Kent Russell
Posts: 25 +0
2 weeks ago my computer went down and I could not reboot, I used Hirens boot cd 15.2 and was able to reboot, I thought I had solved the problem...in the last few days I am getting these fake virus pop ups and notices from av that a malicious threat has been blocked...am I still infected?
below are the malwarebytes and DDS logs
Any help is greatly appreciated.
Thank you and I hope I am doing this right
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.06.26.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Owner :: KEN [administrator]
6/26/2013 9:50:39 PM
mbam-log-2013-06-26 (21-50-39).txt
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 424373
Time elapsed: 2 hour(s), 26 minute(s), 34 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 2/23/2004 2:36:34 PM
System Uptime: 6/27/2013 3:16:57 AM (5 hours ago)
.
Motherboard: ASUSTek Computer INC. | | Kamet2
Processor: AMD Athlon(tm) XP 2800+ | Socket A | 2075/166mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 107 GiB total, 36.356 GiB free.
D: is FIXED (FAT32) - 5 GiB total, 0.961 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1481: 5/7/2013 3:00:20 AM - Software Distribution Service 3.0
RP1482: 5/8/2013 3:00:19 AM - Software Distribution Service 3.0
RP1483: 5/9/2013 3:00:19 AM - Software Distribution Service 3.0
RP1484: 5/10/2013 3:00:22 AM - Software Distribution Service 3.0
RP1485: 5/11/2013 3:00:25 AM - Software Distribution Service 3.0
RP1486: 5/12/2013 3:00:19 AM - Software Distribution Service 3.0
RP1487: 5/13/2013 3:00:22 AM - Software Distribution Service 3.0
RP1488: 5/14/2013 3:00:19 AM - Software Distribution Service 3.0
RP1489: 5/15/2013 3:00:19 AM - Software Distribution Service 3.0
RP1490: 5/16/2013 3:00:26 AM - Software Distribution Service 3.0
RP1491: 5/17/2013 3:00:20 AM - Software Distribution Service 3.0
RP1492: 5/18/2013 3:00:19 AM - Software Distribution Service 3.0
RP1493: 5/19/2013 3:00:22 AM - Software Distribution Service 3.0
RP1494: 5/20/2013 3:00:19 AM - Software Distribution Service 3.0
RP1495: 5/21/2013 3:00:19 AM - Software Distribution Service 3.0
RP1496: 5/22/2013 3:00:27 AM - Software Distribution Service 3.0
RP1497: 5/23/2013 3:00:19 AM - Software Distribution Service 3.0
RP1498: 5/24/2013 3:00:21 AM - Software Distribution Service 3.0
RP1499: 5/25/2013 3:00:20 AM - Software Distribution Service 3.0
RP1500: 5/26/2013 3:00:23 AM - Software Distribution Service 3.0
RP1501: 5/27/2013 10:29:40 PM - Software Distribution Service 3.0
RP1502: 5/28/2013 3:00:21 AM - Software Distribution Service 3.0
RP1503: 5/29/2013 3:00:19 AM - Software Distribution Service 3.0
RP1504: 5/30/2013 3:00:25 AM - Software Distribution Service 3.0
RP1505: 5/31/2013 3:00:52 AM - Software Distribution Service 3.0
RP1506: 6/1/2013 3:00:22 AM - Software Distribution Service 3.0
RP1507: 6/2/2013 3:00:18 AM - Software Distribution Service 3.0
RP1508: 6/3/2013 3:00:18 AM - Software Distribution Service 3.0
RP1509: 6/3/2013 10:13:14 PM - Software Distribution Service 3.0
RP1510: 6/4/2013 3:00:23 AM - Software Distribution Service 3.0
RP1511: 6/5/2013 3:00:19 AM - Software Distribution Service 3.0
