Hi,
My PC is suddenly slow and laggy, and occasionally it stops responding when I am online. I haven't had very many issues before recently. There are only a handful of websites that I visit when I am online.
I have perused the 6-step guide posted in this forum, and I will paste my logs below.
Any help would be greatly appreciated.
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7555
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
8/24/2011 3:09:37 PM
mbam-log-2011-08-24 (15-09-37).txt
Scan type: Quick scan
Objects scanned: 169137
Time elapsed: 15 minute(s), 3 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-08-26 00:15:31
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e ST380815AS rev.4.ADA
Running: v6jqg6lj[1].exe; Driver: C:\DOCUME~1\JAIMO\LOCALS~1\Temp\ufddypog.sys
---- Disk sectors - GMER 1.0.15 ----
Disk \Device\Harddisk0\DR0 malicious Win32:MBRoot code @ sector 156232128
Disk \Device\Harddisk0\DR0 PE file @ sector 156232150
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAA18BBF2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAA18BA5D]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAA1E3398]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by JAIMO at 0:53:17 on 2011-08-26
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.464 [GMT -4:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: WormRadar.com IESiteBlocker.NavFilter: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - AVG Safe Search
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} - hxxp://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1270398471859
DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1270422002265
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 68.87.71.230 68.87.73.246
TCP: Interfaces\{52408063-6109-4531-B654-7716CD04BAF4} : DhcpNameServer = 68.87.71.230 68.87.73.246
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-8-22 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-8-22 309848]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-8-22 19544]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-8-22 42184]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-5-12 136176]
S3 EraserUtilDrv11113;EraserUtilDrv11113;\??\c:\program files\common files\symantec shared\eengine\eraserutildrv11113.sys --> c:\program files\common files\symantec shared\eengine\EraserUtilDrv11113.sys [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-5-12 136176]
.
=============== Created Last 30 ================
.
2011-08-24 18:53:47 -------- d-----w- c:\documents and settings\jaimo\application data\Malwarebytes
2011-08-24 18:53:38 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-24 18:53:37 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-08-24 18:53:33 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-24 18:53:33 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-24 16:54:10 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-22 20:08:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-08-22 20:07:40 40112 ----a-w- c:\windows\avastSS.scr
2011-08-22 20:07:25 -------- d-----w- c:\program files\AVAST Software
2011-08-22 20:07:25 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2011-08-11 19:40:11 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2011-08-11 19:39:30 106928 ----a-w- c:\windows\system32\GEARAspi.dll
2011-08-10 03:19:29 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2011-08-10 03:19:16 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
.
==================== Find3M ====================
.
2011-08-10 10:48:56 81984 ----a-w- c:\windows\system32\bdod.bin
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:36:30 43520 ------w- c:\windows\system32\licmgr10.dll
2011-06-23 18:36:30 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec
2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys
2010-07-24 21:12:55 81408 -c--a-w- c:\program files\taskkill.exe
.
============= FINISH: 0:54:10.32 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 4/3/2010 1:19:54 AM
System Uptime: 8/25/2011 9:20:43 AM (15 hours ago)
.
Motherboard: Dell Inc. | | 0WJ772
Processor: Intel(R) Celeron(R) CPU 2.80GHz | Microprocessor | 2792/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 74 GiB total, 15.05 GiB free.
D: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP534: 6/8/2011 8:10:55 AM - System Checkpoint
RP535: 6/9/2011 9:12:00 AM - System Checkpoint
RP536: 6/10/2011 10:10:55 AM - System Checkpoint
RP537: 6/10/2011 10:32:50 PM - Installed Portfolio Browser
RP538: 6/11/2011 11:26:33 PM - System Checkpoint
RP539: 6/13/2011 12:10:55 AM - System Checkpoint
RP540: 6/14/2011 1:10:55 AM - System Checkpoint
RP541: 6/15/2011 2:28:36 AM - System Checkpoint
RP542: 6/16/2011 3:00:23 AM - Software Distribution Service 3.0
RP543: 6/17/2011 4:09:25 AM - System Checkpoint
RP544: 6/18/2011 4:41:42 AM - System Checkpoint
RP545: 6/19/2011 5:41:43 AM - System Checkpoint
RP546: 6/20/2011 6:41:43 AM - System Checkpoint
RP547: 6/21/2011 7:41:43 AM - System Checkpoint
RP548: 6/22/2011 8:41:31 AM - System Checkpoint
RP549: 6/23/2011 12:53:24 AM - Removed Portfolio Browser
RP550: 6/24/2011 12:55:02 AM - System Checkpoint
RP551: 6/25/2011 1:05:32 AM - System Checkpoint
RP552: 6/25/2011 9:11:03 AM - Removed Google Earth.
