DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Pia at 14:35:51 on 2013-02-17
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.2450 [GMT -8:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
I:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
I:\WINDOWS\system32\Ati2evxx.exe
I:\WINDOWS\system32\spoolsv.exe
C:\SASCORE.EXE
I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
I:\Program Files\DefaultTab\DefaultTabSearch.exe
I:\Documents and Settings\Pia\Application Data\DefaultTab\DefaultTab\DTUpdate.exe
I:\Program Files\Ralink\Common\RaRegistry.exe
I:\WINDOWS\system32\wbem\wmiprvse.exe
I:\WINDOWS\System32\alg.exe
I:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
I:\WINDOWS\RTHDCPL.EXE
I:\Program Files\iTunes\iTunesHelper.exe
C:\SUPERAntiSpyware.exe
I:\WINDOWS\system32\ctfmon.exe
I:\Program Files\Messenger\msmsgs.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
I:\Program Files\Ralink\Common\RaUI.exe
I:\Program Files\iPod\bin\iPodService.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
I:\WINDOWS\system32\wbem\wmiprvse.exe
I:\WINDOWS\System32\svchost.exe -k netsvcs
I:\WINDOWS\system32\svchost.exe -k NetworkService
I:\WINDOWS\system32\svchost.exe -k LocalService
I:\WINDOWS\system32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page =
www.kirotv.com
uInternet Connection Wizard,ShellNext = hxxp://
www.google.com/support/chrome/bin/request.py?hl=en-US&contact_type=uninstall&crversion=21.0.1180.83&os=5.1.2600
BHO: DefaultTab Browser Helper: {7F6AFBF1-E065-4627-A2FD-810366367D01} - I:\documents and settings\pia\application data\defaulttab\defaulttab\DefaultTabBHO.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [SUPERAntiSpyware] C:\SUPERAntiSpyware.exe
uRun: [ctfmon.exe] I:\windows\system32\ctfmon.exe
uRun: [Google Update] "I:\documents and settings\pia\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [MSMSGS] "I:\program files\messenger\msmsgs.exe" /background
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [StartCCC] "I:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [APSDaemon] "I:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "I:\program files\itunes\iTunesHelper.exe"
mRunOnce: [Malwarebytes Anti-Malware] I:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: I:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - I:\program files\ralink\common\RaUI.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1345835873562
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1345913914875
TCP: NameServer = 192.168.1.1 74.40.74.40
TCP: Interfaces\{74C02BAB-FE9A-4F0A-9F19-AB3EF276A189} : DHCPNameServer = 192.168.1.1 74.40.74.40
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\SASSEH.DLL
Hosts: 127.0.0.1
www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - I:\documents and settings\pia\application data\mozilla\firefox\profiles\dschabm4.default\
FF - prefs.js: browser.startup.homepage - hxxp://
www.kirotv.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: I:\documents and settings\pia\local settings\application data\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: I:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: I:\windows\system32\macromed\flash\NPSWF32_11_6_602_168.dll
FF - plugin: I:\windows\system32\npDeployJava1.dll
FF - plugin: I:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;I:\windows\system32\drivers\aswSnx.sys [2012-8-24 738504]
R1 aswSP;aswSP;I:\windows\system32\drivers\aswSP.sys [2012-8-24 361032]
R1 SASDIFSV;SASDIFSV;C:\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;C:\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;C:\SASCORE.EXE [2011-8-11 116608]
R2 aswFsBlk;aswFsBlk;I:\windows\system32\drivers\aswFsBlk.sys [2012-8-24 21256]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-24 44808]
R2 DefaultTabSearch;DefaultTabSearch;I:\program files\defaulttab\DefaultTabSearch.exe [2013-2-6 572928]
R2 DefaultTabUpdate;DefaultTabUpdate;I:\documents and settings\pia\application data\defaulttab\defaulttab\DTUpdate.exe [2012-12-28 107520]
R2 EAPPkt;Realtek EAPPkt Protocol;I:\windows\system32\drivers\EAPPkt.sys [2012-8-30 38144]
R2 RalinkRegistryWriter;Ralink Registry Writer;I:\program files\ralink\common\RaRegistry.exe [2012-8-24 185632]
R2 Scutum50;Scutum50 NDIS Protocol Driver;I:\windows\system32\drivers\Scutum50.sys [2012-8-24 19072]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;I:\windows\system32\drivers\AtihdXP3.sys [2012-8-25 103040]
R3 RTL8192su;%RTL8192su.DeviceDesc.DispName%;I:\windows\system32\drivers\RTL8192su.sys [2012-8-31 606440]
S3 Ambfilt;Ambfilt;I:\windows\system32\drivers\Ambfilt.sys [2012-8-25 1691480]
S3 Revoflt;Revoflt;I:\windows\system32\drivers\revoflt.sys [2012-8-24 27064]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;I:\windows\system32\drivers\rt2870.sys [2012-8-24 724736]
.