RP1512: 6/6/2013 3:00:20 AM - Software Distribution Service 3.0
RP1513: 6/7/2013 3:00:19 AM - Software Distribution Service 3.0
RP1514: 6/8/2013 3:00:20 AM - Software Distribution Service 3.0
RP1515: 6/9/2013 3:00:20 AM - Software Distribution Service 3.0
RP1516: 6/10/2013 3:00:20 AM - Software Distribution Service 3.0
RP1517: 6/11/2013 3:00:19 AM - Software Distribution Service 3.0
RP1518: 6/12/2013 3:00:19 AM - Software Distribution Service 3.0
RP1519: 6/13/2013 3:00:20 AM - Software Distribution Service 3.0
RP1520: 6/14/2013 3:00:19 AM - Software Distribution Service 3.0
RP1521: 6/15/2013 3:00:26 AM - Software Distribution Service 3.0
RP1522: 6/16/2013 3:00:19 AM - Software Distribution Service 3.0
RP1523: 6/17/2013 3:00:19 AM - Software Distribution Service 3.0
RP1524: 6/18/2013 3:00:41 AM - Software Distribution Service 3.0
RP1525: 6/19/2013 3:00:21 AM - Software Distribution Service 3.0
RP1526: 6/20/2013 3:00:20 AM - Software Distribution Service 3.0
RP1527: 6/21/2013 3:00:19 AM - Software Distribution Service 3.0
RP1528: 6/22/2013 3:00:19 AM - Software Distribution Service 3.0
RP1529: 6/23/2013 3:05:21 AM - System Checkpoint
RP1530: 6/24/2013 3:58:07 AM - System Checkpoint
RP1531: 6/25/2013 8:27:08 AM - Software Distribution Service 3.0
RP1532: 6/25/2013 9:06:00 PM - avast! Free Antivirus Setup
RP1533: 6/25/2013 9:32:36 PM - Installed AVG 2013
RP1534: 6/25/2013 9:33:28 PM - Installed AVG 2013
RP1535: 6/25/2013 11:44:48 PM - Software Distribution Service 3.0
RP1536: 6/27/2013 3:00:22 AM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
4200
4200_Help
4200Tour
4200Trb
Acrobat.com
Adobe AIR
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.7)
Adobe Shockwave Player 11.6
Adobe® Photoshop® Album Starter Edition 3.0
Adobe® Photoshop® Album Starter Edition 3.0.1
AiO_Scan
AIOMinimal
AiOSoftware
Apple Mobile Device Support
Apple Software Update
AVG 2013
CCleaner
Compaq Connections
Compaq Instant Support
Copy
CreativeProjects
Director
DocProc
Document Manager
eFax Messenger 4.1
Fax
FriendsChecker
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
HotSPOT-Client-DMC
HpSdpAppCoreApp
HPSystemDiagnostics
InstantShare
Intel(R) Extreme Graphics Driver
InterVideo WinDVD Player
IrfanView (remove only)
Learn2 Player (Uninstall Only)
Lexmark Z700-P700 Series
Malwarebytes Anti-Malware version 1.75.0.1300
Memories Disc Creator 2.0
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Data Access Components KB870669
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Web Components
Microsoft Office Standard Edition 2003
Microsoft Office XP Web Components
Microsoft Plus! Digital Media Edition
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Works 7.0
Microsoft WSE 2.0 SP3 Runtime
Monopoly Here & Now Edition (remove only)
MSN Music Assistant
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA GART Driver
OGA Notifier 2.0.0048.0
Opera 12.15
Overland
PC-Doctor for Windows
PhotoGallery
POINT
PrintScreen
PS2
PSShortcutsP
Python 2.2 combined Win32 extensions
Python 2.2.1
QFolder
Quicken 2004
QuickProjects
Readme
Realtek AC'97 Audio
RecordNow!