RP553: 6/25/2011 9:12:28 AM - Removed Google Earth Plug-in.
RP554: 6/26/2011 9:41:32 AM - System Checkpoint
RP555: 6/27/2011 9:48:10 AM - System Checkpoint
RP556: 6/28/2011 10:42:37 AM - System Checkpoint
RP557: 6/29/2011 3:00:23 AM - Software Distribution Service 3.0
RP558: 6/30/2011 3:00:24 AM - Software Distribution Service 3.0
RP559: 7/1/2011 4:09:25 AM - System Checkpoint
RP560: 7/2/2011 4:31:55 AM - System Checkpoint
RP561: 7/3/2011 5:31:54 AM - System Checkpoint
RP562: 7/4/2011 6:31:54 AM - System Checkpoint
RP563: 7/5/2011 6:48:16 AM - System Checkpoint
RP564: 7/5/2011 11:39:32 PM - Restore Operation
RP565: 7/5/2011 11:42:53 PM - Restore Operation
RP566: 7/5/2011 11:44:25 PM - avast! Free Antivirus Setup
RP567: 7/5/2011 11:51:29 PM - Avira AntiVir Personal - 7/5/2011 23:50
RP568: 7/7/2011 12:50:14 AM - System Checkpoint
RP569: 7/8/2011 1:14:23 AM - System Checkpoint
RP570: 7/9/2011 1:50:02 AM - System Checkpoint
RP571: 7/10/2011 2:50:03 AM - System Checkpoint
RP572: 7/11/2011 2:51:07 AM - System Checkpoint
RP573: 7/12/2011 4:37:07 AM - System Checkpoint
RP574: 7/13/2011 4:50:04 AM - System Checkpoint
RP575: 7/14/2011 3:00:33 AM - Software Distribution Service 3.0
RP576: 7/15/2011 4:09:01 AM - System Checkpoint
RP577: 7/16/2011 4:18:42 AM - System Checkpoint
RP578: 7/17/2011 4:33:02 AM - System Checkpoint
RP579: 7/18/2011 5:33:00 AM - System Checkpoint
RP580: 7/19/2011 6:33:00 AM - System Checkpoint
RP581: 7/20/2011 7:33:01 AM - System Checkpoint
RP582: 7/21/2011 8:15:44 AM - System Checkpoint
RP583: 7/22/2011 9:15:44 AM - System Checkpoint
RP584: 7/23/2011 10:15:44 AM - System Checkpoint
RP585: 7/24/2011 11:27:43 AM - System Checkpoint
RP586: 7/25/2011 12:15:29 PM - System Checkpoint
RP587: 7/25/2011 8:28:32 PM - Installed BitDefender Free Edition 2009
RP588: 7/26/2011 8:56:17 PM - System Checkpoint
RP589: 7/27/2011 10:27:49 PM - System Checkpoint
RP590: 7/28/2011 10:56:16 PM - System Checkpoint
RP591: 7/30/2011 - System Checkpoint
RP592: 7/31/2011 12:31:39 AM - System Checkpoint
RP593: 8/1/2011 12:56:08 AM - System Checkpoint
RP594: 8/2/2011 12:56:55 AM - System Checkpoint
RP595: 8/3/2011 12:57:14 AM - System Checkpoint
RP596: 8/4/2011 2:58:08 AM - System Checkpoint
RP597: 8/5/2011 3:00:37 AM - System Checkpoint
RP598: 8/6/2011 3:56:08 AM - System Checkpoint
RP599: 8/7/2011 4:43:23 AM - System Checkpoint
RP600: 8/8/2011 5:08:23 AM - System Checkpoint
RP601: 8/9/2011 5:43:22 AM - System Checkpoint
RP602: 8/10/2011 3:00:17 AM - Software Distribution Service 3.0
RP603: 8/10/2011 6:48:46 AM - Removed BitDefender Free Edition 2009
RP604: 8/11/2011 6:56:35 AM - System Checkpoint
RP605: 8/12/2011 7:42:42 AM - System Checkpoint
RP606: 8/13/2011 7:48:26 AM - System Checkpoint
RP607: 8/14/2011 8:42:43 AM - System Checkpoint
RP608: 8/15/2011 10:06:14 AM - System Checkpoint
RP609: 8/16/2011 10:42:41 AM - System Checkpoint
RP610: 8/17/2011 12:25:17 PM - System Checkpoint
RP611: 8/17/2011 2:26:17 PM - Removed Adobe Reader X (10.0.1).
