Ok - Thank You Here are the initial Logs:
[FONT=Times New Roman]1. Malwarebytes' Anti-Malware "Quick Scan Only":[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Malwarebytes Anti-Malware (PRO) 1.62.0.1300[/FONT]
[FONT=Times New Roman]www.malwarebytes.org[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Database version: v2012.09.07.07[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Windows XP Service Pack 3 x86 NTFS[/FONT]
[FONT=Times New Roman]Internet Explorer 8.0.6001.18702[/FONT]
[FONT=Times New Roman]Owner :: KITCHENLAPTOP [administrator][/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Protection: Enabled[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]9/7/2012 7:34:55 AM[/FONT]
[FONT=Times New Roman]mbam-log-2012-09-07 (07-34-55).txt[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Scan type: Quick scan[/FONT]
[FONT=Times New Roman]Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM[/FONT]
[FONT=Times New Roman]Scan options disabled: P2P[/FONT]
[FONT=Times New Roman]Objects scanned: 208969[/FONT]
[FONT=Times New Roman]Time elapsed: 7 minute(s), 47 second(s)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Memory Processes Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Memory Modules Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Registry Keys Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Registry Values Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Registry Data Items Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Folders Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman]Files Detected: 0[/FONT]
[FONT=Times New Roman](No malicious items detected)[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman](end)[/FONT]
[FONT=Times New Roman] [/FONT]
2. GMER Log: (It just automatically did this quick scan when I downloaded it)
GMER 1.0.15.15641 -
http://www.gmer.net
Rootkit quick scan 2012-09-07 07:52:19
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 HTS541010G9AT00 rev.MBZOA60A
Running: 63i6mxhx.exe; Driver: C:\DOCUME~1\Owner\LOCALS~1\Temp\fwlyqkoc.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
---- EOF - GMER 1.0.15 ----
3. DDS Scans:
A. Attach.txt:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 6/22/2010 1:45:58 AM
System Uptime: 9/6/2012 5:33:49 PM (14 hours ago)
.
Motherboard: Gateway | |
Processor: Intel(R) Pentium(R) M processor 1.73GHz | uFCPGA2 | 1054/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 87 GiB total, 40.479 GiB free.
D: is FIXED (FAT32) - 6 GiB total, 4.021 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Intel(R) PRO/Wireless 2200BG Network Connection
Device ID: PCI\VEN_8086&DEV_4220&SUBSYS_27018086&REV_05\4&AD1B67F&0&20F0
Manufacturer: Intel(R) Corporation
Name: Intel(R) PRO/Wireless 2200BG Network Connection
PNP Device ID: PCI\VEN_8086&DEV_4220&SUBSYS_27018086&REV_05\4&AD1B67F&0&20F0
Service: w29n51
.
==== System Restore Points ===================
.
RP637: 6/10/2012 6:07:26 AM - System Checkpoint
RP638: 6/11/2012 6:51:30 AM - System Checkpoint
RP639: 6/13/2012 11:29:50 AM - System Checkpoint
RP640: 6/14/2012 6:52:00 PM - System Checkpoint
RP641: 6/15/2012 11:57:42 PM - System Checkpoint
RP642: 6/17/2012 12:23:51 AM - System Checkpoint
RP643: 6/18/2012 5:39:00 PM - System Checkpoint
RP644: 6/19/2012 7:16:45 PM - System Checkpoint
RP645: 6/21/2012 6:43:37 PM - System Checkpoint
RP646: 6/24/2012 2:18:10 PM - System Checkpoint
RP647: 6/25/2012 3:17:11 PM - System Checkpoint
RP648: 6/26/2012 6:39:02 PM - System Checkpoint
RP649: 6/27/2012 10:06:46 PM - System Checkpoint
RP650: 6/29/2012 12:35:21 AM - System Checkpoint
RP651: 7/1/2012 10:13:05 PM - System Checkpoint