Revo Uninstaller Pro 2.5.9
Rhapsody Player Engine
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
Saint Paint Studio
Scan
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB2809289)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2829530)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB2847204)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2753842)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761226)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2778344)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2799494)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB2807986)
Security Update for Windows XP (KB2808735)
Security Update for Windows XP (KB2813170)
Security Update for Windows XP (KB2813345)
Security Update for Windows XP (KB2820197)
Security Update for Windows XP (KB2820917)
Security Update for Windows XP (KB2829361)
Security Update for Windows XP (KB2839229)
Setup
SkinsHP1
SkinsHP2
SmartFTP Client
SmartFTP Client 3.0 Setup Files (remove only)
SmartNetMonitor for Client
Sonic Update Manager
SUPERAntiSpyware
swMSM
TrayApp
TuneUp Utilities Language Pack (en-US)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2718704)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
VIA Rhine-Family Fast Ethernet Adapter
VIA/S3G Display Driver
Viewpoint Manager (Remove Only)
Viewpoint Media Player
VLC media player 2.0.6
WebFldrs XP
WebIQ Technology Engine
WebReg
Windows Genuine Advantage v1.3.0254.0
Windows Imaging Component
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live installer
Windows Live Mail
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Writer
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
6/26/2013 8:52:56 AM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Microsoft Office 2003 (KB2539581).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Office 2003 (KB2726929).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft Office Web Components (KB947319).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft Office 2003 (KB2288613).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597).
6/23/2013 9:10:47 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: szkg
6/23/2013 9:10:47 PM, error: Service Control Manager [7022] - The Server service hung on starting.
6/23/2013 9:10:47 PM, error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: After starting, the service hung in a start-pending state.
6/23/2013 8:56:52 PM, error: Service Control Manager [7022] - The Fax service hung on starting.
6/23/2013 8:54:32 PM, error: Service Control Manager [7023] - The Human Interface Device Access service terminated with the following error: The system cannot find the file specified.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The nVidia WDM Video Capture (universal) service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The nVidia WDM A/V Crossbar service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
6/23/2013 7:47:56 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AmdK7 aswRvrt aswSnx aswSP aswTdi aswVmm FileDisk Fips SASDIFSV SASKUTIL szkg
6/23/2013 7:46:58 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
6/21/2013 3:03:17 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Office 2003 (KB2726929).
6/21/2013 3:02:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Microsoft Office Web Components (KB947319).
6/21/2013 3:02:18 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Update for Microsoft Office 2003 (KB2539581).
6/21/2013 3:01:45 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597).
6/21/2013 3:00:26 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Microsoft Office 2003 (KB2288613).
.
==== End Of File ===========================
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Owner at 8:00:54 on 2013-06-27
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1471.479 [GMT -5:00]
.
AV: AVG Anti-Virus 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ================
.
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
C:\Program Files\iolo\common\lib\ioloServiceManager.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\loggingserver.exe
C:\WINDOWS\System32\PMObserv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\LTMSG.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.search.us.com?guid={1EE66E74-EE56-4B47-8FF4-FCB8FFA46913}&serpv=1
mSearch Bar = hxxp://red.clientapps.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
uProxyOverride = localhost
uURLSearchHooks: {00000000-6E41-4FD3-8538-502F5495E5FC} - <orphaned>
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: FriendsChecker: {44ed99e2-16a6-4b89-80d6-5b21cf42e78b} - c:\program files\friendschecker\ie\common.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned>
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Google Update] "c:\documents and settings\owner\local settings\application data\google\update\GoogleUpdate.exe" /c
