21/2010 9:00:30 AM - System Checkpoint
RP253: 12/22/2010 10:00:30 AM - System Checkpoint
RP254: 12/23/2010 11:49:57 AM - System Checkpoint
RP255: 12/24/2010 12:46:10 PM - System Checkpoint
RP256: 12/25/2010 1:38:38 PM - System Checkpoint
RP257: 12/26/2010 3:12:58 PM - System Checkpoint
RP258: 12/27/2010 9:51:37 PM - System Checkpoint
RP259: 12/29/2010 3:04:50 PM - System Checkpoint
RP260: 12/30/2010 5:24:53 PM - System Checkpoint
RP261: 12/31/2010 6:14:00 PM - System Checkpoint
RP262: 1/1/2011 11:12:54 PM - System Checkpoint
RP263: 1/3/2011 6:14:13 PM - System Checkpoint
RP264: 1/4/2011 10:00:07 PM - System Checkpoint
RP265: 1/5/2011 10:36:57 PM - System Checkpoint
RP266: 1/7/2011 12:55:13 PM - System Checkpoint
RP267: 1/8/2011 6:39:15 PM - System Checkpoint
RP268: 1/9/2011 7:18:31 PM - System Checkpoint
RP269: 1/10/2011 10:25:24 PM - System Checkpoint
RP270: 1/12/2011 9:05:57 AM - System Checkpoint
RP271: 1/13/2011 2:23:36 PM - System Checkpoint
==== Installed Programs ======================
µTorrent
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Reader 7.0.5
Adobe Shockwave Player 11.5
Agere Systems PCI-SV92PP Soft Modem
Ask Toolbar
AVG Free 9.0
BufferChm
Cheat Engine 5.6
Command & Conquer Generals
Compaq Connections (remove only)
CP_AtenaShokunin1Config
CP_CalendarTemplates1
cp_LightScribeConfig
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CP_Panorama1Config
cp_PosterPrintConfig
cp_UpdateProjectsConfig
Creeper World DEMO
Creeper World Map Editor
CueTour
Customer Experience Enhancement
Destinations
DeviceManagementQFolder
DISCover
Easy Internet Sign-up
Enhanced Multimedia Keyboard Solution
Evil Genius
ffdshow v1.1.3355 [2010-04-11]
FullDPAppQFolder
Garry's Mod
Google SketchUp 7
Google SketchUp 8
Google Toolbar for Internet Explorer
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB942288-v3)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
HP Boot Optimizer
HP DVD Play 2.1
HP Game Console
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP Software Update
HP Support Overview
HP Web Helper
HPPhotoSmartExpress
HpSdpAppCoreApp
InstantShareDevices
J2SE Runtime Environment 5.0 Update 5
LightScribe System Software
Linksys EasyLink Advisor 1.5 (1010)
Macromedia Flash Player 8
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Away Mode
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2003 Edition 60 Days Trial Welcome Tour
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Standard Edition 2003
Microsoft Office XP Professional with FrontPage
Microsoft User-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable
Microsoft WinUsb 1.0
Microsoft Works
Mozilla Firefox (3.6.13)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
Notepad++
NVIDIA Drivers
OptionalContentQFolder
Otto
PhotoGallery
Portal
PowerISO
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
Quicken 2006
RandMap
Realtek High Definition Audio Driver
Sandboxie 3.46
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980232)
SkinsHP1
SlideShow
SlideShowMusic
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sonic_PrimoSDK
SUPERAntiSpyware
TortoiseSVN 1.6.11.20210 (32 bit)
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows Internet Explorer 8 (KB980302)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB953356)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
Update Rollup 2 for Windows XP Media Center Edition 2005
VobSub v2.23 (Remove Only)
WebFldrs XP
WildTangent Web Driver
Windows Imaging Component
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB912067
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver
Zune
Zune Language Pack (DE)
Zune Language Pack (ES)
Zune Language Pack (FR)
Zune Language Pack (IT)
==== Event Viewer Messages From Past Week ========
1/13/2011 11:14:58 AM, error: ipnathlp [30013] - The DHCP allocator has disabled itself on IP address 192.168.1.103, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, please change the scope to include the IP address, or change the IP address to fall within the scope.
1/13/2011 11:14:44 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SASDIFSV SASKUTIL
1/13/2011 11:14:42 AM, error: Ftdisk [49] - Configuring the Page file for crash dump failed. Make sure there is a page file on the boot partition and that is large enough to contain all physical memory.
1/13/2011 11:14:42 AM, error: Ftdisk [45] - The system could not sucessfully load the crash dump driver.
==== End Of File ===========================
_____________________________________________________________
Thats it, hopefully I did everything right, I will be anxiously awaiting your reply.