RP652: 7/2/2012 10:35:47 PM - System Checkpoint
RP653: 7/4/2012 3:50:31 PM - System Checkpoint
RP654: 7/6/2012 9:56:05 AM - System Checkpoint
RP655: 7/7/2012 11:00:13 PM - System Checkpoint
RP656: 7/9/2012 10:12:08 AM - System Checkpoint
RP657: 7/10/2012 9:40:23 PM - System Checkpoint
RP658: 7/11/2012 10:39:06 PM - System Checkpoint
RP659: 7/13/2012 7:09:33 AM - System Checkpoint
RP660: 7/14/2012 10:29:01 AM - System Checkpoint
RP661: 7/16/2012 10:12:01 AM - System Checkpoint
RP662: 7/17/2012 7:05:59 PM - System Checkpoint
RP663: 7/18/2012 10:48:04 PM - System Checkpoint
RP664: 7/20/2012 10:32:29 PM - System Checkpoint
RP665: 7/21/2012 10:56:52 PM - System Checkpoint
RP666: 7/23/2012 9:45:32 AM - System Checkpoint
RP667: 7/25/2012 4:20:47 PM - System Checkpoint
RP668: 7/27/2012 9:16:38 AM - System Checkpoint
RP669: 7/28/2012 9:57:25 AM - System Checkpoint
RP670: 7/29/2012 11:17:09 AM - System Checkpoint
RP671: 7/30/2012 9:01:59 PM - System Checkpoint
RP672: 7/31/2012 10:35:54 PM - System Checkpoint
RP673: 8/2/2012 11:38:48 AM - System Checkpoint
RP674: 8/3/2012 7:07:25 PM - System Checkpoint
RP675: 8/4/2012 11:15:48 PM - System Checkpoint
RP676: 8/6/2012 6:26:10 AM - System Checkpoint
RP677: 8/7/2012 9:16:33 AM - System Checkpoint
RP678: 8/9/2012 12:12:19 AM - System Checkpoint
RP679: 8/10/2012 3:55:15 PM - System Checkpoint
RP680: 8/11/2012 5:16:22 PM - System Checkpoint
RP681: 8/12/2012 5:29:52 PM - System Checkpoint
RP682: 8/14/2012 11:37:04 AM - System Checkpoint
RP683: 8/16/2012 1:30:48 PM - Installed Microsoft Fix it 50195
RP684: 8/16/2012 1:37:48 PM - Restore Operation
RP685: 8/16/2012 6:55:55 PM - Spyware Terminator - restore point
RP686: 8/17/2012 9:10:23 PM - System Checkpoint
RP687: 8/19/2012 10:05:35 AM - Software Distribution Service 3.0
RP688: 8/19/2012 10:58:07 AM - Software Distribution Service 3.0
RP689: 8/19/2012 9:20:11 PM - Removed Java(TM) 6 Update 20
RP690: 8/20/2012 6:06:47 PM - Removed Bonjour
RP691: 8/21/2012 6:44:49 PM - System Checkpoint
RP692: 8/22/2012 7:56:06 AM - Restore Operation
RP693: 8/22/2012 5:59:57 PM - Removed Apple Application Support
RP694: 8/22/2012 6:00:56 PM - Removed Apple Mobile Device Support
RP695: 8/23/2012 7:27:14 PM - System Checkpoint
RP696: 8/25/2012 8:25:53 PM - System Checkpoint
RP697: 8/27/2012 7:25:31 AM - System Checkpoint
RP698: 8/28/2012 9:47:42 AM - System Checkpoint
RP699: 8/29/2012 7:10:21 PM - System Checkpoint
RP700: 8/30/2012 10:19:27 PM - System Checkpoint
RP701: 9/1/2012 9:39:26 AM - System Checkpoint
RP702: 9/2/2012 11:06:42 AM - System Checkpoint
RP703: 9/3/2012 12:03:38 PM - System Checkpoint
RP704: 9/4/2012 7:28:21 PM - System Checkpoint
RP705: 9/5/2012 7:54:18 PM - System Checkpoint
RP706: 9/6/2012 8:51:24 PM - System Checkpoint
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Reader 7.0
America Online (Choose which version to remove)
ATI Control Panel
ATI Display Driver
Conexant AC-Link Audio
ESET Online Scanner v3
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB981793)
HP Photo and Imaging 2.0 - All-in-One
HP Photo and Imaging 2.0 - All-in-One Drivers
Java 2 Runtime Environment, SE v1.4.2
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 4 Client Profile
Microsoft Office Standard Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
MSXML 4.0 SP2 (KB954430)
MWSnap 3
Nero BurnRights
Nero OEM
PowerDVD
QuickTime
RealPlayer Basic
Recovery Software Suite Gateway
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
SoftV92 Data Fax Modem with SmartCP
Spybot - Search & Destroy
Spyware Terminator
SUPERAntiSpyware
Synaptics Pointing Device Driver
Texas Instruments PCIxx21/x515 drivers.