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockwave 11\SwHelper_1150596.exe -Update -1150596 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.nabiscoworld.com/Games/game_large.aspx?gameid=10036"
mRun: [VTTimer] VTTimer.exe
mRun: [LTMSG] LTMSG.exe 7
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.0\apps\apdproxy.exe"
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quicke~1.lnk - c:\program files\quicken\bagent.exe
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: Popup Blocker - Add to Black List - c:\program files\iolo\common\lib\AddToPSBlackList.htm
IE: Popup Blocker - Add to White List - c:\program files\iolo\common\lib\AddToPSWhiteList.htm
IE: Yahoo! &SMS - /c:\program files\yahoo!\Common/ycsms.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - hxxp://www.superadblocker.com/activex/sabspx.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Monopoly/Images/armhelper.ocx
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} - hxxp://zone.msn.com/bingame/hsol/default/SCEWebLauncher.cab
TCP: NameServer = 75.76.84.70 75.76.84.71
TCP: Interfaces\{E327DA45-822A-4DA9-B17B-2DB10DC513E8} : DHCPNameServer = 75.76.84.70 75.76.84.71
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\15.3.0\ViProtocol.dll
Notify: igfxcui - igfxsrvc.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Authentication Packages = msv1_0 nwprovau
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-11-15 94048]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-3-23 24408]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-6-25 37664]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2011-8-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2012-11-15 5814904]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2012-10-22 196664]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2008-2-1 596336]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2008-2-1 596336]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-6-26 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-6-26 701512]
R2 U3SDR200;U3SDR200;c:\windows\system32\drivers\U3SDR200.SYS [2010-7-31 4224]
R2 vToolbarUpdater15.3.0;vToolbarUpdater15.3.0;c:\program files\common files\avg secure search\vtoolbarupdater\15.3.0\ToolbarUpdater.exe [2013-6-26 1598128]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-3-3 22856]
R3 PMObserv;PMObserv;c:\windows\system32\PMObserv.exe [2004-2-23 135168]
S?4 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S2 mrtRate;mrtRate; [x]
S3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-5-16 27064]
S3 TukarooNT;TukarooNT;c:\windows\system32\drivers\tukaroont.sys --> c:\windows\system32\drivers\TukarooNT.sys [?]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;\??\c:\program files\tuneup utilities 2010\tuneuputilitiesdriver32.sys --> c:\program files\tuneup utilities 2010\TuneUpUtilitiesDriver32.sys [?]
.
=============== File Associations ===============
.
FileExt: .jse: JSEFile=NOTEPAD.EXE %1
FileExt: .wsf: WSFFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2013-06-27 03:54:12--------d-----w-c:\windows\system32\cache
2013-06-27 02:43:47--------d-----w-c:\program files\Malwarebytes' Anti-Malware
2013-06-26 02:38:46--------d-----w-c:\documents and settings\owner\application data\AVG2013
2013-06-26 02:36:02--------d-----w-c:\documents and settings\owner\local settings\application data\AVG SafeGuard toolbar
2013-06-26 02:35:45--------d-----w-c:\documents and settings\all users\application data\AVG SafeGuard toolbar
2013-06-26 02:35:42--------d-----w-c:\documents and settings\owner\application data\AVG SafeGuard toolbar
2013-06-26 02:35:3737664----a-w-c:\windows\system32\drivers\avgtpx86.sys
2013-06-26 02:35:34--------d-----w-c:\program files\common files\AVG Secure Search
2013-06-26 02:35:31--------d-----w-c:\program files\AVG SafeGuard toolbar
2013-06-26 02:34:03--------d--h--w-C:\$AVG
2013-06-26 02:34:03--------d-----w-c:\documents and settings\all users\application data\AVG2013
2013-06-26 02:29:10--------d-----w-c:\documents and settings\owner\local settings\application data\MFAData
2013-06-26 02:29:10--------d-----w-c:\documents and settings\owner\local settings\application data\Avg2013
.
==================== Find3M ====================
.
2013-06-11 19:35:2871048-c--a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-11 19:35:28692104-c--a-w-c:\windows\system32\FlashPlayerApp.exe
2013-05-07 22:30:06920064----a-w-c:\windows\system32\wininet.dll
2013-05-07 22:30:0543520------w-c:\windows\system32\licmgr10.dll
2013-05-07 22:30:051469440------w-c:\windows\system32\inetcpl.cpl
2013-05-07 21:53:29385024----a-w-c:\windows\system32\html.iec
2013-05-03 01:26:262193536----a-w-c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38:182070144----a-w-c:\windows\system32\ntkrnlpa.exe
2013-04-10 01:31:191876352----a-w-c:\windows\system32\win32k.sys
2013-04-04 19:50:3222856----a-w-c:\windows\system32\drivers\mbam.sys
.