RP612: 8/17/2011 2:26:58 PM - Removed Adobe Flash Player 10 Plugin.
RP613: 8/18/2011 2:36:22 PM - System Checkpoint
RP614: 8/19/2011 2:37:26 PM - System Checkpoint
RP615: 8/20/2011 3:36:21 PM - System Checkpoint
RP616: 8/21/2011 3:41:46 PM - System Checkpoint
RP617: 8/22/2011 4:07:25 PM - avast! Free Antivirus Setup
RP618: 8/22/2011 8:15:49 PM - Installed Adobe Reader X (10.1.0).
RP619: 8/23/2011 9:05:33 PM - System Checkpoint
RP620: 8/24/2011 11:05:45 PM - System Checkpoint
RP621: 8/25/2011 3:00:15 AM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Reader X (10.1.0)
avast! Free Antivirus
Dell Driver Download Manager
Facebook Plug-In
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Photo and Imaging 2.0 - All-in-One
HP Photo and Imaging 2.0 - All-in-One Drivers
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections Drivers
Java Auto Updater
Java(TM) 6 Update 20
Java(TM) 6 Update 23
Malwarebytes' Anti-Malware version 1.51.1.1800
Media Player Codec Pack 3.9.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
OpenOffice.org 3.2
Pando Media Booster
QuickTime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.0
runtime
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2183461)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165-v2)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SigmaTel Audio
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2362765)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
VS10Runtime
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
8/23/2011 7:57:45 AM, error: Dhcp [1002] - The IP address lease 192.168.1.101 for the Network Card with network address 001676B192DD has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
8/23/2011 7:56:28 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
8/22/2011 12:13:41 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
8/19/2011 2:32:41 PM, error: Dhcp [1002] - The IP address lease 192.168.1.100 for the Network Card with network address 001676B192DD has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
.
==== End Of File ===========================
My PC is suddenly slow and laggy, and occasionally it stops responding when I am online. I haven't had very many issues before recently. There are only a handful of websites that I visit when I am online.
I have perused the 6-step guide posted in this forum, and I will paste my logs below.
Any help would be greatly appreciated.
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7555
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
8/24/2011 3:09:37 PM
mbam-log-2011-08-24 (15-09-37).txt
Scan type: Quick scan
Objects scanned: 169137
Time elapsed: 15 minute(s), 3 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-08-26 00:15:31
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e ST380815AS rev.4.ADA
Running: v6jqg6lj[1].exe; Driver: C:\DOCUME~1\JAIMO\LOCALS~1\Temp\ufddypog.sys
---- Disk sectors - GMER 1.0.15 ----
Disk \Device\Harddisk0\DR0 malicious Win32:MBRoot code @ sector 156232128
Disk \Device\Harddisk0\DR0 PE file @ sector 156232150
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAA18BBF2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAA18BA5D]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAA1E3398]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by JAIMO at 0:53:17 on 2011-08-26
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.464 [GMT -4:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: WormRadar.com IESiteBlocker.NavFilter: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - AVG Safe Search
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} - hxxp://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1270398471859
DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1270422002265
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 68.87.71.230 68.87.73.246
TCP: Interfaces\{52408063-6109-4531-B654-7716CD04BAF4} : DhcpNameServer = 68.87.71.230 68.87.73.246
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-8-22 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-8-22 309848]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-8-22 19544]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-8-22 42184]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-5-12 136176]
S3 EraserUtilDrv11113;EraserUtilDrv11113;\??\c:\program files\common files\symantec shared\eengine\eraserutildrv11113.sys --> c:\program files\common files\symantec shared\eengine\EraserUtilDrv11113.sys [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-5-12 136176]
.
=============== Created Last 30 ================
.
2011-08-24 18:53:47 -------- d-----w- c:\documents and settings\jaimo\application data\Malwarebytes
2011-08-24 18:53:38 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-24 18:53:37 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-08-24 18:53:33 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-24 18:53:33 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-24 16:54:10 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-22 20:08:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-08-22 20:07:40 40112 ----a-w- c:\windows\avastSS.scr
2011-08-22 20:07:25 -------- d-----w- c:\program files\AVAST Software
2011-08-22 20:07:25 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2011-08-11 19:40:11 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2011-08-11 19:39:30 106928 ----a-w- c:\windows\system32\GEARAspi.dll
2011-08-10 03:19:29 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2011-08-10 03:19:16 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
.