TIxx21
TWC Client ActiveX Controls
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB982632)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2718704)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Viewpoint Media Player
WebFldrs XP
Windows Backup Utility
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
9/3/2012 8:16:44 PM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
9/2/2012 9:35:00 AM, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 00E0B882256A. The following error occurred: The operation was canceled by the user. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
9/2/2012 10:16:12 AM, error: DCOM [10000] - Unable to start a DCOM Server: {022105BD-948A-40C9-AB42-A3300DDF097F}. The error: "%6" Happened while starting this command: "C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" -Embedding
9/1/2012 9:43:46 AM, error: DCOM [10000] - Unable to start a DCOM Server: {ABC01078-F197-4B0B-ADBC-CFE684B39C82}. The error: "%6" Happened while starting this command: "C:\Program Files\Google\Update\1.3.21.111\GoogleUpdateOnDemand.exe" -Embedding
9/1/2012 11:25:29 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Netman service.
9/1/2012 10:10:15 AM, error: Service Control Manager [7000] - The McAfee Task Scheduler service failed to start due to the following error: The system cannot find the path specified.
.
==== End Of File ===========================
B. DDS.txt
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Owner at 7:52:43 on 2012-09-07
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1177 [GMT -4:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: McAfee VirusScan *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall Plus *Disabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Malware\mbamgui.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Malware\mbamservice.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://penelopesoasis.com/2011/wise-marriage-advice.html
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [SpywareTerminatorUpdate] "c:\program files\spyware terminator\SpywareTerminatorUpdate.exe"
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil11e_ActiveX.exe -update activex
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [Reminder] %WINDIR%\Creator\Remind_XP.exe
mRun: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malware\mbamgui.exe" /starttray
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSCONFIG.EXE /auto
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBC}
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
Trusted Zone: sprint.com
Trusted Zone: sprint.com\www
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.4.2/jinstall-1_4_2-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.4.2/jinstall-1_4_2-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{706DA5E6-40E7-433B-986C-03E8C0596084} : DhcpNameServer = 209.18.47.61 209.18.47.62
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: AtiExtEvent - Ati2evxx.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 25680]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2010-2-17 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-8-23 142592]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2010-6-29 116608]
R2 MBAMService;MBAMService;c:\program files\malware\mbamservice.exe [2012-8-16 655944]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-8-23 22344]
S0 IFP300;iriver Internet Audio Player IFP-300;c:\windows\system32\drivers\ifp300.sys --> c:\windows\system32\drivers\ifp300.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-6-22 136176]
S2 McTskshd.exe;McAfee Task Scheduler;c:\progra~1\mcafee.com\agent\mctskshd.exe --> c:\progra~1\mcafee.com\agent\mctskshd.exe [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-6-22 136176]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-09-07 11:05:44 -------- d-----w- C:\oldlogs
2012-09-01 21:58:00 -------- d-sha-r- C:\cmdcons
2012-08-22 11:57:59 -------- d-----w- c:\windows\system32\wbem\repository\FS
2012-08-22 11:57:59 -------- d-----w- c:\windows\system32\wbem\Repository
2012-08-21 10:44:28 -------- d-----w- c:\windows\pss
2012-08-20 02:07:31 -------- d-----w- c:\program files\ESET
2012-08-20 01:23:10 3993600 ----a-w- c:\program files\GUT22.tmp
2012-08-20 01:23:10 -------- d-----w- c:\program files\GUM21.tmp
2012-08-20 01:20:39 53352 ----a-w- c:\windows\system32\jpicpl32.cpl
2012-08-20 01:16:33 -------- d-----w- c:\program files\GUMD.tmp
2012-08-19 04:19:06 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2012-08-19 04:17:27 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-08-19 04:17:27 3072 ------w- c:\windows\system32\iacenc.dll
2012-08-16 23:10:29 -------- d-----w- c:\program files\Malware
.
==================== Find3M ====================
.
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 17:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-03 13:40:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:49:33 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:49:32 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:49:32 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 7:53:24.25 ===============
4. AdwCleaner Log:
# AdwCleaner v2.000 - Logfile created 09/07/2012 at 08:00:23
# Updated 30/08/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Owner - KITCHENLAPTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\QR8IDOT9\adwcleaner[1].exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
Folder Found : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\Viewpoint
***** [Registry] *****
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\Software\MetaStream
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Found : HKLM\Software\Viewpoint
Key Found : HKU\S-1-5-21-3378278228-2059735243-2500004591-1003\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
***** [Internet Browsers] *****
-\\ Internet Explorer v8.0.6001.18702
[OK] Registry is clean.
-\\ Google Chrome v21.0.1180.89
File : C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[R1].txt - [2213 octets] - [07/09/2012 07:59:35]
AdwCleaner[R2].txt - [2232 octets] - [07/09/2012 08:00:23]
########## EOF - C:\AdwCleaner[R2].txt - [2292 octets] ##########