============= FINISH: 8:02:14.40 ===============
below are the malwarebytes and DDS logs
Any help is greatly appreciated.
Thank you and I hope I am doing this right
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.06.26.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Owner :: KEN [administrator]
6/26/2013 9:50:39 PM
mbam-log-2013-06-26 (21-50-39).txt
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 424373
Time elapsed: 2 hour(s), 26 minute(s), 34 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 2/23/2004 2:36:34 PM
System Uptime: 6/27/2013 3:16:57 AM (5 hours ago)
.
Motherboard: ASUSTek Computer INC. | | Kamet2
Processor: AMD Athlon(tm) XP 2800+ | Socket A | 2075/166mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 107 GiB total, 36.356 GiB free.
D: is FIXED (FAT32) - 5 GiB total, 0.961 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1481: 5/7/2013 3:00:20 AM - Software Distribution Service 3.0
RP1482: 5/8/2013 3:00:19 AM - Software Distribution Service 3.0
RP1483: 5/9/2013 3:00:19 AM - Software Distribution Service 3.0
RP1484: 5/10/2013 3:00:22 AM - Software Distribution Service 3.0
RP1485: 5/11/2013 3:00:25 AM - Software Distribution Service 3.0
RP1486: 5/12/2013 3:00:19 AM - Software Distribution Service 3.0
RP1487: 5/13/2013 3:00:22 AM - Software Distribution Service 3.0
RP1488: 5/14/2013 3:00:19 AM - Software Distribution Service 3.0
RP1489: 5/15/2013 3:00:19 AM - Software Distribution Service 3.0
RP1490: 5/16/2013 3:00:26 AM - Software Distribution Service 3.0
RP1491: 5/17/2013 3:00:20 AM - Software Distribution Service 3.0
RP1492: 5/18/2013 3:00:19 AM - Software Distribution Service 3.0
RP1493: 5/19/2013 3:00:22 AM - Software Distribution Service 3.0
RP1494: 5/20/2013 3:00:19 AM - Software Distribution Service 3.0
RP1495: 5/21/2013 3:00:19 AM - Software Distribution Service 3.0
RP1496: 5/22/2013 3:00:27 AM - Software Distribution Service 3.0
RP1497: 5/23/2013 3:00:19 AM - Software Distribution Service 3.0
RP1498: 5/24/2013 3:00:21 AM - Software Distribution Service 3.0
RP1499: 5/25/2013 3:00:20 AM - Software Distribution Service 3.0
RP1500: 5/26/2013 3:00:23 AM - Software Distribution Service 3.0
RP1501: 5/27/2013 10:29:40 PM - Software Distribution Service 3.0
RP1502: 5/28/2013 3:00:21 AM - Software Distribution Service 3.0
RP1503: 5/29/2013 3:00:19 AM - Software Distribution Service 3.0
RP1504: 5/30/2013 3:00:25 AM - Software Distribution Service 3.0
RP1505: 5/31/2013 3:00:52 AM - Software Distribution Service 3.0
RP1506: 6/1/2013 3:00:22 AM - Software Distribution Service 3.0
RP1507: 6/2/2013 3:00:18 AM - Software Distribution Service 3.0
RP1508: 6/3/2013 3:00:18 AM - Software Distribution Service 3.0
RP1509: 6/3/2013 10:13:14 PM - Software Distribution Service 3.0
RP1510: 6/4/2013 3:00:23 AM - Software Distribution Service 3.0
RP1511: 6/5/2013 3:00:19 AM - Software Distribution Service 3.0
RP1512: 6/6/2013 3:00:20 AM - Software Distribution Service 3.0
RP1513: 6/7/2013 3:00:19 AM - Software Distribution Service 3.0