==================== Find3M ====================
.
2011-08-10 10:48:56 81984 ----a-w- c:\windows\system32\bdod.bin
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:36:30 43520 ------w- c:\windows\system32\licmgr10.dll
2011-06-23 18:36:30 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec
2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys
2010-07-24 21:12:55 81408 -c--a-w- c:\program files\taskkill.exe
.
============= FINISH: 0:54:10.32 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 4/3/2010 1:19:54 AM
System Uptime: 8/25/2011 9:20:43 AM (15 hours ago)
.
Motherboard: Dell Inc. | | 0WJ772
Processor: Intel(R) Celeron(R) CPU 2.80GHz | Microprocessor | 2792/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 74 GiB total, 15.05 GiB free.
D: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP534: 6/8/2011 8:10:55 AM - System Checkpoint
RP535: 6/9/2011 9:12:00 AM - System Checkpoint
RP536: 6/10/2011 10:10:55 AM - System Checkpoint
RP537: 6/10/2011 10:32:50 PM - Installed Portfolio Browser
RP538: 6/11/2011 11:26:33 PM - System Checkpoint
RP539: 6/13/2011 12:10:55 AM - System Checkpoint
RP540: 6/14/2011 1:10:55 AM - System Checkpoint
RP541: 6/15/2011 2:28:36 AM - System Checkpoint
RP542: 6/16/2011 3:00:23 AM - Software Distribution Service 3.0
RP543: 6/17/2011 4:09:25 AM - System Checkpoint
RP544: 6/18/2011 4:41:42 AM - System Checkpoint
RP545: 6/19/2011 5:41:43 AM - System Checkpoint
RP546: 6/20/2011 6:41:43 AM - System Checkpoint
RP547: 6/21/2011 7:41:43 AM - System Checkpoint
RP548: 6/22/2011 8:41:31 AM - System Checkpoint
RP549: 6/23/2011 12:53:24 AM - Removed Portfolio Browser
RP550: 6/24/2011 12:55:02 AM - System Checkpoint
RP551: 6/25/2011 1:05:32 AM - System Checkpoint
RP552: 6/25/2011 9:11:03 AM - Removed Google Earth.
RP553: 6/25/2011 9:12:28 AM - Removed Google Earth Plug-in.
RP554: 6/26/2011 9:41:32 AM - System Checkpoint
RP555: 6/27/2011 9:48:10 AM - System Checkpoint
RP556: 6/28/2011 10:42:37 AM - System Checkpoint
RP557: 6/29/2011 3:00:23 AM - Software Distribution Service 3.0
RP558: 6/30/2011 3:00:24 AM - Software Distribution Service 3.0
RP559: 7/1/2011 4:09:25 AM - System Checkpoint
RP560: 7/2/2011 4:31:55 AM - System Checkpoint
RP561: 7/3/2011 5:31:54 AM - System Checkpoint
RP562: 7/4/2011 6:31:54 AM - System Checkpoint
RP563: 7/5/2011 6:48:16 AM - System Checkpoint
RP564: 7/5/2011 11:39:32 PM - Restore Operation
RP565: 7/5/2011 11:42:53 PM - Restore Operation
RP566: 7/5/2011 11:44:25 PM - avast! Free Antivirus Setup
RP567: 7/5/2011 11:51:29 PM - Avira AntiVir Personal - 7/5/2011 23:50
RP568: 7/7/2011 12:50:14 AM - System Checkpoint
RP569: 7/8/2011 1:14:23 AM - System Checkpoint
RP570: 7/9/2011 1:50:02 AM - System Checkpoint
RP571: 7/10/2011 2:50:03 AM - System Checkpoint
RP572: 7/11/2011 2:51:07 AM - System Checkpoint
RP573: 7/12/2011 4:37:07 AM - System Checkpoint
RP574: 7/13/2011 4:50:04 AM - System Checkpoint
RP575: 7/14/2011 3:00:33 AM - Software Distribution Service 3.0
RP576: 7/15/2011 4:09:01 AM - System Checkpoint
RP577: 7/16/2011 4:18:42 AM - System Checkpoint
RP578: 7/17/2011 4:33:02 AM - System Checkpoint
RP579: 7/18/2011 5:33:00 AM - System Checkpoint
RP580: 7/19/2011 6:33:00 AM - System Checkpoint
RP581: 7/20/2011 7:33:01 AM - System Checkpoint
RP582: 7/21/2011 8:15:44 AM - System Checkpoint
RP583: 7/22/2011 9:15:44 AM - System Checkpoint
RP584: 7/23/2011 10:15:44 AM - System Checkpoint
RP585: 7/24/2011 11:27:43 AM - System Checkpoint