=============== Created Last 30 ================
.
2013-02-17 22:03:48 21104 ----a-w- I:\windows\system32\drivers\mbam.sys
2013-02-17 22:03:48 -------- d-----w- I:\program files\Malwarebytes' Anti-Malware
2013-02-03 04:07:31 -------- d-----w- I:\documents and settings\pia\local settings\application data\Identities
.
==================== Find3M ====================
.
2013-02-17 20:16:03 71024 -c--a-w- I:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-17 20:16:03 691568 -c--a-w- I:\windows\system32\FlashPlayerApp.exe
2013-01-26 03:55:44 552448 ----a-w- I:\windows\system32\oleaut32.dll
2013-01-07 01:19:45 2148864 ----a-w- I:\windows\system32\ntoskrnl.exe
2013-01-07 00:37:01 2027520 ----a-w- I:\windows\system32\ntkrnlpa.exe
2013-01-04 01:20:00 1867264 ----a-w- I:\windows\system32\win32k.sys
2013-01-02 06:49:10 148992 ----a-w- I:\windows\system32\mpg2splt.ax
2013-01-02 06:49:10 1292288 ----a-w- I:\windows\system32\quartz.dll
2012-12-26 20:16:29 916480 ----a-w- I:\windows\system32\wininet.dll
2012-12-26 20:16:28 43520 ----a-w- I:\windows\system32\licmgr10.dll
2012-12-26 20:16:28 1469440 ----a-w- I:\windows\system32\inetcpl.cpl
2012-12-24 06:40:59 385024 ------w- I:\windows\system32\html.iec
2012-12-16 12:23:59 290560 ----a-w- I:\windows\system32\atmfd.dll
.
============= FINISH: 14:36:03.64 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 8/23/2012 2:56:18 PM
System Uptime: 2/17/2013 1:30:26 PM (1 hours ago)
.
Motherboard: ECS | | MCP61PM-GM
Processor: AMD Phenom(tm) 9600 Quad-Core Processor | Socket AM2 | 2310/1mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 455 GiB total, 451.047 GiB free.
D: is FIXED (NTFS) - 466 GiB total, 353.428 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is FIXED (NTFS) - 11 GiB total, 2.008 GiB free.
J: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Beanbag Emulation Device
Device ID: USB\VID_147A&PID_E018&MI_00\6&BF108A6&0&0000
Manufacturer:
Name: Beanbag Emulation Device
PNP Device ID: USB\VID_147A&PID_E018&MI_00\6&BF108A6&0&0000
Service:
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Multimedia Controller
Device ID: PCI\VEN_1745&DEV_2100&SUBSYS_48B81043&REV_00\4&31C504BE&0&0060
Manufacturer:
Name: Multimedia Controller
PNP Device ID: PCI\VEN_1745&DEV_2100&SUBSYS_48B81043&REV_00\4&31C504BE&0&0060
Service:
.
==== System Restore Points ===================
.
RP105: 2/1/2013 10:50:48 AM - System Checkpoint
RP106: 2/2/2013 9:55:59 PM - System Checkpoint
RP107: 2/4/2013 1:23:08 PM - System Checkpoint
RP108: 2/5/2013 6:45:24 PM - System Checkpoint
RP109: 2/6/2013 7:29:13 PM - System Checkpoint
RP110: 2/7/2013 9:30:25 PM - System Checkpoint
RP111: 2/9/2013 11:32:16 PM - System Checkpoint
RP112: 2/12/2013 6:52:46 PM - System Checkpoint
RP113: 2/12/2013 9:17:16 PM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
AMD Catalyst Install Manager
Apple Application Support
Apple Mobile Device Support
Apple Software Update
avast! Free Antivirus
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
DefaultTab
Google Chrome
Google Earth
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
iTunes
Malwarebytes Anti-Malware version 1.70.0.1100
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox 15.0.1 (x86 en-US)
Mozilla Firefox 18.0.2 (x86 en-US)
Mozilla Maintenance Service
NVIDIA Drivers
PDFCreator
Ralink RT2870 Wireless LAN Card
Realtek High Definition Audio Driver
Revo Uninstaller Pro 2.5.9
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2753842)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761226)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2778344)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2799494)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Soft Data Fax Modem with SmartCP
Spybot - Search & Destroy
SpywareBlaster 4.6
TeamViewer 7
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2718704)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Driver Package - NVIDIA Corporation (nvstor32) HDC (07/02/2007 5.10.2600.0995)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
2/14/2013 4:40:28 PM, error: Service Control Manager [7000] - The XAudioService service failed to start due to the following error: %1 is not a valid Win32 application.
.
==== End Of File ===========================