RP1514: 6/8/2013 3:00:20 AM - Software Distribution Service 3.0
RP1515: 6/9/2013 3:00:20 AM - Software Distribution Service 3.0
RP1516: 6/10/2013 3:00:20 AM - Software Distribution Service 3.0
RP1517: 6/11/2013 3:00:19 AM - Software Distribution Service 3.0
RP1518: 6/12/2013 3:00:19 AM - Software Distribution Service 3.0
RP1519: 6/13/2013 3:00:20 AM - Software Distribution Service 3.0
RP1520: 6/14/2013 3:00:19 AM - Software Distribution Service 3.0
RP1521: 6/15/2013 3:00:26 AM - Software Distribution Service 3.0
RP1522: 6/16/2013 3:00:19 AM - Software Distribution Service 3.0
RP1523: 6/17/2013 3:00:19 AM - Software Distribution Service 3.0
RP1524: 6/18/2013 3:00:41 AM - Software Distribution Service 3.0
RP1525: 6/19/2013 3:00:21 AM - Software Distribution Service 3.0
RP1526: 6/20/2013 3:00:20 AM - Software Distribution Service 3.0
RP1527: 6/21/2013 3:00:19 AM - Software Distribution Service 3.0
RP1528: 6/22/2013 3:00:19 AM - Software Distribution Service 3.0
RP1529: 6/23/2013 3:05:21 AM - System Checkpoint
RP1530: 6/24/2013 3:58:07 AM - System Checkpoint
RP1531: 6/25/2013 8:27:08 AM - Software Distribution Service 3.0
RP1532: 6/25/2013 9:06:00 PM - avast! Free Antivirus Setup
RP1533: 6/25/2013 9:32:36 PM - Installed AVG 2013
RP1534: 6/25/2013 9:33:28 PM - Installed AVG 2013
RP1535: 6/25/2013 11:44:48 PM - Software Distribution Service 3.0
RP1536: 6/27/2013 3:00:22 AM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
4200
4200_Help
4200Tour
4200Trb
Acrobat.com
Adobe AIR
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.7)
Adobe Shockwave Player 11.6
Adobe® Photoshop® Album Starter Edition 3.0
Adobe® Photoshop® Album Starter Edition 3.0.1
AiO_Scan
AIOMinimal
AiOSoftware
Apple Mobile Device Support
Apple Software Update
AVG 2013
CCleaner
Compaq Connections
Compaq Instant Support
Copy
CreativeProjects
Director
DocProc
Document Manager
eFax Messenger 4.1
Fax
FriendsChecker
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
HotSPOT-Client-DMC
HpSdpAppCoreApp
HPSystemDiagnostics
InstantShare
Intel(R) Extreme Graphics Driver
InterVideo WinDVD Player
IrfanView (remove only)
Learn2 Player (Uninstall Only)
Lexmark Z700-P700 Series
Malwarebytes Anti-Malware version 1.75.0.1300
Memories Disc Creator 2.0
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Data Access Components KB870669
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Web Components
Microsoft Office Standard Edition 2003
Microsoft Office XP Web Components
Microsoft Plus! Digital Media Edition
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Works 7.0
Microsoft WSE 2.0 SP3 Runtime
Monopoly Here & Now Edition (remove only)
MSN Music Assistant
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA GART Driver
OGA Notifier 2.0.0048.0
Opera 12.15
Overland
PC-Doctor for Windows
PhotoGallery
POINT
PrintScreen
PS2
PSShortcutsP
Python 2.2 combined Win32 extensions
Python 2.2.1
QFolder
Quicken 2004
QuickProjects
Readme
Realtek AC'97 Audio
RecordNow!