RP586: 7/25/2011 12:15:29 PM - System Checkpoint
RP587: 7/25/2011 8:28:32 PM - Installed BitDefender Free Edition 2009
RP588: 7/26/2011 8:56:17 PM - System Checkpoint
RP589: 7/27/2011 10:27:49 PM - System Checkpoint
RP590: 7/28/2011 10:56:16 PM - System Checkpoint
RP591: 7/30/2011 - System Checkpoint
RP592: 7/31/2011 12:31:39 AM - System Checkpoint
RP593: 8/1/2011 12:56:08 AM - System Checkpoint
RP594: 8/2/2011 12:56:55 AM - System Checkpoint
RP595: 8/3/2011 12:57:14 AM - System Checkpoint
RP596: 8/4/2011 2:58:08 AM - System Checkpoint
RP597: 8/5/2011 3:00:37 AM - System Checkpoint
RP598: 8/6/2011 3:56:08 AM - System Checkpoint
RP599: 8/7/2011 4:43:23 AM - System Checkpoint
RP600: 8/8/2011 5:08:23 AM - System Checkpoint
RP601: 8/9/2011 5:43:22 AM - System Checkpoint
RP602: 8/10/2011 3:00:17 AM - Software Distribution Service 3.0
RP603: 8/10/2011 6:48:46 AM - Removed BitDefender Free Edition 2009
RP604: 8/11/2011 6:56:35 AM - System Checkpoint
RP605: 8/12/2011 7:42:42 AM - System Checkpoint
RP606: 8/13/2011 7:48:26 AM - System Checkpoint
RP607: 8/14/2011 8:42:43 AM - System Checkpoint
RP608: 8/15/2011 10:06:14 AM - System Checkpoint
RP609: 8/16/2011 10:42:41 AM - System Checkpoint
RP610: 8/17/2011 12:25:17 PM - System Checkpoint
RP611: 8/17/2011 2:26:17 PM - Removed Adobe Reader X (10.0.1).
RP612: 8/17/2011 2:26:58 PM - Removed Adobe Flash Player 10 Plugin.
RP613: 8/18/2011 2:36:22 PM - System Checkpoint
RP614: 8/19/2011 2:37:26 PM - System Checkpoint
RP615: 8/20/2011 3:36:21 PM - System Checkpoint
RP616: 8/21/2011 3:41:46 PM - System Checkpoint
RP617: 8/22/2011 4:07:25 PM - avast! Free Antivirus Setup
RP618: 8/22/2011 8:15:49 PM - Installed Adobe Reader X (10.1.0).
RP619: 8/23/2011 9:05:33 PM - System Checkpoint
RP620: 8/24/2011 11:05:45 PM - System Checkpoint
RP621: 8/25/2011 3:00:15 AM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Reader X (10.1.0)
avast! Free Antivirus
Dell Driver Download Manager
Facebook Plug-In
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Photo and Imaging 2.0 - All-in-One
HP Photo and Imaging 2.0 - All-in-One Drivers
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections Drivers
Java Auto Updater
Java(TM) 6 Update 20
Java(TM) 6 Update 23
Malwarebytes' Anti-Malware version 1.51.1.1800
Media Player Codec Pack 3.9.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
OpenOffice.org 3.2
Pando Media Booster
QuickTime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.0
runtime
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2183461)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165-v2)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SigmaTel Audio
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2362765)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
VS10Runtime
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
8/23/2011 7:57:45 AM, error: Dhcp [1002] - The IP address lease 192.168.1.101 for the Network Card with network address 001676B192DD has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
8/23/2011 7:56:28 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
8/22/2011 12:13:41 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
8/19/2011 2:32:41 PM, error: Dhcp [1002] - The IP address lease 192.168.1.100 for the Network Card with network address 001676B192DD has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
.
==== End Of File ===========================