Revo Uninstaller Pro 2.5.9
Rhapsody Player Engine
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
Saint Paint Studio
Scan
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB2809289)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2829530)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB2847204)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2753842)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761226)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2778344)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2799494)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB2807986)
Security Update for Windows XP (KB2808735)
Security Update for Windows XP (KB2813170)
Security Update for Windows XP (KB2813345)
Security Update for Windows XP (KB2820197)
Security Update for Windows XP (KB2820917)
Security Update for Windows XP (KB2829361)
Security Update for Windows XP (KB2839229)
Setup
SkinsHP1
SkinsHP2
SmartFTP Client
SmartFTP Client 3.0 Setup Files (remove only)
SmartNetMonitor for Client
Sonic Update Manager
SUPERAntiSpyware
swMSM
TrayApp
TuneUp Utilities Language Pack (en-US)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2718704)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
VIA Rhine-Family Fast Ethernet Adapter
VIA/S3G Display Driver
Viewpoint Manager (Remove Only)
Viewpoint Media Player
VLC media player 2.0.6
WebFldrs XP
WebIQ Technology Engine
WebReg
Windows Genuine Advantage v1.3.0254.0
Windows Imaging Component
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live installer
Windows Live Mail
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Writer
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
6/26/2013 8:52:56 AM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Microsoft Office 2003 (KB2539581).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Office 2003 (KB2726929).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft Office Web Components (KB947319).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft Office 2003 (KB2288613).
6/25/2013 8:27:09 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597).
6/23/2013 9:10:47 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: szkg
6/23/2013 9:10:47 PM, error: Service Control Manager [7022] - The Server service hung on starting.
6/23/2013 9:10:47 PM, error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: After starting, the service hung in a start-pending state.
6/23/2013 8:56:52 PM, error: Service Control Manager [7022] - The Fax service hung on starting.
6/23/2013 8:54:32 PM, error: Service Control Manager [7023] - The Human Interface Device Access service terminated with the following error: The system cannot find the file specified.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The nVidia WDM Video Capture (universal) service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The nVidia WDM A/V Crossbar service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
6/23/2013 8:54:32 PM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
6/23/2013 7:47:56 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AmdK7 aswRvrt aswSnx aswSP aswTdi aswVmm FileDisk Fips SASDIFSV SASKUTIL szkg
6/23/2013 7:46:58 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
6/21/2013 3:03:17 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Office 2003 (KB2726929).
6/21/2013 3:02:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Microsoft Office Web Components (KB947319).
6/21/2013 3:02:18 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Update for Microsoft Office 2003 (KB2539581).
6/21/2013 3:01:45 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597).
6/21/2013 3:00:26 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070057: Security Update for Microsoft Office 2003 (KB2288613).
.
==== End Of File ===========================
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Owner at 8:00:54 on 2013-06-27
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1471.479 [GMT -5:00]
.
AV: AVG Anti-Virus 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ================
.
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
C:\Program Files\iolo\common\lib\ioloServiceManager.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\loggingserver.exe
C:\WINDOWS\System32\PMObserv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\LTMSG.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.search.us.com?guid={1EE66E74-EE56-4B47-8FF4-FCB8FFA46913}&serpv=1
mSearch Bar = hxxp://red.clientapps.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
uProxyOverride = localhost
uURLSearchHooks: {00000000-6E41-4FD3-8538-502F5495E5FC} - <orphaned>
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: FriendsChecker: {44ed99e2-16a6-4b89-80d6-5b21cf42e78b} - c:\program files\friendschecker\ie\common.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned>
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Google Update] "c:\documents and settings\owner\local settings\application data\google\update\GoogleUpdate.exe" /c
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockwave 11\SwHelper_1150596.exe -Update -1150596 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.nabiscoworld.com/Games/game_large.aspx?gameid=10036"
mRun: [VTTimer] VTTimer.exe
mRun: [LTMSG] LTMSG.exe 7
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.0\apps\apdproxy.exe"
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quicke~1.lnk - c:\program files\quicken\bagent.exe
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: Popup Blocker - Add to Black List - c:\program files\iolo\common\lib\AddToPSBlackList.htm
IE: Popup Blocker - Add to White List - c:\program files\iolo\common\lib\AddToPSWhiteList.htm
IE: Yahoo! &SMS - /c:\program files\yahoo!\Common/ycsms.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - hxxp://www.superadblocker.com/activex/sabspx.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Monopoly/Images/armhelper.ocx
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} - hxxp://zone.msn.com/bingame/hsol/default/SCEWebLauncher.cab
TCP: NameServer = 75.76.84.70 75.76.84.71
TCP: Interfaces\{E327DA45-822A-4DA9-B17B-2DB10DC513E8} : DHCPNameServer = 75.76.84.70 75.76.84.71
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\15.3.0\ViProtocol.dll
Notify: igfxcui - igfxsrvc.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Authentication Packages = msv1_0 nwprovau
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-11-15 94048]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-3-23 24408]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-6-25 37664]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2011-8-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2012-11-15 5814904]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2012-10-22 196664]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2008-2-1 596336]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2008-2-1 596336]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-6-26 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-6-26 701512]
R2 U3SDR200;U3SDR200;c:\windows\system32\drivers\U3SDR200.SYS [2010-7-31 4224]
R2 vToolbarUpdater15.3.0;vToolbarUpdater15.3.0;c:\program files\common files\avg secure search\vtoolbarupdater\15.3.0\ToolbarUpdater.exe [2013-6-26 1598128]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-3-3 22856]
R3 PMObserv;PMObserv;c:\windows\system32\PMObserv.exe [2004-2-23 135168]
S?4 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S2 mrtRate;mrtRate; [x]
S3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-5-16 27064]
S3 TukarooNT;TukarooNT;c:\windows\system32\drivers\tukaroont.sys --> c:\windows\system32\drivers\TukarooNT.sys [?]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;\??\c:\program files\tuneup utilities 2010\tuneuputilitiesdriver32.sys --> c:\program files\tuneup utilities 2010\TuneUpUtilitiesDriver32.sys [?]
.
=============== File Associations ===============
.
FileExt: .jse: JSEFile=NOTEPAD.EXE %1
FileExt: .wsf: WSFFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2013-06-27 03:54:12--------d-----w-c:\windows\system32\cache
2013-06-27 02:43:47--------d-----w-c:\program files\Malwarebytes' Anti-Malware
2013-06-26 02:38:46--------d-----w-c:\documents and settings\owner\application data\AVG2013
2013-06-26 02:36:02--------d-----w-c:\documents and settings\owner\local settings\application data\AVG SafeGuard toolbar
2013-06-26 02:35:45--------d-----w-c:\documents and settings\all users\application data\AVG SafeGuard toolbar
2013-06-26 02:35:42--------d-----w-c:\documents and settings\owner\application data\AVG SafeGuard toolbar
2013-06-26 02:35:3737664----a-w-c:\windows\system32\drivers\avgtpx86.sys
2013-06-26 02:35:34--------d-----w-c:\program files\common files\AVG Secure Search
2013-06-26 02:35:31--------d-----w-c:\program files\AVG SafeGuard toolbar
2013-06-26 02:34:03--------d--h--w-C:\$AVG
2013-06-26 02:34:03--------d-----w-c:\documents and settings\all users\application data\AVG2013
2013-06-26 02:29:10--------d-----w-c:\documents and settings\owner\local settings\application data\MFAData
2013-06-26 02:29:10--------d-----w-c:\documents and settings\owner\local settings\application data\Avg2013
.
==================== Find3M ====================
.
2013-06-11 19:35:2871048-c--a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-11 19:35:28692104-c--a-w-c:\windows\system32\FlashPlayerApp.exe
2013-05-07 22:30:06920064----a-w-c:\windows\system32\wininet.dll
2013-05-07 22:30:0543520------w-c:\windows\system32\licmgr10.dll
2013-05-07 22:30:051469440------w-c:\windows\system32\inetcpl.cpl
2013-05-07 21:53:29385024----a-w-c:\windows\system32\html.iec
2013-05-03 01:26:262193536----a-w-c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38:182070144----a-w-c:\windows\system32\ntkrnlpa.exe
2013-04-10 01:31:191876352----a-w-c:\windows\system32\win32k.sys
2013-04-04 19:50:3222856----a-w-c:\windows\system32\drivers\mbam.sys
.
============= FINISH: 8:02:14.40 ===============